$ rpki-client -vvf repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft File: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft (raw, json) Hash identifier: fs/Ks+XM3f3Hnldk0Eou2xDP3qkux357MfgRrJZSNXQ= Subject key identifier: 97:88:11:CB:32:92:6D:F9:5E:C1:D8:A9:D4:F1:7A:C5:CE:2C:AF:E9 Authority key identifier: 2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC Certificate issuer: /CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Certificate serial: 5AABA12D223741178350F3ED0E14D95A04A07090 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft Manifest number: D1 Signing time: Sat 23 Aug 2025 00:40:39 +0000 Manifest this update: Sat 23 Aug 2025 00:35:39 +0000 Manifest next update: Tue 26 Aug 2025 05:28:39 +0000 Files and hashes: 1: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (hash: teoM6MXntxfZebuRvj4HuDCmBJE7bmAYK9p8NliSwzQ=) 2: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl (hash: YnTS8LPVxUpC7EKQanBNLDnAzzknBRcZeJq5sazZAlg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 05:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ab:a1:2d:22:37:41:17:83:50:f3:ed:0e:14:d9:5a:04:a0:70:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Validity Not Before: Aug 23 00:35:39 2025 GMT Not After : Aug 26 05:28:39 2025 GMT Subject: CN=978811CB32926DF95EC1D8A9D4F17AC5CE2CAFE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d7:72:3c:09:c8:ca:f0:8b:c2:6d:11:83:98: 08:c5:1e:56:c8:95:a8:4b:27:ca:16:55:27:73:7b: 63:82:e4:a6:fb:21:c7:a6:2c:07:ba:65:3b:17:f2: 1f:3b:4e:ee:2c:e1:fe:a6:6d:4e:ce:0b:62:0a:7f: a6:0b:41:86:c2:e0:4b:55:96:5b:95:f8:33:43:44: d3:08:d6:75:f3:59:7b:37:ff:cf:18:6e:33:b1:5a: 5a:f3:c5:49:f6:8d:ba:8b:eb:48:30:5d:e7:09:89: 64:c2:00:b0:dd:68:92:6e:3b:88:28:99:c4:3d:47: bf:ee:90:1b:45:d4:94:e6:ee:a8:d7:a5:cc:23:31: d8:54:dc:a6:65:d4:1a:7c:5b:a6:66:41:07:81:ba: fd:1b:3d:57:55:c3:f1:06:c8:7c:de:27:0c:21:01: 28:b9:38:a6:9b:a8:9d:c0:56:20:d6:ce:23:2e:98: 1c:03:fb:22:67:3c:95:80:76:89:ce:32:ef:d5:44: 79:67:46:00:c7:c2:15:e8:fe:3e:5c:b9:fd:4f:ed: 78:1c:9a:b6:29:ee:07:cd:3f:2f:9a:03:3d:48:c1: c0:ec:18:af:36:46:9e:8c:a0:61:79:46:cd:ad:00: e8:19:2e:db:e2:44:c7:e1:a8:a9:4e:a2:0a:ae:a2: 39:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:88:11:CB:32:92:6D:F9:5E:C1:D8:A9:D4:F1:7A:C5:CE:2C:AF:E9 X509v3 Authority Key Identifier: keyid:2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e8:61:2f:fd:f5:9c:ad:89:dc:29:96:87:ce:c5:15:c6:bb:6a: cd:fb:7f:00:15:7a:64:e7:b7:10:4b:b6:b6:02:b2:95:d7:7f: 57:3b:f0:ba:01:a4:c2:72:8f:91:a0:97:a9:50:55:7a:9a:87: b8:b1:ea:39:2c:06:60:37:0e:ba:14:a0:1b:0a:0b:ef:ee:2a: a7:94:fa:af:ad:4e:bb:b7:3a:ac:07:6d:8f:64:58:8a:6a:79: 36:53:50:ca:73:e0:9a:b2:2e:c3:64:15:e5:85:48:bf:97:e8: b0:6f:86:bf:00:77:e3:da:cf:6c:ef:78:20:80:d5:80:02:df: 6b:13:f6:bd:8c:23:cc:86:a5:b3:84:6f:dc:9f:2d:95:1c:b6: 30:bb:1c:16:b3:78:b1:48:86:56:2c:e8:c5:11:c7:eb:c8:07: d2:4c:dd:8f:b9:6b:fd:52:90:aa:ff:3d:c3:e9:68:08:20:b1: b8:55:69:1d:d5:65:ab:f0:2c:90:d0:d9:5a:d4:6a:9f:2a:00: b9:d4:b5:1a:c4:a7:4c:bb:cd:07:29:82:2f:a7:e6:36:a0:e2: 94:b5:ff:99:8d:d0:35:34:7f:d2:c9:b3:56:15:34:69:25:b6: 0f:84:ed:cc:4b:ed:22:be:85:35:2d:06:7b:78:e0:31:41:1f: 3c:d7:49:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWquhLSI3QReDUPPtDhTZWgSgcJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1 Mzc5OEJGQzAeFw0yNTA4MjMwMDM1MzlaFw0yNTA4MjYwNTI4MzlaMDMxMTAvBgNV BAMTKDk3ODgxMUNCMzI5MjZERjk1RUMxRDhBOUQ0RjE3QUM1Q0UyQ0FGRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH13I8CcjK8IvCbRGDmAjFHlbI lahLJ8oWVSdze2OC5Kb7IcemLAe6ZTsX8h87Tu4s4f6mbU7OC2IKf6YLQYbC4EtV lluV+DNDRNMI1nXzWXs3/88YbjOxWlrzxUn2jbqL60gwXecJiWTCALDdaJJuO4go mcQ9R7/ukBtF1JTm7qjXpcwjMdhU3KZl1Bp8W6ZmQQeBuv0bPVdVw/EGyHzeJwwh ASi5OKabqJ3AViDWziMumBwD+yJnPJWAdonOMu/VRHlnRgDHwhXo/j5cuf1P7Xgc mrYp7gfNPy+aAz1IwcDsGK82Rp6MoGF5Rs2tAOgZLtviRMfhqKlOogquojlZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUl4gRyzKSbflewdip1PF6xc4sr+kwHwYDVR0j BBgwFoAUKt3UA1Fz+sO7OUnLNszvJVN5i/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODY3YTJlZS1kNDExLTRmZjgtOWY1Yy0zNWQwMzQxMjNmODQvMC8yQURERDQwMzUx NzNGQUMzQkIzOTQ5Q0IzNkNDRUYyNTUzNzk4QkZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1Mzc5 OEJGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg2N2EyZWUtZDQxMS00ZmY4LTlm NWMtMzVkMDM0MTIzZjg0LzAvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VG MjU1Mzc5OEJGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOhhL/31nK2J3CmWh87FFca7as37fwAVemTn txBLtrYCspXXf1c78LoBpMJyj5Ggl6lQVXqah7ix6jksBmA3DroUoBsKC+/uKqeU +q+tTru3OqwHbY9kWIpqeTZTUMpz4JqyLsNkFeWFSL+X6LBvhr8Ad+Paz2zveCCA 1YAC32sT9r2MI8yGpbOEb9yfLZUctjC7HBazeLFIhlYs6MURx+vIB9JM3Y+5a/1S kKr/PcPpaAggsbhVaR3VZavwLJDQ2VrUap8qALnUtRrEp0y7zQcpgi+n5jag4pS1 /5mN0DU0f9LJs1YVNGkltg+E7cxL7SK+hTUtBnt44DFBHzzXScg= -----END CERTIFICATE-----Generated at Sun Aug 24 01:30:26 2025 by rpki-client