$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft File: 3308A0FBD29F359AD61CAA389208E1D74CC28164.mft (raw, json) Hash identifier: yvSMKv/EnErWInLNjtsA39yx9vpUR4iqi8fVTPYlGS4= Subject key identifier: AC:D3:58:9F:F3:63:C6:19:D6:9F:4D:61:33:03:5D:4A:51:98:00:52 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 597EF739A3F1457C92A6919D2A4F2A6FA99A7257 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft Manifest number: F8 Signing time: Sat 18 Oct 2025 21:42:17 +0000 Manifest this update: Sat 18 Oct 2025 21:37:17 +0000 Manifest next update: Wed 22 Oct 2025 07:56:17 +0000 Files and hashes: 1: 3308A0FBD29F359AD61CAA389208E1D74CC28164.crl (hash: 1oijTWc5NhxevSCqtxxuid1KpznH2hQrzFIekWsrh+g=) 2: 3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa (hash: Csz/yUZ7Lzvn/nuu4THB9U+el9Pek+D7VdsMj61HX6w=) 3: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (hash: azmIwktH3vpajsF8gQt8znOMbH0C7Vn9MDVUjZva6CY=) 4: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (hash: ldyK2huQ95pUCINHnT0U5z7ALHHC4dFAFsmJktUnRJw=) 5: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (hash: EV9DFisiiygvSyZKF0tZ0Lxf1X12CCisGawptespLsI=) 6: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (hash: Hv2jdXQUlOnlnToQUuoVlZDHe+biYftXfxb3LM1GOc0=) 7: 3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa (hash: cpQ+yGOPRMcycDguY5pOMH22P4g6dN/h+7VVRFd0gvs=) 8: 3132312e3130312e3138382e302f32342d3234203d3e203338373835.roa (hash: jVBeyFMPWkiATlRCTVFrCw8EykcpuEgYVgn4T3UPT6M=) 9: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (hash: db2ZBDbPQBZ+1fLhUcrVMNSFZdZMKLIQU1qfyXpKY5M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 07:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:7e:f7:39:a3:f1:45:7c:92:a6:91:9d:2a:4f:2a:6f:a9:9a:72:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Oct 18 21:37:17 2025 GMT Not After : Oct 22 07:56:17 2025 GMT Subject: CN=ACD3589FF363C619D69F4D6133035D4A51980052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:44:6d:81:52:98:57:00:80:75:36:1f:bf:ba: 29:b1:9d:dc:7b:92:ca:fa:fa:03:bc:bd:6f:a7:cd: e5:41:d7:78:fb:c1:21:22:e6:f0:39:98:3b:0d:a4: eb:9e:68:df:06:f0:25:2f:f9:39:d2:ef:a2:c6:8e: 5f:cf:04:63:df:b5:9c:a8:ab:e4:5e:cc:49:52:30: d1:4c:09:7f:ec:aa:af:79:3c:2e:ca:f6:9d:b8:9e: 22:83:da:6a:00:0a:df:24:95:52:34:a6:b2:1c:aa: db:f8:0d:5f:33:b2:17:21:8d:d8:d8:72:99:46:f6: 27:7d:58:9c:22:c9:7c:b4:2e:8c:0b:19:e6:02:5c: 00:b2:67:df:d4:9d:61:0f:b2:03:6c:80:ce:43:7c: 23:d5:de:33:30:03:49:a9:57:e9:00:c8:f0:8c:a3: 51:9a:e1:33:cf:e8:92:4c:db:cd:4f:ed:f7:54:21: 9f:f2:08:0d:ba:b0:4a:b8:a9:9a:28:d9:62:81:6b: 2c:f3:4e:c2:66:f9:41:87:a5:e1:bf:98:99:23:2e: 18:7c:2d:ea:e9:36:25:31:9a:ba:8d:24:cb:dd:2d: 9c:47:18:5e:ec:42:27:3e:8e:f1:a5:4f:b0:0c:33: ab:9c:9b:34:63:d4:3e:29:82:bc:8a:72:fb:22:ab: d3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D3:58:9F:F3:63:C6:19:D6:9F:4D:61:33:03:5D:4A:51:98:00:52 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:32:f3:76:2f:f0:40:c7:4e:4f:1c:71:20:d8:fa:3d:12:86: 0d:df:67:28:9b:7b:29:27:36:62:02:a8:e6:2b:3b:2f:9b:b1: e7:b1:b3:c5:4d:d1:6f:a9:82:49:12:8b:23:8d:93:c5:02:ac: 9e:aa:43:4b:a0:d5:9f:96:fd:5b:8f:92:db:04:36:05:ef:ec: 04:c9:4a:41:1b:ea:8b:80:6c:b6:05:ae:a9:17:a6:e1:34:28: e3:45:1f:4d:89:4e:41:38:e4:f6:21:1a:90:fc:01:30:2d:ba: 28:49:9e:30:93:c6:18:c1:42:24:cf:f6:86:39:29:cb:d9:a1: c5:f3:c8:47:4a:f7:4e:59:60:bc:3c:64:ef:25:2d:f0:d7:cd: da:15:41:11:af:f4:75:79:1c:03:2a:ef:50:4f:a9:3c:96:be: 10:f3:26:57:82:4d:b2:f8:7a:44:72:70:4f:ec:87:9a:6c:79: 60:2a:70:0d:fe:1c:f5:81:31:f3:70:36:cb:3f:76:70:04:ab: aa:5a:13:d5:0c:4f:16:0a:8d:e4:1e:7b:92:ed:16:d7:2e:78: 5b:13:13:af:ac:69:f5:0f:d8:90:e1:2e:27:4e:fe:34:36:08: eb:c9:65:9f:5e:04:ac:78:36:b8:40:67:b3:55:fb:c2:c9:2b: fa:72:f9:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWX73OaPxRXySppGdKk8qb6maclcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTEwMTgyMTM3MTdaFw0yNTEwMjIwNzU2MTdaMDMxMTAvBgNV BAMTKEFDRDM1ODlGRjM2M0M2MTlENjlGNEQ2MTMzMDM1RDRBNTE5ODAwNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsRG2BUphXAIB1Nh+/uimxndx7 ksr6+gO8vW+nzeVB13j7wSEi5vA5mDsNpOueaN8G8CUv+TnS76LGjl/PBGPftZyo q+RezElSMNFMCX/sqq95PC7K9p24niKD2moACt8klVI0prIcqtv4DV8zshchjdjY cplG9id9WJwiyXy0LowLGeYCXACyZ9/UnWEPsgNsgM5DfCPV3jMwA0mpV+kAyPCM o1Ga4TPP6JJM281P7fdUIZ/yCA26sEq4qZoo2WKBayzzTsJm+UGHpeG/mJkjLhh8 LerpNiUxmrqNJMvdLZxHGF7sQic+jvGlT7AMM6ucmzRj1D4pgryKcvsiq9P9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrNNYn/NjxhnWn01hMwNdSlGYAFIwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTU3MmRmYmUtNGNhMC00YTQ2LTgw MzctNDk2OGVkOTdjYWRjLzAvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUx RDc0Q0MyODE2NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMYy83Yv8EDHTk8ccSDY+j0Shg3fZyibeykn NmICqOYrOy+bseexs8VN0W+pgkkSiyONk8UCrJ6qQ0ug1Z+W/VuPktsENgXv7ATJ SkEb6ouAbLYFrqkXpuE0KONFH02JTkE45PYhGpD8ATAtuihJnjCTxhjBQiTP9oY5 KcvZocXzyEdK905ZYLw8ZO8lLfDXzdoVQRGv9HV5HAMq71BPqTyWvhDzJleCTbL4 ekRycE/sh5pseWAqcA3+HPWBMfNwNss/dnAEq6paE9UMTxYKjeQee5LtFtcueFsT E6+safUP2JDhLidO/jQ2COvJZZ9eBKx4NrhAZ7NV+8LJK/py+SE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:54:53 2025 by rpki-client