$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft File: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json) Hash identifier: 3E/Y1v2tAahL3qf7jMTygf8HMLDLGxY00+jqCbNKhik= Subject key identifier: 31:D0:0C:04:4E:59:EB:33:75:29:57:BE:CB:27:A9:43:9D:07:D5:AB Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 09A07E3C54EEA505807CDA465771ABB307D3661E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft Manifest number: 0465 Signing time: Fri 22 Aug 2025 01:50:59 +0000 Manifest this update: Fri 22 Aug 2025 01:45:59 +0000 Manifest next update: Mon 25 Aug 2025 09:56:59 +0000 Files and hashes: 1: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: mvC9p+CPlkXWINYRTgBtBkkDJBEp1sQyT8ZsUTu3SJ8=) 2: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: DSCdhRjgPhVc7GP3hYwZBTxGLDzPYuxYKap6JH0m82g=) 3: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: I1rDYvqqFg4aRnuf/vWK5XXOGVBK8suZyd8orlilX60=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a0:7e:3c:54:ee:a5:05:80:7c:da:46:57:71:ab:b3:07:d3:66:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Aug 22 01:45:59 2025 GMT Not After : Aug 25 09:56:59 2025 GMT Subject: CN=31D00C044E59EB33752957BECB27A9439D07D5AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5e:b5:22:11:0a:30:9a:3d:90:c4:cc:3a:8d: a8:24:40:ae:95:e2:c1:49:81:30:14:b7:b7:19:57: 8a:d8:f0:6f:a4:47:f2:63:ab:b0:f0:d1:1e:c4:b4: 46:9c:ca:93:6e:41:53:e0:4f:ee:7a:04:e6:d7:29: 9a:32:23:d6:ef:31:23:c4:df:35:a0:2f:c1:a4:61: 4d:af:d7:fd:84:86:37:c4:af:00:d0:86:32:41:72: f3:01:9d:c2:d0:3e:06:0f:46:bd:90:3d:bc:9e:5c: b7:0c:52:59:da:fe:1e:c3:ee:79:5a:b7:fd:68:e6: 50:73:20:37:d1:16:89:14:52:ec:ef:28:9f:10:ab: be:ab:a4:f4:55:ea:de:11:25:2a:5d:c1:aa:d5:1f: cb:3b:1f:1a:4f:d6:21:20:b3:0a:19:9d:7d:16:18: c7:3a:9d:ba:56:4a:93:fe:10:11:f7:5b:85:21:62: bd:8d:a7:b3:f5:87:58:fa:0b:37:13:ef:62:2a:0b: 1b:48:f5:66:5a:08:fd:ee:da:01:06:b6:d5:ac:52: da:6e:7c:ef:ac:3e:1d:99:cc:f2:3b:b6:5b:42:21: 93:95:e0:bf:16:31:da:2a:3a:c7:92:bf:0e:15:f8: 1f:25:04:39:59:3b:07:32:87:a8:50:b3:a9:dd:2d: 04:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D0:0C:04:4E:59:EB:33:75:29:57:BE:CB:27:A9:43:9D:07:D5:AB X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:f9:e0:1c:6a:e0:a4:78:df:99:6c:f0:82:06:58:2b:5e:49: 1b:d0:fa:43:d2:2a:30:93:75:0e:fb:05:5c:a9:c5:d6:25:60: ec:6d:4d:73:fc:61:4e:87:a3:49:ef:24:cb:4a:21:e0:80:c1: 83:19:f3:6c:e1:78:a6:6b:48:19:54:03:6a:21:c2:1a:6b:07: 8c:5e:b6:b7:ef:e2:13:62:03:9f:64:a3:1f:dd:87:cd:cb:ba: 73:52:99:55:82:8d:2f:01:ca:4c:b3:da:70:71:97:8b:91:d3: 83:46:96:a9:c2:41:23:0f:6d:6c:28:a7:38:de:22:34:a0:fe: 14:29:35:0e:ec:09:61:46:b3:cb:d5:f5:0a:15:4c:67:1c:7b: 66:19:15:0b:99:72:4c:28:05:da:3b:85:f0:b6:7a:49:70:b7: dc:da:f9:1a:03:e6:b9:c2:bd:29:a8:0f:48:d5:67:64:72:a3: 27:8d:e3:4e:20:74:22:25:e7:3d:b9:13:b3:82:21:f0:87:a5: 1f:75:51:ad:17:08:a3:7e:6b:4a:3a:53:00:8e:ca:d6:0e:06: 8d:2d:15:39:50:c1:4c:6a:4a:e9:fd:d6:8d:5b:0f:3b:f2:e7: ab:e3:52:c6:1e:27:a8:1d:c9:2b:4d:f5:c0:c3:49:8c:ec:62: df:3b:44:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCaB+PFTupQWAfNpGV3GrswfTZh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTA4MjIwMTQ1NTlaFw0yNTA4MjUwOTU2NTlaMDMxMTAvBgNV BAMTKDMxRDAwQzA0NEU1OUVCMzM3NTI5NTdCRUNCMjdBOTQzOUQwN0Q1QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdXrUiEQowmj2QxMw6jagkQK6V 4sFJgTAUt7cZV4rY8G+kR/Jjq7Dw0R7EtEacypNuQVPgT+56BObXKZoyI9bvMSPE 3zWgL8GkYU2v1/2EhjfErwDQhjJBcvMBncLQPgYPRr2QPbyeXLcMUlna/h7D7nla t/1o5lBzIDfRFokUUuzvKJ8Qq76rpPRV6t4RJSpdwarVH8s7HxpP1iEgswoZnX0W GMc6nbpWSpP+EBH3W4UhYr2Np7P1h1j6CzcT72IqCxtI9WZaCP3u2gEGttWsUtpu fO+sPh2ZzPI7tltCIZOV4L8WMdoqOseSvw4V+B8lBDlZOwcyh6hQs6ndLQSNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMdAMBE5Z6zN1KVe+yyepQ50H1aswHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2Y0MDhlNDQtM2U5Yy00NWU1LWJj YTQtNWRmYmQ0YjI3MTMwLzAvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4 NEE1QUFFQUFGOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ754Bxq4KR435ls8IIGWCteSRvQ+kPSKjCT dQ77BVypxdYlYOxtTXP8YU6Ho0nvJMtKIeCAwYMZ82zheKZrSBlUA2ohwhprB4xe trfv4hNiA59kox/dh83LunNSmVWCjS8Bykyz2nBxl4uR04NGlqnCQSMPbWwopzje IjSg/hQpNQ7sCWFGs8vV9QoVTGcce2YZFQuZckwoBdo7hfC2eklwt9za+RoD5rnC vSmoD0jVZ2RyoyeN404gdCIl5z25E7OCIfCHpR91Ua0XCKN+a0o6UwCOytYOBo0t FTlQwUxqSun91o1bDzvy56vjUsYeJ6gdyStN9cDDSYzsYt87RG8= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:09 2025 by rpki-client