$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft File: 9D21366ED4E3738A5F50E524109806C98D710BD3.mft (raw, json) Hash identifier: Jo/lzKT27zz7fg+RASae8qk5keuT6ELPHFsmSqTB/uQ= Subject key identifier: 6E:0B:38:24:FC:9A:AA:15:70:89:EB:A6:8C:39:E1:01:29:D7:8F:1D Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 09A9740FFE56141426A1B5A22BA518124CEA1518 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft Manifest number: AA Signing time: Sat 23 Aug 2025 10:40:00 +0000 Manifest this update: Sat 23 Aug 2025 10:35:00 +0000 Manifest next update: Tue 26 Aug 2025 16:53:00 +0000 Files and hashes: 1: 3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa (hash: Nzl8vY9SfxTMTS+PrIiEnPNs8vGKrloce/myFfDThWk=) 2: 9D21366ED4E3738A5F50E524109806C98D710BD3.crl (hash: a3dm6JACE5p/tf+rLFOCv+ZOA4kXS+IMJrldniybqCY=) 3: 3136302e32352e3131392e302f32342d3234203d3e20313533303936.roa (hash: l9ERQS2lY9vY7cqdtac+IvPm2s0vxFEvQIVHJEks1Zc=) 4: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (hash: TUzFMsEIFjmnDLri6vPKTFWHWFqmADC1pDUr5mNeK+o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a9:74:0f:fe:56:14:14:26:a1:b5:a2:2b:a5:18:12:4c:ea:15:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Aug 23 10:35:00 2025 GMT Not After : Aug 26 16:53:00 2025 GMT Subject: CN=6E0B3824FC9AAA157089EBA68C39E10129D78F1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f7:81:3a:87:c5:37:f1:20:f2:3e:7c:a7:74: 7e:78:80:14:f1:f2:79:05:d4:7d:79:33:b2:e7:ff: 65:dc:02:79:28:4e:b0:8f:65:93:0e:4f:18:25:3d: 2d:95:1f:75:87:b5:9b:f5:47:98:d6:76:bf:0f:bd: d5:4e:7b:e3:ab:16:be:c2:5d:7f:d1:f8:5a:60:4b: b9:d7:1e:68:46:86:51:ed:73:be:65:22:9e:74:e8: ac:e0:eb:5e:0d:fe:82:35:2a:82:7c:be:05:5b:4c: 07:fc:d5:2b:fc:96:e6:b7:25:58:7f:b5:95:b7:c0: 8e:44:26:f2:41:dc:b6:97:73:d5:11:76:4b:47:71: 27:61:69:d2:a2:58:08:8a:88:8a:ac:54:1f:a2:ec: 0f:6a:74:e8:55:7d:5c:79:e2:7f:f8:aa:00:79:e6: d6:ec:ff:4f:93:a9:79:01:1f:27:8e:22:bb:1f:41: bf:ce:6b:35:c1:4f:fc:99:05:95:5e:ab:5d:95:40: fb:df:37:8b:d3:cc:8b:8d:d3:54:0d:93:8a:81:2c: 4d:93:7c:6f:87:a2:2c:8d:00:f6:9f:da:06:70:bd: 05:ca:ad:45:45:02:d6:cd:7e:85:62:75:de:d1:0c: 9b:b2:56:95:57:66:c3:92:4d:48:7e:a5:a2:ad:44: ef:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0B:38:24:FC:9A:AA:15:70:89:EB:A6:8C:39:E1:01:29:D7:8F:1D X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:df:a9:3e:b0:b0:dd:d7:09:e8:36:12:8a:ae:97:3b:02:cb: ff:46:eb:98:77:4a:9b:2e:8a:3d:70:b4:2f:fb:72:74:fe:ea: 7f:02:97:ef:82:65:ad:6d:4f:4a:82:08:9a:59:79:42:ce:f1: f3:67:e8:59:03:44:e1:99:be:3d:d8:33:62:be:56:29:bb:b4: 3d:de:5e:e1:66:36:42:ff:d3:82:fe:a1:1c:10:12:c7:d6:4c: 79:1f:d9:0d:ed:7d:04:18:a2:b7:bf:24:66:c4:67:fb:3d:77: 0c:02:0c:ad:9e:e9:ba:89:00:7c:94:32:ab:fd:bc:f6:9f:71: d6:b3:2a:c0:06:47:39:2b:f9:23:02:f9:e6:45:23:79:fc:6c: c3:cf:2d:cc:41:4e:1c:bf:00:89:14:ff:42:bf:ff:2f:0d:7e: 0c:ee:7b:9d:53:98:86:72:f9:63:80:bc:dc:62:fa:70:78:cc: ae:1d:4a:71:0a:b8:73:23:45:1a:d7:da:9e:05:74:a0:10:bc: 87:b7:69:af:8a:cd:ac:54:97:7e:d1:be:52:5a:bf:d4:b0:19: ed:40:fb:02:04:b3:a7:5f:d7:23:55:76:f6:79:65:17:3c:8d: b3:d9:59:35:a0:5f:dc:b7:02:f1:b3:27:f4:28:c3:84:42:92: ad:f1:68:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCal0D/5WFBQmobWiK6UYEkzqFRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNTA4MjMxMDM1MDBaFw0yNTA4MjYxNjUzMDBaMDMxMTAvBgNV BAMTKDZFMEIzODI0RkM5QUFBMTU3MDg5RUJBNjhDMzlFMTAxMjlENzhGMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv94E6h8U38SDyPnyndH54gBTx 8nkF1H15M7Ln/2XcAnkoTrCPZZMOTxglPS2VH3WHtZv1R5jWdr8PvdVOe+OrFr7C XX/R+FpgS7nXHmhGhlHtc75lIp506Kzg614N/oI1KoJ8vgVbTAf81Sv8lua3JVh/ tZW3wI5EJvJB3LaXc9URdktHcSdhadKiWAiKiIqsVB+i7A9qdOhVfVx54n/4qgB5 5tbs/0+TqXkBHyeOIrsfQb/OazXBT/yZBZVeq12VQPvfN4vTzIuN01QNk4qBLE2T fG+HoiyNAPaf2gZwvQXKrUVFAtbNfoVidd7RDJuyVpVXZsOSTUh+paKtRO+/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbgs4JPyaqhVwieumjDnhASnXjx0wHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjFlNDQ2NjUtZTg0Ni00NTViLWFh MWEtZDVhYjA3ZGVlZGYzLzAvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2 Qzk4RDcxMEJEMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGffqT6wsN3XCeg2EoqulzsCy/9G65h3Spsu ij1wtC/7cnT+6n8Cl++CZa1tT0qCCJpZeULO8fNn6FkDROGZvj3YM2K+Vim7tD3e XuFmNkL/04L+oRwQEsfWTHkf2Q3tfQQYore/JGbEZ/s9dwwCDK2e6bqJAHyUMqv9 vPafcdazKsAGRzkr+SMC+eZFI3n8bMPPLcxBThy/AIkU/0K//y8Nfgzue51TmIZy +WOAvNxi+nB4zK4dSnEKuHMjRRrX2p4FdKAQvIe3aa+KzaxUl37RvlJav9SwGe1A +wIEs6df1yNVdvZ5ZRc8jbPZWTWgX9y3AvGzJ/Qow4RCkq3xaOg= -----END CERTIFICATE-----Generated at Sun Aug 24 00:35:08 2025 by rpki-client