$ rpki-client -vvf repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft File: 41071AAF0C0E6BD84877680334B4F604B4B4E786.mft (raw, json) Hash identifier: QYqs8uaC1CYkKEwY+eKDDAIIal4CWY2+p7Cegezhnzc= Subject key identifier: 59:7E:EC:75:1F:21:A8:5C:BB:49:1D:57:0A:2B:E1:EA:BE:0A:CC:05 Authority key identifier: 41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 Certificate issuer: /CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Certificate serial: 3A31A94D17B3BFBBFF709B04E15576868437B060 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft Manifest number: 01F5 Signing time: Thu 21 Aug 2025 20:22:25 +0000 Manifest this update: Thu 21 Aug 2025 20:17:25 +0000 Manifest next update: Sun 24 Aug 2025 20:48:25 +0000 Files and hashes: 1: 3130332e3136372e322e302f32342d3234203d3e20313431393637.roa (hash: S3FgE0+gcaLyx6nH2zsRG+Hi0BgVRkLf/ndGC4F7z/0=) 2: 41071AAF0C0E6BD84877680334B4F604B4B4E786.crl (hash: aCisvg8iQb8XBY0tBxADikLyxRYiNVQqNJzrc2XdyZ4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 20:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:31:a9:4d:17:b3:bf:bb:ff:70:9b:04:e1:55:76:86:84:37:b0:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Validity Not Before: Aug 21 20:17:25 2025 GMT Not After : Aug 24 20:48:25 2025 GMT Subject: CN=597EEC751F21A85CBB491D570A2BE1EABE0ACC05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1c:67:f3:9a:bd:4a:70:e9:a8:77:50:da:2c: c1:8d:b3:33:47:93:a1:2b:3b:cb:dd:f5:73:1e:4e: 5c:fd:39:8f:17:08:57:d6:e9:63:f3:53:b7:3f:27: 7b:fc:e8:8a:5b:88:79:70:9f:09:50:ea:50:ff:d4: 91:b4:2e:55:30:2b:1f:4e:ff:13:4b:69:ba:d1:81: 78:dd:93:77:99:bd:ed:6a:fd:63:96:81:21:61:9d: 42:4a:1e:69:3d:0e:f0:58:78:54:c3:0f:b4:42:8a: a4:5c:85:da:38:59:45:c6:1a:e8:15:9e:95:3d:b5: dd:34:c5:1d:8c:f3:cc:4b:53:08:86:87:4e:90:9d: 46:1e:e0:f6:a4:8c:49:d2:86:3d:43:fc:5a:6f:d1: 09:2b:1f:10:ee:6b:e5:b0:23:d8:98:dd:f3:b9:11: a9:f0:98:4c:8f:dc:d9:8b:35:35:f5:db:b2:34:9f: 21:bf:ed:aa:30:fc:b9:04:8c:63:ba:52:29:86:ff: 2b:80:76:e8:65:22:25:98:7c:7e:f0:7f:6a:f1:a3: 56:df:f5:d3:11:d2:7b:32:cc:9d:17:76:7a:a8:f9: b6:87:87:61:22:e3:06:11:28:1a:19:3a:8c:43:46: 15:c3:c5:4f:4a:f7:8a:17:55:0f:1c:fa:67:f8:6f: fc:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:7E:EC:75:1F:21:A8:5C:BB:49:1D:57:0A:2B:E1:EA:BE:0A:CC:05 X509v3 Authority Key Identifier: keyid:41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b9:2c:9b:b8:c7:41:5e:ff:86:ed:34:5d:80:6d:e3:5b:2e: 75:7c:e1:5a:ee:80:54:da:fb:a5:7a:58:ab:d3:1d:a2:a0:fb: 79:93:ba:b1:80:1d:9c:8a:1d:65:5b:94:fb:7a:1c:67:27:ea: 52:f8:50:8b:74:e6:05:99:ac:8b:5b:9f:e7:85:73:69:5a:8d: dd:b3:26:52:5f:d2:f5:e9:18:37:1e:8c:a1:ca:14:9a:ca:f1: 1b:03:30:00:47:ac:01:5f:e0:e4:02:b5:f6:73:d4:e5:c7:f8: 3a:9e:9a:61:a9:1b:43:27:98:d9:c6:e5:d3:7e:6d:92:c7:ee: 25:13:63:2f:ef:85:0c:8b:35:30:b1:f3:e4:43:41:44:89:be: 26:45:30:2e:b9:f4:bc:0d:30:11:13:79:28:4d:d7:87:84:14: 4a:04:5d:1d:a8:29:a7:e5:e9:96:fb:a3:b1:0b:6e:13:51:f7: 44:f3:aa:a8:c1:a6:e4:2f:0e:4d:a1:9b:bf:c2:c1:98:ed:61: 2b:16:8a:b8:b6:d6:65:9d:67:80:aa:80:30:67:db:00:90:fe: 4e:d7:a9:aa:6a:7b:d2:19:b3:3f:dd:c1:bc:aa:66:b8:5e:c4: ac:8e:71:a3:53:26:40:4e:fb:d8:dd:85:63:b0:e3:7e:e5:10: 97:ff:68:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOjGpTRezv7v/cJsE4VV2hoQ3sGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRC NEI0RTc4NjAeFw0yNTA4MjEyMDE3MjVaFw0yNTA4MjQyMDQ4MjVaMDMxMTAvBgNV BAMTKDU5N0VFQzc1MUYyMUE4NUNCQjQ5MUQ1NzBBMkJFMUVBQkUwQUNDMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdHGfzmr1KcOmod1DaLMGNszNH k6ErO8vd9XMeTlz9OY8XCFfW6WPzU7c/J3v86IpbiHlwnwlQ6lD/1JG0LlUwKx9O /xNLabrRgXjdk3eZve1q/WOWgSFhnUJKHmk9DvBYeFTDD7RCiqRchdo4WUXGGugV npU9td00xR2M88xLUwiGh06QnUYe4PakjEnShj1D/Fpv0QkrHxDua+WwI9iY3fO5 EanwmEyP3NmLNTX127I0nyG/7aow/LkEjGO6UimG/yuAduhlIiWYfH7wf2rxo1bf 9dMR0nsyzJ0Xdnqo+baHh2Ei4wYRKBoZOoxDRhXDxU9K94oXVQ8c+mf4b/wdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWX7sdR8hqFy7SR1XCivh6r4KzAUwHwYDVR0j BBgwFoAUQQcarwwOa9hId2gDNLT2BLS054YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTI3YjNlMS1mNjExLTRhZmUtOWE0OS01ZmE0ZmQ1NTc2NTMvMC80MTA3MUFBRjBD MEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0QjRFNzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRCNEI0 RTc4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2UyN2IzZTEtZjYxMS00YWZlLTlh NDktNWZhNGZkNTU3NjUzLzAvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2 MDRCNEI0RTc4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI25LJu4x0Fe/4btNF2AbeNbLnV84VrugFTa +6V6WKvTHaKg+3mTurGAHZyKHWVblPt6HGcn6lL4UIt05gWZrItbn+eFc2lajd2z JlJf0vXpGDcejKHKFJrK8RsDMABHrAFf4OQCtfZz1OXH+DqemmGpG0MnmNnG5dN+ bZLH7iUTYy/vhQyLNTCx8+RDQUSJviZFMC659LwNMBETeShN14eEFEoEXR2oKafl 6Zb7o7ELbhNR90TzqqjBpuQvDk2hm7/CwZjtYSsWiri21mWdZ4CqgDBn2wCQ/k7X qapqe9IZsz/dwbyqZrhexKyOcaNTJkBO+9jdhWOw437lEJf/aHU= -----END CERTIFICATE-----Generated at Sat Aug 23 10:32:58 2025 by rpki-client