$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: goRzIhJD7BfEg+MkOcMSexhcZuXkDafoGAvRKegWAUQ= Subject key identifier: A3:FC:EB:AD:31:20:86:16:23:A7:17:73:47:F7:15:35:A8:1F:BF:CC Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 53CECE225683B43E755AE4B2AA692E064EF84717 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0223 Signing time: Fri 22 Aug 2025 23:50:04 +0000 Manifest this update: Fri 22 Aug 2025 23:45:04 +0000 Manifest next update: Tue 26 Aug 2025 06:43:04 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: j+9SiqkqpA+W7MO5dK6nRcycring9F7WHDEt6a5kyqs=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 06:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ce:ce:22:56:83:b4:3e:75:5a:e4:b2:aa:69:2e:06:4e:f8:47:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Aug 22 23:45:04 2025 GMT Not After : Aug 26 06:43:04 2025 GMT Subject: CN=A3FCEBAD3120861623A7177347F71535A81FBFCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:34:df:51:82:d5:e7:40:7f:9e:42:45:3c:e9: c5:41:84:75:19:19:e7:c2:89:c3:d3:74:ea:03:08: a6:3e:62:98:91:dc:0c:2e:f7:36:ff:02:b4:87:ac: a1:1c:d2:a7:0f:58:c6:bd:c3:a6:5b:95:1f:16:4a: db:f4:53:39:16:b6:92:2e:71:27:34:55:8a:07:82: fd:46:8e:f4:4f:fe:16:48:47:a9:d1:4d:5e:c0:19: d2:9b:b4:d2:7a:31:60:60:4d:09:a2:31:23:6d:ea: 2c:83:70:e8:92:e1:d7:90:7a:17:51:98:d8:09:43: 72:21:a5:25:9d:fb:b8:d4:43:98:07:39:18:19:17: 01:45:7b:85:30:d6:62:32:bd:10:57:25:db:28:58: a8:68:06:e2:90:8d:16:42:9d:b2:61:23:a4:1d:a3: cb:d4:a2:58:68:1b:1e:1b:09:a9:37:aa:0f:4c:cf: c8:13:7c:b8:88:2b:c5:96:dc:2f:fb:59:8c:a3:07: ba:aa:be:cb:39:35:70:eb:3d:d2:00:9c:07:cb:e5: d9:07:ba:55:cc:2f:6a:1c:62:f3:95:92:88:37:23: 10:dc:66:58:08:f0:5f:7b:8c:12:ce:34:f1:82:77: 26:29:02:53:6a:ea:2e:38:31:5e:3b:35:92:fe:17: 15:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:FC:EB:AD:31:20:86:16:23:A7:17:73:47:F7:15:35:A8:1F:BF:CC X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ed:80:37:55:ed:ca:c3:92:69:fe:ff:df:34:00:69:5f:f6:09: 1e:47:24:92:a8:6e:1a:d2:a8:de:49:a8:63:d7:1f:a0:84:52: 3f:7b:11:b4:09:ff:09:95:da:05:09:69:63:d0:ad:c5:ad:30: 25:d9:40:fc:54:61:b3:38:fc:46:ac:fd:be:38:a1:60:f2:fe: bd:4b:d7:5a:d5:22:6f:61:2e:08:cd:f5:63:e8:ac:2e:7d:ed: 27:5c:4c:d2:42:b7:15:43:7f:8c:aa:81:b2:82:f9:86:4b:f7: e8:56:72:75:9e:86:df:6f:8c:34:ae:5b:90:9d:0b:9c:5f:a3: b5:e5:45:84:7d:36:18:35:ad:30:46:60:34:9d:c9:bf:a5:9c: 23:67:55:3e:10:80:08:26:d0:e7:61:80:aa:df:31:1a:ab:1a: ff:0f:80:f5:4a:1c:c2:a7:59:1d:0f:5d:bf:a6:d8:fa:2e:98: b9:15:fe:29:b2:9c:fd:aa:e2:40:66:ff:58:0f:39:b3:55:34: 03:04:df:55:4b:55:7c:8f:96:a9:6e:7d:43:74:ad:66:bb:e8: 58:dd:de:12:8a:8a:47:f8:2a:7b:25:cc:31:45:9d:a4:0c:54: c1:fc:2c:59:d6:b9:f5:58:d3:b3:9c:a1:38:a6:ad:eb:0b:b0: 02:6c:c9:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU87OIlaDtD51WuSyqmkuBk74RxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTA4MjIyMzQ1MDRaFw0yNTA4MjYwNjQzMDRaMDMxMTAvBgNV BAMTKEEzRkNFQkFEMzEyMDg2MTYyM0E3MTc3MzQ3RjcxNTM1QTgxRkJGQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtNN9RgtXnQH+eQkU86cVBhHUZ GefCicPTdOoDCKY+YpiR3Awu9zb/ArSHrKEc0qcPWMa9w6ZblR8WStv0UzkWtpIu cSc0VYoHgv1GjvRP/hZIR6nRTV7AGdKbtNJ6MWBgTQmiMSNt6iyDcOiS4deQehdR mNgJQ3IhpSWd+7jUQ5gHORgZFwFFe4Uw1mIyvRBXJdsoWKhoBuKQjRZCnbJhI6Qd o8vUolhoGx4bCak3qg9Mz8gTfLiIK8WW3C/7WYyjB7qqvss5NXDrPdIAnAfL5dkH ulXML2ocYvOVkog3IxDcZlgI8F97jBLONPGCdyYpAlNq6i44MV47NZL+FxX/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo/zrrTEghhYjpxdzR/cVNagfv8wwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAO2AN1XtysOSaf7/3zQAaV/2CR5HJJKobhrS qN5JqGPXH6CEUj97EbQJ/wmV2gUJaWPQrcWtMCXZQPxUYbM4/Eas/b44oWDy/r1L 11rVIm9hLgjN9WPorC597SdcTNJCtxVDf4yqgbKC+YZL9+hWcnWeht9vjDSuW5Cd C5xfo7XlRYR9Nhg1rTBGYDSdyb+lnCNnVT4QgAgm0OdhgKrfMRqrGv8PgPVKHMKn WR0PXb+m2PoumLkV/imynP2q4kBm/1gPObNVNAME31VLVXyPlqlufUN0rWa76Fjd 3hKKikf4KnslzDFFnaQMVMH8LFnWufVY07OcoTimresLsAJsyRk= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:12 2025 by rpki-client