$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft (raw, json) Hash identifier: CNeXvf4TGbxBu1vi5bzTpco+ZvCLNVIVW6HyTt+30FI= Subject key identifier: B6:15:C4:6E:4B:9E:63:DC:99:F5:3F:F6:38:D8:0C:E0:B1:38:8D:19 Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 12B372FA9D4D00FB6C68CD2499FBB1E9453CA03A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft Manifest number: 01DE Signing time: Sat 23 Aug 2025 01:00:54 +0000 Manifest this update: Sat 23 Aug 2025 00:55:54 +0000 Manifest next update: Tue 26 Aug 2025 03:56:54 +0000 Files and hashes: 1: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (hash: HvzvMBj5qU+NExWSjTWqrdpmvH/WBtBrlcSKkhbhERc=) 2: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl (hash: jfwYAbFi82S4N5Vn75px7DIXrPce/zISgOFkjv+MaV0=) 3: 3130332e36352e39362e302f32332d3234203d3e203536323539.roa (hash: GJQ3NUFsB2nVnSk1uRZagjtzrc7ng31cjwY1HHOp2FQ=) 4: 3130332e32382e3136332e302f32342d3234203d3e203536323539.roa (hash: NAFqFIaSAImXyE9eWh33YjJ4/n4BJqvDNhOBlZ2+l28=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b3:72:fa:9d:4d:00:fb:6c:68:cd:24:99:fb:b1:e9:45:3c:a0:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Aug 23 00:55:54 2025 GMT Not After : Aug 26 03:56:54 2025 GMT Subject: CN=B615C46E4B9E63DC99F53FF638D80CE0B1388D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:86:5d:53:78:84:6c:5d:b3:48:c7:6e:16: 8a:22:87:ce:0d:2c:d7:3c:22:4b:5a:e3:e0:45:07: 60:39:01:f0:48:ff:b9:bd:ea:0c:b4:2b:f9:27:1f: 2b:8c:02:66:ec:93:11:66:3d:64:8e:f5:10:cc:3a: 27:07:ba:a7:d1:74:bc:d9:2a:17:4b:5e:77:a9:0b: 98:a1:17:d7:54:0f:a0:53:28:d1:26:08:2c:75:1a: c9:ba:dc:24:39:ec:d9:72:6d:44:1f:c7:88:cc:e4: 0d:7b:fc:13:e8:7a:04:4f:d5:0f:2c:09:e6:d2:b0: 61:ef:49:c3:9b:e0:30:2c:06:bd:a2:9d:50:85:c0: e6:4b:c0:a2:5b:da:de:c7:6a:04:e2:f1:8d:56:42: 7c:75:d5:11:15:3d:99:97:a5:4a:65:f2:1b:d2:df: fa:4b:af:53:38:45:aa:2f:7c:40:cf:b3:42:98:ea: 2e:c4:5f:f0:a7:a0:9b:39:60:34:91:b4:e1:8d:2b: c3:04:34:24:c4:6f:1a:81:6d:ec:e3:54:64:6b:f5: 4d:ed:d9:86:40:2c:c9:66:b2:11:d2:a4:88:7e:61: 25:c8:5d:a1:b1:8b:bc:83:f4:99:6b:36:56:83:de: b8:7f:82:ed:90:83:a5:19:63:2b:c7:03:b1:63:5d: 5d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:15:C4:6E:4B:9E:63:DC:99:F5:3F:F6:38:D8:0C:E0:B1:38:8D:19 X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:16:ce:40:db:6a:55:e6:bd:33:c0:c6:90:cb:40:0c:74:e5: 9b:ca:72:87:f6:81:a0:46:53:19:ba:d4:e1:2e:49:31:47:1c: a9:a4:19:0c:8f:9e:80:6f:13:0d:53:44:05:a1:c5:91:7e:03: bb:d4:2c:12:90:1c:8b:89:b5:11:6c:8e:c0:28:2f:9b:98:f1: bb:41:71:05:43:8f:e5:1d:28:fe:38:87:1c:86:f4:f8:80:e3: b3:5d:87:ad:af:9f:d7:64:be:ca:90:57:8f:33:50:7f:70:6e: cd:cb:50:bc:c7:1d:b5:e6:56:ef:a7:d9:a7:a2:35:f9:6e:33: 15:9b:13:30:de:56:77:6a:da:db:69:73:ea:ca:6a:a6:df:b1: 15:e3:af:41:37:d7:49:3b:4c:ef:de:55:13:2f:7f:4f:6c:54: ba:5d:fd:84:af:0c:77:d6:24:35:9a:5b:83:fd:60:e0:28:cc: 1a:54:19:44:98:b0:41:59:f8:51:86:16:58:51:29:10:08:3e: 35:ae:ea:61:e4:05:a3:a0:5b:4a:49:07:d5:39:c9:3b:36:7b: 42:61:1f:a7:6c:e3:88:6b:96:3f:24:cc:49:59:37:34:f7:61: 50:2a:75:8d:fa:b1:f5:4d:59:17:59:41:09:1d:87:83:7a:43: 7a:92:21:99 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUErNy+p1NAPtsaM0kmfux6UU8oDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNTA4MjMwMDU1NTRaFw0yNTA4MjYwMzU2NTRaMDMxMTAvBgNV BAMTKEI2MTVDNDZFNEI5RTYzREM5OUY1M0ZGNjM4RDgwQ0UwQjEzODhEMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHxoZdU3iEbF2zSMduFooih84N LNc8Ikta4+BFB2A5AfBI/7m96gy0K/knHyuMAmbskxFmPWSO9RDMOicHuqfRdLzZ KhdLXnepC5ihF9dUD6BTKNEmCCx1Gsm63CQ57NlybUQfx4jM5A17/BPoegRP1Q8s CebSsGHvScOb4DAsBr2inVCFwOZLwKJb2t7HagTi8Y1WQnx11REVPZmXpUpl8hvS 3/pLr1M4RaovfEDPs0KY6i7EX/CnoJs5YDSRtOGNK8MENCTEbxqBbezjVGRr9U3t 2YZALMlmshHSpIh+YSXIXaGxi7yD9JlrNlaD3rh/gu2Qg6UZYyvHA7FjXV2VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUthXEbkueY9yZ9T/2ONgM4LE4jRkwHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGQ5NzAwMzItMDhlYS00ODkwLWJk YmEtNjMwOWE0OTc5MTdkLzAvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVF RDc4NUMzNUU0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEwWzkDbalXmvTPAxpDLQAx05ZvKcof2gaBG Uxm61OEuSTFHHKmkGQyPnoBvEw1TRAWhxZF+A7vULBKQHIuJtRFsjsAoL5uY8btB cQVDj+UdKP44hxyG9PiA47Ndh62vn9dkvsqQV48zUH9wbs3LULzHHbXmVu+n2aei NfluMxWbEzDeVndq2ttpc+rKaqbfsRXjr0E310k7TO/eVRMvf09sVLpd/YSvDHfW JDWaW4P9YOAozBpUGUSYsEFZ+FGGFlhRKRAIPjWu6mHkBaOgW0pJB9U5yTs2e0Jh H6ds44hrlj8kzElZNzT3YVAqdY36sfVNWRdZQQkdh4N6Q3qSIZk= -----END CERTIFICATE-----Generated at Sat Aug 23 17:33:22 2025 by rpki-client