$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft File: 4E52504397B6835784BD4E67D8048C0D1CE3B242.mft (raw, json) Hash identifier: ehl624eGiCvk9haCVtGS6UVQ7VrZ5xEgyQDxNCjOcfc= Subject key identifier: F0:AD:6E:29:B7:7E:07:AC:F5:0F:88:D5:75:38:BA:1D:C4:93:2D:18 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 2CA948163F5180F0AA090648D85454945541251F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft Manifest number: 0501 Signing time: Fri 22 Aug 2025 09:03:14 +0000 Manifest this update: Fri 22 Aug 2025 08:58:14 +0000 Manifest next update: Mon 25 Aug 2025 20:15:14 +0000 Files and hashes: 1: 4E52504397B6835784BD4E67D8048C0D1CE3B242.crl (hash: jKDMQmUxAAl28EuoVD3A2p4NmbH6ryBBB7yVGHf4sTs=) 2: 323430333a653630303a3a2f33322d3332203d3e203538333736.roa (hash: bVu2SaAa9IWvlQ6o6+veKHD0ZA7xlveBNCWEZ2Ja1Z4=) 3: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (hash: AgqSIkRIGOrQPc+1mZW5lGFc3zRhyUQtTv3vz8FdAPU=) 4: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (hash: kZ6+BhGljQylz/AhW+5O41yNHq5oDRG+mIs3e+fq18E=) 5: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (hash: AI/USbQ/a0LFBdjZWtV22hxC6HEFmmDia8w1dNa/lbM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a9:48:16:3f:51:80:f0:aa:09:06:48:d8:54:54:94:55:41:25:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Aug 22 08:58:14 2025 GMT Not After : Aug 25 20:15:14 2025 GMT Subject: CN=F0AD6E29B77E07ACF50F88D57538BA1DC4932D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8a:ea:bc:a3:bf:41:39:b1:0b:7b:0a:a9:b5: ac:d6:74:02:b3:2b:3d:f0:7a:9d:ef:de:45:b9:68: b9:76:29:0e:79:fd:9a:03:ca:aa:e0:48:39:e0:53: 0f:26:f7:b7:b4:e7:2e:1f:f8:ab:84:e0:e1:82:70: 7a:96:43:2d:22:91:77:19:2c:ec:a8:f0:30:f1:2a: 66:58:f3:f5:b8:ec:14:18:74:bd:75:5e:b9:1e:f5: 5c:5f:bd:4f:d6:ed:05:54:14:b4:ce:8d:bd:43:fa: f7:02:be:64:4a:dc:0d:50:40:8d:f7:bc:f0:89:e3: 99:6f:48:4a:ee:3e:c1:ff:9e:b6:97:e3:16:bc:84: 41:59:9e:8b:ba:36:5f:9a:6d:17:e4:7d:57:b9:ef: 14:2d:3a:1e:e1:70:b4:93:a1:90:ed:a8:83:24:bc: 00:ba:64:cb:0a:e3:d0:e9:ea:c4:4a:0b:b9:c1:a4: 41:ef:e4:d4:cd:d1:10:a9:a0:a6:ba:d1:13:b4:63: 1f:47:86:47:b6:a5:16:e8:6f:bf:dc:34:19:93:f9: 9f:ab:01:42:f0:2a:ce:7e:96:4f:76:22:9c:c6:cf: 99:c2:da:7f:9e:19:95:f2:8d:9e:80:96:5f:21:01: 69:5f:32:8a:3b:8d:95:df:07:fe:dc:7b:24:97:1d: f5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AD:6E:29:B7:7E:07:AC:F5:0F:88:D5:75:38:BA:1D:C4:93:2D:18 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:1c:1f:ed:a2:c7:57:25:9f:58:91:ae:8b:90:14:1a:07:54: ee:1c:ba:43:2d:3d:3a:5b:d9:46:34:86:83:63:c3:78:97:e1: db:68:c1:fb:b0:11:5a:5f:0d:c9:9d:fc:2f:53:f5:11:87:25: 6a:4a:c6:6a:63:f3:c9:57:07:8a:c0:d2:31:cf:b9:3d:8b:c1: 0c:9d:17:c6:f3:f3:eb:37:17:23:8c:c7:e5:1f:9a:e5:5c:2e: 50:4b:86:fb:bb:a6:13:21:f3:6b:94:86:48:af:56:f3:ca:fe: 73:6c:de:24:9c:50:5a:07:23:67:36:b7:5c:8f:59:5e:fd:d7: 41:fe:8d:30:a1:f2:6f:b9:1f:b0:b9:c0:0d:41:6c:c7:b1:15: 08:79:86:9d:d1:59:6d:97:88:a4:25:db:49:a9:6f:c0:3e:f6: 7f:fa:bd:8b:67:a9:38:2c:8a:4c:ea:1c:cf:ee:f4:41:55:b2: 84:48:21:35:83:22:7d:27:86:39:c2:e2:6f:20:e5:d7:b5:66: 7d:95:ec:3f:65:ef:84:15:e4:49:1c:41:1b:2f:64:cb:c3:99: 6f:c3:ec:e3:71:f9:4b:7f:bd:c5:43:1a:42:b0:de:b4:6b:0b: 26:ed:3b:81:90:b5:71:8e:51:cc:06:c6:7d:12:3e:54:d1:84: 13:da:82:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULKlIFj9RgPCqCQZI2FRUlFVBJR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNTA4MjIwODU4MTRaFw0yNTA4MjUyMDE1MTRaMDMxMTAvBgNV BAMTKEYwQUQ2RTI5Qjc3RTA3QUNGNTBGODhENTc1MzhCQTFEQzQ5MzJEMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUiuq8o79BObELewqptazWdAKz Kz3wep3v3kW5aLl2KQ55/ZoDyqrgSDngUw8m97e05y4f+KuE4OGCcHqWQy0ikXcZ LOyo8DDxKmZY8/W47BQYdL11Xrke9VxfvU/W7QVUFLTOjb1D+vcCvmRK3A1QQI33 vPCJ45lvSEruPsH/nraX4xa8hEFZnou6Nl+abRfkfVe57xQtOh7hcLSToZDtqIMk vAC6ZMsK49Dp6sRKC7nBpEHv5NTN0RCpoKa60RO0Yx9Hhke2pRbob7/cNBmT+Z+r AULwKs5+lk92IpzGz5nC2n+eGZXyjZ6All8hAWlfMoo7jZXfB/7ceySXHfU7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8K1uKbd+B6z1D4jVdTi6HcSTLRgwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODkxZDNjMzAtOTVkYy00YjcyLWFl MWItYWQxZTk4YjBlMTc5LzAvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhD MEQxQ0UzQjI0Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE0cH+2ix1cln1iRrouQFBoHVO4cukMtPTpb 2UY0hoNjw3iX4dtowfuwEVpfDcmd/C9T9RGHJWpKxmpj88lXB4rA0jHPuT2LwQyd F8bz8+s3FyOMx+UfmuVcLlBLhvu7phMh82uUhkivVvPK/nNs3iScUFoHI2c2t1yP WV7910H+jTCh8m+5H7C5wA1BbMexFQh5hp3RWW2XiKQl20mpb8A+9n/6vYtnqTgs ikzqHM/u9EFVsoRIITWDIn0nhjnC4m8g5de1Zn2V7D9l74QV5EkcQRsvZMvDmW/D 7ONx+Ut/vcVDGkKw3rRrCybtO4GQtXGOUcwGxn0SPlTRhBPagkI= -----END CERTIFICATE-----Generated at Sat Aug 23 14:02:17 2025 by rpki-client