$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft File: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft (raw, json) Hash identifier: zt7qOJYpGBTgmUSkpflFk+oAXbafccLmcl04ZI955l8= Subject key identifier: A2:4A:CF:14:66:E9:DB:48:DA:0A:9B:5B:8F:47:6F:A4:9E:E5:4D:28 Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 11F46A9B69EDC572F3E495F0F6C347930A062143 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft Manifest number: 01F2 Signing time: Sat 23 Aug 2025 03:42:03 +0000 Manifest this update: Sat 23 Aug 2025 03:37:03 +0000 Manifest next update: Tue 26 Aug 2025 10:29:03 +0000 Files and hashes: 1: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl (hash: l4pRSkVdHfSewufptxEhIyNjlI1eMD4nRpK+dvJ15Fk=) 2: 3130332e3138382e3235332e302f32342d3234203d3e20313439373337.roa (hash: fMitGvSIMZKR/xojJDzG2iWApTg4bDt/1kqJnOfFiTo=) 3: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (hash: kjCPg8CNqMlAMRebUqHb4gpHFMec5lXxDxlOd53bN+M=) 4: 3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa (hash: SLcrpmMGhS+iLPHlXSc6GQF6hzriCb0znzXu+cnHQhI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:29:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f4:6a:9b:69:ed:c5:72:f3:e4:95:f0:f6:c3:47:93:0a:06:21:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: Aug 23 03:37:03 2025 GMT Not After : Aug 26 10:29:03 2025 GMT Subject: CN=A24ACF1466E9DB48DA0A9B5B8F476FA49EE54D28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:49:55:82:d9:4b:78:6b:89:28:af:ef:e9:6c: fa:60:e1:bc:93:ab:bd:9a:f3:7f:3a:fc:03:2b:99: 27:c9:ff:68:46:33:1f:5e:5b:96:1c:5b:61:6f:d3: f1:eb:00:49:93:06:12:d9:b3:ed:be:ef:f0:00:db: 82:f1:4f:47:68:ee:d9:95:5c:e9:bf:5c:4e:62:31: ab:a6:ab:4d:11:f3:5d:ce:03:7b:9e:1a:83:93:c7: 63:a7:55:1d:13:11:8c:5a:40:17:62:de:45:6d:2c: ea:7b:c3:42:5b:13:da:63:89:1f:09:1b:75:bc:85: a9:bf:df:40:11:ed:33:80:3e:ec:5f:d8:ee:e0:38: f4:d7:9b:b0:12:12:1a:d8:34:cd:35:64:27:80:49: 72:27:71:09:2c:b5:16:ca:24:20:56:33:2e:4a:9d: 95:c5:42:27:84:80:20:f8:92:2e:0b:92:68:51:a9: b2:1c:02:34:d5:7b:94:a6:d1:62:5a:29:43:de:78: 16:84:4a:f6:e3:d9:07:3d:3f:c1:b1:1c:00:54:68: 6a:d7:c2:35:02:a8:51:b2:8f:19:37:f5:fc:52:e6: 83:48:63:38:04:10:8f:f3:81:3c:a4:66:df:72:93: 18:b6:f6:19:b1:b8:1e:f5:a8:16:92:ae:e0:e7:2d: 25:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4A:CF:14:66:E9:DB:48:DA:0A:9B:5B:8F:47:6F:A4:9E:E5:4D:28 X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:c5:38:45:d1:4f:1e:15:85:2c:52:69:ba:a7:5f:dc:fb:78: 78:8a:a9:d8:2c:1d:b9:34:a6:81:69:c7:ee:9b:8e:1e:ea:9a: ca:13:8c:b2:5f:14:23:94:cd:9e:e3:1b:00:30:a1:55:23:7f: 00:f4:82:ae:49:20:2c:42:53:96:70:36:86:fc:84:78:21:3b: 1a:32:c2:78:83:01:8b:b5:25:b8:86:aa:92:a6:8e:45:6c:6d: 1e:1f:b6:17:5a:31:db:0d:56:98:ab:49:9d:7c:66:1b:c7:9c: 5f:61:2c:c5:7e:b1:49:ba:67:d4:1a:8e:6a:d6:1a:2d:a0:bf: 55:55:19:47:a9:1c:b5:e3:eb:4b:1d:b1:ca:cb:aa:1a:41:dc: e0:11:27:8a:1e:0b:a7:df:71:a9:7f:08:81:70:d2:96:8c:1d: 52:f7:ff:28:71:94:5e:fa:c3:69:62:55:b8:4b:d6:d2:c0:7a: b9:62:44:1b:cc:81:e3:0d:88:22:ea:25:67:70:b9:87:23:2e: 94:9b:e8:95:e9:a2:c5:f1:91:2f:56:18:f9:34:cc:86:05:15: 32:91:de:29:d9:10:55:cb:74:68:9e:2f:bc:f5:86:d6:e0:4f: 50:45:91:2c:ba:15:b8:6f:c0:bd:f6:04:84:1e:b1:7f:a4:f2: de:0d:fe:33 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEfRqm2ntxXLz5JXw9sNHkwoGIUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNTA4MjMwMzM3MDNaFw0yNTA4MjYxMDI5MDNaMDMxMTAvBgNV BAMTKEEyNEFDRjE0NjZFOURCNDhEQTBBOUI1QjhGNDc2RkE0OUVFNTREMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+SVWC2Ut4a4kor+/pbPpg4byT q72a8386/AMrmSfJ/2hGMx9eW5YcW2Fv0/HrAEmTBhLZs+2+7/AA24LxT0do7tmV XOm/XE5iMaumq00R813OA3ueGoOTx2OnVR0TEYxaQBdi3kVtLOp7w0JbE9pjiR8J G3W8ham/30AR7TOAPuxf2O7gOPTXm7ASEhrYNM01ZCeASXIncQkstRbKJCBWMy5K nZXFQieEgCD4ki4LkmhRqbIcAjTVe5Sm0WJaKUPeeBaESvbj2Qc9P8GxHABUaGrX wjUCqFGyjxk39fxS5oNIYzgEEI/zgTykZt9ykxi29hmxuB71qBaSruDnLSVrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUokrPFGbp20jaCptbj0dvpJ7lTSgwHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWFlZDA5OGItNDliMS00ZjUzLWI3 NWEtMjczZTExYzI1MTQ5LzAvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4 MEE5ODI1NERCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABLFOEXRTx4VhSxSabqnX9z7eHiKqdgsHbk0 poFpx+6bjh7qmsoTjLJfFCOUzZ7jGwAwoVUjfwD0gq5JICxCU5ZwNob8hHghOxoy wniDAYu1JbiGqpKmjkVsbR4fthdaMdsNVpirSZ18ZhvHnF9hLMV+sUm6Z9QajmrW Gi2gv1VVGUepHLXj60sdscrLqhpB3OARJ4oeC6ffcal/CIFw0paMHVL3/yhxlF76 w2liVbhL1tLAerliRBvMgeMNiCLqJWdwuYcjLpSb6JXposXxkS9WGPk0zIYFFTKR 3inZEFXLdGieL7z1htbgT1BFkSy6FbhvwL32BIQesX+k8t4N/jM= -----END CERTIFICATE-----Generated at Sat Aug 23 18:29:40 2025 by rpki-client