$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft File: 29692979765B670997413579D7BF5663C05BBD1A.mft (raw, json) Hash identifier: IJBIeQVY1mcip9QPuz7VpVqBG4nXzIsWwW69WAHTSs8= Subject key identifier: C4:51:7A:38:4D:D2:79:8A:23:AE:CE:2D:3D:42:B7:1F:39:4D:B5:6D Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 404A77F90A8B63CE0B9E8B0AFF47F285660D98A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft Manifest number: 0234 Signing time: Fri 22 Aug 2025 16:11:07 +0000 Manifest this update: Fri 22 Aug 2025 16:06:07 +0000 Manifest next update: Mon 25 Aug 2025 23:20:07 +0000 Files and hashes: 1: 3130332e392e3132342e302f32322d3234203d3e20313331373131.roa (hash: OEcoBkoG7Ieje5kz6iCayAVIs4OuEBZdw+TGiUfzbw0=) 2: 29692979765B670997413579D7BF5663C05BBD1A.crl (hash: utUpb1HuTPQHogoRmbf9AWGQryZPLhYdAJeApwH1ZBQ=) 3: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (hash: Sc7V8HjoJlvlyPs0x8OcUDy/oyEPZU0ZY61rdBTppuU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4a:77:f9:0a:8b:63:ce:0b:9e:8b:0a:ff:47:f2:85:66:0d:98:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Aug 22 16:06:07 2025 GMT Not After : Aug 25 23:20:07 2025 GMT Subject: CN=C4517A384DD2798A23AECE2D3D42B71F394DB56D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:c5:c7:88:60:3d:13:0f:b9:b1:68:86:1e: 86:cc:b7:32:27:08:32:10:a2:27:08:2c:f4:22:1d: 8a:35:86:ca:f3:fe:f6:64:9b:b4:88:81:20:99:4f: 89:89:9a:cd:d8:66:e0:81:49:71:7a:5d:0b:66:bb: 82:d1:91:14:93:d4:e7:82:dd:7e:30:c7:01:c0:77: c9:f5:75:38:f0:44:b0:98:6c:d4:9f:6d:4e:fd:89: e5:c3:51:80:4b:e0:e1:0e:87:24:fb:57:58:17:5b: 66:fe:d5:cb:2a:0e:95:fe:86:41:e8:c1:44:7b:12: 4a:9c:3d:f7:21:b9:2d:cc:92:19:f3:83:6b:72:af: ea:a8:84:37:ae:2c:74:72:44:40:75:89:b0:05:cd: ac:db:d7:fa:13:4c:b6:66:1f:e4:71:56:2d:38:cf: 04:e0:02:57:2c:ac:21:fa:74:ae:a1:15:6a:d9:ea: a4:97:fa:a2:27:a6:db:ef:c8:b3:55:f9:50:2a:5e: f6:0a:3b:9a:83:70:92:1f:3d:c0:1f:1a:fc:de:ed: 94:3a:c7:96:ee:71:b4:72:fc:61:07:7a:1d:77:86: 66:55:51:6a:13:72:c6:95:4e:95:64:2a:a9:43:29: ca:84:d4:da:34:40:3b:8d:35:26:00:12:ea:12:5d: 68:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:51:7A:38:4D:D2:79:8A:23:AE:CE:2D:3D:42:B7:1F:39:4D:B5:6D X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:1f:ba:90:1c:09:93:4d:5f:c1:eb:d9:77:f1:0f:8f:05:1a: 1f:d9:b4:92:e1:7a:be:8b:5c:5a:9e:37:13:7c:34:ee:bd:4b: b7:6c:a7:f6:d7:b4:ac:0f:8e:15:2f:a2:5e:e4:d4:d1:69:94: b7:40:64:c4:1b:88:64:76:97:9b:7a:62:2b:eb:32:55:00:50: d5:26:51:19:37:f6:cc:8d:f5:6f:bd:95:07:35:c7:9e:35:f5: cf:71:7d:8b:c1:d7:d5:44:22:e6:da:69:16:28:5f:ea:f2:ea: 31:9d:b4:54:79:2f:46:a6:8b:2f:25:48:7d:d0:d4:20:d0:67: 0b:19:59:db:f0:d1:91:c8:d7:78:95:00:18:cf:15:e1:52:00: 2c:7a:0c:57:cd:c4:5a:4b:7c:bc:48:74:44:e2:93:96:6a:46: 57:79:89:3a:df:d1:c9:d2:c5:55:7b:a4:ab:38:62:e2:83:14: 7a:42:0a:9f:b4:de:bf:7b:6e:0e:21:b5:98:16:fc:d7:7d:6b: 08:4a:5e:7c:c0:ac:9c:d6:d0:9c:90:81:49:eb:b6:12:af:ae: ce:d8:08:d7:a3:2f:5b:ea:f6:7b:01:48:d1:a2:d6:1c:ca:62: f5:fa:da:5c:d2:ae:24:8f:8b:33:b2:54:33:17:1d:1c:fb:a5: fe:96:15:10 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQEp3+QqLY84LnosK/0fyhWYNmKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNTA4MjIxNjA2MDdaFw0yNTA4MjUyMzIwMDdaMDMxMTAvBgNV BAMTKEM0NTE3QTM4NEREMjc5OEEyM0FFQ0UyRDNENDJCNzFGMzk0REI1NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/kcXHiGA9Ew+5sWiGHobMtzIn CDIQoicILPQiHYo1hsrz/vZkm7SIgSCZT4mJms3YZuCBSXF6XQtmu4LRkRST1OeC 3X4wxwHAd8n1dTjwRLCYbNSfbU79ieXDUYBL4OEOhyT7V1gXW2b+1csqDpX+hkHo wUR7EkqcPfchuS3Mkhnzg2tyr+qohDeuLHRyREB1ibAFzazb1/oTTLZmH+RxVi04 zwTgAlcsrCH6dK6hFWrZ6qSX+qInptvvyLNV+VAqXvYKO5qDcJIfPcAfGvze7ZQ6 x5bucbRy/GEHeh13hmZVUWoTcsaVTpVkKqlDKcqE1No0QDuNNSYAEuoSXWg9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxFF6OE3SeYojrs4tPUK3HzlNtW0wHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2IwYTExYjUtOTQ0MS00Y2M5LWE2 NzItYmU5Nzk5YjY1NTIwLzAvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2 NjNDMDVCQkQxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAMfupAcCZNNX8Hr2XfxD48FGh/ZtJLher6L XFqeNxN8NO69S7dsp/bXtKwPjhUvol7k1NFplLdAZMQbiGR2l5t6YivrMlUAUNUm URk39syN9W+9lQc1x5419c9xfYvB19VEIubaaRYoX+ry6jGdtFR5L0amiy8lSH3Q 1CDQZwsZWdvw0ZHI13iVABjPFeFSACx6DFfNxFpLfLxIdETik5ZqRld5iTrf0cnS xVV7pKs4YuKDFHpCCp+03r97bg4htZgW/Nd9awhKXnzArJzW0JyQgUnrthKvrs7Y CNejL1vq9nsBSNGi1hzKYvX62lzSriSPizOyVDMXHRz7pf6WFRA= -----END CERTIFICATE-----Generated at Sat Aug 23 16:00:49 2025 by rpki-client