$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft File: 157E8817E413B3A8B2866190AD82151E868B1FA7.mft (raw, json) Hash identifier: pNR/AuMNmOZLcuB8NR7Bvf4AauvM6AEZomutTHWeB40= Subject key identifier: E4:CA:79:E9:99:F9:57:54:D9:FD:06:21:8B:C1:C9:BF:48:DB:C7:0A Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 473C7E6DAA265E8547F67AB9C0B7275747519CEC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft Manifest number: 01EC Signing time: Fri 22 Aug 2025 09:03:25 +0000 Manifest this update: Fri 22 Aug 2025 08:58:25 +0000 Manifest next update: Mon 25 Aug 2025 14:26:25 +0000 Files and hashes: 1: 3130332e3132312e3139362e302f32342d3234203d3e20313439373130.roa (hash: lpSwfmAmKL23RbErKtEZj4srMqeOQng2UqSoQbv0+GE=) 2: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (hash: 2eKYMh+o40ipOAi8hjr+a/aFZYlLyRfS6uvyieWq8yI=) 3: 157E8817E413B3A8B2866190AD82151E868B1FA7.crl (hash: ckm9pQNCJTeAADM63pf/vE3OtPlB3FjvACB5u5vP+6I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 14:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:3c:7e:6d:aa:26:5e:85:47:f6:7a:b9:c0:b7:27:57:47:51:9c:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: Aug 22 08:58:25 2025 GMT Not After : Aug 25 14:26:25 2025 GMT Subject: CN=E4CA79E999F95754D9FD06218BC1C9BF48DBC70A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:0b:e0:f3:7f:88:9a:08:ba:73:4b:01:92: 83:51:45:55:12:99:af:1e:1e:08:08:fa:fb:8a:88: 9a:22:01:1a:e8:7a:30:e0:4a:60:5b:f0:79:cd:d0: 46:9d:d6:d3:83:6e:ab:40:68:b1:7b:3f:2f:03:8f: 2e:d2:bd:6e:0f:eb:7a:7f:3e:e5:23:8a:16:ee:c8: c7:42:56:01:a5:c5:69:98:51:49:1e:79:12:d4:d0: ed:bc:bd:b1:72:3e:d2:94:f1:40:a6:d5:d7:02:30: 95:84:a8:1a:00:41:fd:35:a4:e4:69:58:ee:69:94: 96:33:41:3a:1b:c5:55:f1:0d:90:5d:d3:65:d1:47: 5e:13:39:e9:93:ad:9b:ac:70:d8:7c:07:9b:d7:ee: 33:56:e6:ed:e5:c0:c9:aa:3e:59:84:a8:ff:af:e5: ae:67:01:7c:b8:bd:9a:50:a5:1f:0c:55:68:b1:ab: 9d:a4:2a:27:92:4f:3e:54:54:a7:18:02:80:3c:27: 34:29:1c:30:c0:1c:15:1c:75:3d:85:f6:2a:51:ed: 8d:8e:89:d2:84:af:a3:5d:ac:20:be:ef:b5:a7:70: 23:d6:4c:3e:6d:1c:a3:41:3d:1a:55:f5:3b:84:91: 3b:12:ea:41:e6:c9:a4:63:10:ea:44:1c:8f:e7:d6: 0b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CA:79:E9:99:F9:57:54:D9:FD:06:21:8B:C1:C9:BF:48:DB:C7:0A X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:12:79:93:7a:dc:32:1b:9a:b2:a2:40:33:f7:31:2e:a9:90: ef:4b:49:d7:56:3e:e1:90:55:0a:78:7e:65:6f:e5:94:6e:f2: e2:50:8a:f9:69:55:c4:e6:67:df:78:95:8f:9d:9f:1e:ec:d2: 29:13:25:c5:1f:72:ed:c9:fc:15:c8:d4:4d:2f:72:f7:af:1b: 0f:17:6e:cf:5b:42:4b:32:64:6d:61:39:e8:98:29:49:44:51: d8:ac:f8:a4:bf:4a:00:49:06:6a:8f:f3:ad:ec:6d:a2:e2:a2: 47:62:9c:a0:05:1d:e5:2e:4a:89:b6:d0:e3:b9:87:f7:08:20: dd:33:35:47:80:07:90:d7:0a:31:9a:5f:be:fb:99:f5:e3:43: d4:f4:6e:99:52:15:52:b1:98:cb:fe:1c:17:56:e1:c3:f3:32: 1e:76:2f:a0:ef:72:c7:06:87:52:73:2b:9b:30:fb:f2:cb:ea: 5b:49:64:5c:e8:cd:88:3b:3e:39:96:18:0d:e3:f6:ec:4d:2e: c5:3c:06:d9:3b:ff:7e:58:e6:78:76:2d:1f:37:d2:1a:31:06: 1f:e7:e2:dc:05:8e:6e:c1:bf:02:80:c9:ad:25:ac:bb:26:ff: 6e:03:6d:d2:94:8f:a3:a1:6a:bf:2b:d0:21:f1:51:a8:05:c8: d7:37:60:92 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURzx+baomXoVH9nq5wLcnV0dRnOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNTA4MjIwODU4MjVaFw0yNTA4MjUxNDI2MjVaMDMxMTAvBgNV BAMTKEU0Q0E3OUU5OTlGOTU3NTREOUZEMDYyMThCQzFDOUJGNDhEQkM3MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzjwvg83+Imgi6c0sBkoNRRVUS ma8eHggI+vuKiJoiARroejDgSmBb8HnN0Ead1tODbqtAaLF7Py8Djy7SvW4P63p/ PuUjihbuyMdCVgGlxWmYUUkeeRLU0O28vbFyPtKU8UCm1dcCMJWEqBoAQf01pORp WO5plJYzQTobxVXxDZBd02XRR14TOemTrZuscNh8B5vX7jNW5u3lwMmqPlmEqP+v 5a5nAXy4vZpQpR8MVWixq52kKieSTz5UVKcYAoA8JzQpHDDAHBUcdT2F9ipR7Y2O idKEr6NdrCC+77WncCPWTD5tHKNBPRpV9TuEkTsS6kHmyaRjEOpEHI/n1gs1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5Mp56Zn5V1TZ/QYhi8HJv0jbxwowHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODNjZDYwYjItMGY1Ny00ZmM1LWJj NjItMWQ5YjZjNDhmY2YwLzAvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1 MUU4NjhCMUZBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE8SeZN63DIbmrKiQDP3MS6pkO9LSddWPuGQ VQp4fmVv5ZRu8uJQivlpVcTmZ994lY+dnx7s0ikTJcUfcu3J/BXI1E0vcvevGw8X bs9bQksyZG1hOeiYKUlEUdis+KS/SgBJBmqP863sbaLiokdinKAFHeUuSom20OO5 h/cIIN0zNUeAB5DXCjGaX777mfXjQ9T0bplSFVKxmMv+HBdW4cPzMh52L6DvcscG h1JzK5sw+/LL6ltJZFzozYg7PjmWGA3j9uxNLsU8Btk7/35Y5nh2LR830hoxBh/n 4twFjm7BvwKAya0lrLsm/24DbdKUj6Ohar8r0CHxUagFyNc3YJI= -----END CERTIFICATE-----Generated at Sat Aug 23 10:21:57 2025 by rpki-client