$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: g4gwqkz+OxQM9C5THMGkaaFlUwIHZqZq8wD29V5L1kU= Subject key identifier: E7:AD:9B:80:64:9D:2B:7A:BF:0C:AE:FF:36:CE:59:D3:47:2E:6E:40 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 43A550539E8688F9061337750529AA9AD8687297 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 02BD Signing time: Thu 21 Aug 2025 00:01:12 +0000 Manifest this update: Wed 20 Aug 2025 23:56:12 +0000 Manifest next update: Sun 24 Aug 2025 10:14:12 +0000 Files and hashes: 1: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: HDINTQHxzPaPg4zWUPAyaXmU+p08mai1nI216tXbgdM=) 2: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) 3: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) 4: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 10:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a5:50:53:9e:86:88:f9:06:13:37:75:05:29:aa:9a:d8:68:72:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Aug 20 23:56:12 2025 GMT Not After : Aug 24 10:14:12 2025 GMT Subject: CN=E7AD9B80649D2B7ABF0CAEFF36CE59D3472E6E40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3e:26:63:40:19:42:62:10:b1:51:30:e5:c3: d9:bd:1c:72:37:ad:b3:d1:86:4c:b6:10:16:c0:7c: 6e:c6:5d:b1:32:f9:05:90:7b:d6:1f:18:25:25:b0: 24:69:d2:67:d2:de:53:4f:d5:2a:cb:77:93:c7:8e: ee:67:48:7d:ed:55:79:40:9c:e8:3b:80:4e:30:db: 93:c8:87:17:6c:fe:03:f3:11:05:09:bc:5c:92:12: 6f:cc:ba:9e:09:86:62:50:49:fe:82:0b:7a:8d:ad: eb:ac:3c:af:95:ca:f3:2b:35:41:ae:2e:86:58:22: 49:6b:5d:e8:7f:21:89:ce:b8:b3:2b:69:ec:bf:2b: 6d:e0:aa:a5:1d:ee:2a:f2:18:09:a4:44:bb:e5:6b: 57:5f:5c:77:3f:25:f0:42:64:bf:0b:05:73:62:87: b2:95:1f:1f:8b:4e:4e:c6:3f:87:b3:7a:92:b0:07: f1:d0:1f:23:b8:e7:3b:c4:0a:2d:c3:70:45:38:0f: bf:5f:f0:b3:80:f0:75:7b:48:36:c3:a8:1d:60:94: b1:19:7a:17:24:78:3b:ed:20:74:1a:c4:ac:2c:cc: 41:2d:05:1a:10:84:10:f7:88:68:42:09:d5:9d:e9: 37:d0:f2:a7:07:f4:c4:8b:94:c3:9c:f5:2e:52:0d: be:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:AD:9B:80:64:9D:2B:7A:BF:0C:AE:FF:36:CE:59:D3:47:2E:6E:40 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:35:71:11:5b:13:e9:e6:70:85:7b:ea:5c:0b:7a:3e:67:e0: 3e:f5:8c:66:87:36:88:a7:39:21:3e:b7:ac:4e:e5:37:39:2b: c2:c0:2f:d1:d5:cb:e3:56:ae:8c:e7:7a:fe:93:71:7d:1b:b8: d5:c4:54:84:57:d3:ae:ae:5f:4d:2a:b0:19:de:17:1b:a8:8e: ef:17:18:f2:8d:ed:79:f3:31:01:9f:7c:a1:d7:b1:f5:88:ab: 39:1c:70:f6:0f:21:3c:6f:c7:d3:1b:18:86:7c:b0:1b:52:be: 98:df:cf:bf:6f:ed:79:0f:5d:03:2a:a2:af:f7:a4:29:8a:f0: f4:34:1d:0b:14:9b:12:cc:c8:53:17:b3:fb:ca:9f:eb:a8:18: 9a:d1:ca:9e:05:86:85:c2:16:94:75:05:7b:a4:07:00:22:fb: 05:40:ce:43:55:78:cc:b8:d2:15:c5:e2:53:5f:8b:b0:60:5d: 23:d3:11:02:57:3b:e7:bb:17:e9:64:19:ae:ef:9a:ab:90:d5: 1d:b0:5d:85:e5:37:8d:53:6a:70:cf:2f:c2:13:53:63:98:82: ac:b9:cf:bb:5a:24:cb:59:58:e2:61:ce:24:bb:c7:12:43:4d: a8:46:3d:42:13:a2:92:9b:dc:04:af:df:23:66:6e:01:ce:64: cc:28:1d:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ6VQU56GiPkGEzd1BSmqmthocpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTA4MjAyMzU2MTJaFw0yNTA4MjQxMDE0MTJaMDMxMTAvBgNV BAMTKEU3QUQ5QjgwNjQ5RDJCN0FCRjBDQUVGRjM2Q0U1OUQzNDcyRTZFNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWPiZjQBlCYhCxUTDlw9m9HHI3 rbPRhky2EBbAfG7GXbEy+QWQe9YfGCUlsCRp0mfS3lNP1SrLd5PHju5nSH3tVXlA nOg7gE4w25PIhxds/gPzEQUJvFySEm/Mup4JhmJQSf6CC3qNreusPK+VyvMrNUGu LoZYIklrXeh/IYnOuLMraey/K23gqqUd7iryGAmkRLvla1dfXHc/JfBCZL8LBXNi h7KVHx+LTk7GP4ezepKwB/HQHyO45zvECi3DcEU4D79f8LOA8HV7SDbDqB1glLEZ ehckeDvtIHQaxKwszEEtBRoQhBD3iGhCCdWd6TfQ8qcH9MSLlMOc9S5SDb6xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU562bgGSdK3q/DK7/Ns5Z00cubkAwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAU1cRFbE+nmcIV76lwLej5n4D71jGaHNoin OSE+t6xO5Tc5K8LAL9HVy+NWroznev6TcX0buNXEVIRX066uX00qsBneFxuoju8X GPKN7XnzMQGffKHXsfWIqzkccPYPITxvx9MbGIZ8sBtSvpjfz79v7XkPXQMqoq/3 pCmK8PQ0HQsUmxLMyFMXs/vKn+uoGJrRyp4FhoXCFpR1BXukBwAi+wVAzkNVeMy4 0hXF4lNfi7BgXSPTEQJXO+e7F+lkGa7vmquQ1R2wXYXlN41TanDPL8ITU2OYgqy5 z7taJMtZWOJhziS7xxJDTahGPUITopKb3ASv3yNmbgHOZMwoHeQ= -----END CERTIFICATE-----Generated at Sat Aug 23 10:12:56 2025 by rpki-client