$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft File: 2FD08E6755CF1CCAAF9D5834449797848A706B57.mft (raw, json) Hash identifier: 0UFVldbipD9IGciDRKEeSxMbT07I8fyAOirIM67HMZo= Subject key identifier: 4F:3E:68:25:8A:A7:72:E6:60:4F:9D:15:59:BF:FA:46:B9:4D:EB:6E Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 21DE121E6CEEE0637215EFE7C99AEB9DF2B60BD3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft Manifest number: 03A5 Signing time: Sat 23 Aug 2025 10:32:00 +0000 Manifest this update: Sat 23 Aug 2025 10:27:00 +0000 Manifest next update: Tue 26 Aug 2025 19:07:00 +0000 Files and hashes: 1: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (hash: 73VvZzU4m43+fgjvOlr3Vv7ZHMtLS9jm+/QTGsOwFck=) 2: 2FD08E6755CF1CCAAF9D5834449797848A706B57.crl (hash: vQWuV6KFZ0YaRYBpGQyGcJUNrKEMEid0pSzReAg1wIQ=) 3: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (hash: QZlEVkF+HK3hEYAiWRapnYHmq7/bX0k5ZRTsDh0lSOE=) 4: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (hash: XjGDHZwetIWHjLp7+uPq3/exRvIl0m5tUGNnQVZ+/fU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 19:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:de:12:1e:6c:ee:e0:63:72:15:ef:e7:c9:9a:eb:9d:f2:b6:0b:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Aug 23 10:27:00 2025 GMT Not After : Aug 26 19:07:00 2025 GMT Subject: CN=4F3E68258AA772E6604F9D1559BFFA46B94DEB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cf:55:a3:fd:dc:be:16:2c:90:39:72:4c:96: 90:00:94:2f:e6:f3:25:33:c9:11:3f:20:c0:67:df: e0:7c:ef:44:00:f7:69:a0:39:37:15:f3:7b:b1:e5: a3:7b:60:34:0f:25:99:40:49:e5:98:60:13:18:ff: 10:c6:15:ec:80:4f:21:04:9a:8b:c3:b5:c5:18:6d: f2:03:04:08:7d:9b:17:a1:ac:dc:06:f0:33:aa:cc: a2:94:37:b4:03:df:a4:02:92:53:4e:6a:2e:af:34: ef:ae:45:9e:d6:d3:be:25:df:44:75:01:cd:81:eb: 3c:ac:06:f5:8b:b9:84:06:ca:84:b9:5f:96:e2:6f: 9a:a3:a5:95:8d:65:d9:de:6d:a6:e2:44:ef:07:e7: 1a:40:6e:27:38:f3:3a:82:68:c0:48:52:55:80:c6: 5d:13:db:f4:3a:fb:3d:3b:fa:9a:03:ee:20:03:78: 5f:11:03:94:16:6e:c6:ab:ed:7a:d4:23:95:bd:59: d2:6a:19:b9:88:0a:a4:ac:79:df:c4:7c:e9:1c:b1: ef:2c:ef:b2:5c:61:ec:51:7a:90:bc:98:77:fc:bd: f7:b8:93:d4:62:55:ea:5f:ed:ed:7a:6c:fb:29:4a: 4c:08:a2:f1:82:8a:77:03:82:3d:06:55:62:55:00: 32:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:3E:68:25:8A:A7:72:E6:60:4F:9D:15:59:BF:FA:46:B9:4D:EB:6E X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b6:93:a5:eb:23:57:f4:69:06:dc:49:d5:00:27:20:3c:e1: 09:65:58:13:ca:6b:0c:47:2f:57:f7:56:44:b2:75:aa:cc:d0: 6e:7d:02:ad:da:a7:37:a4:1e:26:7e:9e:0c:4d:f7:20:c8:e1: de:34:63:b1:b8:67:02:a0:88:84:28:a1:1c:21:4a:c0:b8:99: 99:bb:fe:10:64:c6:06:c4:18:0e:7b:38:0b:43:90:7b:13:6c: d8:9a:e0:9f:25:f0:18:13:4c:39:da:eb:41:a5:b9:c3:bd:0b: f6:fa:7b:61:51:39:f0:54:15:56:2e:da:d6:34:1a:2d:0c:05: 8b:71:e0:61:59:0d:31:eb:ac:d3:58:e3:db:ce:3b:26:5b:6f: 04:38:48:e4:8c:a5:42:0d:25:f7:aa:70:73:08:dc:fb:13:23: 32:22:77:d5:36:41:b9:19:32:93:b5:44:b6:55:a3:07:26:0a: 68:0a:cd:2c:f9:c9:be:69:2e:7d:16:3d:25:76:d1:dc:37:2d: e5:6f:8b:be:c5:37:56:21:6b:6e:f9:40:85:a8:7b:c0:17:ac: 60:95:21:99:4d:ff:ec:40:da:e3:42:48:ea:44:9b:3a:58:8b: cf:c1:6c:f2:7b:ad:3c:6f:15:ef:31:9a:fd:d3:7e:a5:f9:f8: 14:e4:ee:08 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUId4SHmzu4GNyFe/nyZrrnfK2C9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTA4MjMxMDI3MDBaFw0yNTA4MjYxOTA3MDBaMDMxMTAvBgNV BAMTKDRGM0U2ODI1OEFBNzcyRTY2MDRGOUQxNTU5QkZGQTQ2Qjk0REVCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGz1Wj/dy+FiyQOXJMlpAAlC/m 8yUzyRE/IMBn3+B870QA92mgOTcV83ux5aN7YDQPJZlASeWYYBMY/xDGFeyATyEE movDtcUYbfIDBAh9mxehrNwG8DOqzKKUN7QD36QCklNOai6vNO+uRZ7W074l30R1 Ac2B6zysBvWLuYQGyoS5X5bib5qjpZWNZdnebabiRO8H5xpAbic48zqCaMBIUlWA xl0T2/Q6+z07+poD7iADeF8RA5QWbsar7XrUI5W9WdJqGbmICqSsed/EfOkcse8s 77JcYexRepC8mHf8vfe4k9RiVepf7e16bPspSkwIovGCincDgj0GVWJVADI5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTz5oJYqncuZgT50VWb/6RrlN624wHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNkMGQ3ZmEtZDZmOC00YzIyLWI0 OGEtNThiOGVkOGVkZGE3LzAvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3 ODQ4QTcwNkI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD+2k6XrI1f0aQbcSdUAJyA84QllWBPKawxH L1f3VkSydarM0G59Aq3apzekHiZ+ngxN9yDI4d40Y7G4ZwKgiIQooRwhSsC4mZm7 /hBkxgbEGA57OAtDkHsTbNia4J8l8BgTTDna60GlucO9C/b6e2FROfBUFVYu2tY0 Gi0MBYtx4GFZDTHrrNNY49vOOyZbbwQ4SOSMpUINJfeqcHMI3PsTIzIid9U2QbkZ MpO1RLZVowcmCmgKzSz5yb5pLn0WPSV20dw3LeVvi77FN1Yha275QIWoe8AXrGCV IZlN/+xA2uNCSOpEmzpYi8/BbPJ7rTxvFe8xmv3TfqX5+BTk7gg= -----END CERTIFICATE-----Generated at Sat Aug 23 20:04:56 2025 by rpki-client