$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft File: 3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft (raw, json) Hash identifier: yxgZ03UPr41k4Kj2OdJQshmWupuE840jfpZ8BLeCzyQ= Subject key identifier: B9:71:20:49:27:DD:73:68:2B:2F:71:84:F6:19:8F:72:4B:23:3C:FF Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: 4D01F1CB0F9E429164E128EA46A0FC5E26D7E669 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft Manifest number: 94 Signing time: Sat 23 Aug 2025 21:51:52 +0000 Manifest this update: Sat 23 Aug 2025 21:46:52 +0000 Manifest next update: Wed 27 Aug 2025 03:57:52 +0000 Files and hashes: 1: 3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl (hash: 90VTbnzs6vjKS/FGhBYIWhRiDvRFxLmgOQhvsjjkLW8=) 2: 3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa (hash: yI21TQhgzhyCtoyvgeWwpQGfBfqGzJmTftAUrnTEbC8=) 3: 3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa (hash: yVwxFDu5QrQ2T1+WLHNp8JACowsZOzdgNvDquhZexvY=) 4: 3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa (hash: 8c6wILZx8DuCL6PHpfE6A2+8YPuPEhrlv7dD3qJR3mQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:01:f1:cb:0f:9e:42:91:64:e1:28:ea:46:a0:fc:5e:26:d7:e6:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Aug 23 21:46:52 2025 GMT Not After : Aug 27 03:57:52 2025 GMT Subject: CN=B971204927DD73682B2F7184F6198F724B233CFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:48:47:87:7f:cc:01:d7:c1:4e:75:86:14:9b: 19:22:f1:65:3d:fe:72:7d:5e:f2:03:c2:5b:3d:a3: af:fa:4e:b5:51:eb:8e:2d:53:a2:99:22:6e:dd:bf: 86:8b:a0:bf:4d:1e:b6:14:ef:e0:63:fc:a2:62:15: bf:e6:5c:a2:d7:9c:c2:79:5e:0e:10:43:fc:84:9f: 48:53:67:30:4f:f3:19:e6:e2:45:e6:37:7b:62:00: e9:28:a8:93:38:d0:24:dd:c5:25:bc:b1:90:3f:ba: 28:c5:1d:0c:80:2d:88:8d:50:7d:92:8c:05:ba:32: 09:93:ea:ed:3f:5c:2e:c0:c7:e5:cb:d9:37:9a:42: 19:2e:05:39:62:8c:46:10:cc:a0:dc:67:42:1f:d5: fb:f1:9d:b5:1b:f8:04:ae:08:f7:0c:33:30:c8:7c: 41:05:e4:b2:91:47:11:35:44:27:03:98:12:6a:8b: bb:cc:68:5a:8a:30:8a:77:3b:f0:65:63:aa:ed:a5: a7:13:bb:bb:60:e1:72:30:2f:95:60:30:11:ec:d8: de:f6:dd:3c:25:16:b1:df:8a:a1:f8:6f:08:01:f1: 3e:55:d4:f5:9f:96:2f:77:a7:af:94:df:fa:4a:fc: e8:28:50:cf:0b:d2:77:61:38:b1:3a:f2:80:c4:0b: 31:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:71:20:49:27:DD:73:68:2B:2F:71:84:F6:19:8F:72:4B:23:3C:FF X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a2:a0:ff:70:23:b3:27:e3:74:ca:7c:50:ee:34:50:db:f5: 88:ac:a1:e6:11:07:63:1a:74:bb:7f:12:c3:f1:95:51:93:5d: e7:b9:09:9c:14:75:70:e3:28:1d:83:d4:f9:f9:1f:36:c6:0f: 98:be:c7:d3:74:57:70:a5:12:a5:05:3f:c8:0e:c2:62:b0:78: a8:e2:8a:32:ee:c8:c6:6a:bc:2c:76:a7:e1:d1:bf:cf:74:9a: a9:4c:9f:8a:da:bc:5c:cc:18:b6:f6:d7:9a:30:6b:b4:e5:3d: 44:5b:6e:5a:e0:08:85:68:66:e3:18:ad:6c:9d:c4:aa:31:37: 36:7d:44:fb:4c:7b:a5:75:cb:95:87:c0:5a:7f:e5:18:9f:1a: 1c:e1:0c:b7:ba:a9:4f:8b:d1:24:ef:86:02:81:65:14:df:24: f9:b7:2e:14:ab:52:ca:f4:f4:18:cc:47:c8:ad:30:f3:27:c1: 61:06:ab:1f:4c:bc:8f:63:a1:eb:98:a6:84:53:b4:0d:b3:a6: c2:1f:f8:66:7b:2f:82:96:b7:99:c4:68:6e:bd:a9:6a:98:6d: bf:52:aa:4a:5d:22:5e:2b:e2:24:35:97:cc:a8:1b:df:77:d6: 90:fc:ee:42:ab:d2:e8:d8:79:6d:34:59:4c:38:18:74:fa:5a: 75:72:0e:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTQHxyw+eQpFk4SjqRqD8XibX5mkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNTA4MjMyMTQ2NTJaFw0yNTA4MjcwMzU3NTJaMDMxMTAvBgNV BAMTKEI5NzEyMDQ5MjdERDczNjgyQjJGNzE4NEY2MTk4RjcyNEIyMzNDRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHSEeHf8wB18FOdYYUmxki8WU9 /nJ9XvIDwls9o6/6TrVR644tU6KZIm7dv4aLoL9NHrYU7+Bj/KJiFb/mXKLXnMJ5 Xg4QQ/yEn0hTZzBP8xnm4kXmN3tiAOkoqJM40CTdxSW8sZA/uijFHQyALYiNUH2S jAW6MgmT6u0/XC7Ax+XL2TeaQhkuBTlijEYQzKDcZ0If1fvxnbUb+ASuCPcMMzDI fEEF5LKRRxE1RCcDmBJqi7vMaFqKMIp3O/BlY6rtpacTu7tg4XIwL5VgMBHs2N72 3TwlFrHfiqH4bwgB8T5V1PWfli93p6+U3/pK/OgoUM8L0ndhOLE68oDECzETAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuXEgSSfdc2grL3GE9hmPcksjPP8wHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzBmYjc4YTktY2Q2OC00NGZkLTg1 YWEtNmM2YjA4Y2IyMzQ2LzAvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYx MTNDNzVDMEUyRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF+ioP9wI7Mn43TKfFDuNFDb9YisoeYRB2Ma dLt/EsPxlVGTXee5CZwUdXDjKB2D1Pn5HzbGD5i+x9N0V3ClEqUFP8gOwmKweKji ijLuyMZqvCx2p+HRv890mqlMn4ravFzMGLb215owa7TlPURbblrgCIVoZuMYrWyd xKoxNzZ9RPtMe6V1y5WHwFp/5RifGhzhDLe6qU+L0STvhgKBZRTfJPm3LhSrUsr0 9BjMR8itMPMnwWEGqx9MvI9joeuYpoRTtA2zpsIf+GZ7L4KWt5nEaG69qWqYbb9S qkpdIl4r4iQ1l8yoG9931pD87kKr0ujYeW00WUw4GHT6WnVyDkY= -----END CERTIFICATE-----Generated at Sun Aug 24 07:14:08 2025 by rpki-client