$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft File: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft (raw, json) Hash identifier: 6NX/eS79S0v85ODZB596twduNdHry+jhd+/XFsM5jKs= Subject key identifier: 18:78:3F:9B:40:50:55:8A:16:88:35:A2:9E:7A:49:FA:D8:3D:A2:34 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 77D18BA7FA68012276C484472CA4279DC63AC149 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft Manifest number: 0508 Signing time: Thu 21 Aug 2025 14:41:38 +0000 Manifest this update: Thu 21 Aug 2025 14:36:38 +0000 Manifest next update: Sun 24 Aug 2025 23:36:38 +0000 Files and hashes: 1: 323430343a666230303a3a2f33322d3332203d3e203538343734.roa (hash: T0GxcffUorQqKvKWvoQBmwT56g/pt1WC0GNCeIbnIXI=) 2: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl (hash: guuOwulAjapBqwJKBKP3aAEjsLm5kazbODGD+forjH0=) 3: 34332e3234382e3231342e302f32342d3234203d3e203538343734.roa (hash: KABMcwwuj0PcVg0DF+2S7mT8pkOrI1Q8USpOkuuxMXI=) 4: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (hash: I3OA1TXXrn7Ho4Bbdaoik2HHmIJMRdT3vdvqOadCgWc=) 5: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (hash: SVVnOcpEzNW3GyvGQSrBzvX2ix4zPecYqTfJmTpW5Ek=) 6: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (hash: lS8odvouHADOZvGcEIZX6cESZX3v05ZwGGbLJRnmmPg=) 7: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (hash: lJiN/1jPk6sVzBu+b+dWtXwNwMFWgXWbUliAdUar1AU=) 8: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (hash: GggD4UAIQuJ2Ici9kI1FCxhBRH2erQ0+Zgb75d0bwAQ=) 9: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (hash: 2rfcy4tUpo7HgU2cGwZC6pQYZQAR7WSsi/1k28TkJlU=) 10: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (hash: RKuA2CS77/iBc1MhX2FD3Oj8MLTo/sw4r4vfbH4WpPI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 23:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d1:8b:a7:fa:68:01:22:76:c4:84:47:2c:a4:27:9d:c6:3a:c1:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Aug 21 14:36:38 2025 GMT Not After : Aug 24 23:36:38 2025 GMT Subject: CN=18783F9B4050558A168835A29E7A49FAD83DA234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ef:bb:45:51:3e:29:52:7d:ce:60:0d:36:c3: 23:03:aa:44:b4:93:55:c5:75:e6:65:f3:e3:91:82: 78:98:b5:ba:e3:dc:e9:17:dd:f3:c2:5a:56:91:60: 17:97:a3:68:03:e1:b8:bf:00:41:98:09:e7:e0:95: 7b:6b:7a:50:84:b5:60:c3:dc:d1:56:fa:10:fc:c0: 80:5d:1d:58:03:f4:b8:91:5c:bb:27:6e:32:83:75: 83:5c:c0:54:87:97:02:9f:1a:ad:79:e7:3b:5e:09: c2:90:13:9e:a2:75:ea:9d:43:74:79:0c:55:88:ed: c6:84:e2:9f:e2:21:98:f5:65:a5:db:ff:c1:76:20: 9c:bf:1f:f8:aa:78:0d:8d:29:43:7e:e1:49:00:46: 9f:33:b4:c5:42:01:c6:55:e6:40:55:14:4f:c7:7f: 68:29:1a:98:3a:4e:88:15:9d:e9:3e:4f:2d:40:c2: 10:3c:31:5a:65:28:bc:76:64:d0:2d:12:e1:62:94: 18:07:d5:93:bd:93:42:a9:db:24:86:14:94:26:e3: 62:3b:4d:80:d1:e7:d5:47:97:97:0a:84:f0:6e:19: c9:8a:ea:18:0f:0d:1d:bc:9a:42:15:3c:93:24:a7: 8a:fb:eb:f5:62:46:d8:72:79:06:d0:11:96:5b:0b: b9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:78:3F:9B:40:50:55:8A:16:88:35:A2:9E:7A:49:FA:D8:3D:A2:34 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:72:e8:eb:ed:9a:c3:52:c5:12:11:19:6a:33:71:cd:80:f7: 87:83:07:02:78:34:b4:6e:0b:7e:5e:39:83:41:da:48:c0:94: 49:97:48:e9:0b:4a:4d:ff:70:75:05:cb:04:08:d5:29:1e:43: d7:e5:e1:44:92:d0:03:fa:7c:30:8f:7f:10:54:a7:1f:8c:b0: 47:81:b7:c9:d7:26:43:3b:55:1a:a8:72:bf:71:ea:64:5d:95: 6b:ac:c6:11:a4:b1:05:f2:e3:e1:b1:7e:c3:d2:f8:ff:08:cc: 26:62:c0:94:1f:c5:34:bf:ab:4a:7d:10:48:bc:a7:a8:61:61: f8:1f:66:7f:e9:36:7c:3e:af:ac:4f:0f:18:05:21:c9:d2:53: 69:01:90:17:8a:96:25:b7:d1:1e:9e:44:14:47:5f:68:9e:59: 1c:c9:e7:d2:2b:a0:5c:90:e5:f4:e2:80:84:bc:d7:5b:97:6c: ba:92:a6:c3:a6:ea:28:f3:97:fb:02:9a:38:0a:16:0e:06:1b: eb:aa:ab:55:c9:94:37:84:7a:6d:d3:44:84:cc:f6:32:6c:d5: e9:3c:28:bc:30:81:a7:45:bc:37:a2:ec:c2:67:32:cb:a2:9e: 90:c9:bb:0d:48:c0:72:5e:d2:ce:c7:78:18:0f:81:fb:3b:9b: 5c:94:0f:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd9GLp/poASJ2xIRHLKQnncY6wUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTA4MjExNDM2MzhaFw0yNTA4MjQyMzM2MzhaMDMxMTAvBgNV BAMTKDE4NzgzRjlCNDA1MDU1OEExNjg4MzVBMjlFN0E0OUZBRDgzREEyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs77tFUT4pUn3OYA02wyMDqkS0 k1XFdeZl8+ORgniYtbrj3OkX3fPCWlaRYBeXo2gD4bi/AEGYCefglXtrelCEtWDD 3NFW+hD8wIBdHVgD9LiRXLsnbjKDdYNcwFSHlwKfGq155zteCcKQE56ideqdQ3R5 DFWI7caE4p/iIZj1ZaXb/8F2IJy/H/iqeA2NKUN+4UkARp8ztMVCAcZV5kBVFE/H f2gpGpg6TogVnek+Ty1AwhA8MVplKLx2ZNAtEuFilBgH1ZO9k0Kp2ySGFJQm42I7 TYDR59VHl5cKhPBuGcmK6hgPDR28mkIVPJMkp4r76/ViRthyeQbQEZZbC7nPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGHg/m0BQVYoWiDWinnpJ+tg9ojQwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzMwNTE3N2EtYTUwMC00OTk2LWIz ZmYtNzBjMTQ0ZWRmZWNlLzAvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgy QjQzREEyRjA5OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFVy6OvtmsNSxRIRGWozcc2A94eDBwJ4NLRu C35eOYNB2kjAlEmXSOkLSk3/cHUFywQI1SkeQ9fl4USS0AP6fDCPfxBUpx+MsEeB t8nXJkM7VRqocr9x6mRdlWusxhGksQXy4+GxfsPS+P8IzCZiwJQfxTS/q0p9EEi8 p6hhYfgfZn/pNnw+r6xPDxgFIcnSU2kBkBeKliW30R6eRBRHX2ieWRzJ59IroFyQ 5fTigIS811uXbLqSpsOm6ijzl/sCmjgKFg4GG+uqq1XJlDeEem3TRITM9jJs1ek8 KLwwgadFvDei7MJnMsuinpDJuw1IwHJe0s7HeBgPgfs7m1yUD7w= -----END CERTIFICATE-----Generated at Sat Aug 23 17:18:33 2025 by rpki-client