$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: SVR5BfopGs3MrfnKQNxDmbXXv2Zn5ARR0c4eYGjCNrE= Subject key identifier: 52:0A:3D:CA:33:F8:5D:7D:CE:A4:47:43:AE:43:D5:E2:E0:B2:88:C1 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 1F35C98677FDB8E74375BF315155DB0A66D5D0F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0250 Signing time: Sat 23 Aug 2025 17:00:58 +0000 Manifest this update: Sat 23 Aug 2025 16:55:58 +0000 Manifest next update: Wed 27 Aug 2025 01:39:58 +0000 Files and hashes: 1: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: /oNKkVvACpGRwEaHQtz+NrUuOBWsbNWp6QRHeV0MPMU=) 2: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: PxQIpqbQq2jLhpu3Xowhx5fys0b4IY/JPo7Tka0HdFo=) 3: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=) 4: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: 4O8b726/lpcYZIzCbq+BOqW7rrh6L+bwyN5I34NP9Oc=) 5: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: rlZNRe9QwPDxRgCp5O054ihVTvOafRmbaG0Hj+9kO5Q=) 6: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: jpfumHa8+j9qjT+s24n2lX//cmKlNDvyl+8ch6GlvMQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 23:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:35:c9:86:77:fd:b8:e7:43:75:bf:31:51:55:db:0a:66:d5:d0:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Aug 23 16:55:58 2025 GMT Not After : Aug 27 01:39:58 2025 GMT Subject: CN=520A3DCA33F85D7DCEA44743AE43D5E2E0B288C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:68:c9:a4:5f:c1:ab:db:ea:81:3b:21:52:a4: 16:ab:de:ec:e5:08:5a:33:a5:61:05:11:d7:7c:6f: 0c:4c:8a:ac:2e:5e:39:ff:ed:b0:a2:76:26:20:d9: d9:e4:31:cf:24:17:8c:0d:6f:8b:8d:82:bc:b5:34: c1:8a:a9:45:a9:1d:40:33:20:19:1e:d7:30:66:60: 71:c1:a5:a2:99:ef:76:c9:c7:98:8a:57:c6:24:23: cc:7c:8d:98:12:53:b5:7f:d0:09:35:ba:d3:01:8d: 46:55:36:29:de:ef:38:cc:01:34:9b:a7:f0:2a:47: e9:2f:be:30:ee:cc:a5:fd:3a:ef:5a:51:1c:34:64: 59:fc:8f:22:0e:f8:0a:8c:3c:e3:8b:e5:e7:c7:98: c6:d7:65:ba:26:e5:d8:26:54:f9:3a:cc:6d:a7:0a: 17:d0:ef:e0:53:15:b0:3b:f5:72:eb:78:6e:6e:bf: 24:db:cc:9e:f4:8a:48:3f:0e:65:6e:51:3e:ff:63: bc:90:3d:9f:00:5e:22:9e:84:13:65:35:da:90:df: c3:4b:a6:ff:5c:eb:23:28:82:38:3c:ea:6c:18:4a: a2:4f:bc:ae:03:3a:d6:62:e1:4e:e8:91:10:2a:a8: b4:66:80:f2:d8:65:d4:b5:94:37:0e:2b:70:19:59: 37:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0A:3D:CA:33:F8:5D:7D:CE:A4:47:43:AE:43:D5:E2:E0:B2:88:C1 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:08:da:c4:c1:ef:25:a1:3d:4f:15:d3:1c:94:08:31:fe:bf: c0:4e:60:60:83:e8:30:dd:4f:f5:c7:86:b7:e2:d0:e5:52:c8: ca:39:e8:76:59:21:18:08:95:23:0a:92:d2:07:5f:92:4e:6b: 8f:3f:b1:84:61:b7:d5:60:42:5c:6b:75:ad:db:45:6c:7f:a0: 3e:1c:94:c2:2d:22:1d:fa:5f:80:a6:c8:64:2f:ce:6a:cb:93: 11:a3:62:54:3b:ae:8f:9e:b4:b6:b0:7a:c3:c4:53:f3:4f:61: ad:20:96:21:b1:c4:9c:c4:7c:21:5e:34:1b:31:a3:45:e1:4c: 23:e0:c0:e0:2d:6d:eb:2b:8a:28:8f:2a:54:c5:dc:3f:b1:ec: 66:d7:ce:de:77:76:a5:92:f8:2f:de:a2:d4:fb:b2:83:b4:d9: 5d:e7:92:54:70:b2:18:ac:f1:e4:2a:49:a5:f4:8a:6c:1d:5e: ef:7a:95:21:14:7b:cc:4f:c8:ef:c7:33:ee:5f:92:55:ef:13: 20:02:98:2a:b6:62:8e:40:3d:1a:a9:93:0c:b2:f9:c5:b5:4e: 80:86:9d:f3:ba:ab:1c:e4:05:81:d3:78:dc:ad:08:67:49:c0: 8a:d8:2a:ee:eb:35:ed:b4:3d:81:73:c5:eb:20:e8:4f:f8:59: 56:4f:ab:d8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHzXJhnf9uOdDdb8xUVXbCmbV0PYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTA4MjMxNjU1NThaFw0yNTA4MjcwMTM5NThaMDMxMTAvBgNV BAMTKDUyMEEzRENBMzNGODVEN0RDRUE0NDc0M0FFNDNENUUyRTBCMjg4QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiaMmkX8Gr2+qBOyFSpBar3uzl CFozpWEFEdd8bwxMiqwuXjn/7bCidiYg2dnkMc8kF4wNb4uNgry1NMGKqUWpHUAz IBke1zBmYHHBpaKZ73bJx5iKV8YkI8x8jZgSU7V/0Ak1utMBjUZVNine7zjMATSb p/AqR+kvvjDuzKX9Ou9aURw0ZFn8jyIO+AqMPOOL5efHmMbXZbom5dgmVPk6zG2n ChfQ7+BTFbA79XLreG5uvyTbzJ70ikg/DmVuUT7/Y7yQPZ8AXiKehBNlNdqQ38NL pv9c6yMogjg86mwYSqJPvK4DOtZi4U7okRAqqLRmgPLYZdS1lDcOK3AZWTfZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUgo9yjP4XX3OpEdDrkPV4uCyiMEwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALsI2sTB7yWhPU8V0xyUCDH+v8BOYGCD6DDd T/XHhrfi0OVSyMo56HZZIRgIlSMKktIHX5JOa48/sYRht9VgQlxrda3bRWx/oD4c lMItIh36X4CmyGQvzmrLkxGjYlQ7ro+etLawesPEU/NPYa0gliGxxJzEfCFeNBsx o0XhTCPgwOAtbesriiiPKlTF3D+x7GbXzt53dqWS+C/eotT7soO02V3nklRwshis 8eQqSaX0imwdXu96lSEUe8xPyO/HM+5fklXvEyACmCq2Yo5APRqpkwyy+cW1ToCG nfO6qxzkBYHTeNytCGdJwIrYKu7rNe20PYFzxesg6E/4WVZPq9g= -----END CERTIFICATE-----Generated at Sat Aug 23 19:54:04 2025 by rpki-client