$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft File: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft (raw, json) Hash identifier: d0XyXtqwdCjS7iwo9n3kyNGE7WgvhNzrB7GcH/4WZUg= Subject key identifier: DF:04:CC:F1:80:73:8B:A7:FD:3F:ED:08:5D:25:93:77:C8:7D:F6:D1 Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 76BAA38FB1F4D9D3DF64E105FA75EEAE34CC78B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft Manifest number: 0499 Signing time: Thu 21 Aug 2025 19:41:24 +0000 Manifest this update: Thu 21 Aug 2025 19:36:24 +0000 Manifest next update: Mon 25 Aug 2025 03:47:24 +0000 Files and hashes: 1: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (hash: p7Jtuo2fT9SMHQpNlniVY5E8TDvsdgf0sorpgXPSACM=) 2: 3130332e3134362e3139362e302f32342d3234203d3e20313339393431.roa (hash: WkFNZS79+nq1P3vYzsoqHasGlqkPwC3TJbG5gTcIHd8=) 3: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (hash: KEUVODDrcsujN0g1v6DrUa6Mji4U9jJWIyDXhx1aJNY=) 4: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl (hash: 4Ja4trBzqHxiVvo35TF2wjB3FIqU28CPzy+8XLwGe+Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 03:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ba:a3:8f:b1:f4:d9:d3:df:64:e1:05:fa:75:ee:ae:34:cc:78:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Aug 21 19:36:24 2025 GMT Not After : Aug 25 03:47:24 2025 GMT Subject: CN=DF04CCF180738BA7FD3FED085D259377C87DF6D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e1:9c:27:ca:c9:c8:1f:7c:cb:a8:8c:db:16: 46:38:59:7e:22:33:91:70:90:b2:56:2e:79:cb:8a: 32:0b:99:be:cf:dc:a8:1c:ba:ec:e5:47:af:67:49: 61:26:8a:68:f5:1b:ec:f4:2f:2e:8a:bc:dd:75:c2: 64:07:3e:ed:44:0e:b3:8f:75:d0:e1:9a:9b:8e:b9: 9e:5c:ea:2b:53:c9:9d:4d:a9:45:b3:48:d6:e5:87: 4f:4a:ec:27:c1:7d:2c:ad:f7:c6:7c:21:d1:f7:74: 87:d4:35:18:fa:d4:b2:21:9c:1c:8b:49:e3:b5:ab: f2:61:b2:a0:61:90:46:e0:e1:4f:af:44:0e:5f:0e: 4c:c4:e0:a3:96:89:67:ad:c0:56:51:2d:63:7b:1e: e5:d1:7a:a1:31:c3:00:e9:27:15:42:33:45:99:b5: 7c:5c:f5:3b:da:15:c5:bf:98:61:bc:85:61:29:0f: d7:96:58:86:38:61:8a:ec:8e:a5:5e:18:f5:61:bf: 50:8a:2c:c5:34:a1:2a:05:58:36:39:de:72:18:14: d4:a2:6b:4f:c0:94:f4:93:17:ad:e0:a1:3e:57:fa: e7:b1:36:a0:a7:b7:f8:6d:7c:c6:38:b4:fc:2b:2f: 94:50:35:32:78:13:fe:d4:a4:29:6d:fa:9d:bb:48: b9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:04:CC:F1:80:73:8B:A7:FD:3F:ED:08:5D:25:93:77:C8:7D:F6:D1 X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:4d:99:65:fe:2a:6c:0f:2c:b8:5f:f6:9f:df:39:51:ba:c2: bb:01:b5:b8:34:c0:22:b3:bc:86:f8:66:8b:58:54:d9:e3:62: a5:b7:d5:a5:e8:e3:28:1f:c1:63:ae:e5:1f:e4:3e:a6:2d:7c: e7:f0:bc:35:d7:83:6e:4a:cb:68:70:50:1f:b4:0c:34:28:78: 1b:8e:47:88:ca:79:a4:07:d5:1d:90:bd:29:3a:cc:49:21:0b: 2b:23:be:1e:79:ef:91:1d:2c:ec:47:b3:94:1b:bd:0f:6e:91: 11:df:14:e0:25:e2:fa:c6:4f:e7:a9:1e:66:0a:a1:a6:bf:ef: cf:73:35:32:e1:e3:40:aa:0f:00:ee:02:d2:c2:39:92:01:45: e9:03:fd:23:7a:aa:50:a1:09:04:a4:77:9c:86:45:74:58:3f: 85:a4:d8:1a:a5:ff:d7:a1:07:28:f4:55:f4:d1:9f:9a:f6:3b: 7a:e9:55:de:6e:4f:71:71:bd:b9:b4:ad:08:b2:8a:7c:c0:9e: c3:2a:5b:35:e1:16:ea:2a:cf:f4:7d:bc:3d:1e:fc:24:62:cb: a3:27:cc:1f:e4:8b:15:73:c8:c4:33:5b:a4:ce:f0:a3:73:b7: e9:46:4c:03:e6:0f:9d:3a:85:42:f3:74:6b:d1:d8:32:ca:bd: 6a:97:af:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdrqjj7H02dPfZOEF+nXurjTMeLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNTA4MjExOTM2MjRaFw0yNTA4MjUwMzQ3MjRaMDMxMTAvBgNV BAMTKERGMDRDQ0YxODA3MzhCQTdGRDNGRUQwODVEMjU5Mzc3Qzg3REY2RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT4ZwnysnIH3zLqIzbFkY4WX4i M5FwkLJWLnnLijILmb7P3KgcuuzlR69nSWEmimj1G+z0Ly6KvN11wmQHPu1EDrOP ddDhmpuOuZ5c6itTyZ1NqUWzSNblh09K7CfBfSyt98Z8IdH3dIfUNRj61LIhnByL SeO1q/JhsqBhkEbg4U+vRA5fDkzE4KOWiWetwFZRLWN7HuXReqExwwDpJxVCM0WZ tXxc9TvaFcW/mGG8hWEpD9eWWIY4YYrsjqVeGPVhv1CKLMU0oSoFWDY53nIYFNSi a0/AlPSTF63goT5X+uexNqCnt/htfMY4tPwrL5RQNTJ4E/7UpClt+p27SLnhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3wTM8YBzi6f9P+0IXSWTd8h99tEwHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODM1MDQ4YzYtOGNjZC00NjNkLWFk MzQtYWU3NDI4NjQ3YTljLzAvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4 M0NGNUIyQUE0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIdNmWX+KmwPLLhf9p/fOVG6wrsBtbg0wCKz vIb4ZotYVNnjYqW31aXo4ygfwWOu5R/kPqYtfOfwvDXXg25Ky2hwUB+0DDQoeBuO R4jKeaQH1R2QvSk6zEkhCysjvh5575EdLOxHs5QbvQ9ukRHfFOAl4vrGT+epHmYK oaa/789zNTLh40CqDwDuAtLCOZIBRekD/SN6qlChCQSkd5yGRXRYP4Wk2Bql/9eh Byj0VfTRn5r2O3rpVd5uT3Fxvbm0rQiyinzAnsMqWzXhFuoqz/R9vD0e/CRiy6Mn zB/kixVzyMQzW6TO8KNzt+lGTAPmD506hULzdGvR2DLKvWqXr0A= -----END CERTIFICATE-----Generated at Sat Aug 23 14:14:17 2025 by rpki-client