$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: GNLM25LTu9aivieHBooBT1qUQ5cRSOSYi12VLyKUcGg= Subject key identifier: 59:D0:E9:04:16:CE:0E:BC:62:34:73:77:42:5A:FB:43:ED:61:A5:60 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 7064786F1451E86F9EDB627C3574BA42DD904651 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 050A Signing time: Fri 22 Aug 2025 00:32:11 +0000 Manifest this update: Fri 22 Aug 2025 00:27:11 +0000 Manifest next update: Mon 25 Aug 2025 12:18:11 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 2: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: 9pt7JLtOWMCBsJXp8H1J28V9N/OUvx5VflNai/uQZgc=) 3: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: 1cZaLW2bYSVuCFR3p6/QnCg+KIF2tEt9ZDlyjUYN2tI=) 4: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: LMlg0YtMMAZTGP6EzKXImD6a6ZjUtLMQ+VabkB5A5lc=) 5: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: HaaJamvaQ0TXg5why/ckBw6cS7xj/cv99glxRrThgH0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 12:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:64:78:6f:14:51:e8:6f:9e:db:62:7c:35:74:ba:42:dd:90:46:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Aug 22 00:27:11 2025 GMT Not After : Aug 25 12:18:11 2025 GMT Subject: CN=59D0E90416CE0EBC62347377425AFB43ED61A560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8b:79:7d:ca:cd:ac:04:54:45:bf:84:56:ab: fe:9f:86:9e:f2:ce:7e:90:f2:d0:56:de:c4:1f:3f: 3a:ed:24:7c:ec:54:39:54:82:5a:45:17:ff:67:f2: 76:41:59:8d:50:a3:58:81:8c:52:c9:fc:12:c3:bc: ad:ea:fa:cb:be:a1:6e:51:3e:72:e4:63:5b:85:39: 5f:df:57:e5:01:96:82:58:84:0a:56:82:83:16:8c: 6a:09:4f:10:dc:30:d9:18:80:3b:95:b3:52:9e:81: 27:a9:e0:23:2b:8b:3a:c1:f4:2c:6d:21:22:b2:48: f8:95:eb:2b:8b:ba:78:64:15:94:89:91:d3:86:6c: 9d:dc:9b:1f:cc:d8:2e:eb:a7:22:2f:aa:de:cd:c6: b1:bc:b2:31:be:79:a0:44:6e:b2:0f:dc:67:87:d9: 69:64:4f:f3:58:e6:f4:42:76:7b:8c:ce:69:e6:b6: fc:de:45:76:f2:62:fb:23:16:67:e2:8b:18:1e:f0: 46:0d:e5:ee:a5:3d:df:62:8d:5a:7e:9a:50:20:99: 19:65:9c:e1:86:5d:76:64:59:5a:0b:4a:d6:b0:c9: 8c:88:3e:78:5a:45:9c:da:62:61:7a:f1:47:3c:a7: 33:9a:0e:da:e1:f0:c1:4f:85:df:eb:c6:20:34:8c: b6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D0:E9:04:16:CE:0E:BC:62:34:73:77:42:5A:FB:43:ED:61:A5:60 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:35:96:45:77:8f:c9:1b:ba:48:df:69:08:b9:66:79:3d:03: 53:aa:db:85:9a:91:28:f4:f3:55:60:fa:74:95:b7:37:a0:5f: b2:49:52:c6:4f:f2:a7:88:48:08:ca:b3:ab:af:21:61:10:2d: 45:e5:97:e8:a2:86:a4:bf:08:6d:d1:0a:12:25:1e:91:de:1f: 21:50:d7:72:90:b6:36:01:29:5c:dc:a7:c6:94:52:89:97:43: 65:f2:2d:33:9d:2a:5b:45:ad:e7:32:c5:b6:db:91:dd:58:c1: 25:66:11:42:cf:00:76:1d:46:e1:63:65:64:db:15:8b:ae:c6: b8:94:77:c9:fc:2c:2c:05:87:14:c9:bb:30:88:a8:29:2a:2c: 3b:4f:02:2e:a6:a1:20:cc:19:6f:20:de:dd:c0:0c:ab:88:24: 5e:79:61:98:13:c4:91:39:b6:97:33:95:ec:c7:32:4b:9f:85: 61:2a:c8:c5:df:95:70:1b:4d:73:07:bd:9f:4a:54:32:69:4e: 55:c3:e8:4a:1b:cb:c1:b5:22:2c:a5:97:1f:bd:b0:45:cb:f6: 9e:5d:a4:24:e5:02:05:8b:ac:d4:d7:3f:25:95:70:04:2d:ae: 91:fb:1d:8a:3f:3c:9f:f2:dc:5a:8e:af:e9:89:9c:3d:8d:f0: d8:a1:fa:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcGR4bxRR6G+e22J8NXS6Qt2QRlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA4MjIwMDI3MTFaFw0yNTA4MjUxMjE4MTFaMDMxMTAvBgNV BAMTKDU5RDBFOTA0MTZDRTBFQkM2MjM0NzM3NzQyNUFGQjQzRUQ2MUE1NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVi3l9ys2sBFRFv4RWq/6fhp7y zn6Q8tBW3sQfPzrtJHzsVDlUglpFF/9n8nZBWY1Qo1iBjFLJ/BLDvK3q+su+oW5R PnLkY1uFOV/fV+UBloJYhApWgoMWjGoJTxDcMNkYgDuVs1KegSep4CMrizrB9Cxt ISKySPiV6yuLunhkFZSJkdOGbJ3cmx/M2C7rpyIvqt7NxrG8sjG+eaBEbrIP3GeH 2WlkT/NY5vRCdnuMzmnmtvzeRXbyYvsjFmfiixge8EYN5e6lPd9ijVp+mlAgmRll nOGGXXZkWVoLStawyYyIPnhaRZzaYmF68Uc8pzOaDtrh8MFPhd/rxiA0jLZJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWdDpBBbODrxiNHN3Qlr7Q+1hpWAwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHk1lkV3j8kbukjfaQi5Znk9A1Oq24WakSj0 81Vg+nSVtzegX7JJUsZP8qeISAjKs6uvIWEQLUXll+iihqS/CG3RChIlHpHeHyFQ 13KQtjYBKVzcp8aUUomXQ2XyLTOdKltFrecyxbbbkd1YwSVmEULPAHYdRuFjZWTb FYuuxriUd8n8LCwFhxTJuzCIqCkqLDtPAi6moSDMGW8g3t3ADKuIJF55YZgTxJE5 tpczlezHMkufhWEqyMXflXAbTXMHvZ9KVDJpTlXD6Eoby8G1Iiyllx+9sEXL9p5d pCTlAgWLrNTXPyWVcAQtrpH7HYo/PJ/y3FqOr+mJnD2N8Nih+sA= -----END CERTIFICATE-----Generated at Sat Aug 23 10:10:06 2025 by rpki-client