$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: jU6fkClBnKGpLrIG4FCvdTBI3hM5Q342aa9BTX50L3k= Subject key identifier: 0C:79:0F:8B:5E:D3:90:A6:43:A1:A5:41:D8:B6:DE:26:7E:18:E5:C6 Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 59589045A8B034A8A797C4CC74993F60D974E7F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 022D Signing time: Fri 22 Aug 2025 16:52:00 +0000 Manifest this update: Fri 22 Aug 2025 16:47:00 +0000 Manifest next update: Mon 25 Aug 2025 22:06:00 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: oPNJ3N+Z1GO59e6AJ3xrsYkfgcLtynSD6aZClS4yWcM=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: Ytn4J3L//ntkx3dIdir2Ut4ptmhaS3TkbsBspKupuTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 22:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:58:90:45:a8:b0:34:a8:a7:97:c4:cc:74:99:3f:60:d9:74:e7:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Aug 22 16:47:00 2025 GMT Not After : Aug 25 22:06:00 2025 GMT Subject: CN=0C790F8B5ED390A643A1A541D8B6DE267E18E5C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:65:ee:01:db:5d:97:71:b3:d3:cb:c2:d3:f8: f3:b2:b2:b6:a3:48:e0:a0:25:22:f4:ca:d5:d6:f0: 82:96:30:87:72:19:ae:b3:0a:34:86:91:d7:f9:28: 29:65:a6:5c:37:25:ca:0a:6d:cb:cb:df:04:4d:c8: 42:63:94:27:e7:ab:27:1f:12:4e:df:95:03:df:7a: f2:bc:4c:56:32:fa:ee:0a:a1:27:6a:a1:25:56:e4: 2e:dd:81:68:58:93:75:df:93:9b:87:04:7a:d5:eb: 16:8d:c6:3c:a7:e8:80:2d:b7:e9:87:33:85:8c:e6: 37:9a:ec:5c:7d:38:b8:f2:1a:15:f8:47:a0:71:a4: 34:43:f8:db:ac:44:7b:a7:f8:cd:1e:ea:48:53:06: 50:34:be:91:8b:72:ec:05:ee:f9:f7:63:43:c7:34: aa:1f:c5:a6:d0:40:59:0f:85:25:ab:61:65:e7:2d: ca:18:e5:22:54:9e:9a:c1:93:f9:d5:44:fa:ba:06: b5:cc:91:7c:99:60:a4:35:f4:c1:77:ea:3b:3b:8c: 32:75:d3:6c:c6:bd:3e:f7:70:55:b9:17:ff:d5:a2: 1a:fc:ed:12:fc:b4:f6:f6:37:13:c8:a9:00:ba:89: c7:7e:6f:5c:42:15:9c:a1:91:6c:1f:87:22:c7:68: 8b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:79:0F:8B:5E:D3:90:A6:43:A1:A5:41:D8:B6:DE:26:7E:18:E5:C6 X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d6:a0:4b:ce:a6:4b:e2:5f:5b:53:41:38:bf:f0:b0:3b:5b:d7: 9f:61:d6:8c:b5:47:e9:cb:53:9a:24:cf:13:c7:db:6d:d5:c3: 45:66:13:9e:be:9a:70:b6:7d:38:3b:a6:bc:82:52:c6:b6:4d: c3:ec:3a:71:28:6f:9d:26:db:bc:23:db:ef:7a:92:c4:31:fd: e1:fe:c3:86:13:d7:5d:24:9e:ae:b7:57:2b:b3:64:ee:c5:b3: 7c:07:0f:c9:45:1b:de:c4:57:64:5c:4f:96:8b:49:e1:52:a6: e5:f7:fa:3e:8b:4f:f1:1f:97:9d:c3:ac:6d:36:cb:ae:79:b2: c6:d1:a4:e2:4c:1b:02:00:cf:ce:e9:a2:ca:84:10:b9:3d:cc: 03:95:f3:c8:bd:29:c3:54:1f:29:5f:30:0f:b3:d7:0f:b0:35: a7:7f:06:26:84:2a:01:d8:8b:f3:28:96:3c:f8:4a:d3:ba:ef: ce:c6:8a:87:f3:54:c3:c3:82:00:ae:99:d9:71:b6:4b:d5:1d: ed:96:40:bf:71:43:80:7e:58:0b:11:f6:5a:58:44:50:d5:ae: cf:f9:c9:bc:41:5d:99:00:7f:bc:d8:61:b4:1d:2c:4c:bf:6d: 56:e3:f3:74:2d:98:97:a4:56:4a:97:e3:ef:ad:5e:60:7d:fd: 12:e0:3b:94 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWViQRaiwNKinl8TMdJk/YNl05/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNTA4MjIxNjQ3MDBaFw0yNTA4MjUyMjA2MDBaMDMxMTAvBgNV BAMTKDBDNzkwRjhCNUVEMzkwQTY0M0ExQTU0MUQ4QjZERTI2N0UxOEU1QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2Ze4B212XcbPTy8LT+POysraj SOCgJSL0ytXW8IKWMIdyGa6zCjSGkdf5KCllplw3JcoKbcvL3wRNyEJjlCfnqycf Ek7flQPfevK8TFYy+u4KoSdqoSVW5C7dgWhYk3Xfk5uHBHrV6xaNxjyn6IAtt+mH M4WM5jea7Fx9OLjyGhX4R6BxpDRD+NusRHun+M0e6khTBlA0vpGLcuwF7vn3Y0PH NKofxabQQFkPhSWrYWXnLcoY5SJUnprBk/nVRPq6BrXMkXyZYKQ19MF36js7jDJ1 02zGvT73cFW5F//Vohr87RL8tPb2NxPIqQC6icd+b1xCFZyhkWwfhyLHaIvlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDHkPi17TkKZDoaVB2LbeJn4Y5cYwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANagS86mS+JfW1NBOL/wsDtb159h1oy1R+nL U5okzxPH223Vw0VmE56+mnC2fTg7pryCUsa2TcPsOnEob50m27wj2+96ksQx/eH+ w4YT110knq63VyuzZO7Fs3wHD8lFG97EV2RcT5aLSeFSpuX3+j6LT/Efl53DrG02 y655ssbRpOJMGwIAz87posqEELk9zAOV88i9KcNUHylfMA+z1w+wNad/BiaEKgHY i/Moljz4StO6787GiofzVMPDggCumdlxtkvVHe2WQL9xQ4B+WAsR9lpYRFDVrs/5 ybxBXZkAf7zYYbQdLEy/bVbj83QtmJekVkqX4++tXmB9/RLgO5Q= -----END CERTIFICATE-----Generated at Sat Aug 23 22:43:33 2025 by rpki-client