$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft (raw, json) Hash identifier: T6MFqz2ASNjvvYBxifLmtjFHGkILEcRsvfkfMVb2LDo= Subject key identifier: 60:0A:1C:51:E2:82:2A:53:8E:67:C4:82:02:63:D7:EA:A1:14:61:4C Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 273402434AFAE05A764713B688ADD7AC0EF36851 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft Manifest number: 0500 Signing time: Thu 21 Aug 2025 23:21:32 +0000 Manifest this update: Thu 21 Aug 2025 23:16:32 +0000 Manifest next update: Mon 25 Aug 2025 07:46:32 +0000 Files and hashes: 1: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (hash: gI7OgYv6GfwsEVRaXvd5tRlYtRW/gCZ+OwdOGTRV5w8=) 2: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (hash: N2YGkCBG++ItZbATxx+8Wnv+w5mJADtnDrbFxCasjwk=) 3: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl (hash: 56TDzsFzkOAM0sT6QQzGDz93JmfOFs9htkQYq28mSOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:34:02:43:4a:fa:e0:5a:76:47:13:b6:88:ad:d7:ac:0e:f3:68:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: Aug 21 23:16:32 2025 GMT Not After : Aug 25 07:46:32 2025 GMT Subject: CN=600A1C51E2822A538E67C4820263D7EAA114614C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5f:2b:6f:f6:ac:98:71:51:bb:74:39:65:6a: 13:34:a7:d7:b7:25:d8:62:41:12:91:50:8d:72:5d: fc:4e:7d:79:0b:f9:2f:8c:45:10:79:1f:63:c5:b9: 47:e3:e6:27:14:31:ed:81:cc:d5:af:bb:c0:9a:1d: 45:9f:bf:1a:68:07:85:4d:6f:cc:ab:d4:09:9c:ea: 0f:d4:84:be:84:d9:24:c9:5b:6d:ca:d6:30:ab:95: 43:6e:ed:58:af:8e:fe:f1:5b:5c:28:86:0f:3e:3f: 42:12:fa:9e:6f:e0:40:04:db:98:10:50:bc:e1:c1: 46:3e:8e:99:17:c5:a2:8a:9c:10:3c:c1:45:2a:39: 1d:0e:6f:fb:0f:20:b3:7e:0c:99:2a:1e:0b:25:23: c4:26:d5:3c:d7:b5:2c:70:8e:2f:58:84:1e:b1:93: e3:69:63:d2:d8:d6:1c:b8:e5:4b:2b:29:be:32:cb: 32:eb:61:e4:78:e3:7f:c6:f9:5f:7a:60:be:f1:53: fd:c6:da:29:4e:dd:08:b0:9d:3e:37:ac:06:95:70: 51:cf:32:a1:b3:24:d4:bd:a9:d0:69:c0:cd:ad:26: 0d:1a:0f:80:a7:cf:aa:1f:2a:d5:92:fc:0a:4b:dc: a6:f2:3c:1b:d6:ee:c4:72:da:48:71:da:a3:b2:f2: 4a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:0A:1C:51:E2:82:2A:53:8E:67:C4:82:02:63:D7:EA:A1:14:61:4C X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:60:52:75:d2:0e:13:27:a4:f1:e5:98:22:4a:c5:83:ed:a9: a5:6e:d6:e6:2e:81:63:ed:80:7b:d8:14:12:13:80:00:5d:50: 5f:5b:be:51:4a:eb:2e:30:28:65:4b:5e:58:38:c7:cd:c5:a8: 39:e3:22:8f:51:9c:df:d2:fa:21:73:29:23:a1:ac:b0:92:cc: f3:f9:4d:ff:99:74:09:68:20:b3:97:3c:a9:2c:8e:61:19:e1: aa:8b:9f:c8:10:96:fa:3c:98:ae:4e:c4:4e:3e:f8:e7:83:1a: 92:48:c7:2e:56:93:37:d3:57:6e:8d:72:4e:02:ff:86:c6:85: 7a:0f:6b:c6:a8:96:a1:f4:7d:4b:e5:d2:7b:3c:bd:e8:db:94: 20:4d:1a:a6:c2:61:17:b5:92:42:dd:a1:74:57:18:03:fe:50: 67:55:39:40:b2:1e:fb:7f:09:49:93:85:ab:79:2d:c8:32:61: d5:31:e3:e3:7d:75:5e:bd:d8:12:e6:a5:a3:f0:01:66:90:3a: 0a:55:14:72:63:37:5a:96:71:ae:d9:f0:47:9f:24:a6:5e:51: 59:f9:47:17:41:07:16:c2:4a:a5:75:c7:6b:15:60:08:b7:53: f2:a2:1f:18:7b:13:67:f1:a9:f5:5f:07:97:76:36:4a:8f:02: 25:07:4b:8a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJzQCQ0r64Fp2RxO2iK3XrA7zaFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yNTA4MjEyMzE2MzJaFw0yNTA4MjUwNzQ2MzJaMDMxMTAvBgNV BAMTKDYwMEExQzUxRTI4MjJBNTM4RTY3QzQ4MjAyNjNEN0VBQTExNDYxNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXytv9qyYcVG7dDllahM0p9e3 JdhiQRKRUI1yXfxOfXkL+S+MRRB5H2PFuUfj5icUMe2BzNWvu8CaHUWfvxpoB4VN b8yr1Amc6g/UhL6E2STJW23K1jCrlUNu7Vivjv7xW1wohg8+P0IS+p5v4EAE25gQ ULzhwUY+jpkXxaKKnBA8wUUqOR0Ob/sPILN+DJkqHgslI8Qm1TzXtSxwji9YhB6x k+NpY9LY1hy45UsrKb4yyzLrYeR443/G+V96YL7xU/3G2ilO3QiwnT43rAaVcFHP MqGzJNS9qdBpwM2tJg0aD4Cnz6ofKtWS/ApL3KbyPBvW7sRy2khx2qOy8kqPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYAocUeKCKlOOZ8SCAmPX6qEUYUwwHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNkNzUzNmQtOWUxMC00ZDQ5LWI2 Y2EtMDQxY2M5YTU5MTRlLzAvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUz QkQwNThEQTEwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK9gUnXSDhMnpPHlmCJKxYPtqaVu1uYugWPt gHvYFBITgABdUF9bvlFK6y4wKGVLXlg4x83FqDnjIo9RnN/S+iFzKSOhrLCSzPP5 Tf+ZdAloILOXPKksjmEZ4aqLn8gQlvo8mK5OxE4++OeDGpJIxy5WkzfTV26Nck4C /4bGhXoPa8aolqH0fUvl0ns8vejblCBNGqbCYRe1kkLdoXRXGAP+UGdVOUCyHvt/ CUmThat5LcgyYdUx4+N9dV692BLmpaPwAWaQOgpVFHJjN1qWca7Z8EefJKZeUVn5 RxdBBxbCSqV1x2sVYAi3U/KiHxh7E2fxqfVfB5d2NkqPAiUHS4o= -----END CERTIFICATE-----Generated at Sat Aug 23 20:01:43 2025 by rpki-client