$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft File: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft (raw, json) Hash identifier: QmGmZRhRtPWW699bY9m/20A/WbL/XDIqFgrPPvLTr5w= Subject key identifier: 9C:4B:CD:41:D3:69:B8:06:A7:BC:38:3C:71:69:5E:29:A4:E7:5E:6D Authority key identifier: 95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 Certificate issuer: /CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Certificate serial: 6DA8660965F9A080369DA1E4C427B0F6F9BB6833 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft Manifest number: C6 Signing time: Sat 23 Aug 2025 17:41:29 +0000 Manifest this update: Sat 23 Aug 2025 17:36:29 +0000 Manifest next update: Wed 27 Aug 2025 04:12:29 +0000 Files and hashes: 1: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl (hash: lxus/N5c3UCQIop5Fhf82GpQsk/tX2OKKC1dxxyuw5U=) 2: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (hash: +Xk0mxGkc/lCxZDeUptrpwZhCqCSnBV/uCVgeNZ+WpY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a8:66:09:65:f9:a0:80:36:9d:a1:e4:c4:27:b0:f6:f9:bb:68:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Validity Not Before: Aug 23 17:36:29 2025 GMT Not After : Aug 27 04:12:29 2025 GMT Subject: CN=9C4BCD41D369B806A7BC383C71695E29A4E75E6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4b:05:09:b5:90:f6:88:45:5e:d3:5f:e9:18: 58:56:eb:d5:75:85:12:65:ed:9a:6a:af:7a:23:96: bc:c4:a3:61:f1:5c:5c:a0:b9:a0:33:26:13:9f:6d: 1c:e4:a9:9c:42:5a:b6:22:25:38:ae:8d:2d:41:ec: 9c:07:35:6d:90:b0:83:8b:a6:aa:e9:99:d7:6d:6b: c3:98:79:5e:0b:75:91:b7:ed:88:02:97:f7:c3:bf: a9:ae:b8:cd:2e:66:ee:c6:c2:91:33:07:62:ea:b9: 37:88:bf:d9:06:2f:a5:99:68:eb:fb:4e:1c:cb:bc: 49:8a:35:3f:60:ec:c2:0d:93:a1:d1:e5:04:1d:4c: 54:7e:7b:62:05:c6:c5:a0:08:e0:de:13:86:8d:2e: c5:4c:f6:b3:dd:00:3b:37:50:17:c3:10:18:28:5c: 06:3c:95:2f:7e:26:f5:a8:8e:47:37:d7:df:08:c4: 6d:2f:f0:76:7b:c2:05:bf:8c:01:c2:aa:5f:8d:5d: d9:90:7a:7d:e4:ff:32:17:e6:07:45:a6:aa:b8:4f: 8b:81:6c:d9:8b:ef:d9:81:98:27:7b:b0:69:65:82: a5:38:a7:1e:b5:f3:9f:e7:11:1b:59:72:fc:84:84: 14:43:9b:a8:6f:38:a9:71:25:02:0b:ec:32:35:a5: a4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4B:CD:41:D3:69:B8:06:A7:BC:38:3C:71:69:5E:29:A4:E7:5E:6D X509v3 Authority Key Identifier: keyid:95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:d2:a7:f0:22:02:ac:1f:10:6e:0d:67:34:c8:9d:1f:91:8b: 67:89:5d:8a:59:25:db:38:c2:00:82:9a:eb:b5:2e:46:a0:48: a7:08:1f:ac:5b:8b:e0:77:67:be:b2:c1:4c:f1:ee:e2:0d:81: e3:22:44:ce:33:3c:66:2a:ba:d2:22:a6:e1:ab:4c:e8:75:90: 29:32:be:ff:c9:ad:37:08:c0:e3:e9:b0:c8:9f:ca:79:97:cd: 87:1f:5b:68:6b:48:34:8c:48:ac:5c:8e:41:dc:43:e3:b3:c7: 0c:19:cf:04:a6:cf:a2:aa:dd:1d:ab:67:26:b0:35:47:93:b2: 17:d0:23:a7:3d:7d:d2:c4:96:25:2c:af:f3:bc:ee:93:16:c9: 70:4d:83:44:1c:55:20:e0:08:e7:ee:37:79:78:c4:68:6e:7f: 12:44:39:62:5f:91:bc:5a:05:4f:17:20:58:19:12:fb:d7:0b: f1:e5:14:3d:21:42:1f:3d:a9:a2:e6:bc:6a:b6:eb:4e:79:6f: 39:70:a1:08:74:97:c3:02:69:b8:0f:26:0e:34:9e:03:e0:8a: ad:54:c1:a6:4b:f2:cb:00:f3:0a:4d:59:a8:55:47:09:7b:d6: 0e:04:13:77:50:bc:99:83:7a:70:d8:7d:46:fe:62:c6:53:63: 29:2f:1e:a2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbahmCWX5oIA2naHkxCew9vm7aDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVB MzI4RDY4OTAeFw0yNTA4MjMxNzM2MjlaFw0yNTA4MjcwNDEyMjlaMDMxMTAvBgNV BAMTKDlDNEJDRDQxRDM2OUI4MDZBN0JDMzgzQzcxNjk1RTI5QTRFNzVFNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4SwUJtZD2iEVe01/pGFhW69V1 hRJl7Zpqr3ojlrzEo2HxXFyguaAzJhOfbRzkqZxCWrYiJTiujS1B7JwHNW2QsIOL pqrpmddta8OYeV4LdZG37YgCl/fDv6muuM0uZu7GwpEzB2LquTeIv9kGL6WZaOv7 ThzLvEmKNT9g7MINk6HR5QQdTFR+e2IFxsWgCODeE4aNLsVM9rPdADs3UBfDEBgo XAY8lS9+JvWojkc3198IxG0v8HZ7wgW/jAHCql+NXdmQen3k/zIX5gdFpqq4T4uB bNmL79mBmCd7sGllgqU4px6185/nERtZcvyEhBRDm6hvOKlxJQIL7DI1paSpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnEvNQdNpuAanvDg8cWleKaTnXm0wHwYDVR0j BBgwFoAUlfrDilyyzqPl/+JJVianvqMo1okwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMC85NUZBQzM4QTVD QjJDRUEzRTVGRkUyNDk1NjI2QTdCRUEzMjhENjg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVBMzI4 RDY4OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODRkYTQxNWItNWYxNy00NjAyLTli ZDktZmQ4NGFjMmNhZTg2LzAvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3 QkVBMzI4RDY4OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFfSp/AiAqwfEG4NZzTInR+Ri2eJXYpZJds4 wgCCmuu1LkagSKcIH6xbi+B3Z76ywUzx7uINgeMiRM4zPGYqutIipuGrTOh1kCky vv/JrTcIwOPpsMifynmXzYcfW2hrSDSMSKxcjkHcQ+OzxwwZzwSmz6Kq3R2rZyaw NUeTshfQI6c9fdLEliUsr/O87pMWyXBNg0QcVSDgCOfuN3l4xGhufxJEOWJfkbxa BU8XIFgZEvvXC/HlFD0hQh89qaLmvGq26055bzlwoQh0l8MCabgPJg40ngPgiq1U waZL8ssA8wpNWahVRwl71g4EE3dQvJmDenDYfUb+YsZTYykvHqI= -----END CERTIFICATE-----Generated at Sun Aug 24 00:29:42 2025 by rpki-client