$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: BTTpWssoi8sZun8xizhrDbcMEmFVh8K4DJB9HXPIMCE= Subject key identifier: EC:C4:31:33:AA:38:2A:F0:1A:C4:1E:02:6C:6A:98:D4:3C:18:A8:67 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 1F6D0B1588196B67AF6439CD0869C8A0543F68F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 01B6 Signing time: Fri 22 Aug 2025 13:32:16 +0000 Manifest this update: Fri 22 Aug 2025 13:27:16 +0000 Manifest next update: Mon 25 Aug 2025 19:17:16 +0000 Files and hashes: 1: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: 6/CFAgI9fYm2h+bpsbThjdmYrbI1a+tEsxm7cMbpBNY=) 2: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: YcSRTKOMF12aOzXL8N5UR6kDF37yCb3W4QZONTd7a9A=) 3: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: Qa1udsECIRHsg1OUvc+qS4VEGfZjWwfHSm/JuoyHhYg=) 4: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: q6SY7dMZTZK38tnoR+pXFf7kzoZFDF5ifDK7XqxUw8c=) 5: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: lE2WAkUo+H2HRf/8FZVbI/KS5FObYnPtLBgfoerhf+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 19:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6d:0b:15:88:19:6b:67:af:64:39:cd:08:69:c8:a0:54:3f:68:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Aug 22 13:27:16 2025 GMT Not After : Aug 25 19:17:16 2025 GMT Subject: CN=ECC43133AA382AF01AC41E026C6A98D43C18A867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:7a:e5:07:34:17:e4:78:54:79:15:80:5f: 4b:41:0c:37:7c:e1:7a:ca:60:34:0d:b9:f9:ac:96: 69:f8:aa:24:13:e0:ab:f5:f2:c5:5c:f6:bf:3f:28: a2:32:0d:7f:5b:55:f1:77:a1:56:d6:43:fc:bb:7d: c4:88:92:fc:4f:52:2e:1b:ac:17:5e:0f:1d:df:f2: 5a:42:64:31:0e:c4:b4:c4:82:11:b6:6c:5e:e8:e8: 35:de:35:3d:ba:37:36:ea:a6:c8:a9:f4:a7:ae:40: b2:0d:18:40:be:46:b9:86:87:3e:5e:b1:3c:be:a0: 09:32:73:fa:92:0d:dd:b0:d8:34:44:c8:af:71:31: fa:df:15:f4:ca:b7:77:12:d7:6f:d4:24:90:53:a7: 85:18:12:7a:a6:fb:47:73:59:3c:b8:7a:1c:32:90: 07:27:55:23:d4:01:ef:51:9f:93:71:4a:3c:90:2f: 11:99:b4:ea:bc:f9:5d:73:a2:8b:8c:f2:89:bc:5d: 40:2e:53:0a:a2:a2:52:da:0b:cc:4f:94:f6:6f:2c: 67:c7:fc:18:a8:3e:71:b5:8c:19:94:0c:90:9c:f7: 75:2e:58:ea:24:ee:be:6f:31:77:83:b9:7a:ed:15: 4a:3b:94:f1:57:36:50:55:ab:be:2e:ab:66:97:f2: 92:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C4:31:33:AA:38:2A:F0:1A:C4:1E:02:6C:6A:98:D4:3C:18:A8:67 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:6a:83:92:71:d9:cc:6f:16:52:6c:7a:77:2a:c1:d1:6e:5d: 80:b5:ea:34:96:3b:97:4d:ea:3b:1a:ef:95:06:e7:a5:89:35: 32:16:69:82:b6:51:cc:fe:5a:7e:77:f6:7e:82:7a:65:ef:e3: 21:fc:03:f6:fe:6a:ae:92:0d:b4:00:c9:31:27:fb:fe:25:68: a3:56:25:9c:93:36:98:6e:bd:44:37:57:41:78:45:b6:c3:57: 8e:e2:cd:bc:74:af:48:33:aa:b7:f2:64:56:75:d2:4e:af:99: e0:5a:04:9a:18:f6:a2:99:84:e8:8c:b2:e5:85:cf:32:ff:7c: bb:c0:a3:3e:d6:dc:e7:73:37:a5:37:43:e0:4d:be:32:c6:47: dc:37:b5:f9:10:f6:c3:0c:92:bb:f9:54:b0:3b:76:a9:49:b0: b5:6d:e6:f2:c2:cb:ac:4d:f2:e2:89:03:31:05:43:0d:5f:29: 46:bc:12:88:4f:ca:1e:8f:e0:d1:45:83:f5:a2:af:97:ac:80: ce:fc:b0:4f:e7:0d:8d:82:7c:29:a6:e5:ad:13:0a:79:05:27: 1b:b5:e9:33:eb:5d:1c:5c:ce:73:62:09:90:3d:b8:84:7c:b0: 8a:0d:46:a8:af:46:a4:67:77:38:63:9c:da:05:d8:8f:53:51: c8:83:2c:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH20LFYgZa2evZDnNCGnIoFQ/aPAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNTA4MjIxMzI3MTZaFw0yNTA4MjUxOTE3MTZaMDMxMTAvBgNV BAMTKEVDQzQzMTMzQUEzODJBRjAxQUM0MUUwMjZDNkE5OEQ0M0MxOEE4NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp0HrlBzQX5HhUeRWAX0tBDDd8 4XrKYDQNufmslmn4qiQT4Kv18sVc9r8/KKIyDX9bVfF3oVbWQ/y7fcSIkvxPUi4b rBdeDx3f8lpCZDEOxLTEghG2bF7o6DXeNT26Nzbqpsip9KeuQLINGEC+RrmGhz5e sTy+oAkyc/qSDd2w2DREyK9xMfrfFfTKt3cS12/UJJBTp4UYEnqm+0dzWTy4ehwy kAcnVSPUAe9Rn5NxSjyQLxGZtOq8+V1zoouM8om8XUAuUwqiolLaC8xPlPZvLGfH /BioPnG1jBmUDJCc93UuWOok7r5vMXeDuXrtFUo7lPFXNlBVq74uq2aX8pIfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7MQxM6o4KvAaxB4CbGqY1DwYqGcwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJVqg5Jx2cxvFlJsencqwdFuXYC16jSWO5dN 6jsa75UG56WJNTIWaYK2Ucz+Wn539n6CemXv4yH8A/b+aq6SDbQAyTEn+/4laKNW JZyTNphuvUQ3V0F4RbbDV47izbx0r0gzqrfyZFZ10k6vmeBaBJoY9qKZhOiMsuWF zzL/fLvAoz7W3OdzN6U3Q+BNvjLGR9w3tfkQ9sMMkrv5VLA7dqlJsLVt5vLCy6xN 8uKJAzEFQw1fKUa8EohPyh6P4NFFg/Wir5esgM78sE/nDY2CfCmm5a0TCnkFJxu1 6TPrXRxcznNiCZA9uIR8sIoNRqivRqRndzhjnNoF2I9TUciDLBE= -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:03 2025 by rpki-client