$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: RgYyIzk106DoTa38WMS58PUf+Mvwg8sRrGBtzzX8VwY= Subject key identifier: B2:94:62:58:BB:81:EF:7A:63:93:F6:F9:BE:E8:94:F5:2D:AA:E8:1D Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 3C35A997F2BBB265DF8F55FE9DC04270269F1AE7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0235 Signing time: Fri 22 Aug 2025 01:01:08 +0000 Manifest this update: Fri 22 Aug 2025 00:56:08 +0000 Manifest next update: Mon 25 Aug 2025 07:25:08 +0000 Files and hashes: 1: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) 2: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 3: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) 4: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: qqwSChHmT9XKWjeP0CuPNW7r//AEM0X6zpZFz1gU6fA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:25:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:35:a9:97:f2:bb:b2:65:df:8f:55:fe:9d:c0:42:70:26:9f:1a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Aug 22 00:56:08 2025 GMT Not After : Aug 25 07:25:08 2025 GMT Subject: CN=B2946258BB81EF7A6393F6F9BEE894F52DAAE81D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:70:bb:41:71:fa:6e:e3:90:99:98:a9:dd:f2: f8:5a:54:41:cc:14:aa:99:ad:c0:5f:a0:2e:7c:12: c7:c1:b2:21:bb:dc:b2:0e:52:d6:b9:3a:00:ea:a1: 97:8a:79:3e:b8:7f:fe:86:d8:55:bf:bc:b7:47:dc: 34:9e:c3:0e:7b:35:d3:54:bd:bb:d1:c1:7d:63:92: f7:2d:73:1e:99:b9:37:e0:91:00:52:61:7b:2c:a0: 2d:5e:20:4f:10:b7:51:ee:8a:68:23:62:ca:52:04: cc:8e:1b:f1:7a:eb:fa:1d:69:75:2f:af:4f:73:9b: a1:62:6d:cd:51:e2:0d:a7:72:cf:15:3a:45:7a:bb: d3:a0:9c:be:0e:f7:1a:99:26:f7:31:6f:bb:01:32: 5c:1a:70:6c:5f:2a:71:19:e1:d3:fc:d5:ad:cf:54: 9e:b9:0c:87:d4:24:11:77:f3:e7:af:fb:f3:af:77: 03:8d:3b:36:a4:32:bc:c8:b5:83:21:0b:20:23:8c: a0:9d:79:23:9d:0e:6d:97:4c:62:ad:8f:3f:fb:94: 8e:b2:70:0e:66:ef:50:13:4b:3c:6a:9a:50:ca:cd: 97:a4:eb:f8:c3:dc:83:5b:24:14:37:b6:ed:bf:71: 17:44:84:5c:f7:57:68:30:07:d0:ff:6b:c5:90:db: 49:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:94:62:58:BB:81:EF:7A:63:93:F6:F9:BE:E8:94:F5:2D:AA:E8:1D X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:14:8b:d3:e5:04:d0:22:54:f3:b4:d3:c1:1f:78:fd:a1:87: 7e:a3:c8:b1:42:57:e9:3a:8a:8b:b2:da:86:87:79:c0:89:35: c8:78:58:9e:be:47:4e:78:dd:2c:cb:8a:96:4b:07:f7:a8:9e: 3f:e7:54:77:96:be:43:34:6e:27:91:5a:69:f7:ed:39:c4:2d: eb:4a:e0:61:aa:f9:73:14:4d:f6:64:93:5f:e8:d2:93:86:c3: a2:71:4b:37:46:0c:0c:c6:f3:2f:1b:d1:fb:e7:a1:55:80:33: d4:46:c2:7d:f8:e1:08:db:fa:7f:db:fa:d2:50:14:cc:97:66: 45:36:a9:c0:42:9f:96:f8:95:ee:d8:cf:d1:38:0a:7a:09:c8: 22:47:5d:81:eb:ef:3b:3c:fc:41:03:89:4a:e0:3f:00:04:66: db:ea:73:eb:2d:d3:4f:43:8b:9f:4a:e0:83:ef:40:e2:cd:0b: 5d:ee:1b:b5:7e:34:aa:5a:fc:65:3d:aa:4d:60:b4:bf:91:dd: 91:d8:e0:e5:5b:e3:64:91:a4:bb:1b:bf:75:52:29:9a:4d:85: db:b5:8a:2b:c6:ab:53:50:33:4f:a1:26:18:ed:e1:76:9c:ee: c9:62:f4:33:90:10:09:f2:99:b8:e9:11:5c:e2:9f:97:3a:e4: 72:ae:ce:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPDWpl/K7smXfj1X+ncBCcCafGucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTA4MjIwMDU2MDhaFw0yNTA4MjUwNzI1MDhaMDMxMTAvBgNV BAMTKEIyOTQ2MjU4QkI4MUVGN0E2MzkzRjZGOUJFRTg5NEY1MkRBQUU4MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYcLtBcfpu45CZmKnd8vhaVEHM FKqZrcBfoC58EsfBsiG73LIOUta5OgDqoZeKeT64f/6G2FW/vLdH3DSeww57NdNU vbvRwX1jkvctcx6ZuTfgkQBSYXssoC1eIE8Qt1HuimgjYspSBMyOG/F66/odaXUv r09zm6Fibc1R4g2ncs8VOkV6u9OgnL4O9xqZJvcxb7sBMlwacGxfKnEZ4dP81a3P VJ65DIfUJBF38+ev+/OvdwONOzakMrzItYMhCyAjjKCdeSOdDm2XTGKtjz/7lI6y cA5m71ATSzxqmlDKzZek6/jD3INbJBQ3tu2/cRdEhFz3V2gwB9D/a8WQ20mDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUspRiWLuB73pjk/b5vuiU9S2q6B0wHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEgUi9PlBNAiVPO008EfeP2hh36jyLFCV+k6 iouy2oaHecCJNch4WJ6+R0543SzLipZLB/eonj/nVHeWvkM0bieRWmn37TnELetK 4GGq+XMUTfZkk1/o0pOGw6JxSzdGDAzG8y8b0fvnoVWAM9RGwn344Qjb+n/b+tJQ FMyXZkU2qcBCn5b4le7Yz9E4CnoJyCJHXYHr7zs8/EEDiUrgPwAEZtvqc+st009D i59K4IPvQOLNC13uG7V+NKpa/GU9qk1gtL+R3ZHY4OVb42SRpLsbv3VSKZpNhdu1 iivGq1NQM0+hJhjt4Xac7sli9DOQEAnymbjpEVzin5c65HKuzhY= -----END CERTIFICATE-----Generated at Sat Aug 23 19:32:48 2025 by rpki-client