$ rpki-client -vvf repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft File: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft (raw, json) Hash identifier: +B7CiqjDYpoUw9OR14mBCjnaSvbHXbovv90rr5SI//M= Subject key identifier: BA:EF:17:38:5D:24:B0:D2:BA:4A:49:3D:37:55:EF:AF:92:1E:38:E3 Authority key identifier: D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 Certificate issuer: /CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Certificate serial: 514848664A3F48A256020139AFDACF5566B4351A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft Manifest number: 68 Signing time: Fri 22 Aug 2025 05:11:54 +0000 Manifest this update: Fri 22 Aug 2025 05:06:54 +0000 Manifest next update: Mon 25 Aug 2025 09:48:54 +0000 Files and hashes: 1: 3135372e32302e3132312e302f32342d3234203d3e20313532343133.roa (hash: J+HA2voObMJkLTe14IHtv1+pBD6tmTWcTW3nQp6DPrc=) 2: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl (hash: DdqWes0CcQ64D8S+8yOcLGtoEsfH8luV9CLe7Mpapx0=) 3: 3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa (hash: mtxUuoBWjsUwdIjXZpNi9bHZl2ZJW5TeiOYPZBEVbaM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:48:48:66:4a:3f:48:a2:56:02:01:39:af:da:cf:55:66:b4:35:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Validity Not Before: Aug 22 05:06:54 2025 GMT Not After : Aug 25 09:48:54 2025 GMT Subject: CN=BAEF17385D24B0D2BA4A493D3755EFAF921E38E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8b:0f:f4:4c:f1:5d:30:89:8d:21:c6:f0:40: dc:ce:5f:71:da:68:fa:f7:12:5e:f6:d4:13:78:f5: 03:67:ff:d7:c4:11:1c:ec:98:07:cb:46:b5:d3:f4: 4c:c5:13:7f:1d:c0:48:2c:77:79:ee:4d:fa:34:3a: fa:9e:9a:53:19:48:3b:26:95:07:ec:45:06:98:e7: ae:73:1b:33:0b:8a:55:20:76:f0:13:c3:4e:53:54: c7:d9:74:2f:6b:60:57:38:57:70:39:77:c1:4f:18: 7b:c0:05:d9:75:1a:c1:fd:05:ba:dd:77:48:db:0e: 26:ef:0a:7a:10:2b:f6:dc:1c:c2:fa:84:86:84:d4: ca:dc:1d:c6:ca:cb:e2:b7:71:34:d2:5e:05:81:53: ec:4f:ba:c2:f3:a0:c5:70:eb:d4:f6:92:50:27:b0: ca:ae:6f:f0:68:95:fd:36:00:db:1b:38:e5:a0:44: 69:d7:e2:f2:c2:1c:b8:ed:d0:c2:8e:8d:5b:35:70: 50:44:bf:9c:38:6e:96:07:44:1f:b2:c3:a0:49:a8: b7:b9:f8:d5:34:2f:e0:d5:63:af:a5:41:3f:af:8b: 4d:43:96:dc:63:e7:af:a3:cd:8b:f7:ef:f5:ef:c7: f1:3b:2b:fa:bb:79:55:57:e8:b5:55:95:11:e5:29: 06:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EF:17:38:5D:24:B0:D2:BA:4A:49:3D:37:55:EF:AF:92:1E:38:E3 X509v3 Authority Key Identifier: keyid:D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:7a:5a:95:8d:21:e5:dc:88:b4:53:9d:90:9f:c1:cc:53:34: 00:6e:b1:5c:9f:f2:a8:39:4a:fd:0a:f6:c6:89:f6:23:3e:59: 9c:0d:ef:60:d1:af:b8:62:ea:dc:91:25:12:90:22:68:8a:9a: 01:02:f1:e2:ba:5a:4e:c4:13:32:44:b3:2b:b4:25:94:ad:c7: 1e:f3:3a:d9:a5:f6:eb:f1:4a:19:49:52:e9:5d:7f:c1:7b:17: 78:e2:56:25:05:67:dc:0f:0d:01:c8:43:a2:d2:3e:be:2f:74: f3:7b:74:89:6a:7b:00:ce:34:80:00:ed:16:65:0e:0b:16:b2: 78:b7:c3:08:9b:f4:ed:c2:36:56:f7:b1:d4:40:71:46:41:fe: e6:32:e3:da:c8:e2:30:3f:a3:50:a7:86:00:b5:4b:a9:a3:44: 08:41:fb:20:82:d5:9c:da:96:d5:98:59:2d:e8:0e:3b:93:84: bf:c1:b7:4c:a1:70:71:ee:69:28:65:61:23:63:d3:4b:98:55: 0b:91:dd:ee:09:14:5f:03:fc:22:61:01:2b:f9:eb:3a:4e:e1: cf:8a:9a:92:9e:fa:42:93:3a:e8:e7:72:5f:de:a2:7f:33:8d: df:58:04:ca:72:1c:cb:d0:29:1a:2f:fe:34:0f:e5:70:cb:ed: 98:07:60:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUUhIZko/SKJWAgE5r9rPVWa0NRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVB Q0YzMjM2ODAeFw0yNTA4MjIwNTA2NTRaFw0yNTA4MjUwOTQ4NTRaMDMxMTAvBgNV BAMTKEJBRUYxNzM4NUQyNEIwRDJCQTRBNDkzRDM3NTVFRkFGOTIxRTM4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQiw/0TPFdMImNIcbwQNzOX3Ha aPr3El721BN49QNn/9fEERzsmAfLRrXT9EzFE38dwEgsd3nuTfo0OvqemlMZSDsm lQfsRQaY565zGzMLilUgdvATw05TVMfZdC9rYFc4V3A5d8FPGHvABdl1GsH9Bbrd d0jbDibvCnoQK/bcHML6hIaE1MrcHcbKy+K3cTTSXgWBU+xPusLzoMVw69T2klAn sMqub/Bolf02ANsbOOWgRGnX4vLCHLjt0MKOjVs1cFBEv5w4bpYHRB+yw6BJqLe5 +NU0L+DVY6+lQT+vi01Dltxj56+jzYv37/Xvx/E7K/q7eVVX6LVVlRHlKQa7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuu8XOF0ksNK6Skk9N1Xvr5IeOOMwHwYDVR0j BBgwFoAU14/lrocO8iH9lXdc/q/q1azzI2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjQ0MjYzYS04ZWUyLTRlZWMtYTgxMC01NzMzY2NhZjUxZTMvMC9ENzhGRTVBRTg3 MEVGMjIxRkQ5NTc3NUNGRUFGRUFENUFDRjMyMzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVBQ0Yz MjM2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDY0NDI2M2EtOGVlMi00ZWVjLWE4 MTAtNTczM2NjYWY1MWUzLzAvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVB RDVBQ0YzMjM2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIB6WpWNIeXciLRTnZCfwcxTNABusVyf8qg5 Sv0K9saJ9iM+WZwN72DRr7hi6tyRJRKQImiKmgEC8eK6Wk7EEzJEsyu0JZStxx7z Otml9uvxShlJUuldf8F7F3jiViUFZ9wPDQHIQ6LSPr4vdPN7dIlqewDONIAA7RZl DgsWsni3wwib9O3CNlb3sdRAcUZB/uYy49rI4jA/o1CnhgC1S6mjRAhB+yCC1Zza ltWYWS3oDjuThL/Bt0yhcHHuaShlYSNj00uYVQuR3e4JFF8D/CJhASv56zpO4c+K mpKe+kKTOujncl/eon8zjd9YBMpyHMvQKRov/jQP5XDL7ZgHYKo= -----END CERTIFICATE-----Generated at Sat Aug 23 21:57:21 2025 by rpki-client