$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft File: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft (raw, json) Hash identifier: uRoITiLsY5B7F/hwISutnWpgBRolULJsrX4lf/R1Bus= Subject key identifier: A8:FA:2E:1C:D7:9F:7D:B8:C1:24:15:56:7B:F1:B6:14:6A:EF:3E:1C Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 01ECF99BB536DE60BCE3985845A51964C725D291 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft Manifest number: 01D4 Signing time: Sat 23 Aug 2025 02:31:22 +0000 Manifest this update: Sat 23 Aug 2025 02:26:22 +0000 Manifest next update: Tue 26 Aug 2025 03:18:22 +0000 Files and hashes: 1: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl (hash: RJ1mQa0CSrqJ8d9ehImIY5zErtfvYeGoSOjpf82RBqs=) 2: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (hash: Hm8P4hacYfkZNd8sZfNbLj4+ngt9DzF5s+/x8t3BFqA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 03:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ec:f9:9b:b5:36:de:60:bc:e3:98:58:45:a5:19:64:c7:25:d2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: Aug 23 02:26:22 2025 GMT Not After : Aug 26 03:18:22 2025 GMT Subject: CN=A8FA2E1CD79F7DB8C12415567BF1B6146AEF3E1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:7c:ef:ce:60:ed:71:6d:22:6c:87:fd:bc:44: 66:85:10:45:dd:ab:d4:d9:02:6c:f3:c4:df:8c:cd: 18:44:fd:66:fc:73:69:92:e5:d1:4d:15:58:81:d3: 4f:6d:d5:18:a5:fb:87:7a:42:3f:68:2c:4f:cb:3f: 25:4f:f1:ba:b2:11:cc:f5:c3:61:f4:8e:da:df:ff: be:af:92:37:e0:24:c7:92:ab:c3:75:18:1d:b9:d5: 39:cd:4e:b8:b4:b4:2e:5a:d5:58:55:ba:63:d8:93: 88:04:5f:0e:bf:5c:b4:5b:3b:a7:69:9f:dc:e7:04: b0:63:f6:48:6c:76:be:33:81:2f:ec:4d:25:0e:66: 0c:87:13:30:7e:d7:cf:8a:62:1a:d4:e1:70:99:2d: 55:e0:93:d2:91:89:3e:f2:8d:4e:7d:e1:2b:02:c6: 32:e4:92:bd:d3:6f:dd:c3:1d:ad:c0:50:8c:12:8a: 9e:c4:82:2f:af:b1:a0:c5:65:97:fc:9a:ca:2c:7a: 08:5a:cd:58:92:ee:b8:28:9d:05:3d:10:f3:1e:81: c6:cf:84:4c:f7:f2:0f:b6:d7:aa:c1:e0:e4:53:6e: 87:42:3a:f0:68:7e:4c:cf:af:40:77:60:93:72:47: 3d:a5:4b:06:34:87:db:e1:69:54:69:12:91:c4:2f: 22:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:FA:2E:1C:D7:9F:7D:B8:C1:24:15:56:7B:F1:B6:14:6A:EF:3E:1C X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:a2:6e:f1:35:c9:fe:25:2a:7a:d9:1f:80:52:65:a3:06:fe: e3:bb:4f:dc:47:fe:f0:96:14:3b:eb:c7:83:4f:77:17:cd:95: 0c:f5:63:a7:fe:0b:43:b6:6c:9a:bc:0a:9e:ab:4c:96:68:58: 44:5e:b6:d9:0f:a4:04:a1:e3:da:0c:88:19:e5:ae:d4:1b:8b: 2c:37:d3:d6:02:64:16:aa:a8:8e:0d:c7:2c:64:6b:e9:06:82: 0a:71:f4:53:ab:f5:20:49:c2:61:cd:7c:eb:e8:1c:40:28:81: f7:25:f0:a2:d1:19:27:59:81:2c:77:53:af:d9:75:f1:5b:75: 32:9b:3c:b6:a1:aa:a7:2f:2e:e0:42:f2:7d:39:65:68:a3:b3: 85:72:32:50:65:97:51:80:7e:8c:5f:3d:65:5c:40:63:ad:cb: 54:26:7b:dc:9c:d3:e4:27:99:0a:00:8a:b0:12:ac:c0:e9:10: 77:ff:67:3e:26:89:ed:dc:82:cf:17:bc:46:c9:c5:b9:1a:25: 90:4b:86:14:c6:7b:24:2a:43:c9:9e:d5:26:21:98:f3:8a:fa: 67:04:6e:dc:6e:40:ba:8d:cc:61:4a:58:e6:50:38:2b:f9:85: f8:c2:9c:48:70:ec:d3:c8:b0:43:b6:33:02:fc:1b:1e:30:0c: da:79:e1:86 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAez5m7U23mC845hYRaUZZMcl0pEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNTA4MjMwMjI2MjJaFw0yNTA4MjYwMzE4MjJaMDMxMTAvBgNV BAMTKEE4RkEyRTFDRDc5RjdEQjhDMTI0MTU1NjdCRjFCNjE0NkFFRjNFMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5fO/OYO1xbSJsh/28RGaFEEXd q9TZAmzzxN+MzRhE/Wb8c2mS5dFNFViB009t1Ril+4d6Qj9oLE/LPyVP8bqyEcz1 w2H0jtrf/76vkjfgJMeSq8N1GB251TnNTri0tC5a1VhVumPYk4gEXw6/XLRbO6dp n9znBLBj9khsdr4zgS/sTSUOZgyHEzB+18+KYhrU4XCZLVXgk9KRiT7yjU594SsC xjLkkr3Tb93DHa3AUIwSip7Egi+vsaDFZZf8msoseghazViS7rgonQU9EPMegcbP hEz38g+216rB4ORTbodCOvBofkzPr0B3YJNyRz2lSwY0h9vhaVRpEpHELyILAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqPouHNeffbjBJBVWe/G2FGrvPhwwHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVmODQyNzgtZTA2ZC00MTE5LWJh NDQtNWMzMjk2OGE4YmJkLzAvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2 MDE3RkIwQ0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMOibvE1yf4lKnrZH4BSZaMG/uO7T9xH/vCW FDvrx4NPdxfNlQz1Y6f+C0O2bJq8Cp6rTJZoWERettkPpASh49oMiBnlrtQbiyw3 09YCZBaqqI4Nxyxka+kGggpx9FOr9SBJwmHNfOvoHEAogfcl8KLRGSdZgSx3U6/Z dfFbdTKbPLahqqcvLuBC8n05ZWijs4VyMlBll1GAfoxfPWVcQGOty1Qme9yc0+Qn mQoAirASrMDpEHf/Zz4mie3cgs8XvEbJxbkaJZBLhhTGeyQqQ8me1SYhmPOK+mcE btxuQLqNzGFKWOZQOCv5hfjCnEhw7NPIsEO2MwL8Gx4wDNp54YY= -----END CERTIFICATE-----Generated at Sat Aug 23 12:40:22 2025 by rpki-client