$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: NlSzvVeVV0b/O547UqrufwVxF7sd93UXd24o6BRfd7w= Subject key identifier: A1:DC:30:BC:1E:6B:62:61:68:61:C5:F9:3A:92:B4:63:4F:F5:68:1B Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 2B38C469C4319F21268EDDDE17805474E6654503 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: AE Signing time: Fri 22 Aug 2025 20:22:08 +0000 Manifest this update: Fri 22 Aug 2025 20:17:08 +0000 Manifest next update: Mon 25 Aug 2025 23:09:08 +0000 Files and hashes: 1: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 2: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 3: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 4: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 5: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: xLjILTcg/KfFvjS0YtaCeB933tTqEYUqBY8FGoxz5c8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:38:c4:69:c4:31:9f:21:26:8e:dd:de:17:80:54:74:e6:65:45:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Aug 22 20:17:08 2025 GMT Not After : Aug 25 23:09:08 2025 GMT Subject: CN=A1DC30BC1E6B62616861C5F93A92B4634FF5681B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:77:6b:ab:f5:df:9d:f0:b0:9b:fc:57:98:b8: c2:fa:d2:a9:0e:23:10:4a:96:2f:da:84:94:ef:1a: fc:4f:e7:a1:81:23:04:11:18:0b:f7:6d:a1:fe:04: 3d:7f:c9:48:fc:8d:d4:52:e7:59:65:46:f2:94:fe: f1:8a:77:61:ab:df:63:c7:67:d7:8d:21:13:c7:67: ae:07:5b:d1:b6:03:60:36:33:e1:02:ea:7d:b2:a0: 42:14:17:df:5a:50:fb:21:53:25:44:9e:37:be:f9: b2:4c:d6:bd:00:a8:0a:6e:d0:a2:b0:99:49:eb:15: 93:e1:0c:1f:c9:f7:36:05:26:f1:30:18:0d:6c:1b: fd:8d:39:97:0f:38:60:74:78:66:85:5d:5e:b5:48: 65:0f:3b:b9:e1:5e:22:5b:88:57:de:05:14:01:50: 97:eb:53:a5:20:37:5e:83:4a:39:dc:34:a0:f8:24: 94:bb:42:f8:6b:ad:17:2e:04:f7:73:e4:7a:8c:35: 15:bb:38:51:16:7e:0a:bd:92:ec:3c:a6:db:66:37: a7:a0:fc:16:46:4a:5f:4f:ab:f1:08:88:a1:28:58: b4:5a:ba:81:a9:2f:75:a8:f4:24:9b:20:6d:f7:c7: 70:af:6c:fe:8d:c9:42:42:6d:1e:94:c8:b0:c7:ba: 6d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:DC:30:BC:1E:6B:62:61:68:61:C5:F9:3A:92:B4:63:4F:F5:68:1B X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:82:e2:97:30:16:b7:24:43:79:a0:6a:02:99:d9:67:50:ea: 97:98:ba:87:ac:cd:22:50:3e:c1:3a:06:c6:6d:0f:8f:6e:81: 59:03:e1:47:a9:16:b8:1e:6a:fc:e0:2d:a1:ce:7f:11:0a:5f: be:f4:be:4e:67:96:b9:68:d3:dd:6c:eb:1d:c2:30:cf:5b:ae: cc:c0:df:38:28:5b:63:b5:9f:cc:21:b6:e9:d5:fd:16:55:e9: e0:bb:30:0f:19:15:e3:82:79:5e:ac:96:87:ba:95:27:d0:a2: 21:34:88:83:fd:58:a5:d9:3f:9b:69:00:3e:56:9a:a0:87:9e: 44:dd:97:a6:80:c5:2f:eb:5f:97:1f:c6:c7:30:e5:d4:a3:72: 4f:70:2f:44:ca:d0:ea:da:65:91:3f:75:66:74:a7:73:bc:02: cb:24:a9:31:a9:38:dc:cd:21:51:ae:30:f2:28:bc:3c:d0:0c: d5:81:b0:eb:a5:67:4a:08:18:a9:a1:4c:72:fd:4b:98:ac:99: 63:70:87:e8:37:df:5f:1a:32:3d:fc:24:01:f0:a0:2b:02:f8: d0:e8:fa:70:4a:f8:7f:18:1d:b9:48:1a:a9:9c:4f:d6:37:b3: fd:2f:a7:eb:5c:45:88:9f:b6:3a:f3:3f:cf:ca:6c:dd:4a:c1: a6:16:55:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKzjEacQxnyEmjt3eF4BUdOZlRQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTA4MjIyMDE3MDhaFw0yNTA4MjUyMzA5MDhaMDMxMTAvBgNV BAMTKEExREMzMEJDMUU2QjYyNjE2ODYxQzVGOTNBOTJCNDYzNEZGNTY4MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQd2ur9d+d8LCb/FeYuML60qkO IxBKli/ahJTvGvxP56GBIwQRGAv3baH+BD1/yUj8jdRS51llRvKU/vGKd2Gr32PH Z9eNIRPHZ64HW9G2A2A2M+EC6n2yoEIUF99aUPshUyVEnje++bJM1r0AqApu0KKw mUnrFZPhDB/J9zYFJvEwGA1sG/2NOZcPOGB0eGaFXV61SGUPO7nhXiJbiFfeBRQB UJfrU6UgN16DSjncNKD4JJS7QvhrrRcuBPdz5HqMNRW7OFEWfgq9kuw8pttmN6eg /BZGSl9Pq/EIiKEoWLRauoGpL3Wo9CSbIG33x3CvbP6NyUJCbR6UyLDHum3JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUodwwvB5rYmFoYcX5OpK0Y0/1aBswHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEGC4pcwFrckQ3mgagKZ2WdQ6peYuoeszSJQ PsE6BsZtD49ugVkD4UepFrgeavzgLaHOfxEKX770vk5nlrlo091s6x3CMM9brszA 3zgoW2O1n8whtunV/RZV6eC7MA8ZFeOCeV6sloe6lSfQoiE0iIP9WKXZP5tpAD5W mqCHnkTdl6aAxS/rX5cfxscw5dSjck9wL0TK0OraZZE/dWZ0p3O8AsskqTGpONzN IVGuMPIovDzQDNWBsOulZ0oIGKmhTHL9S5ismWNwh+g3318aMj38JAHwoCsC+NDo +nBK+H8YHblIGqmcT9Y3s/0vp+tcRYiftjrzP8/KbN1KwaYWVbA= -----END CERTIFICATE-----Generated at Sat Aug 23 10:36:12 2025 by rpki-client