$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: WOpi6+x8rQxz9gA2WoilXrqkAIsNFkxCzeRr9/inqBQ= Subject key identifier: AF:74:D5:D8:3F:94:2F:55:6E:2B:16:C9:4A:A4:94:F5:DC:2E:7C:3B Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 330BBFB635B41418A80709B53C7A9BE54787A49B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 01FD Signing time: Sat 23 Aug 2025 01:11:23 +0000 Manifest this update: Sat 23 Aug 2025 01:06:23 +0000 Manifest next update: Tue 26 Aug 2025 08:31:23 +0000 Files and hashes: 1: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: FK++k16W5o1G1ymHbgbWCr22LclnvM/8CkDyIWrtSXU=) 2: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s=) 3: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: BvK9Hn970LduShuymvKIGJsYEvwLE6OgncMiQrsOr7o=) 4: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 08:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:0b:bf:b6:35:b4:14:18:a8:07:09:b5:3c:7a:9b:e5:47:87:a4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Aug 23 01:06:23 2025 GMT Not After : Aug 26 08:31:23 2025 GMT Subject: CN=AF74D5D83F942F556E2B16C94AA494F5DC2E7C3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:05:4d:3d:fc:74:70:7f:63:7f:11:e6:19:98: 86:c7:96:32:57:fc:9e:16:fc:13:cf:30:62:07:da: 3b:98:52:2d:2d:b3:05:99:ac:88:c7:7a:8b:00:1a: 33:e2:ba:d2:0b:7e:42:12:71:d4:32:b9:a9:46:14: e2:11:e6:09:f7:4b:9a:9c:55:95:be:f9:77:b1:1d: f6:3f:d5:16:d6:52:1d:6c:c1:db:c9:12:d9:e2:07: d2:ae:9a:7d:da:c8:cc:49:5c:74:55:d5:0d:41:c0: b6:2f:42:c8:ff:c2:b4:56:08:a0:bc:91:4a:7c:18: 89:54:0a:24:72:44:ac:94:07:5c:9d:3a:8e:9a:17: b8:b8:70:ab:4a:8c:7a:72:04:72:9f:37:57:49:a9: 76:bf:41:44:69:03:99:d6:29:d3:fb:35:e5:8e:8b: 06:ce:79:9c:4b:bf:f6:85:17:70:9f:ce:5a:cf:b4: 57:b1:bc:9f:4b:a7:02:c4:52:d2:bf:2f:c3:00:f3: 19:fa:9e:72:18:de:a7:b0:4c:af:77:6b:1d:c0:9d: ae:40:70:88:ce:78:f0:6e:b8:bf:db:ae:5d:bd:e5: dd:d8:51:06:4f:2a:25:61:8c:46:6b:2f:4b:66:0e: 29:71:29:f8:5b:4c:24:03:68:9d:42:6e:2a:10:e4: bc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:74:D5:D8:3F:94:2F:55:6E:2B:16:C9:4A:A4:94:F5:DC:2E:7C:3B X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:ed:00:d9:5a:e6:8d:3a:e8:cb:7f:d7:5c:a5:19:62:9b:74: de:82:0a:72:10:72:07:45:1c:5f:10:6f:25:03:84:10:1c:55: 69:d6:1e:25:b6:e5:3a:c7:94:97:a8:39:29:94:be:fb:10:2a: 53:e8:50:7a:44:72:67:aa:f8:2d:0f:40:96:c8:e8:3a:03:30: 18:c4:01:38:5d:60:dd:e6:7d:fc:8d:51:75:37:05:dc:3a:a1: 8a:71:ad:92:ca:84:b6:b3:17:61:1c:74:a1:dd:34:07:5c:6c: e9:25:a1:fc:57:5f:cb:11:7e:8f:f8:e1:44:10:bb:cb:ea:53: 0e:98:a8:03:bc:44:31:fa:45:32:ac:9e:54:1a:2c:37:d5:35: 43:f3:24:27:44:fb:de:1c:0f:15:33:8c:86:a7:3f:96:c7:72: ca:61:1d:9b:86:f5:9c:06:87:2f:90:a5:51:81:1f:84:14:ca: e1:40:8e:47:3d:48:ab:b4:6d:ab:9f:b2:f6:7c:db:18:9f:d6: da:ae:e0:d6:4c:34:9c:3b:23:62:db:cd:22:33:f8:1c:1d:90: e0:81:13:04:af:fb:7b:89:60:6b:79:62:a6:73:1b:85:85:c3: 64:35:02:a7:19:ad:6b:e1:b2:e9:82:72:a6:e6:c1:6c:c2:72: 2a:a7:2d:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMwu/tjW0FBioBwm1PHqb5UeHpJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTA4MjMwMTA2MjNaFw0yNTA4MjYwODMxMjNaMDMxMTAvBgNV BAMTKEFGNzRENUQ4M0Y5NDJGNTU2RTJCMTZDOTRBQTQ5NEY1REMyRTdDM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqBU09/HRwf2N/EeYZmIbHljJX /J4W/BPPMGIH2juYUi0tswWZrIjHeosAGjPiutILfkIScdQyualGFOIR5gn3S5qc VZW++XexHfY/1RbWUh1swdvJEtniB9Kumn3ayMxJXHRV1Q1BwLYvQsj/wrRWCKC8 kUp8GIlUCiRyRKyUB1ydOo6aF7i4cKtKjHpyBHKfN1dJqXa/QURpA5nWKdP7NeWO iwbOeZxLv/aFF3CfzlrPtFexvJ9LpwLEUtK/L8MA8xn6nnIY3qewTK93ax3Ana5A cIjOePBuuL/brl295d3YUQZPKiVhjEZrL0tmDilxKfhbTCQDaJ1CbioQ5LxfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr3TV2D+UL1VuKxbJSqSU9dwufDswHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAntANla5o066Mt/11ylGWKbdN6CCnIQcgdF HF8QbyUDhBAcVWnWHiW25TrHlJeoOSmUvvsQKlPoUHpEcmeq+C0PQJbI6DoDMBjE AThdYN3mffyNUXU3Bdw6oYpxrZLKhLazF2EcdKHdNAdcbOklofxXX8sRfo/44UQQ u8vqUw6YqAO8RDH6RTKsnlQaLDfVNUPzJCdE+94cDxUzjIanP5bHcsphHZuG9ZwG hy+QpVGBH4QUyuFAjkc9SKu0baufsvZ82xif1tqu4NZMNJw7I2LbzSIz+BwdkOCB EwSv+3uJYGt5YqZzG4WFw2Q1AqcZrWvhsumCcqbmwWzCciqnLdc= -----END CERTIFICATE-----Generated at Sat Aug 23 14:47:39 2025 by rpki-client