$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: nrq/LM+tgOl7fwEo73FjPG+tE+gLxPyxf8pXa9BnwmA= Subject key identifier: B1:44:1A:27:04:CC:E6:9F:85:DA:A1:9B:9B:6B:45:A4:9B:8D:93:64 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 075208902D970EADAA7820D9E9C2AE7F4C26CA04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 01D1 Signing time: Thu 21 Aug 2025 15:10:49 +0000 Manifest this update: Thu 21 Aug 2025 15:05:49 +0000 Manifest next update: Mon 25 Aug 2025 02:58:49 +0000 Files and hashes: 1: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) 2: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: zp+DcuLmAQejoOCq3f8vBckgptW0QjFoAVWEB+1ivbA=) 3: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:52:08:90:2d:97:0e:ad:aa:78:20:d9:e9:c2:ae:7f:4c:26:ca:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Aug 21 15:05:49 2025 GMT Not After : Aug 25 02:58:49 2025 GMT Subject: CN=B1441A2704CCE69F85DAA19B9B6B45A49B8D9364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d7:9f:77:64:16:6a:a6:de:af:83:53:96:9a: c0:7c:25:0c:7e:2b:55:bc:af:25:dc:8f:58:9e:3c: 83:5e:af:7d:39:51:5d:21:14:02:5b:e0:b1:e5:b9: 95:b2:fe:04:4f:0a:ad:f8:91:ac:ad:6d:20:6a:ba: c5:db:d9:e5:b0:e5:d3:8c:55:15:19:bf:d4:a5:27: 3b:c8:26:ff:e7:6b:b9:b3:54:61:22:8f:89:09:5d: 67:05:dd:06:bd:38:31:ec:57:65:ee:62:d6:99:b1: 2c:be:e1:31:3f:e2:a9:99:08:3b:2e:98:61:5c:3d: a3:6b:52:97:df:d1:8b:82:58:a8:5b:93:14:6c:62: bd:9c:55:e7:2e:62:8a:dd:ae:ed:cd:ee:b2:d5:0b: 5a:8a:f5:85:1c:8c:5a:d1:75:6a:f9:14:7b:92:8a: 96:4c:a3:68:8c:27:3f:a2:1e:71:bd:72:aa:5b:a3: 73:35:e3:1e:2c:ca:01:60:b0:b0:e0:8d:c7:76:ce: 25:c3:f7:9e:b4:0b:de:be:0b:9c:cc:86:83:81:78: ff:45:a5:ab:c2:8e:47:91:45:f5:e6:0a:eb:c0:be: 7d:fc:51:cb:e1:15:3f:b6:72:11:56:46:a7:7f:f2: 6f:1d:6d:40:67:3f:6b:42:ef:81:26:c8:71:60:11: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:44:1A:27:04:CC:E6:9F:85:DA:A1:9B:9B:6B:45:A4:9B:8D:93:64 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:ea:35:38:15:7b:88:21:bb:35:f6:b3:ca:9d:9d:a8:ca:a6: 2b:d6:34:50:a8:04:e7:6d:05:d7:ad:29:73:79:5c:76:c9:61: f5:c9:76:6c:46:c9:08:c8:36:39:42:8f:04:2e:a2:01:00:1c: c1:dc:85:94:7d:10:1b:d5:17:f9:5a:d4:0d:81:52:05:df:f7: 67:45:9e:8c:b5:33:06:50:96:2a:52:52:f1:c8:47:14:1a:02: 2e:3f:9a:2b:90:67:02:1e:27:fc:7f:9f:51:37:2f:eb:03:d3: fb:b8:5d:b5:5e:e2:30:8c:49:46:84:25:ae:a0:d7:7d:49:8b: de:57:49:4d:d0:ce:cd:4e:46:76:17:f2:98:48:8c:f3:d7:54: d0:1b:c5:b0:35:88:0b:fd:3b:45:4a:e3:5e:21:d2:52:15:23: d2:d9:dc:f6:de:dc:53:e4:15:92:74:61:56:41:71:20:a8:23: 02:2d:30:3c:d5:d3:f5:a8:b6:ec:1e:9d:c8:92:d1:84:06:d8: 08:30:9a:97:14:42:c9:17:1a:ec:2a:20:42:42:7b:0e:c6:e2: 15:8d:74:90:1f:dd:ec:40:51:fd:8d:57:e8:16:c1:e0:0a:dd: 42:3b:24:34:29:cc:aa:4f:e2:b6:15:4f:8d:43:5a:5f:e0:84: a3:5e:10:fa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB1IIkC2XDq2qeCDZ6cKuf0wmygQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTA4MjExNTA1NDlaFw0yNTA4MjUwMjU4NDlaMDMxMTAvBgNV BAMTKEIxNDQxQTI3MDRDQ0U2OUY4NURBQTE5QjlCNkI0NUE0OUI4RDkzNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt1593ZBZqpt6vg1OWmsB8JQx+ K1W8ryXcj1iePINer305UV0hFAJb4LHluZWy/gRPCq34kaytbSBqusXb2eWw5dOM VRUZv9SlJzvIJv/na7mzVGEij4kJXWcF3Qa9ODHsV2XuYtaZsSy+4TE/4qmZCDsu mGFcPaNrUpff0YuCWKhbkxRsYr2cVecuYordru3N7rLVC1qK9YUcjFrRdWr5FHuS ipZMo2iMJz+iHnG9cqpbo3M14x4sygFgsLDgjcd2ziXD9560C96+C5zMhoOBeP9F pavCjkeRRfXmCuvAvn38UcvhFT+2chFWRqd/8m8dbUBnP2tC74EmyHFgEcMZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsUQaJwTM5p+F2qGbm2tFpJuNk2QwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAnqNTgVe4ghuzX2s8qdnajKpivWNFCoBOdt BdetKXN5XHbJYfXJdmxGyQjINjlCjwQuogEAHMHchZR9EBvVF/la1A2BUgXf92dF noy1MwZQlipSUvHIRxQaAi4/miuQZwIeJ/x/n1E3L+sD0/u4XbVe4jCMSUaEJa6g 131Ji95XSU3Qzs1ORnYX8phIjPPXVNAbxbA1iAv9O0VK414h0lIVI9LZ3Pbe3FPk FZJ0YVZBcSCoIwItMDzV0/WotuwenciS0YQG2AgwmpcUQskXGuwqIEJCew7G4hWN dJAf3exAUf2NV+gWweAK3UI7JDQpzKpP4rYVT41DWl/ghKNeEPo= -----END CERTIFICATE-----Generated at Sat Aug 23 19:46:16 2025 by rpki-client