$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: wwYKBH1sfaeDCpSIoQmsRiV6iwLtD6r+JxHaVnjWHvY= Subject key identifier: BD:6D:6B:C0:21:B8:FB:4A:61:A4:19:C5:8C:E0:BD:B5:61:05:3B:42 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 3A4498651D075EBED93852E1931DD5DFBD5F2876 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 0354 Signing time: Thu 21 Aug 2025 20:41:40 +0000 Manifest this update: Thu 21 Aug 2025 20:36:40 +0000 Manifest next update: Mon 25 Aug 2025 07:39:40 +0000 Files and hashes: 1: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) 2: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: iMfn8BiYoWNIFIs9wHZClEorYSE+hTI4wuipx3vg7yo=) 3: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 4: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:44:98:65:1d:07:5e:be:d9:38:52:e1:93:1d:d5:df:bd:5f:28:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Aug 21 20:36:40 2025 GMT Not After : Aug 25 07:39:40 2025 GMT Subject: CN=BD6D6BC021B8FB4A61A419C58CE0BDB561053B42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6a:78:19:01:8a:42:2b:02:7d:11:d9:1d:26: f9:c4:a2:ae:26:0f:c0:0d:72:06:3c:4b:3e:a1:5e: 65:cf:89:ce:5b:aa:e1:47:47:9d:16:b5:68:89:ec: 97:e1:57:7b:ea:99:4f:63:59:d5:97:36:82:df:3f: 77:ea:ee:9d:6e:0f:2a:ed:d4:fb:f7:bd:73:59:c5: 49:3b:3d:5c:be:90:22:81:d8:62:7f:8c:95:56:2a: 95:f9:37:5d:0b:e3:db:a8:a3:6d:6d:48:34:d0:76: 26:2d:26:56:ed:52:e5:0c:93:c1:41:5b:a9:f6:32: e6:0b:ae:71:87:8d:20:e8:0e:d3:39:a4:83:7b:8e: 13:eb:d9:44:30:de:e6:54:c2:b3:65:5e:f9:d3:11: 57:0a:4a:f8:3b:fa:01:8f:15:86:0b:9c:41:ea:ac: 70:36:c4:91:bd:4e:ef:d9:bd:05:fd:71:5f:fb:a5: d9:07:25:6a:53:cd:54:35:39:89:95:0f:f1:44:22: 02:76:46:26:1e:7c:8c:5f:16:de:7e:27:07:a7:37: bf:23:6a:2b:1e:4d:c6:a6:6d:7f:70:24:44:ed:46: e8:18:b2:0d:97:71:a7:9b:e0:47:51:f1:de:75:36: 35:fc:eb:ae:25:1f:dc:dc:d8:88:96:25:c9:bb:f2: 21:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6D:6B:C0:21:B8:FB:4A:61:A4:19:C5:8C:E0:BD:B5:61:05:3B:42 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:a7:88:74:4c:0e:6a:e6:11:91:8f:19:60:54:01:43:71:92: 8d:47:55:ac:c7:5f:49:70:48:27:50:81:5e:bf:3b:cb:e1:04: 67:b5:c0:6f:05:be:e0:25:d5:8e:2b:7c:20:19:ee:35:30:fe: 0a:cf:09:c7:bf:47:2a:76:92:c8:ea:f0:96:57:1c:6c:4d:65: f2:7e:55:8b:7d:e2:65:ea:46:40:b7:04:f0:f2:8e:b5:59:85: e6:5a:ac:e6:7c:5f:57:c7:c9:e2:90:18:ae:4f:bf:a2:6d:82: 00:4d:ef:e8:51:e4:b6:7c:98:c8:4e:ae:05:1d:2c:53:4f:6d: ae:85:aa:a6:9d:64:e3:29:67:4d:02:43:db:6b:2e:0e:37:d5: fc:a8:3f:a2:cb:62:e6:c3:eb:90:1f:e0:eb:c3:e4:dd:51:16: 37:78:8b:4d:ee:c6:f7:f0:22:39:fb:a5:c0:e0:11:be:5b:6a: d6:88:f3:c0:86:66:52:09:7d:91:e8:41:f5:7b:ab:21:ef:39: 3e:8f:bd:2b:b3:1c:17:37:42:f9:44:bb:bd:c5:a3:ff:11:52: 4a:f1:ae:b4:b8:6f:e5:a2:69:60:bf:85:77:5a:48:84:09:8b: 46:25:ab:2d:6d:db:fc:22:20:66:a0:07:d8:63:a6:2f:60:45: 3d:48:1d:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOkSYZR0HXr7ZOFLhkx3V371fKHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTA4MjEyMDM2NDBaFw0yNTA4MjUwNzM5NDBaMDMxMTAvBgNV BAMTKEJENkQ2QkMwMjFCOEZCNEE2MUE0MTlDNThDRTBCREI1NjEwNTNCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaangZAYpCKwJ9EdkdJvnEoq4m D8ANcgY8Sz6hXmXPic5bquFHR50WtWiJ7JfhV3vqmU9jWdWXNoLfP3fq7p1uDyrt 1Pv3vXNZxUk7PVy+kCKB2GJ/jJVWKpX5N10L49uoo21tSDTQdiYtJlbtUuUMk8FB W6n2MuYLrnGHjSDoDtM5pIN7jhPr2UQw3uZUwrNlXvnTEVcKSvg7+gGPFYYLnEHq rHA2xJG9Tu/ZvQX9cV/7pdkHJWpTzVQ1OYmVD/FEIgJ2RiYefIxfFt5+JwenN78j aiseTcambX9wJETtRugYsg2Xcaeb4EdR8d51NjX8664lH9zc2IiWJcm78iGRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvW1rwCG4+0phpBnFjOC9tWEFO0IwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAManiHRMDmrmEZGPGWBUAUNxko1HVazHX0lw SCdQgV6/O8vhBGe1wG8FvuAl1Y4rfCAZ7jUw/grPCce/Ryp2ksjq8JZXHGxNZfJ+ VYt94mXqRkC3BPDyjrVZheZarOZ8X1fHyeKQGK5Pv6JtggBN7+hR5LZ8mMhOrgUd LFNPba6FqqadZOMpZ00CQ9trLg431fyoP6LLYubD65Af4OvD5N1RFjd4i03uxvfw Ijn7pcDgEb5bataI88CGZlIJfZHoQfV7qyHvOT6PvSuzHBc3QvlEu73Fo/8RUkrx rrS4b+WiaWC/hXdaSIQJi0Ylqy1t2/wiIGagB9hjpi9gRT1IHVM= -----END CERTIFICATE-----Generated at Sat Aug 23 10:34:24 2025 by rpki-client