$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: hI4muTG5KpoOBf6TiK6urGAFf729eKkS1E4Nsu9a2PA= Subject key identifier: A2:41:D1:1B:EC:9A:BA:C2:71:26:0D:67:58:27:56:54:92:56:65:8D Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 5D82DC467026A04AB67BCC461B33BB58A1B85077 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: BB Signing time: Thu 21 Aug 2025 17:31:09 +0000 Manifest this update: Thu 21 Aug 2025 17:26:09 +0000 Manifest next update: Mon 25 Aug 2025 02:03:09 +0000 Files and hashes: 1: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=) 2: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: R4clRhQLPBPH9YqEYPY40IuMbfAC9kQgbnf3y4gq9v0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 02:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:82:dc:46:70:26:a0:4a:b6:7b:cc:46:1b:33:bb:58:a1:b8:50:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: Aug 21 17:26:09 2025 GMT Not After : Aug 25 02:03:09 2025 GMT Subject: CN=A241D11BEC9ABAC271260D67582756549256658D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3f:2a:fe:96:69:aa:e5:7c:27:fa:95:79:00: dc:2d:47:10:ab:59:bd:95:b7:25:78:77:d4:50:85: 0b:0c:0e:75:61:a4:87:20:b9:cb:2b:2a:18:5e:b7: 2b:0e:48:da:24:af:40:f0:11:1c:d8:f8:14:cd:77: 72:f2:f5:e7:8c:f6:d7:8c:d4:02:a9:42:67:5a:60: 7b:49:ca:b6:54:4e:29:86:e4:84:ff:f2:93:e0:60: 4b:37:85:6a:11:14:a9:50:70:e3:cb:c3:e1:2b:93: 23:ee:70:31:2b:e2:5e:8b:59:b2:c1:1b:87:94:27: d5:e8:11:83:ba:12:2c:52:74:95:4f:ac:af:ce:ff: 21:cb:3d:8c:ff:af:c5:09:4c:75:7b:5d:a9:6d:03: 71:34:79:ac:f6:35:1d:af:ac:5c:f9:62:81:35:ce: 54:20:44:f1:40:4e:70:d0:bd:97:50:b8:ce:6c:b5: 0c:60:65:68:ee:eb:c1:51:83:a8:ce:bb:7c:40:90: 3d:f2:c8:d8:86:26:c0:64:e6:e6:40:9a:c7:62:c8: 11:ff:99:c4:1b:47:40:94:5a:57:a7:1a:28:e0:f5: 53:5f:37:5e:a6:d3:28:5d:c2:f0:60:8f:7b:d0:9e: e3:41:e4:2f:ac:d2:a8:30:43:78:b7:0d:6c:89:54: 81:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:41:D1:1B:EC:9A:BA:C2:71:26:0D:67:58:27:56:54:92:56:65:8D X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ac:16:d2:48:a0:df:ea:4e:af:45:9e:6e:71:6a:8d:1c:56: be:1a:b6:12:0b:5b:fb:1f:09:ba:c6:e3:e0:85:ac:46:2f:3f: b2:cf:8d:26:6a:f5:95:3a:64:d7:e5:21:bd:2b:a7:ab:d2:8d: 54:c8:85:47:1c:08:4f:d9:88:ed:10:51:19:94:9c:d4:d5:89: 29:78:44:f9:e7:b7:68:e9:71:ee:87:21:eb:9f:39:4f:57:8f: 5d:aa:6c:47:38:f5:ce:af:a5:c3:6f:1a:6c:ae:d7:aa:b6:f8: aa:d9:3d:f3:f5:8d:a1:31:05:f4:5d:70:4a:89:01:ed:04:4b: b9:5c:58:3f:c4:70:1c:13:39:01:76:50:5f:fb:bd:d6:ef:82: 27:84:48:46:28:6d:b4:23:74:bf:e1:1f:fb:87:59:b2:c3:7d: 31:28:5d:a2:8c:ca:3d:b4:38:dd:96:4f:41:4c:0d:0a:f1:53: c8:45:0f:55:07:f0:dc:9e:69:2c:89:29:5c:77:6e:42:eb:ef: 25:38:8f:08:8e:9a:0c:0c:7e:ed:ae:b1:2c:5f:21:ea:05:6f: 99:49:50:a0:30:e7:7d:f4:55:28:ab:29:94:7d:80:97:a3:22: 9c:eb:4b:47:de:09:84:d7:8d:51:ec:57:a7:10:48:c7:d3:56: 3a:9d:bf:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXYLcRnAmoEq2e8xGGzO7WKG4UHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNTA4MjExNzI2MDlaFw0yNTA4MjUwMjAzMDlaMDMxMTAvBgNV BAMTKEEyNDFEMTFCRUM5QUJBQzI3MTI2MEQ2NzU4Mjc1NjU0OTI1NjY1OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqPyr+lmmq5Xwn+pV5ANwtRxCr Wb2VtyV4d9RQhQsMDnVhpIcgucsrKhhetysOSNokr0DwERzY+BTNd3Ly9eeM9teM 1AKpQmdaYHtJyrZUTimG5IT/8pPgYEs3hWoRFKlQcOPLw+ErkyPucDEr4l6LWbLB G4eUJ9XoEYO6EixSdJVPrK/O/yHLPYz/r8UJTHV7XaltA3E0eaz2NR2vrFz5YoE1 zlQgRPFATnDQvZdQuM5stQxgZWju68FRg6jOu3xAkD3yyNiGJsBk5uZAmsdiyBH/ mcQbR0CUWlenGijg9VNfN16m0yhdwvBgj3vQnuNB5C+s0qgwQ3i3DWyJVIHnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUokHRG+yausJxJg1nWCdWVJJWZY0wHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFCsFtJIoN/qTq9Fnm5xao0cVr4athILW/sf CbrG4+CFrEYvP7LPjSZq9ZU6ZNflIb0rp6vSjVTIhUccCE/ZiO0QURmUnNTViSl4 RPnnt2jpce6HIeufOU9Xj12qbEc49c6vpcNvGmyu16q2+KrZPfP1jaExBfRdcEqJ Ae0ES7lcWD/EcBwTOQF2UF/7vdbvgieESEYobbQjdL/hH/uHWbLDfTEoXaKMyj20 ON2WT0FMDQrxU8hFD1UH8NyeaSyJKVx3bkLr7yU4jwiOmgwMfu2usSxfIeoFb5lJ UKAw5330VSirKZR9gJejIpzrS0feCYTXjVHsV6cQSMfTVjqdv8A= -----END CERTIFICATE-----Generated at Sat Aug 23 14:21:07 2025 by rpki-client