$ rpki-client -vvf repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft File: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft (raw, json) Hash identifier: xGWilhRjIIfxWPBOJLmkZ8S7IT9F7msubwC1nyTJ5Yw= Subject key identifier: B4:FB:F6:31:0B:20:A9:82:AB:8D:DC:07:4D:F1:27:4D:DB:29:AD:65 Authority key identifier: 9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B Certificate issuer: /CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Certificate serial: 521E5B39B66E94F2AA904D27B7B9AEFCC5F38801 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft Manifest number: 01B9 Signing time: Fri 22 Aug 2025 07:22:08 +0000 Manifest this update: Fri 22 Aug 2025 07:17:08 +0000 Manifest next update: Mon 25 Aug 2025 11:08:08 +0000 Files and hashes: 1: 3130332e33392e37302e302f32332d3233203d3e20313530323734.roa (hash: Na4r9r8nnow4eud4P32zyb2HwE34kjIncW5/HOVTmbY=) 2: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl (hash: 5xBhJL0IFEQWBpkwa3MEKCoJ0ohfar9SZm3ioBZR86Q=) 3: 3130332e33392e37312e302f32342d3234203d3e20313530323734.roa (hash: vX/A9y9l7mDzRfDBjuCxoiwVgHmV7OjNWsTWxTukflI=) 4: 3130332e33392e37302e302f32342d3234203d3e20313530323734.roa (hash: n9HiNkJ52DbLxZISXERFZtFdqx3265M08OZ/zKtOVYU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1e:5b:39:b6:6e:94:f2:aa:90:4d:27:b7:b9:ae:fc:c5:f3:88:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Validity Not Before: Aug 22 07:17:08 2025 GMT Not After : Aug 25 11:08:08 2025 GMT Subject: CN=B4FBF6310B20A982AB8DDC074DF1274DDB29AD65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:56:76:5a:b7:d5:f0:d2:9f:ac:af:e8:41:f4: b5:6d:e8:36:8e:a5:e2:9e:2c:01:38:b7:1e:2c:85: 8c:38:10:a3:05:57:03:07:7d:30:e0:51:f1:d0:d0: 6d:78:fc:ef:9e:c8:47:5c:86:36:5d:23:1f:3b:aa: 16:0b:84:d3:3c:e7:69:f2:cb:8f:59:d9:93:82:ae: d2:e6:f4:06:e6:0a:3c:ac:b7:50:fe:91:c0:0d:94: 1f:27:fa:8f:04:6d:e9:60:52:b9:71:ea:b9:ba:23: 9a:be:39:0d:dd:32:f3:c5:38:6d:7d:92:62:91:33: cb:49:df:40:77:4f:07:c6:96:c8:f2:59:2e:f3:b2: bd:6a:29:28:30:e5:51:5e:c9:14:ec:35:af:2c:95: 81:24:d1:86:2a:b1:52:10:61:1b:47:79:4c:10:f8: a3:4e:9c:ee:90:ef:cf:9d:b5:df:71:9b:3a:76:cc: 94:fb:34:88:7d:db:69:ae:5b:a7:54:75:88:e1:67: ce:07:76:5f:58:37:29:a1:58:99:23:f0:c6:e8:68: 3c:3f:ec:a7:7b:13:08:d8:ac:f1:a5:cc:b7:a7:fd: a6:c9:39:25:24:ce:93:ec:6a:83:ef:04:9f:4a:1d: 2f:29:db:a1:c4:72:b1:38:a5:69:9f:72:43:a8:41: cb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:FB:F6:31:0B:20:A9:82:AB:8D:DC:07:4D:F1:27:4D:DB:29:AD:65 X509v3 Authority Key Identifier: keyid:9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ad:8f:0e:39:e3:58:cd:6c:7a:33:b7:bb:2e:98:b1:0f:00: 50:12:e8:a9:f4:c8:12:7f:60:27:f5:96:3b:10:b5:85:25:aa: 6f:9f:b3:82:06:fc:f7:9e:60:bf:b7:0b:0f:83:79:70:ba:00: 90:38:6e:8b:b1:f1:3c:39:68:25:72:b4:6f:27:14:73:6c:aa: e5:9f:39:33:fd:a8:bc:7a:14:9a:30:9c:99:a3:60:56:fc:d5: d2:e0:13:7e:d2:9a:a6:e2:28:d1:01:15:d9:8d:35:3f:cb:59: ac:88:26:86:83:fe:30:46:41:b6:2a:16:df:bf:2a:06:ed:3b: a3:1b:18:bc:21:92:78:9f:79:7d:4b:02:1f:75:e2:9b:5f:50: 84:e5:ef:4d:29:a0:ef:59:d2:55:e4:92:e1:51:85:d2:65:93: e7:db:56:ce:69:60:52:c9:52:4f:3d:05:fb:b7:1a:51:e7:12: 2a:2f:e1:ab:53:e9:b2:27:e2:b7:2a:6e:60:ae:c3:3e:39:60: 84:0d:5a:f3:0e:43:28:c1:71:8e:84:ed:e1:a8:44:87:b4:f1: 8c:23:0e:8d:cb:c4:f2:cf:9e:e8:f4:26:6b:aa:5a:a9:0b:72: 37:c8:fd:01:ea:7a:24:60:cf:d4:62:85:d7:d8:34:cc:1c:2c: 24:96:e8:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUh5bObZulPKqkE0nt7mu/MXziAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5 NEY1QUI3QjAeFw0yNTA4MjIwNzE3MDhaFw0yNTA4MjUxMTA4MDhaMDMxMTAvBgNV BAMTKEI0RkJGNjMxMEIyMEE5ODJBQjhEREMwNzRERjEyNzREREIyOUFENjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgVnZat9Xw0p+sr+hB9LVt6DaO peKeLAE4tx4shYw4EKMFVwMHfTDgUfHQ0G14/O+eyEdchjZdIx87qhYLhNM852ny y49Z2ZOCrtLm9AbmCjyst1D+kcANlB8n+o8EbelgUrlx6rm6I5q+OQ3dMvPFOG19 kmKRM8tJ30B3TwfGlsjyWS7zsr1qKSgw5VFeyRTsNa8slYEk0YYqsVIQYRtHeUwQ +KNOnO6Q78+dtd9xmzp2zJT7NIh922muW6dUdYjhZ84Hdl9YNymhWJkj8MboaDw/ 7Kd7EwjYrPGlzLen/abJOSUkzpPsaoPvBJ9KHS8p26HEcrE4pWmfckOoQcvHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtPv2MQsgqYKrjdwHTfEnTdsprWUwHwYDVR0j BBgwFoAUn/xGuqPxlSKvW91g333pLpT1q3swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTU3ZDU0My1iYWYwLTQzNDgtODg1Ny0zZDI2MDFjM2E4MDMvMC85RkZDNDZCQUEz RjE5NTIyQUY1QkRENjBERjdERTkyRTk0RjVBQjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5NEY1 QUI3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2U1N2Q1NDMtYmFmMC00MzQ4LTg4 NTctM2QyNjAxYzNhODAzLzAvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5 MkU5NEY1QUI3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA6tjw4541jNbHozt7sumLEPAFAS6Kn0yBJ/ YCf1ljsQtYUlqm+fs4IG/PeeYL+3Cw+DeXC6AJA4boux8Tw5aCVytG8nFHNsquWf OTP9qLx6FJownJmjYFb81dLgE37SmqbiKNEBFdmNNT/LWayIJoaD/jBGQbYqFt+/ KgbtO6MbGLwhknifeX1LAh914ptfUITl700poO9Z0lXkkuFRhdJlk+fbVs5pYFLJ Uk89Bfu3GlHnEiov4atT6bIn4rcqbmCuwz45YIQNWvMOQyjBcY6E7eGoRIe08Ywj Do3LxPLPnuj0JmuqWqkLcjfI/QHqeiRgz9RihdfYNMwcLCSW6Jg= -----END CERTIFICATE-----Generated at Sat Aug 23 13:33:01 2025 by rpki-client