$ rpki-client -vvf repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft File: 843FDF32A52D11795BBFB0918ABF926E0A210870.mft (raw, json) Hash identifier: rlpi+SgOdd2wg2kXTDkRETti10kmTbjitpoHXSF23Lg= Subject key identifier: 55:22:3D:2E:E7:3D:A0:C0:47:3C:C4:89:3D:A9:56:D0:2D:27:70:34 Authority key identifier: 84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 Certificate issuer: /CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Certificate serial: 3F3A418F4670A696B122E8449B1E8B7D3DF3D9D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft Manifest number: F7 Signing time: Thu 21 Aug 2025 14:22:11 +0000 Manifest this update: Thu 21 Aug 2025 14:17:11 +0000 Manifest next update: Sun 24 Aug 2025 16:38:11 +0000 Files and hashes: 1: 3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa (hash: bZtCXaxnCo0kXFhv+UgtkdHVo3axHOoHwsSEN85b1Nc=) 2: 843FDF32A52D11795BBFB0918ABF926E0A210870.crl (hash: tSP5DBS1umb11GX64ROHP8FH9GKwZpuhpy6ro150eF8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 16:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:3a:41:8f:46:70:a6:96:b1:22:e8:44:9b:1e:8b:7d:3d:f3:d9:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Validity Not Before: Aug 21 14:17:11 2025 GMT Not After : Aug 24 16:38:11 2025 GMT Subject: CN=55223D2EE73DA0C0473CC4893DA956D02D277034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:17:85:92:58:9a:e1:e4:2d:73:12:99:bb:0e: d1:15:e2:6e:e1:dd:de:e8:29:50:e6:68:93:a2:43: 94:31:da:8a:88:c1:d5:a6:e0:3d:34:5d:1d:63:16: 63:28:c6:51:92:3c:e9:a3:38:06:e0:6c:23:c3:c1: 44:72:1b:29:e1:2e:5e:a1:8b:a2:e7:10:3a:bd:17: f1:a4:ec:03:2e:36:d8:3f:19:3f:35:a4:1e:59:e8: b6:5f:66:03:5f:ba:05:1b:d6:33:1c:db:0a:34:a4: c4:d3:80:b4:df:9c:76:1c:a3:4a:ee:fd:04:6b:8b: 45:99:d7:cf:7a:12:3d:71:59:7d:8d:5f:ea:e7:85: 20:4c:14:da:e3:1a:8f:7f:cb:7b:fc:be:bb:9a:cb: 38:d6:a8:ae:63:73:5e:3d:fa:13:b9:ec:fa:82:2e: 79:9e:51:e9:e5:02:a0:7d:f6:7e:ef:a5:ec:1b:89: 3d:ff:dc:cc:d4:e3:36:a8:18:e8:d8:80:c1:c3:db: 40:68:3f:74:da:91:4b:33:1f:b2:fc:e8:24:57:22: c2:c4:a7:55:38:fc:ad:c7:84:d1:7b:2a:ee:b6:74: f8:6f:6e:5d:9a:25:cd:dd:0a:cb:8c:5e:4c:c3:4b: 5f:be:68:c7:8b:de:70:97:66:bd:22:c3:b8:d1:73: 02:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:22:3D:2E:E7:3D:A0:C0:47:3C:C4:89:3D:A9:56:D0:2D:27:70:34 X509v3 Authority Key Identifier: keyid:84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:72:e6:88:32:8d:50:60:7d:5e:6c:ee:82:17:4f:f3:63:41: 1a:d7:9f:cf:c4:f2:42:4b:a9:5d:ff:d5:a0:13:9e:cb:e5:3f: 2b:4f:8b:cc:8f:c7:69:1f:32:e8:15:5d:f6:a6:7b:32:76:7a: 57:a3:82:b0:09:dd:51:0c:28:e7:60:fd:bb:c9:18:b5:f1:fe: 38:eb:bd:3f:2d:48:24:9e:e2:8e:2c:cd:29:00:70:47:86:95: 6a:d4:1c:b2:ee:92:3b:6c:ab:f9:47:bb:80:42:c3:df:8a:84: ec:f0:eb:22:45:d8:dd:c2:b0:06:c3:c1:60:42:1d:56:ea:72: df:7a:d6:24:ce:dc:44:f9:37:81:45:22:fa:b3:42:47:f1:45: 0b:3c:87:de:47:d0:fa:97:a5:3a:32:4c:44:1f:98:f1:c5:e0: 14:84:11:c2:f5:1d:6f:c1:13:6f:c1:ac:63:11:9c:22:97:35: fc:e5:44:e3:3e:0e:8e:91:34:6a:a5:04:3b:51:54:ca:6f:32: 56:8d:3e:f6:85:2c:00:0a:2f:20:62:08:bc:fb:5d:ac:d5:54: 50:56:74:c6:73:90:51:ea:ff:ba:75:64:37:1f:21:51:c0:3c: d0:d9:ef:4a:32:89:b9:d9:e8:18:5d:79:5c:cb:89:8f:e2:9b: 5e:85:72:82 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPzpBj0ZwppaxIuhEmx6LfT3z2dQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUw QTIxMDg3MDAeFw0yNTA4MjExNDE3MTFaFw0yNTA4MjQxNjM4MTFaMDMxMTAvBgNV BAMTKDU1MjIzRDJFRTczREEwQzA0NzNDQzQ4OTNEQTk1NkQwMkQyNzcwMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKF4WSWJrh5C1zEpm7DtEV4m7h 3d7oKVDmaJOiQ5Qx2oqIwdWm4D00XR1jFmMoxlGSPOmjOAbgbCPDwURyGynhLl6h i6LnEDq9F/Gk7AMuNtg/GT81pB5Z6LZfZgNfugUb1jMc2wo0pMTTgLTfnHYco0ru /QRri0WZ1896Ej1xWX2NX+rnhSBMFNrjGo9/y3v8vruayzjWqK5jc149+hO57PqC LnmeUenlAqB99n7vpewbiT3/3MzU4zaoGOjYgMHD20BoP3TakUszH7L86CRXIsLE p1U4/K3HhNF7Ku62dPhvbl2aJc3dCsuMXkzDS1++aMeL3nCXZr0iw7jRcwIHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVSI9Luc9oMBHPMSJPalW0C0ncDQwHwYDVR0j BBgwFoAUhD/fMqUtEXlbv7CRir+SbgohCHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2JlOGI3Yy0yMzJmLTQ3ZTgtOWNkZC04ODE3ZDM5YjcwZWEvMC84NDNGREYzMkE1 MkQxMTc5NUJCRkIwOTE4QUJGOTI2RTBBMjEwODcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUwQTIx MDg3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTdiZThiN2MtMjMyZi00N2U4LTlj ZGQtODgxN2QzOWI3MGVhLzAvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjky NkUwQTIxMDg3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACxy5ogyjVBgfV5s7oIXT/NjQRrXn8/E8kJL qV3/1aATnsvlPytPi8yPx2kfMugVXfamezJ2elejgrAJ3VEMKOdg/bvJGLXx/jjr vT8tSCSe4o4szSkAcEeGlWrUHLLukjtsq/lHu4BCw9+KhOzw6yJF2N3CsAbDwWBC HVbqct961iTO3ET5N4FFIvqzQkfxRQs8h95H0PqXpToyTEQfmPHF4BSEEcL1HW/B E2/BrGMRnCKXNfzlROM+Do6RNGqlBDtRVMpvMlaNPvaFLAAKLyBiCLz7XazVVFBW dMZzkFHq/7p1ZDcfIVHAPNDZ70oyibnZ6BhdeVzLiY/im16FcoI= -----END CERTIFICATE-----Generated at Sat Aug 23 12:21:33 2025 by rpki-client