$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft File: 2858C74CC23A557C73F59051B7FE8638AA491C94.mft (raw, json) Hash identifier: 1z5kcCdowZ083uushAeAdhUlO5Wg2QSVKhtjUwv8bIQ= Subject key identifier: F4:D1:11:63:03:07:55:0B:F3:49:FD:5B:AC:E0:51:B2:CF:A8:84:38 Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 7AAA0544876B810F77D5EB3E2DB3AF78E83A67BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft Manifest number: 11 Signing time: Fri 22 Aug 2025 23:11:24 +0000 Manifest this update: Fri 22 Aug 2025 23:06:24 +0000 Manifest next update: Tue 26 Aug 2025 07:21:24 +0000 Files and hashes: 1: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (hash: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk=) 2: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (hash: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg=) 3: 2858C74CC23A557C73F59051B7FE8638AA491C94.crl (hash: S/tWVdoGN/VMFAg2qfdTr6qisR1OS53v6tGFkkGgcos=) 4: 3130332e35302e3132382e302f32322d3234203d3e20313333383039.roa (hash: IB02l7aeS1Ctr7m+n8ymFsmUvTLgjo3obFTTz15X/C8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:aa:05:44:87:6b:81:0f:77:d5:eb:3e:2d:b3:af:78:e8:3a:67:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Aug 22 23:06:24 2025 GMT Not After : Aug 26 07:21:24 2025 GMT Subject: CN=F4D111630307550BF349FD5BACE051B2CFA88438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e7:d9:38:8d:51:02:41:a4:d3:ed:f9:f8:ba: a9:78:7e:ed:02:89:35:0f:77:07:2f:71:89:d9:0a: fc:e5:6c:2e:a0:5b:12:a4:7b:d6:ae:99:e4:4d:25: d3:27:5f:87:7b:57:21:18:58:bf:06:7a:57:8e:71: 6d:a2:5b:96:f4:c9:9f:e3:eb:bb:da:ca:92:8b:23: 30:a6:ed:4e:db:7d:44:46:04:77:7e:1e:f2:87:ee: e9:c7:ed:b0:96:21:75:71:01:d1:f0:0a:a7:e6:c8: 8a:47:07:e9:8a:86:b5:89:42:c2:7a:06:8f:c1:19: 00:66:8b:b0:34:33:0b:90:77:b8:45:17:91:b5:39: 3a:90:aa:d4:77:b9:06:a6:65:3a:f7:c9:65:3e:19: cb:53:fc:f4:2e:0c:52:21:42:f6:7b:20:c5:e1:be: 7d:df:0f:84:65:c7:cb:3b:03:f8:79:c7:be:e0:e4: dc:1b:d7:f0:4a:ac:a3:2f:48:4c:3e:f1:2d:09:31: eb:36:14:9a:2a:9c:2b:d7:7c:31:b6:91:c8:b1:98: 6f:53:00:2c:bf:7d:f4:ab:f4:b8:e8:67:07:38:0d: bb:f0:e4:e4:a6:47:88:88:b9:01:1d:8f:92:37:fa: ea:ad:c9:08:c6:03:b1:70:7f:76:2c:91:83:0d:57: 9c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D1:11:63:03:07:55:0B:F3:49:FD:5B:AC:E0:51:B2:CF:A8:84:38 X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:1f:6c:db:95:30:0b:c0:c9:b4:42:4f:41:de:0e:c7:e0:50: a6:82:b3:11:82:18:ac:5c:11:f5:9f:b8:9e:76:ce:8d:55:ff: 8e:0a:ce:2c:ca:d6:1c:91:87:e3:7c:2c:f4:82:5d:32:ea:14: d0:f5:62:64:8d:8c:ec:37:7d:32:1e:c6:e9:23:93:8f:78:0d: 96:25:8b:26:a9:ff:ab:e2:f4:00:0a:63:28:d2:f4:3b:72:8a: 38:46:f8:41:31:b1:f5:b5:09:20:65:d4:02:e6:c7:56:ce:f7: d3:92:1f:6d:8e:f3:ce:33:8e:65:0e:64:76:8b:cd:de:a4:5b: 4d:8f:95:80:bc:4f:15:81:f8:3a:12:ab:e5:16:6f:33:b7:e7: ef:68:5f:b0:d5:5d:d1:a8:fa:e1:0e:5a:39:5e:60:1b:c3:d0: 8c:ef:a0:af:79:c4:23:3d:b8:1e:48:65:15:0d:3d:d5:90:2d: 70:7b:cf:4b:db:32:bc:34:1d:2d:73:9c:99:ae:cb:92:89:01: 29:c4:8f:95:4b:75:f3:10:f6:ec:14:8b:4d:de:6f:32:fa:db: 03:24:27:b1:8f:2b:54:ac:c3:6c:cf:ef:f5:f9:23:10:0d:70: 31:f8:58:8a:80:1e:2d:05:df:d4:11:cb:9b:2f:a6:e6:a6:ed: ea:f5:11:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeqoFRIdrgQ931es+LbOveOg6Z70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNTA4MjIyMzA2MjRaFw0yNTA4MjYwNzIxMjRaMDMxMTAvBgNV BAMTKEY0RDExMTYzMDMwNzU1MEJGMzQ5RkQ1QkFDRTA1MUIyQ0ZBODg0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC659k4jVECQaTT7fn4uql4fu0C iTUPdwcvcYnZCvzlbC6gWxKke9aumeRNJdMnX4d7VyEYWL8GeleOcW2iW5b0yZ/j 67vaypKLIzCm7U7bfURGBHd+HvKH7unH7bCWIXVxAdHwCqfmyIpHB+mKhrWJQsJ6 Bo/BGQBmi7A0MwuQd7hFF5G1OTqQqtR3uQamZTr3yWU+GctT/PQuDFIhQvZ7IMXh vn3fD4Rlx8s7A/h5x77g5Nwb1/BKrKMvSEw+8S0JMes2FJoqnCvXfDG2kcixmG9T ACy/ffSr9LjoZwc4Dbvw5OSmR4iIuQEdj5I3+uqtyQjGA7Fwf3YskYMNV5yVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9NERYwMHVQvzSf1brOBRss+ohDgwHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTljZWY4YjAtYmE2NC00YzBjLThk ZTgtMWY1MGE4NWQ1ZmRlLzAvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2 MzhBQTQ5MUM5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG8fbNuVMAvAybRCT0HeDsfgUKaCsxGCGKxc EfWfuJ52zo1V/44KzizK1hyRh+N8LPSCXTLqFND1YmSNjOw3fTIexukjk494DZYl iyap/6vi9AAKYyjS9DtyijhG+EExsfW1CSBl1ALmx1bO99OSH22O884zjmUOZHaL zd6kW02PlYC8TxWB+DoSq+UWbzO35+9oX7DVXdGo+uEOWjleYBvD0IzvoK95xCM9 uB5IZRUNPdWQLXB7z0vbMrw0HS1znJmuy5KJASnEj5VLdfMQ9uwUi03ebzL62wMk J7GPK1Ssw2zP7/X5IxANcDH4WIqAHi0F39QRy5svpuam7er1EQI= -----END CERTIFICATE-----Generated at Sat Aug 23 10:21:55 2025 by rpki-client