$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft File: 3703AC4154F05B1E642F31DEF71A238407E82D59.mft (raw, json) Hash identifier: n1qCHuOMhdR0H/icmsXMb9VzSJ1arZ1d/U1372EbyUk= Subject key identifier: 16:3B:5E:26:4F:8C:13:01:05:78:EE:66:2E:CE:A4:AA:09:75:BB:34 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 748E42684DE11D0F4ADC5D784A20ACC9FB494DB5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft Manifest number: 04A5 Signing time: Fri 22 Aug 2025 17:50:51 +0000 Manifest this update: Fri 22 Aug 2025 17:45:51 +0000 Manifest next update: Tue 26 Aug 2025 05:32:51 +0000 Files and hashes: 1: 3703AC4154F05B1E642F31DEF71A238407E82D59.crl (hash: epwmkN3LglXG1J49PnMV8MN6QDqrVkKrQ33BVFe6F5k=) 2: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (hash: +Sh30nDK5FN0F+rgaXdcf8t+v+X9RkFfwm8Ti8cbstU=) 3: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (hash: b4KiMwiJASyBICznuxWYSVpBPiU9qpEIZ1f+n3s+3IM=) 4: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (hash: 2wmGpgdLLad+yQRBpECeWO5okHIOK5XLuX+ZtyFeGtw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 05:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8e:42:68:4d:e1:1d:0f:4a:dc:5d:78:4a:20:ac:c9:fb:49:4d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Aug 22 17:45:51 2025 GMT Not After : Aug 26 05:32:51 2025 GMT Subject: CN=163B5E264F8C13010578EE662ECEA4AA0975BB34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d8:c9:69:4f:d9:10:52:aa:03:e6:44:57:4f: dc:e4:a3:93:25:8c:66:7b:dc:4e:36:cb:f3:c1:0f: dd:da:45:32:49:01:4c:75:a8:cb:f3:25:53:04:66: 93:91:f8:27:a7:22:44:e5:3d:e6:ed:3c:65:26:48: c1:59:b3:f1:a7:ed:13:be:dd:6d:33:b9:0a:da:26: f3:6c:62:4b:6f:46:a6:48:75:39:41:1b:24:4b:f8: 29:7d:76:39:e5:9e:b3:8d:44:df:7a:a8:d1:ed:1a: 6b:19:40:81:c5:07:31:58:11:12:6e:5f:7c:3b:60: 57:f3:65:58:f3:c3:fa:b2:c9:c4:b8:3e:f4:37:2d: 0e:0a:2e:59:e8:a8:00:29:e1:e2:df:dd:b1:e6:8f: ee:46:90:ed:22:3f:dc:49:5c:c0:34:5f:89:7f:7e: 45:f7:76:59:c7:45:46:e8:1c:53:ed:15:31:d5:ec: 80:c4:88:3d:b4:1b:65:6b:9b:d1:55:24:33:fd:8f: 6a:d7:35:c2:2a:0e:0d:6e:9d:54:cc:18:48:80:6f: 64:33:b8:d3:b7:ba:41:c3:50:90:9f:3e:d1:ae:3b: ac:85:51:80:b7:e7:70:06:30:65:80:47:80:4a:41: 8c:f5:76:49:2b:fa:a4:8b:d1:fa:60:c8:bd:e6:bf: 9f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3B:5E:26:4F:8C:13:01:05:78:EE:66:2E:CE:A4:AA:09:75:BB:34 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:a0:b8:31:2f:38:b3:2f:b1:23:f6:a7:de:16:2f:8b:e2:cf: 73:65:e7:c4:45:8a:d4:b2:70:99:10:01:45:6f:93:1c:02:c1: fa:ba:16:c3:84:e8:9f:22:21:70:0f:6a:18:98:2e:4c:18:10: b8:07:b3:dc:ac:c1:1a:1a:36:83:15:74:fd:2e:43:04:8d:93: 69:58:19:b6:0f:a1:ff:a3:b6:02:7c:85:27:ad:4f:a1:2c:fb: e9:11:ef:b9:a8:ad:50:48:35:3f:df:8f:31:cc:98:89:ae:87: 44:6d:ea:69:2f:73:88:ab:c9:bf:23:c0:14:c2:04:8a:b2:ca: a7:67:ad:14:e3:74:d4:c6:f8:f2:55:90:99:8a:40:d3:57:d4: be:e7:fb:4a:46:17:2a:9a:93:e9:0e:a2:03:0a:22:b2:ce:0b: 4a:a6:71:87:1c:f1:31:de:9f:bc:e6:9d:3d:e1:1b:88:d7:ee: d9:0f:25:e1:2e:75:a1:c5:48:6b:9e:75:4e:f4:29:6b:4c:2e: 6d:d6:71:83:1f:ac:08:b6:fc:c2:7c:19:c6:c7:c9:77:10:cd: d5:d7:f4:07:de:eb:36:4e:50:69:5e:89:f4:bd:6b:c3:6d:6f: 91:29:44:7d:c6:6c:34:85:4c:8d:5f:ad:f7:03:30:34:c9:5c: 3e:23:db:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdI5CaE3hHQ9K3F14SiCsyftJTbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTA4MjIxNzQ1NTFaFw0yNTA4MjYwNTMyNTFaMDMxMTAvBgNV BAMTKDE2M0I1RTI2NEY4QzEzMDEwNTc4RUU2NjJFQ0VBNEFBMDk3NUJCMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92MlpT9kQUqoD5kRXT9zko5Ml jGZ73E42y/PBD93aRTJJAUx1qMvzJVMEZpOR+CenIkTlPebtPGUmSMFZs/Gn7RO+ 3W0zuQraJvNsYktvRqZIdTlBGyRL+Cl9djnlnrONRN96qNHtGmsZQIHFBzFYERJu X3w7YFfzZVjzw/qyycS4PvQ3LQ4KLlnoqAAp4eLf3bHmj+5GkO0iP9xJXMA0X4l/ fkX3dlnHRUboHFPtFTHV7IDEiD20G2Vrm9FVJDP9j2rXNcIqDg1unVTMGEiAb2Qz uNO3ukHDUJCfPtGuO6yFUYC353AGMGWAR4BKQYz1dkkr+qSL0fpgyL3mv583AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFjteJk+MEwEFeO5mLs6kqgl1uzQwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGEwOTlhZGYtN2UxMi00ZTgzLTk1 YzItZGQ3Zjc3NDk0Nzg4LzAvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIz ODQwN0U4MkQ1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFaguDEvOLMvsSP2p94WL4viz3Nl58RFitSy cJkQAUVvkxwCwfq6FsOE6J8iIXAPahiYLkwYELgHs9yswRoaNoMVdP0uQwSNk2lY GbYPof+jtgJ8hSetT6Es++kR77morVBINT/fjzHMmImuh0Rt6mkvc4iryb8jwBTC BIqyyqdnrRTjdNTG+PJVkJmKQNNX1L7n+0pGFyqak+kOogMKIrLOC0qmcYcc8THe n7zmnT3hG4jX7tkPJeEudaHFSGuedU70KWtMLm3WcYMfrAi2/MJ8GcbHyXcQzdXX 9Afe6zZOUGleifS9a8Ntb5EpRH3GbDSFTI1frfcDMDTJXD4j23U= -----END CERTIFICATE-----Generated at Sat Aug 23 14:15:24 2025 by rpki-client