$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft File: 3308A0FBD29F359AD61CAA389208E1D74CC28164.mft (raw, json) Hash identifier: gIyvSgbIzHKDAsVr1ojnuiHOw90i8RwoRpG6QjjpEqo= Subject key identifier: 6A:75:49:0B:C5:42:9B:14:F9:81:1E:65:A2:1B:AF:3B:F3:3F:3B:67 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 55F695D54D668F5674CC5FECE44E57B587A15695 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft Manifest number: DE Signing time: Thu 21 Aug 2025 06:32:18 +0000 Manifest this update: Thu 21 Aug 2025 06:27:18 +0000 Manifest next update: Sun 24 Aug 2025 16:31:18 +0000 Files and hashes: 1: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (hash: db2ZBDbPQBZ+1fLhUcrVMNSFZdZMKLIQU1qfyXpKY5M=) 2: 3132312e3130312e3138382e302f32342d3234203d3e203338373835.roa (hash: jVBeyFMPWkiATlRCTVFrCw8EykcpuEgYVgn4T3UPT6M=) 3: 3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa (hash: cpQ+yGOPRMcycDguY5pOMH22P4g6dN/h+7VVRFd0gvs=) 4: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (hash: ldyK2huQ95pUCINHnT0U5z7ALHHC4dFAFsmJktUnRJw=) 5: 3308A0FBD29F359AD61CAA389208E1D74CC28164.crl (hash: L5Om5Dq596HcsAnXaXqDctW4bNhoD2tluBcwF/cvAD8=) 6: 3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa (hash: Csz/yUZ7Lzvn/nuu4THB9U+el9Pek+D7VdsMj61HX6w=) 7: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (hash: Hv2jdXQUlOnlnToQUuoVlZDHe+biYftXfxb3LM1GOc0=) 8: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (hash: azmIwktH3vpajsF8gQt8znOMbH0C7Vn9MDVUjZva6CY=) 9: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (hash: EV9DFisiiygvSyZKF0tZ0Lxf1X12CCisGawptespLsI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 16:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:f6:95:d5:4d:66:8f:56:74:cc:5f:ec:e4:4e:57:b5:87:a1:56:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Aug 21 06:27:18 2025 GMT Not After : Aug 24 16:31:18 2025 GMT Subject: CN=6A75490BC5429B14F9811E65A21BAF3BF33F3B67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:38:98:da:7d:09:8c:7e:a8:b6:f3:fc:70:ac: 36:db:7f:b1:c8:19:77:ea:6e:f8:6d:27:1d:22:e3: 10:c7:d5:2e:6b:c6:bb:d2:0f:03:b1:45:5c:f1:02: 28:f9:70:d1:79:b1:dc:5a:dd:ae:d6:a5:33:3a:b3: 9c:5d:da:aa:96:22:c0:34:31:7c:59:ad:ea:fb:b2: 5c:42:f4:7d:a4:f1:f8:ab:4d:78:cb:a3:1f:1e:2c: 05:b9:f2:73:12:38:5a:67:d3:80:e9:38:e1:0d:ce: c9:21:57:5d:30:82:39:0c:33:23:fe:5b:68:8b:67: 7e:e0:e5:bb:4f:97:fc:9a:ee:39:bc:98:ac:0f:73: 6b:76:1a:39:0a:a7:3f:9f:f5:e9:0b:d0:f4:97:9c: d6:e2:81:22:9a:1e:5c:58:86:3d:e3:1b:f1:33:f0: a0:e1:38:e0:16:a3:75:2a:c5:a9:64:05:92:16:b7: 94:19:0a:6f:ed:39:a4:64:b3:80:10:64:32:f9:9b: 69:7f:61:d1:a1:b6:e9:1e:b3:9a:b5:27:c2:43:03: 4e:24:e7:61:e7:52:cd:9f:77:88:13:71:f8:cc:5d: 71:b1:30:c0:70:c6:87:90:e8:d0:37:69:bd:8f:88: ec:ad:c1:a2:e6:44:03:38:e7:b6:cc:c1:49:ff:77: 66:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:75:49:0B:C5:42:9B:14:F9:81:1E:65:A2:1B:AF:3B:F3:3F:3B:67 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b4:5a:56:d6:00:2a:69:69:41:43:32:f9:95:35:f3:92:16: 4b:06:9b:16:27:af:ec:05:9e:08:bb:94:3b:dc:5a:ae:a2:4d: dd:cc:70:f8:bd:d2:a2:f7:21:c8:c8:6f:9b:83:28:b4:a8:bc: b9:2a:1a:42:83:93:56:b7:b7:96:33:96:11:2f:90:3d:ae:4a: 8d:35:ed:83:cf:03:16:84:67:a7:fb:24:f9:6f:05:ef:6f:74: 96:ea:f8:76:c5:b4:b2:95:1e:28:59:61:9c:be:2f:a2:bb:31: ae:cc:62:2b:33:5b:e2:98:ab:f9:83:a4:94:c8:5b:57:7c:d2: c2:a7:92:1c:38:d0:a7:24:0a:6b:5e:aa:ca:62:17:88:a2:ec: 27:c7:4a:3c:13:a9:7f:5a:f0:19:34:ef:97:f4:d5:94:65:44: 60:69:75:2b:ff:01:72:cf:11:75:a1:e3:96:5a:ca:d2:06:13: e1:f1:14:2d:75:c4:ba:bf:ae:64:e9:9b:d9:8e:ab:e8:cc:c4: 39:9c:68:84:39:71:c7:4e:71:38:b4:26:f1:49:7f:8a:3c:af: 09:4d:d0:f6:a7:fa:d3:63:0e:3e:fe:a8:4b:12:b1:98:b6:8a: 5a:1f:be:a8:87:d4:14:82:f7:b3:9e:15:55:11:cf:4b:5f:d0: 43:88:56:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVfaV1U1mj1Z0zF/s5E5XtYehVpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA4MjEwNjI3MThaFw0yNTA4MjQxNjMxMThaMDMxMTAvBgNV BAMTKDZBNzU0OTBCQzU0MjlCMTRGOTgxMUU2NUEyMUJBRjNCRjMzRjNCNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdOJjafQmMfqi28/xwrDbbf7HI GXfqbvhtJx0i4xDH1S5rxrvSDwOxRVzxAij5cNF5sdxa3a7WpTM6s5xd2qqWIsA0 MXxZrer7slxC9H2k8firTXjLox8eLAW58nMSOFpn04DpOOENzskhV10wgjkMMyP+ W2iLZ37g5btPl/ya7jm8mKwPc2t2GjkKpz+f9ekL0PSXnNbigSKaHlxYhj3jG/Ez 8KDhOOAWo3UqxalkBZIWt5QZCm/tOaRks4AQZDL5m2l/YdGhtukes5q1J8JDA04k 52HnUs2fd4gTcfjMXXGxMMBwxoeQ6NA3ab2PiOytwaLmRAM457bMwUn/d2abAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUanVJC8VCmxT5gR5lohuvO/M/O2cwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTU3MmRmYmUtNGNhMC00YTQ2LTgw MzctNDk2OGVkOTdjYWRjLzAvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUx RDc0Q0MyODE2NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEu0WlbWACppaUFDMvmVNfOSFksGmxYnr+wF ngi7lDvcWq6iTd3McPi90qL3IcjIb5uDKLSovLkqGkKDk1a3t5YzlhEvkD2uSo01 7YPPAxaEZ6f7JPlvBe9vdJbq+HbFtLKVHihZYZy+L6K7Ma7MYiszW+KYq/mDpJTI W1d80sKnkhw40KckCmteqspiF4ii7CfHSjwTqX9a8Bk075f01ZRlRGBpdSv/AXLP EXWh45ZaytIGE+HxFC11xLq/rmTpm9mOq+jMxDmcaIQ5ccdOcTi0JvFJf4o8rwlN 0Pan+tNjDj7+qEsSsZi2ilofvqiH1BSC97OeFVURz0tf0EOIVhg= -----END CERTIFICATE-----Generated at Sat Aug 23 14:13:22 2025 by rpki-client