$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: F3dJ+FbdD/z4AAWhODMvt60gjsSpuQ4iBNc9zVq9tCI= Subject key identifier: E6:5D:2A:F3:5F:64:91:0D:DF:2B:29:4D:1D:88:29:23:B0:FD:88:EF Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 191692C4769EDD472781206F5F96A0CB414A99E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 0500 Signing time: Sat 23 Aug 2025 08:30:44 +0000 Manifest this update: Sat 23 Aug 2025 08:25:44 +0000 Manifest next update: Tue 26 Aug 2025 15:26:44 +0000 Files and hashes: 1: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) 2: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 3: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: ZTbdiXcvY06qhQh1pALm7YY0oPvKDPSnLlOOHYX5+ho=) 4: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: sOLICWbkOQCKZGJuOxKOtJraYeaZ/2+UOwySpa2U+Ms=) 5: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8=) 6: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 7: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 8: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY=) 9: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 15:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:16:92:c4:76:9e:dd:47:27:81:20:6f:5f:96:a0:cb:41:4a:99:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Aug 23 08:25:44 2025 GMT Not After : Aug 26 15:26:44 2025 GMT Subject: CN=E65D2AF35F64910DDF2B294D1D882923B0FD88EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:b4:8e:94:63:0c:97:3e:4b:fa:a1:bb:15: 2c:90:7a:cb:49:0f:b9:66:4e:09:65:79:b0:f6:10: 92:3b:88:d3:32:c4:ef:1f:5f:a9:49:77:70:bb:d7: 88:ff:a2:d2:f8:5f:3e:6b:e0:3a:de:6c:cd:6c:df: cd:98:76:7b:55:7b:a6:cf:ec:44:2d:5b:d7:a8:52: bc:7b:f6:90:95:66:44:b9:92:1c:37:b9:69:61:f7: 73:a1:02:42:80:8d:42:7a:ee:2b:5b:e5:7b:1e:bf: f5:b3:a0:ae:91:a7:1e:ff:c6:76:aa:55:54:9b:a3: 5d:f3:8b:d7:54:fc:63:be:39:82:5c:f6:66:b9:5d: 3a:37:7c:74:81:e3:0f:fe:0a:1c:2b:a7:d4:f4:43: 9b:04:11:f9:c5:89:70:b9:f3:30:e8:45:aa:45:9f: 2c:97:c5:58:32:53:e6:20:01:6d:9d:35:4e:9e:86: 64:f8:e9:08:4b:c2:71:cc:67:43:6d:2f:ba:0b:1c: 7e:86:82:2a:15:6e:f8:51:0c:7b:6a:d4:7c:e8:39: 9a:24:a1:89:03:58:5d:3c:b5:d3:62:a8:9b:df:6b: c8:98:83:d8:58:67:5c:68:40:4e:c7:50:1f:60:81: f5:9c:cd:97:66:f6:c8:d6:c4:19:8c:b9:fb:a2:29: 97:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:5D:2A:F3:5F:64:91:0D:DF:2B:29:4D:1D:88:29:23:B0:FD:88:EF X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:a1:b3:7d:3f:f6:f2:76:c3:e9:56:41:3d:51:70:29:1f:dd: ec:3a:b8:9e:ab:45:a0:4e:aa:c7:82:bd:d3:a9:c8:0e:6c:24: bc:54:74:7f:ae:cb:0f:e4:29:00:2e:3b:60:6d:77:92:b3:af: ae:b7:98:c1:3c:9c:6c:cf:60:aa:68:c3:20:09:ff:f0:83:b3: 68:3e:fa:00:e2:9e:47:fb:5b:b2:52:93:82:25:49:6b:44:e9: a0:f4:7c:c8:c2:85:59:3d:da:d9:52:58:1b:d7:78:9b:ae:53: 40:56:a5:2e:ac:52:21:e5:53:b1:53:94:17:ea:04:a9:a1:00: e5:f5:cc:ea:9b:b1:81:91:fb:2d:df:70:ff:bd:47:c8:d9:c6: 26:64:77:e0:3e:ba:d9:00:a8:c0:1a:2d:0e:f4:93:5f:b8:f3: c3:50:e6:15:c2:95:6c:e9:c4:f3:4d:3a:6a:cf:d1:26:dd:d0: 64:31:98:d9:2d:1a:54:f3:65:ca:8f:d3:bd:a2:c0:4e:fe:b5: aa:5d:2d:48:67:7d:2b:02:93:5c:f0:ee:93:dd:ca:b3:06:67: 81:06:47:3b:53:2f:ce:89:63:a9:08:00:04:a8:15:d7:4a:6b: da:8f:b9:bd:c2:da:b8:4b:38:90:a6:9c:3c:ac:25:28:f2:c7: df:4d:a8:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGRaSxHae3UcngSBvX5agy0FKmeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA4MjMwODI1NDRaFw0yNTA4MjYxNTI2NDRaMDMxMTAvBgNV BAMTKEU2NUQyQUYzNUY2NDkxMERERjJCMjk0RDFEODgyOTIzQjBGRDg4RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ybSOlGMMlz5L+qG7FSyQestJ D7lmTgllebD2EJI7iNMyxO8fX6lJd3C714j/otL4Xz5r4DrebM1s382YdntVe6bP 7EQtW9eoUrx79pCVZkS5khw3uWlh93OhAkKAjUJ67itb5Xsev/WzoK6Rpx7/xnaq VVSbo13zi9dU/GO+OYJc9ma5XTo3fHSB4w/+Chwrp9T0Q5sEEfnFiXC58zDoRapF nyyXxVgyU+YgAW2dNU6ehmT46QhLwnHMZ0NtL7oLHH6GgioVbvhRDHtq1HzoOZok oYkDWF08tdNiqJvfa8iYg9hYZ1xoQE7HUB9ggfWczZdm9sjWxBmMufuiKZdBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5l0q819kkQ3fKylNHYgpI7D9iO8wHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHKhs30/9vJ2w+lWQT1RcCkf3ew6uJ6rRaBO qseCvdOpyA5sJLxUdH+uyw/kKQAuO2Btd5Kzr663mME8nGzPYKpowyAJ//CDs2g+ +gDinkf7W7JSk4IlSWtE6aD0fMjChVk92tlSWBvXeJuuU0BWpS6sUiHlU7FTlBfq BKmhAOX1zOqbsYGR+y3fcP+9R8jZxiZkd+A+utkAqMAaLQ70k1+488NQ5hXClWzp xPNNOmrP0Sbd0GQxmNktGlTzZcqP072iwE7+tapdLUhnfSsCk1zw7pPdyrMGZ4EG RztTL86JY6kIAASoFddKa9qPub3C2rhLOJCmnDysJSjyx99NqAc= -----END CERTIFICATE-----Generated at Sat Aug 23 21:19:04 2025 by rpki-client