$ rpki-client -vvf repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft File: D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft (raw, json) Hash identifier: Vbd/qBhJOnrJ6edAy0ady8A4aY6Na4zbs73p/y2JS6I= Subject key identifier: 29:A6:59:C3:C2:7F:C9:89:2E:C6:47:6F:5D:08:22:40:FC:4F:E8:93 Authority key identifier: D3:B0:DD:BB:8E:07:FC:D9:8A:39:9C:90:C5:B3:FC:32:B4:FA:28:F0 Certificate issuer: /CN=D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0 Certificate serial: 1701FB5CD32CA4CBAE83FA59A612F2DC39F86030 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft Manifest number: 7F Signing time: Thu 21 Aug 2025 12:50:02 +0000 Manifest this update: Thu 21 Aug 2025 12:45:02 +0000 Manifest next update: Sun 24 Aug 2025 22:40:02 +0000 Files and hashes: 1: D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl (hash: dDcH819+6K36jkK1k6N1RVPW//hnnMhtWsCdE+WIU54=) 2: 3136302e32322e3138372e302f32342d3234203d3e20313532383233.roa (hash: cvyj6LKtTOVBTWTHZighgw+CFWQteArr8dC6m6wOVeI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:01:fb:5c:d3:2c:a4:cb:ae:83:fa:59:a6:12:f2:dc:39:f8:60:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0 Validity Not Before: Aug 21 12:45:02 2025 GMT Not After : Aug 24 22:40:02 2025 GMT Subject: CN=29A659C3C27FC9892EC6476F5D082240FC4FE893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:40:6f:ad:c7:91:e0:7b:59:d7:8c:aa:57:90: c0:6d:bb:a6:7c:6c:86:66:1d:19:c3:bf:f7:7d:8a: e8:af:46:67:29:a7:57:69:7c:f5:9e:aa:fa:99:cc: de:3e:22:3c:3a:f4:c9:30:e7:2b:33:77:32:8d:61: ca:bc:f9:fd:25:10:04:5f:f9:0a:62:75:ed:b2:51: 7c:84:f3:2a:dd:ce:e2:63:64:ee:03:62:c0:9c:cc: a2:de:99:8f:a0:34:6f:dc:04:95:be:8f:e4:d8:98: d3:66:2f:e9:ec:36:2f:23:4f:a5:2c:95:fd:76:03: 73:ac:01:9a:6a:2d:3f:08:40:98:ce:71:9d:24:58: e1:6c:06:ba:8a:ac:f3:4a:b7:d9:08:d1:78:75:78: 37:a7:45:29:8c:cb:98:6d:97:25:29:0c:c5:0a:f7: 0b:cd:29:3f:fd:25:82:fd:20:8f:4a:d5:af:9c:ea: 78:78:cf:6a:3e:56:3f:40:26:22:8b:d3:30:fc:04: c5:a0:69:db:27:18:3b:77:88:47:9a:08:60:ab:98: cf:2c:cf:aa:3e:18:9e:93:ee:6f:9e:cd:89:89:c7: bf:4b:04:2a:9b:2f:87:0d:0c:23:65:aa:ee:8e:e3: 4e:bc:c8:1e:de:d3:d6:0c:ca:e4:80:ac:87:d5:a7: 93:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A6:59:C3:C2:7F:C9:89:2E:C6:47:6F:5D:08:22:40:FC:4F:E8:93 X509v3 Authority Key Identifier: keyid:D3:B0:DD:BB:8E:07:FC:D9:8A:39:9C:90:C5:B3:FC:32:B4:FA:28:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d9f98f3-72f0-4006-be99-b9a9e8d9d2bf/0/D3B0DDBB8E07FCD98A399C90C5B3FC32B4FA28F0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:45:96:9e:c9:5a:ab:57:5c:30:9b:92:14:7b:dc:38:cd:fc: d6:b9:d8:22:77:73:ca:ec:23:e6:c4:cc:22:44:98:e0:10:70: 1f:c5:d5:f1:27:af:6b:58:ed:8d:56:81:25:db:91:20:0c:d2: 32:01:6a:2e:c9:1f:7e:18:ab:72:e2:25:42:78:85:53:fd:8d: 79:9e:ed:a7:6f:8e:b8:f7:5a:18:98:11:44:1a:b6:ff:16:17: c5:f7:2b:bd:69:cd:f0:4e:f6:30:b2:f7:aa:05:57:5f:0b:3f: 5a:f6:85:a3:41:9f:f3:78:d6:2d:10:6d:e9:ed:4c:f0:c7:e6: e4:66:b1:90:ab:b7:f0:82:44:1e:d7:d8:f4:a7:bf:b1:b4:0d: 01:b8:0d:e0:9a:38:37:ea:38:90:e9:f4:a1:63:f7:7a:c4:c3: 7e:3d:93:c4:e0:48:53:96:e2:cf:c2:98:47:0a:a2:ca:55:24: d7:19:1b:63:8d:a7:d9:f1:42:45:e7:7a:1d:6c:91:44:16:a0: b9:fd:b3:21:d3:26:7a:b8:ce:90:c9:93:da:0d:5f:a4:b3:44: 5d:42:93:5f:d6:5a:4e:54:60:f7:03:98:e4:ce:45:4d:8d:47: 33:20:82:a3:66:b7:a6:ed:ab:45:0a:28:49:e2:ba:fe:37:8b: 16:cd:0d:45 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFwH7XNMspMuug/pZphLy3Dn4YDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZDMzJC NEZBMjhGMDAeFw0yNTA4MjExMjQ1MDJaFw0yNTA4MjQyMjQwMDJaMDMxMTAvBgNV BAMTKDI5QTY1OUMzQzI3RkM5ODkyRUM2NDc2RjVEMDgyMjQwRkM0RkU4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaQG+tx5Hge1nXjKpXkMBtu6Z8 bIZmHRnDv/d9iuivRmcpp1dpfPWeqvqZzN4+Ijw69Mkw5yszdzKNYcq8+f0lEARf +Qpide2yUXyE8yrdzuJjZO4DYsCczKLemY+gNG/cBJW+j+TYmNNmL+nsNi8jT6Us lf12A3OsAZpqLT8IQJjOcZ0kWOFsBrqKrPNKt9kI0Xh1eDenRSmMy5htlyUpDMUK 9wvNKT/9JYL9II9K1a+c6nh4z2o+Vj9AJiKL0zD8BMWgadsnGDt3iEeaCGCrmM8s z6o+GJ6T7m+ezYmJx79LBCqbL4cNDCNlqu6O4068yB7e09YMyuSArIfVp5MTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKaZZw8J/yYkuxkdvXQgiQPxP6JMwHwYDVR0j BBgwFoAU07Ddu44H/NmKOZyQxbP8MrT6KPAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDlmOThmMy03MmYwLTQwMDYtYmU5OS1iOWE5ZThkOWQyYmYvMC9EM0IwRERCQjhF MDdGQ0Q5OEEzOTlDOTBDNUIzRkMzMkI0RkEyOEYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZDMzJCNEZB MjhGMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2Q5Zjk4ZjMtNzJmMC00MDA2LWJl OTktYjlhOWU4ZDlkMmJmLzAvRDNCMEREQkI4RTA3RkNEOThBMzk5QzkwQzVCM0ZD MzJCNEZBMjhGMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALJFlp7JWqtXXDCbkhR73DjN/Na52CJ3c8rs I+bEzCJEmOAQcB/F1fEnr2tY7Y1WgSXbkSAM0jIBai7JH34Yq3LiJUJ4hVP9jXme 7advjrj3WhiYEUQatv8WF8X3K71pzfBO9jCy96oFV18LP1r2haNBn/N41i0Qbent TPDH5uRmsZCrt/CCRB7X2PSnv7G0DQG4DeCaODfqOJDp9KFj93rEw349k8TgSFOW 4s/CmEcKospVJNcZG2ONp9nxQkXneh1skUQWoLn9syHTJnq4zpDJk9oNX6SzRF1C k1/WWk5UYPcDmOTORU2NRzMggqNmt6btq0UKKEniuv43ixbNDUU= -----END CERTIFICATE-----Generated at Sat Aug 23 18:34:13 2025 by rpki-client