$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft File: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft (raw, json) Hash identifier: f5IEY8+cIURivbSwmWWWBN26ffZZGDVDucfM2SktFpE= Subject key identifier: 9E:5C:C9:90:B2:FC:BB:E1:C9:57:6B:DF:D3:33:F6:E1:03:DE:64:8E Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 2C3EC3F6A6E1148FA199360FBB06F8DFD7065080 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft Manifest number: 0168 Signing time: Thu 21 Aug 2025 17:41:42 +0000 Manifest this update: Thu 21 Aug 2025 17:36:42 +0000 Manifest next update: Sun 24 Aug 2025 19:00:42 +0000 Files and hashes: 1: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl (hash: Comg5gI0l7fs4a50srmXUSS0d8zQv2BWDnOB8jkafWk=) 2: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (hash: uLA8drzoTGDdLRLknWkZIaOJdJxpC+UKHzjWLF3FpOA=) 3: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (hash: 6LOGBCF5zTr7iAtxuc25TGgWiHmJgXAtcLTxMujO3no=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:3e:c3:f6:a6:e1:14:8f:a1:99:36:0f:bb:06:f8:df:d7:06:50:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Aug 21 17:36:42 2025 GMT Not After : Aug 24 19:00:42 2025 GMT Subject: CN=9E5CC990B2FCBBE1C9576BDFD333F6E103DE648E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c2:a2:b2:c9:c7:2b:fe:0b:1c:ef:fe:5a:21: a4:d3:46:80:db:c6:d4:fc:ba:e3:d3:da:11:15:1d: 2a:de:0f:fe:fc:8c:6a:78:59:e2:56:40:c9:2f:53: 6c:a5:71:77:2b:6f:ac:12:93:25:d3:6b:b0:7f:4e: 03:4a:83:a5:18:af:08:66:96:10:4b:f2:fa:6f:a6: ac:67:78:c0:e3:b1:09:75:b3:e6:46:9b:b1:4b:6f: 28:92:99:6e:b6:02:60:be:3e:5b:2a:2f:9e:fe:65: a7:50:ae:70:29:f1:fa:45:26:e8:96:a5:bf:12:de: 39:c4:f3:f7:a0:c2:df:b5:2b:08:9f:5f:ce:fb:76: 4e:20:ce:68:1f:b2:95:e2:90:0a:c6:be:f8:1c:b7: 09:64:47:44:10:6e:94:d1:a1:3a:7e:40:33:19:8b: 49:8a:4b:28:a3:9e:c1:fa:75:72:2f:6b:91:fb:47: e1:a0:a2:cb:03:27:17:62:08:37:d7:98:99:4a:bb: 60:8c:f2:52:0a:8e:58:fa:70:41:40:50:26:39:60: 7f:9d:cd:0f:02:7b:30:1f:b5:49:a8:d9:33:34:49: 7b:44:13:5e:fa:6b:5b:31:76:dc:e9:c1:fd:a9:cd: b8:66:04:01:92:7d:8c:63:96:9c:a4:b0:3b:cf:fe: d9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5C:C9:90:B2:FC:BB:E1:C9:57:6B:DF:D3:33:F6:E1:03:DE:64:8E X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:ac:23:cc:e3:b9:6e:c2:8b:a9:2a:1a:c9:48:73:e5:0c:ad: ff:54:f5:9b:c2:d2:4a:c6:20:cd:8d:cc:16:1e:88:82:d6:fc: f6:a5:a8:be:19:ef:51:cf:68:52:0f:2b:d9:ab:7f:34:64:d8: 86:54:f6:bf:39:6b:3e:9b:e5:ca:b4:ab:d0:3e:37:40:26:2f: 37:7f:be:9c:0a:58:f0:74:03:c3:31:a8:ff:33:1f:91:f0:28: 73:23:c0:1e:75:85:69:c0:26:76:4c:d5:b9:33:31:5f:07:19: 72:83:f9:13:78:c2:d2:73:0f:40:a5:7a:65:0d:26:36:b9:42: f6:2a:dc:c5:9a:10:e5:51:19:4f:84:8c:9c:54:9a:01:a1:2d: a4:8a:c0:e9:d7:37:d0:f8:a3:8a:7d:87:bb:73:66:88:c5:29: 2c:48:3f:a8:e3:3b:51:34:58:34:c1:cf:5a:4a:e8:7b:b7:73: c1:fc:bd:39:e4:17:df:57:bc:cc:68:23:1c:ac:04:2c:d8:0f: 2d:2d:4a:29:3a:2a:89:e4:0c:eb:3d:2e:11:a1:0d:c6:cc:a9: 4d:8e:bb:5c:65:79:52:be:c5:b7:5a:d7:67:2f:0b:cf:1e:24: 21:b0:c6:35:84:e6:fd:9c:0d:bc:72:71:87:3e:d3:41:1e:23: 4c:b3:5f:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULD7D9qbhFI+hmTYPuwb439cGUIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNTA4MjExNzM2NDJaFw0yNTA4MjQxOTAwNDJaMDMxMTAvBgNV BAMTKDlFNUNDOTkwQjJGQ0JCRTFDOTU3NkJERkQzMzNGNkUxMDNERTY0OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPwqKyyccr/gsc7/5aIaTTRoDb xtT8uuPT2hEVHSreD/78jGp4WeJWQMkvU2ylcXcrb6wSkyXTa7B/TgNKg6UYrwhm lhBL8vpvpqxneMDjsQl1s+ZGm7FLbyiSmW62AmC+PlsqL57+ZadQrnAp8fpFJuiW pb8S3jnE8/egwt+1KwifX877dk4gzmgfspXikArGvvgctwlkR0QQbpTRoTp+QDMZ i0mKSyijnsH6dXIva5H7R+GgossDJxdiCDfXmJlKu2CM8lIKjlj6cEFAUCY5YH+d zQ8CezAftUmo2TM0SXtEE176a1sxdtzpwf2pzbhmBAGSfYxjlpyksDvP/tm/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnlzJkLL8u+HJV2vf0zP24QPeZI4wHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmJiZTY4MTUtMzEwZS00MjA2LWE1 MDAtNmJiOWQzMjYzYWJmLzAvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVB RDgyRkFCM0Q1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6sI8zjuW7Ci6kqGslIc+UMrf9U9ZvC0krG IM2NzBYeiILW/PalqL4Z71HPaFIPK9mrfzRk2IZU9r85az6b5cq0q9A+N0AmLzd/ vpwKWPB0A8MxqP8zH5HwKHMjwB51hWnAJnZM1bkzMV8HGXKD+RN4wtJzD0ClemUN Jja5QvYq3MWaEOVRGU+EjJxUmgGhLaSKwOnXN9D4o4p9h7tzZojFKSxIP6jjO1E0 WDTBz1pK6Hu3c8H8vTnkF99XvMxoIxysBCzYDy0tSik6KonkDOs9LhGhDcbMqU2O u1xleVK+xbda12cvC88eJCGwxjWE5v2cDbxycYc+00EeI0yzX78= -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:38 2025 by rpki-client