$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft (raw, json) Hash identifier: cID1wn+0SXERv12uzhk4zoTfkUzq2K2mEomIsdimoJU= Subject key identifier: BE:B3:84:54:1F:5F:57:77:2C:01:92:84:97:56:38:4C:62:30:15:15 Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 78157AE8F582AF5481102C4424B620186C16E555 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft Manifest number: 0127 Signing time: Fri 22 Aug 2025 16:02:05 +0000 Manifest this update: Fri 22 Aug 2025 15:57:05 +0000 Manifest next update: Mon 25 Aug 2025 23:28:05 +0000 Files and hashes: 1: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl (hash: 3ujt/Hpaej/ejibQDGrNScwfHSL7BrRxtCEoeA5BcIc=) 2: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (hash: /A9HXd13I0+DkmsbISwlDHjrM6YvxlLYkQQcEaMVLGM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:15:7a:e8:f5:82:af:54:81:10:2c:44:24:b6:20:18:6c:16:e5:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Aug 22 15:57:05 2025 GMT Not After : Aug 25 23:28:05 2025 GMT Subject: CN=BEB384541F5F57772C0192849756384C62301515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b9:cc:4e:0a:93:52:37:65:c4:70:b0:a2:65: 97:2f:c4:5f:2c:80:17:60:24:5b:61:a4:12:e7:03: 7d:ed:91:f2:aa:92:17:9f:56:63:61:cb:50:e7:f5: dd:d1:19:31:64:39:b8:4c:38:47:27:43:f4:ff:3b: 43:a8:33:1f:69:65:e9:4d:ab:91:40:ff:8a:f3:68: 2e:ce:16:1c:11:a7:cb:f5:0b:a9:95:a9:17:bc:7d: 46:9f:0c:6e:88:59:cd:c2:9c:62:bb:d5:78:37:17: 02:00:07:05:a1:26:10:98:20:a5:31:52:b8:38:17: 03:b7:2f:66:57:7f:38:4d:2c:fe:e6:cd:08:93:60: 69:90:10:85:ea:bf:86:96:c5:a7:91:b7:76:bc:d3: c6:aa:e7:b2:12:8c:ed:41:90:29:81:4d:19:6b:f0: 20:9a:ea:d9:dd:84:c6:cd:ea:91:a9:71:38:da:f0: 22:c9:23:10:d7:ce:c5:b8:52:24:ac:f2:1b:6a:b5: 3f:07:2b:38:e6:9e:ad:35:8f:29:05:bf:84:f2:d1: 08:a9:1b:41:98:d1:82:5f:7a:b6:4b:09:b1:42:66: 4b:3c:6e:94:a6:d8:43:86:fe:ca:38:c6:69:cf:0c: b2:aa:dc:6c:9f:63:5e:b4:fc:d6:f9:60:66:57:d8: 22:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B3:84:54:1F:5F:57:77:2C:01:92:84:97:56:38:4C:62:30:15:15 X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:41:fa:27:22:96:cd:1b:2e:c6:e4:4e:b1:1a:6e:27:39:62: 67:5b:5e:bc:67:aa:a8:b9:79:3c:ad:f5:42:19:e5:80:6b:02: 5f:db:a4:c1:49:f4:27:cc:ce:0e:92:60:e4:93:a0:38:32:74: b7:6e:b4:3d:4c:88:36:1c:9a:a3:a8:ea:81:25:0d:68:fd:7b: 4c:78:40:8b:f3:bd:98:8f:12:58:c4:0b:56:fd:41:ca:fc:f0: 72:14:75:ad:07:dd:46:d6:65:f2:fe:1f:90:20:c9:8c:6d:1b: 37:80:a5:b7:ae:74:d9:d0:60:4e:95:99:22:07:75:5e:b1:0c: 04:e5:7a:e9:30:3e:cd:39:ff:c3:5c:23:9b:b8:d5:1d:5c:c6: 7e:d7:e9:89:26:bf:2b:42:bc:a4:81:db:4f:7b:9e:f0:8b:64: 02:79:a9:f2:40:c6:6b:10:17:f6:c5:c6:ea:f9:97:78:df:07: 38:7a:a3:9c:7c:b2:0c:2f:d2:12:1a:8e:db:87:d8:de:d8:d0: cd:4d:ce:0e:37:6c:53:9a:62:30:bc:8f:02:53:b1:d8:17:1a: b3:00:33:03:b3:57:2d:94:8d:64:90:c6:8e:3a:a6:a4:29:eb: e6:c8:72:d2:ac:4b:67:10:8f:0e:cf:a7:fb:d1:c1:f2:3f:fd: d3:e8:a5:f9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeBV66PWCr1SBECxEJLYgGGwW5VUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNTA4MjIxNTU3MDVaFw0yNTA4MjUyMzI4MDVaMDMxMTAvBgNV BAMTKEJFQjM4NDU0MUY1RjU3NzcyQzAxOTI4NDk3NTYzODRDNjIzMDE1MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrucxOCpNSN2XEcLCiZZcvxF8s gBdgJFthpBLnA33tkfKqkhefVmNhy1Dn9d3RGTFkObhMOEcnQ/T/O0OoMx9pZelN q5FA/4rzaC7OFhwRp8v1C6mVqRe8fUafDG6IWc3CnGK71Xg3FwIABwWhJhCYIKUx Urg4FwO3L2ZXfzhNLP7mzQiTYGmQEIXqv4aWxaeRt3a808aq57ISjO1BkCmBTRlr 8CCa6tndhMbN6pGpcTja8CLJIxDXzsW4UiSs8htqtT8HKzjmnq01jykFv4Ty0Qip G0GY0YJferZLCbFCZks8bpSm2EOG/so4xmnPDLKq3GyfY160/Nb5YGZX2CJBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvrOEVB9fV3csAZKEl1Y4TGIwFRUwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODExZDlhYmMtNDk4Ny00ZGJjLTk3 NmQtM2YzMmIyOTE3MTVkLzAvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQy NEZENDBGQjhDMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHtB+icils0bLsbkTrEabic5YmdbXrxnqqi5 eTyt9UIZ5YBrAl/bpMFJ9CfMzg6SYOSToDgydLdutD1MiDYcmqOo6oElDWj9e0x4 QIvzvZiPEljEC1b9Qcr88HIUda0H3UbWZfL+H5AgyYxtGzeApbeudNnQYE6VmSIH dV6xDATleukwPs05/8NcI5u41R1cxn7X6YkmvytCvKSB2097nvCLZAJ5qfJAxmsQ F/bFxur5l3jfBzh6o5x8sgwv0hIajtuH2N7Y0M1Nzg43bFOaYjC8jwJTsdgXGrMA MwOzVy2UjWSQxo46pqQp6+bIctKsS2cQjw7Pp/vRwfI//dPopfk= -----END CERTIFICATE-----Generated at Sat Aug 23 10:07:16 2025 by rpki-client