$ rpki-client -vvf repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft File: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft (raw, json) Hash identifier: bp9BlViNp6Fbt8tYrKRW8+gYgMmLK+jRU80FF/y/igQ= Subject key identifier: 98:99:A1:A4:B7:C2:A7:5D:13:27:7A:12:72:E0:CF:09:EC:52:3F:76 Authority key identifier: 3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 Certificate issuer: /CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Certificate serial: 2DD1C0442617721CF82DFF83F5FF381EC6496AFF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft Manifest number: 0204 Signing time: Fri 22 Aug 2025 20:51:58 +0000 Manifest this update: Fri 22 Aug 2025 20:46:58 +0000 Manifest next update: Tue 26 Aug 2025 07:12:58 +0000 Files and hashes: 1: 3130332e3139302e36302e302f32332d3233203d3e20313439393031.roa (hash: 51ekgtNLYDLFINvFYDj/N8stn5dpVipAbdc9vPbRQ7I=) 2: 3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa (hash: TsTDpWhEe0S4QbX7Nvx05CapjsmJk1el8Dy5qKfw9Z4=) 3: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl (hash: Gu0vJAl2PDFmB2jhlI+vF4bSu2ptnA2zG4zCNIpR7yA=) 4: 3130332e3139302e36312e302f32342d3234203d3e20313439393031.roa (hash: Ykg6X7TmWGcN3xNxQzs8nCjH8QlPm6F3Uq9zQ4bEBTI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d1:c0:44:26:17:72:1c:f8:2d:ff:83:f5:ff:38:1e:c6:49:6a:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Validity Not Before: Aug 22 20:46:58 2025 GMT Not After : Aug 26 07:12:58 2025 GMT Subject: CN=9899A1A4B7C2A75D13277A1272E0CF09EC523F76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:d1:f5:83:d2:dd:38:97:72:40:6e:43:ad:d6: 09:17:2b:a1:5b:72:0d:cf:1a:21:c7:d6:54:25:0e: 51:90:5d:a6:f0:c0:08:21:b4:cc:95:e2:eb:28:06: 2f:26:13:25:80:37:6f:1c:81:e0:7a:fa:64:ae:e1: ab:f2:2f:11:f8:83:14:d7:c8:42:21:c1:07:ee:ea: 6c:e3:fc:1a:97:4b:83:ca:f7:77:aa:8e:e0:3e:a9: c2:9d:df:52:8d:14:6d:e9:24:08:52:cb:14:72:fa: 03:45:53:8e:e5:6a:20:4d:7f:cb:9f:95:59:fe:ac: 60:d1:e8:80:ed:47:ad:ae:d9:0b:c9:5e:38:0f:e0: b7:2e:d6:c9:d8:f0:68:07:c8:d1:f9:12:3f:de:28: 41:11:c6:38:74:88:49:f9:fd:92:94:1e:e8:71:1d: 41:0f:4f:fd:7e:3a:c9:9f:56:f1:a2:7b:9c:84:b9: 1c:5f:cb:a9:d2:dd:c1:8d:3e:86:56:f3:2f:47:18: 0d:d9:f3:19:36:19:b2:23:da:bd:fa:75:49:a0:4c: 7c:6d:9a:c0:e7:18:ae:6b:8b:6b:c9:ef:c5:51:e3: 78:c9:af:aa:f3:9f:72:8d:cd:f7:67:b8:f8:66:35: de:a6:af:9e:21:db:c4:ca:09:30:fb:f9:13:8a:38: 86:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:99:A1:A4:B7:C2:A7:5D:13:27:7A:12:72:E0:CF:09:EC:52:3F:76 X509v3 Authority Key Identifier: keyid:3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ef:6c:40:65:31:44:75:0f:e1:ce:77:cf:0a:3a:6c:f7:0b: 0d:60:79:5c:23:e0:8b:66:c9:15:21:a4:94:bf:67:ed:d1:98: a5:7b:5b:2f:17:4d:b1:1e:4a:24:a1:f4:cf:6c:d9:21:e9:70: 0e:2a:14:a4:1b:f5:16:71:78:f7:bb:23:d0:15:50:c0:06:e9: 72:74:98:d4:f5:5e:25:93:91:0f:ed:21:5f:b1:1d:b3:3c:3d: 83:78:30:e2:7d:c3:bc:b8:4e:41:c7:dd:d1:e8:94:cc:7a:5e: 0c:b9:4e:30:49:f5:9d:e3:fd:be:33:e1:d1:78:d5:97:b4:c0: df:9a:27:0e:ff:0d:e9:4d:69:4a:6e:7d:e2:a5:30:88:26:ce: 37:c4:b7:9c:fc:08:a9:37:12:15:6b:68:b3:c1:0b:3b:4b:dc: 8f:09:59:8a:dc:93:64:6b:38:82:7b:d5:02:d3:59:52:76:45: 51:7d:0f:56:f7:42:c1:44:f8:9f:4f:d5:80:38:1d:43:c7:fb: 12:c7:cf:be:77:e9:11:ea:cd:23:89:07:d2:2e:93:1c:17:bc: 76:9d:0d:d6:07:f6:b3:28:8d:da:61:32:13:da:e8:01:cd:7d: ed:69:76:16:27:e3:d2:0b:8a:aa:58:c4:70:66:bd:c8:85:bf: 07:f9:48:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULdHARCYXchz4Lf+D9f84HsZJav8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAy MkNCREVFOTAeFw0yNTA4MjIyMDQ2NThaFw0yNTA4MjYwNzEyNThaMDMxMTAvBgNV BAMTKDk4OTlBMUE0QjdDMkE3NUQxMzI3N0ExMjcyRTBDRjA5RUM1MjNGNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD80fWD0t04l3JAbkOt1gkXK6Fb cg3PGiHH1lQlDlGQXabwwAghtMyV4usoBi8mEyWAN28cgeB6+mSu4avyLxH4gxTX yEIhwQfu6mzj/BqXS4PK93eqjuA+qcKd31KNFG3pJAhSyxRy+gNFU47laiBNf8uf lVn+rGDR6IDtR62u2QvJXjgP4Lcu1snY8GgHyNH5Ej/eKEERxjh0iEn5/ZKUHuhx HUEPT/1+OsmfVvGie5yEuRxfy6nS3cGNPoZW8y9HGA3Z8xk2GbIj2r36dUmgTHxt msDnGK5ri2vJ78VR43jJr6rzn3KNzfdnuPhmNd6mr54h28TKCTD7+ROKOIYpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmJmhpLfCp10TJ3oScuDPCexSP3YwHwYDVR0j BBgwFoAUO6XBAZCtyW7jTrSm0FRFcCLL3ukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTMxNDg1OC1iMzNhLTRiNjUtOWE1NS1kY2U0MWUyMjM4NzMvMC8zQkE1QzEwMTkw QURDOTZFRTM0RUI0QTZEMDU0NDU3MDIyQ0JERUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAyMkNC REVFOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWUzMTQ4NTgtYjMzYS00YjY1LTlh NTUtZGNlNDFlMjIzODczLzAvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1 NzAyMkNCREVFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFDvbEBlMUR1D+HOd88KOmz3Cw1geVwj4Itm yRUhpJS/Z+3RmKV7Wy8XTbEeSiSh9M9s2SHpcA4qFKQb9RZxePe7I9AVUMAG6XJ0 mNT1XiWTkQ/tIV+xHbM8PYN4MOJ9w7y4TkHH3dHolMx6Xgy5TjBJ9Z3j/b4z4dF4 1Ze0wN+aJw7/DelNaUpufeKlMIgmzjfEt5z8CKk3EhVraLPBCztL3I8JWYrck2Rr OIJ71QLTWVJ2RVF9D1b3QsFE+J9P1YA4HUPH+xLHz7536RHqzSOJB9IukxwXvHad DdYH9rMojdphMhPa6AHNfe1pdhYn49ILiqpYxHBmvciFvwf5SKU= -----END CERTIFICATE-----Generated at Sat Aug 23 10:19:21 2025 by rpki-client