$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: S2mDfQOW6DnItK5Wiao5/tfJNwNNAc63Nsf+/abBLt0= Subject key identifier: FD:6A:36:DD:8D:11:EC:B3:F3:7D:DA:60:13:57:6B:6F:2D:D5:B8:1D Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 3A4705981903ECEF5D025603990A6FFB065FA520 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 01C6 Signing time: Fri 22 Aug 2025 05:01:03 +0000 Manifest this update: Fri 22 Aug 2025 04:56:03 +0000 Manifest next update: Mon 25 Aug 2025 07:34:03 +0000 Files and hashes: 1: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: gH09ei1y79Hf0ZCmIvXHSVHD8kQq8ZmGnBuW1uN2kSc=) 2: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: EQbr12ySqIrNTM9njp7Wb0XN8yJtB1BDEx2u9gpZun8=) 3: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: OjD7igAi8uIoux+rVxGtZEh2dpv8xELOea0gwWs5+6I=) 4: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: sm8jeStS9mRgsrGl5CeRQ6sBSscm5f2rHE/KQpXoWj8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:47:05:98:19:03:ec:ef:5d:02:56:03:99:0a:6f:fb:06:5f:a5:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Aug 22 04:56:03 2025 GMT Not After : Aug 25 07:34:03 2025 GMT Subject: CN=FD6A36DD8D11ECB3F37DDA6013576B6F2DD5B81D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:76:a2:5a:12:cc:d1:ff:39:0e:5b:29:ac:73: e1:05:fb:ca:a8:c2:ba:1e:a8:58:8e:e1:1c:cb:69: d5:19:2b:68:40:49:48:c1:56:39:eb:2f:6f:0a:dd: be:a0:3a:e8:5c:ea:06:67:16:30:5c:4d:e1:6c:b6: 10:3d:9b:fb:35:32:8e:96:3d:58:0f:f4:60:77:80: f4:b8:8b:a3:8a:f5:4c:11:bb:35:88:ca:cd:5c:ad: b0:be:cb:76:44:19:87:a1:37:2a:3b:3a:86:11:d5: ff:cc:0f:75:ba:08:85:dd:e4:08:65:e0:41:e7:10: 6d:5d:39:67:57:0f:12:3f:97:03:bf:81:95:ce:4e: 05:67:9f:48:f9:4f:d6:3f:7e:8a:89:fb:e8:31:09: cd:af:81:89:dd:c3:fc:c7:c1:4c:d9:1c:eb:55:d7: 45:cd:a9:a0:10:00:09:fa:92:d1:0e:86:2f:0d:36: 3d:41:b6:7a:74:dc:0a:10:64:eb:5e:e4:a0:05:97: 33:1d:32:64:00:9b:b5:23:82:f1:57:50:2c:96:88: 75:64:47:86:79:8f:cb:c6:47:66:8e:b7:83:6a:d4: 6c:e5:ea:0c:d0:12:3b:f7:ef:14:2a:ae:15:8e:9f: f5:74:d3:82:b1:98:d0:80:6f:cf:f2:e0:37:75:b4: 6d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6A:36:DD:8D:11:EC:B3:F3:7D:DA:60:13:57:6B:6F:2D:D5:B8:1D X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ee:11:6d:28:c4:3b:1b:68:4e:48:b3:90:dd:d7:a3:09:58: 28:09:b8:fe:38:cd:a1:ab:14:f5:77:11:de:c4:fd:33:a2:14: 31:bc:b4:74:03:39:ba:a8:2e:c9:f4:fc:c3:5c:11:7e:a4:a1: a2:a1:36:96:4d:03:fa:72:70:fc:d0:b3:db:61:3e:f3:97:0e: e1:bf:32:83:ef:0c:fa:7d:4c:d6:f0:e4:08:fe:61:bc:c6:cf: 12:50:86:1c:bc:f3:ef:0f:35:35:5c:13:9f:7e:17:1d:ec:1e: 74:09:ff:5a:1c:90:7a:b6:18:18:eb:77:b3:c4:c8:8f:f3:f1: b8:2f:63:54:48:e5:de:6f:81:3b:28:16:f4:b1:d5:b2:d4:65: ee:ff:54:70:e0:4d:0b:9c:b2:07:d1:ec:5e:80:ba:79:db:39: 7d:7a:df:a5:be:4f:30:ef:ad:22:f7:18:68:e8:b7:ae:be:1a: 3a:77:08:96:90:14:cc:fe:2c:97:7c:ad:c9:d3:30:35:b1:92: 78:59:ba:02:cd:ab:3a:45:eb:27:de:df:d3:81:f8:18:ac:1c: 8f:52:32:ee:64:a1:7e:ec:2e:a5:75:0a:8e:bb:5f:30:a1:95: fb:de:83:11:f7:bd:bc:e5:42:25:9d:8f:11:db:e0:59:0b:4e: 03:61:11:b5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOkcFmBkD7O9dAlYDmQpv+wZfpSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNTA4MjIwNDU2MDNaFw0yNTA4MjUwNzM0MDNaMDMxMTAvBgNV BAMTKEZENkEzNkREOEQxMUVDQjNGMzdEREE2MDEzNTc2QjZGMkRENUI4MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9dqJaEszR/zkOWymsc+EF+8qo wroeqFiO4RzLadUZK2hASUjBVjnrL28K3b6gOuhc6gZnFjBcTeFsthA9m/s1Mo6W PVgP9GB3gPS4i6OK9UwRuzWIys1crbC+y3ZEGYehNyo7OoYR1f/MD3W6CIXd5Ahl 4EHnEG1dOWdXDxI/lwO/gZXOTgVnn0j5T9Y/foqJ++gxCc2vgYndw/zHwUzZHOtV 10XNqaAQAAn6ktEOhi8NNj1Btnp03AoQZOte5KAFlzMdMmQAm7UjgvFXUCyWiHVk R4Z5j8vGR2aOt4Nq1Gzl6gzQEjv37xQqrhWOn/V004KxmNCAb8/y4Dd1tG0hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/Wo23Y0R7LPzfdpgE1drby3VuB0wHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH3uEW0oxDsbaE5Is5Dd16MJWCgJuP44zaGr FPV3Ed7E/TOiFDG8tHQDObqoLsn0/MNcEX6koaKhNpZNA/pycPzQs9thPvOXDuG/ MoPvDPp9TNbw5Aj+YbzGzxJQhhy88+8PNTVcE59+Fx3sHnQJ/1ockHq2GBjrd7PE yI/z8bgvY1RI5d5vgTsoFvSx1bLUZe7/VHDgTQucsgfR7F6AunnbOX1636W+TzDv rSL3GGjot66+Gjp3CJaQFMz+LJd8rcnTMDWxknhZugLNqzpF6yfe39OB+BisHI9S Mu5koX7sLqV1Co67XzChlfvegxH3vbzlQiWdjxHb4FkLTgNhEbU= -----END CERTIFICATE-----Generated at Sat Aug 23 15:29:21 2025 by rpki-client