$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft File: D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft (raw, json) Hash identifier: SWj9Mq0A9EfpoZzFxL1sbcteekyp42O5/oTvMmm1/kM= Subject key identifier: F4:39:8C:47:27:6E:7A:3D:1F:27:E0:D4:F6:49:66:0A:1B:E9:CD:04 Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 23D5D22545E131A0BCF24FA78B806C0288A8DBC9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft Manifest number: 02E2 Signing time: Thu 21 Aug 2025 13:52:11 +0000 Manifest this update: Thu 21 Aug 2025 13:47:11 +0000 Manifest next update: Sun 24 Aug 2025 22:13:11 +0000 Files and hashes: 1: D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl (hash: tHScB3OIWvuvlx2bwbElKXLQfSY6f39+4FVgO1Gdoro=) 2: 3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa (hash: zPRVVEuzND/TSHdVq3ZkAQYAgPmvosaZoKU+TXGH1vc=) 3: 3130332e3136392e34302e302f32332d3233203d3e20313432333332.roa (hash: lwypc1eue2zj3ktOWvglzu1Jo7qmvdfN4AlugN+i5Zw=) 4: 3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa (hash: yIxyAi+LsGKpwTABrM9lNwtjILhJjgs1G21qada+Ir4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d5:d2:25:45:e1:31:a0:bc:f2:4f:a7:8b:80:6c:02:88:a8:db:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: Aug 21 13:47:11 2025 GMT Not After : Aug 24 22:13:11 2025 GMT Subject: CN=F4398C47276E7A3D1F27E0D4F649660A1BE9CD04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ec:72:ac:5f:ba:5a:09:75:7d:4c:a7:81:81: da:74:1e:b7:fe:ff:7a:7d:c5:82:a8:75:55:63:11: c4:d1:4a:1a:c0:85:9d:c4:c4:1d:3e:91:8f:57:1f: 56:6e:31:76:50:e1:55:af:00:df:fc:0b:5a:8f:62: 16:f7:e1:38:21:15:4d:a7:90:75:8f:8c:93:84:6b: 49:64:83:5f:92:fe:d3:af:45:d6:68:fd:39:0f:8f: d5:e4:24:8b:af:de:b3:3b:db:f3:e2:e9:4e:59:bc: 03:8a:af:f9:84:1d:7f:1f:dd:86:f0:f2:a2:72:ca: a7:24:8c:0f:a6:0e:ae:39:ce:9e:66:4a:a0:a6:ae: 49:1e:81:d9:10:86:8f:0f:36:d2:6a:04:9a:c3:91: 72:86:c0:1b:48:f4:6f:19:74:c7:98:4e:47:75:0e: 62:c1:8c:2a:7c:26:e7:17:7c:1a:23:58:80:9a:ee: 8f:8c:db:8e:40:0a:24:77:f6:bf:cb:fd:ca:f4:7f: 7e:63:84:76:a2:f3:e4:d4:80:42:3b:b5:07:53:c1: 1e:de:3e:ce:ef:6c:bb:80:c3:1f:a2:f5:69:10:fe: 3f:59:26:e5:b0:0d:f2:60:58:fd:84:46:7e:3e:76: 58:21:83:68:77:fa:4e:b8:a7:e5:6c:a2:cf:60:07: 2d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:39:8C:47:27:6E:7A:3D:1F:27:E0:D4:F6:49:66:0A:1B:E9:CD:04 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:9c:34:71:7a:02:c2:59:d4:25:d3:97:1b:6b:7b:ac:d6:ff: 32:10:0e:f6:9e:97:b1:e1:c6:7c:19:b9:da:32:a5:d5:16:2e: 3a:8c:4b:c7:8d:07:45:1d:d5:70:d8:62:f0:95:7e:ac:5e:7c: b2:33:92:e9:8a:0c:7f:eb:08:77:c4:96:89:04:34:8a:80:47: 81:bc:b9:50:05:fb:77:37:0a:6d:9c:26:97:5d:4b:68:98:92: 90:25:7f:63:a2:3c:50:ee:d2:04:7c:0f:83:0f:93:a7:75:13: 8d:5c:e0:05:9b:90:c4:1d:0e:9d:2c:63:4c:2e:f8:70:27:8c: 2e:ad:26:b1:7b:3a:2d:37:50:73:da:88:ca:5e:e3:85:9c:25: a1:33:99:50:a7:34:5c:99:9c:f9:ba:db:f6:39:80:d6:06:ce: 7a:42:7a:6b:7e:e1:a4:8b:79:d7:39:b1:9a:cc:74:dd:d7:1d: bd:e0:57:10:f8:ac:e5:f6:1d:fe:66:2f:75:74:55:04:38:d6: 98:24:c2:28:39:06:fa:44:25:e8:8c:d5:72:63:34:1a:05:59: b8:22:b3:d4:43:53:3c:6a:03:46:26:ab:e3:5a:93:b7:8e:58: 20:c9:d5:fb:3c:da:60:a3:c8:f5:20:15:f8:b0:01:14:ed:bd: ff:ca:70:73 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI9XSJUXhMaC88k+ni4BsAoio28kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yNTA4MjExMzQ3MTFaFw0yNTA4MjQyMjEzMTFaMDMxMTAvBgNV BAMTKEY0Mzk4QzQ3Mjc2RTdBM0QxRjI3RTBENEY2NDk2NjBBMUJFOUNEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy7HKsX7paCXV9TKeBgdp0Hrf+ /3p9xYKodVVjEcTRShrAhZ3ExB0+kY9XH1ZuMXZQ4VWvAN/8C1qPYhb34TghFU2n kHWPjJOEa0lkg1+S/tOvRdZo/TkPj9XkJIuv3rM72/Pi6U5ZvAOKr/mEHX8f3Ybw 8qJyyqckjA+mDq45zp5mSqCmrkkegdkQho8PNtJqBJrDkXKGwBtI9G8ZdMeYTkd1 DmLBjCp8JucXfBojWICa7o+M245ACiR39r/L/cr0f35jhHai8+TUgEI7tQdTwR7e Ps7vbLuAwx+i9WkQ/j9ZJuWwDfJgWP2ERn4+dlghg2h3+k64p+Vsos9gBy1JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9DmMRyduej0fJ+DU9klmChvpzQQwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNiNTI2MTktMzc5ZC00MzBhLWIx OWItMWYwZWM1M2FlOTA5LzAvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFE MjhBRjhCREVENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGmcNHF6AsJZ1CXTlxtre6zW/zIQDvael7Hh xnwZudoypdUWLjqMS8eNB0Ud1XDYYvCVfqxefLIzkumKDH/rCHfElokENIqAR4G8 uVAF+3c3Cm2cJpddS2iYkpAlf2OiPFDu0gR8D4MPk6d1E41c4AWbkMQdDp0sY0wu +HAnjC6tJrF7Oi03UHPaiMpe44WcJaEzmVCnNFyZnPm62/Y5gNYGznpCemt+4aSL edc5sZrMdN3XHb3gVxD4rOX2Hf5mL3V0VQQ41pgkwig5BvpEJeiM1XJjNBoFWbgi s9RDUzxqA0Ymq+Nak7eOWCDJ1fs82mCjyPUgFfiwARTtvf/KcHM= -----END CERTIFICATE-----Generated at Sat Aug 23 15:33:21 2025 by rpki-client