$ rpki-client -vvf repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft File: DE4325727D17555F6DABCC72788E361C741D47CF.mft (raw, json) Hash identifier: 9mvmB0AwoN3gA3iyxJsIbcyfpr1YRVKd/HdBnog0Hk0= Subject key identifier: 13:E4:97:CB:B3:CC:F6:72:E0:BC:4A:C5:A8:59:A8:87:30:FF:4E:24 Authority key identifier: DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF Certificate issuer: /CN=DE4325727D17555F6DABCC72788E361C741D47CF Certificate serial: 5DDF8EA33777A29F342EB16D80A9D065F0CF0ED6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft Manifest number: 01BE Signing time: Fri 22 Aug 2025 05:30:03 +0000 Manifest this update: Fri 22 Aug 2025 05:25:03 +0000 Manifest next update: Mon 25 Aug 2025 10:31:03 +0000 Files and hashes: 1: 3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa (hash: G51YluNBJVnWJJLUM3oLTxL1SDaPjGOTZwYfGpp2BCE=) 2: 323430363a363263303a3a2f33322d3332203d3e20313431303734.roa (hash: 2Lk6auTAFU1KMFXNa9pRSBxyYyKqC713tFzsVGAw9EU=) 3: 3130332e3135352e32342e302f32342d3234203d3e20313431303734.roa (hash: frVX3KU+95dnNdoEu8zY99nlhl5o8DK8rzkyAoketnM=) 4: 3130332e3135352e32342e302f32332d3233203d3e20313431303734.roa (hash: 6aU9uz5CHHldU1HIevUJsAf5erVKI657uWFvNEr+ic0=) 5: DE4325727D17555F6DABCC72788E361C741D47CF.crl (hash: K0yaZlZiZqYr0mDxvXMUBec2dBKYZjfg9ryALuMIFcc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 10:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:df:8e:a3:37:77:a2:9f:34:2e:b1:6d:80:a9:d0:65:f0:cf:0e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4325727D17555F6DABCC72788E361C741D47CF Validity Not Before: Aug 22 05:25:03 2025 GMT Not After : Aug 25 10:31:03 2025 GMT Subject: CN=13E497CBB3CCF672E0BC4AC5A859A88730FF4E24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:17:80:b3:93:22:7e:33:2a:99:2d:75:b3: 28:cc:08:a9:06:f1:ea:f5:5d:22:e5:13:5b:15:f0: 8d:69:4a:a9:73:af:e8:fb:85:00:2c:ba:78:9c:0c: f2:c1:07:a7:e5:2d:5a:b9:fe:b4:42:98:66:b5:dc: ad:de:87:d9:fa:2d:b3:da:80:0a:18:60:16:91:01: 5a:ed:ba:92:19:d4:ba:d7:f0:fd:96:f5:d2:1e:2f: 13:84:66:db:e7:37:fe:00:39:6e:85:96:3e:de:d5: 00:ac:06:16:66:3b:17:2f:80:f2:fc:7c:d4:18:1e: 46:f6:85:8c:87:c9:18:67:e6:54:0c:6d:4c:b1:ef: 66:97:15:0c:2e:fc:cb:c3:c6:67:59:e6:3d:e9:d2: b4:e8:63:1c:36:92:22:c9:00:25:93:3a:53:38:6d: 57:4f:28:17:16:ea:50:e3:90:9a:56:0d:df:ff:5e: df:55:d8:5a:1e:87:9e:b4:77:97:39:7b:3b:f8:34: 79:f7:a6:e0:c5:97:3d:4c:02:8b:ab:b4:a4:53:24: 16:90:b6:ac:b7:f7:2e:cc:41:57:c1:8e:0f:9a:82: 8d:7d:c2:1b:bd:02:1e:b4:c4:f7:f1:ad:5d:6d:7d: b7:ee:ac:f3:fd:4a:49:8f:4d:c0:c9:b3:fb:d0:10: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E4:97:CB:B3:CC:F6:72:E0:BC:4A:C5:A8:59:A8:87:30:FF:4E:24 X509v3 Authority Key Identifier: keyid:DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:37:44:b2:ce:d0:63:dd:87:53:b3:fa:c5:14:4a:ab:33:4b: 66:7c:65:e8:2a:71:43:41:bb:ca:4c:cd:15:cd:ab:ef:c8:9c: 3c:29:63:ea:50:81:22:75:e9:cf:a0:4a:3f:50:c4:9b:5d:24: fb:0d:aa:8a:51:4e:0b:16:6d:2d:c9:ef:c4:2f:d0:bd:93:93: fc:5a:c3:f5:c4:a6:c2:36:91:58:4e:7e:7d:9c:7a:5f:cf:ba: 67:93:e6:56:6e:e3:4b:1b:ac:0b:49:29:01:d4:d3:0d:84:e1: 65:a3:37:d7:fc:72:87:32:da:b0:92:d4:8d:43:be:2d:11:2f: 3b:fe:c9:a1:10:93:98:4b:7e:a7:fa:5d:86:86:29:5f:0f:9d: 4f:c6:90:99:50:4d:d0:8f:f6:67:70:42:44:65:99:b0:4a:95: 88:44:44:da:4d:71:3b:be:e8:36:53:69:75:d1:5f:13:e3:8a: 28:c5:b1:f3:91:8e:df:ac:84:df:be:8c:fa:04:72:ce:a8:7f: 4d:73:d7:aa:89:f3:85:36:45:68:7b:bf:6c:03:97:79:1a:e8: 4f:c8:9e:0c:38:0d:65:c2:0a:77:03:9a:92:7c:2c:d6:49:e0: 00:8e:22:3b:65:f5:7e:09:85:b8:8f:d1:14:98:9a:07:37:b8: ec:3d:5f:a2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXd+Oozd3op80LrFtgKnQZfDPDtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3 NDFENDdDRjAeFw0yNTA4MjIwNTI1MDNaFw0yNTA4MjUxMDMxMDNaMDMxMTAvBgNV BAMTKDEzRTQ5N0NCQjNDQ0Y2NzJFMEJDNEFDNUE4NTlBODg3MzBGRjRFMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkHheAs5MifjMqmS11syjMCKkG 8er1XSLlE1sV8I1pSqlzr+j7hQAsunicDPLBB6flLVq5/rRCmGa13K3eh9n6LbPa gAoYYBaRAVrtupIZ1LrX8P2W9dIeLxOEZtvnN/4AOW6Flj7e1QCsBhZmOxcvgPL8 fNQYHkb2hYyHyRhn5lQMbUyx72aXFQwu/MvDxmdZ5j3p0rToYxw2kiLJACWTOlM4 bVdPKBcW6lDjkJpWDd//Xt9V2Foeh560d5c5ezv4NHn3puDFlz1MAourtKRTJBaQ tqy39y7MQVfBjg+ago19whu9Ah60xPfxrV1tfbfurPP9SkmPTcDJs/vQEPvpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE+SXy7PM9nLgvErFqFmohzD/TiQwHwYDVR0j BBgwFoAU3kMlcn0XVV9tq8xyeI42HHQdR88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDc2MDhjZS1jM2Y4LTQ0ZWItYWVlNy1iNzg0YWUyMGM5YzcvMC9ERTQzMjU3MjdE MTc1NTVGNkRBQkNDNzI3ODhFMzYxQzc0MUQ0N0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3NDFE NDdDRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA3NjA4Y2UtYzNmOC00NGViLWFl ZTctYjc4NGFlMjBjOWM3LzAvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2 MUM3NDFENDdDRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF03RLLO0GPdh1Oz+sUUSqszS2Z8ZegqcUNB u8pMzRXNq+/InDwpY+pQgSJ16c+gSj9QxJtdJPsNqopRTgsWbS3J78Qv0L2Tk/xa w/XEpsI2kVhOfn2cel/PumeT5lZu40sbrAtJKQHU0w2E4WWjN9f8cocy2rCS1I1D vi0RLzv+yaEQk5hLfqf6XYaGKV8PnU/GkJlQTdCP9mdwQkRlmbBKlYhERNpNcTu+ 6DZTaXXRXxPjiijFsfORjt+shN++jPoEcs6of01z16qJ84U2RWh7v2wDl3ka6E/I ngw4DWXCCncDmpJ8LNZJ4ACOIjtl9X4JhbiP0RSYmgc3uOw9X6I= -----END CERTIFICATE-----Generated at Sat Aug 23 19:50:31 2025 by rpki-client