$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: nbRKrFkDKx/HRr7vJq6VTu7o0TnBMDBQL00ZKhCvFOE= Subject key identifier: D8:9A:F3:B5:9B:C0:19:51:7F:D0:A4:5E:BA:D3:75:0B:26:D4:FB:5E Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 5A384DA98D682E7412D63C2547B7369D655C7ED6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 01AF Signing time: Thu 21 Aug 2025 12:21:22 +0000 Manifest this update: Thu 21 Aug 2025 12:16:22 +0000 Manifest next update: Sun 24 Aug 2025 12:22:22 +0000 Files and hashes: 1: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 1GaxlmyMBH5Av+K+s7DcySXoa/4RweD6yLZx8aQoKzc=) 2: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: G363mLN7HbOJleTxqTWVrC04iGGlXJm+td6oRQ5kF+0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 12:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:38:4d:a9:8d:68:2e:74:12:d6:3c:25:47:b7:36:9d:65:5c:7e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Aug 21 12:16:22 2025 GMT Not After : Aug 24 12:22:22 2025 GMT Subject: CN=D89AF3B59BC019517FD0A45EBAD3750B26D4FB5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dc:d2:cb:8e:3f:6e:60:1e:fa:16:f5:bf:c5: 2f:58:7b:71:bc:15:9a:5b:67:15:be:6d:cb:46:6a: fe:ee:41:fd:98:39:b6:23:ac:e0:bb:3f:f4:4c:bc: cd:8b:2f:bf:44:fc:48:db:2e:b5:33:03:16:99:83: 7c:66:bf:21:fe:bd:b4:2d:d4:23:b4:a2:91:8f:41: d8:94:06:bd:96:7e:c8:ce:cd:cb:7c:28:ed:fd:70: c6:a7:61:4f:41:7f:78:68:8a:91:bf:ce:92:78:a0: db:69:17:a3:f4:2f:ea:97:76:e8:d2:da:16:bd:da: 7c:a7:dd:1e:d8:80:d5:f7:12:e9:65:00:07:83:ce: 23:3f:01:da:56:35:a8:58:ef:89:9e:3a:9a:b6:ee: 23:f6:2a:c7:3e:a9:52:47:c7:9e:53:ae:4c:e0:aa: fe:e3:35:82:ff:92:bb:25:47:c8:77:52:ea:31:4b: 2b:22:be:12:ed:92:3e:7a:4e:bb:77:cf:2e:4f:3e: 47:80:19:d8:8b:a9:97:a1:c4:77:85:59:0f:d1:78: 11:5e:8f:4a:12:ef:1e:28:de:b3:6f:e4:8d:dd:f1: 2c:f1:11:e6:45:9d:d8:39:44:2c:4e:30:26:ae:c6: 56:36:e3:c5:29:d9:50:5b:0e:e8:2b:fe:03:aa:98: 09:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9A:F3:B5:9B:C0:19:51:7F:D0:A4:5E:BA:D3:75:0B:26:D4:FB:5E X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:ed:2a:a3:85:f1:76:ff:fa:bb:de:fa:23:e2:4b:fc:43:13: 25:de:a9:71:95:e4:8e:dc:4a:7e:73:c6:ad:38:c7:21:3c:b4: da:8d:38:8d:8d:bf:5f:a1:80:d7:0b:5c:32:8c:da:77:f3:52: 5f:cf:d3:36:c7:de:3c:0b:38:6f:97:cb:6c:70:22:45:5f:1d: 7f:4f:35:1b:73:70:8c:ed:c8:6a:e0:44:53:29:dd:01:32:6d: db:12:eb:53:60:c3:a2:7c:4e:b6:ad:3e:b7:df:8f:4e:2a:56: 1f:08:0f:8b:ee:1f:2c:aa:e6:e2:ff:15:d8:1d:cf:21:f4:e5: 06:a0:14:05:5a:d5:4c:9d:48:11:63:13:8e:63:e5:14:c7:26: 1d:0b:7e:41:42:71:e8:ee:b2:f0:da:08:04:24:c6:ef:fe:78: 75:85:69:c0:be:c5:c1:25:58:21:a7:59:b9:73:44:71:78:9c: 67:44:11:ec:39:fd:57:eb:95:e9:6a:09:96:af:9e:70:7d:0b: 4b:01:17:4d:21:ba:02:46:3a:3d:38:31:3d:f5:f2:99:53:24: 9a:0e:75:e6:99:82:d1:1a:02:c3:cd:3e:a7:d5:5d:ef:dc:8c: 58:50:a3:cb:5c:1f:43:9a:ab:60:34:f1:8b:a5:e9:2d:f7:aa: 03:a0:ee:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWjhNqY1oLnQS1jwlR7c2nWVcftYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTA4MjExMjE2MjJaFw0yNTA4MjQxMjIyMjJaMDMxMTAvBgNV BAMTKEQ4OUFGM0I1OUJDMDE5NTE3RkQwQTQ1RUJBRDM3NTBCMjZENEZCNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi3NLLjj9uYB76FvW/xS9Ye3G8 FZpbZxW+bctGav7uQf2YObYjrOC7P/RMvM2LL79E/EjbLrUzAxaZg3xmvyH+vbQt 1CO0opGPQdiUBr2WfsjOzct8KO39cManYU9Bf3hoipG/zpJ4oNtpF6P0L+qXdujS 2ha92nyn3R7YgNX3EullAAeDziM/AdpWNahY74meOpq27iP2Ksc+qVJHx55Trkzg qv7jNYL/krslR8h3UuoxSysivhLtkj56Trt3zy5PPkeAGdiLqZehxHeFWQ/ReBFe j0oS7x4o3rNv5I3d8SzxEeZFndg5RCxOMCauxlY248Up2VBbDugr/gOqmAnTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2JrztZvAGVF/0KReutN1CybU+14wHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABTtKqOF8Xb/+rve+iPiS/xDEyXeqXGV5I7c Sn5zxq04xyE8tNqNOI2Nv1+hgNcLXDKM2nfzUl/P0zbH3jwLOG+Xy2xwIkVfHX9P NRtzcIztyGrgRFMp3QEybdsS61Ngw6J8TratPrffj04qVh8ID4vuHyyq5uL/Fdgd zyH05QagFAVa1UydSBFjE45j5RTHJh0LfkFCcejusvDaCAQkxu/+eHWFacC+xcEl WCGnWblzRHF4nGdEEew5/VfrlelqCZavnnB9C0sBF00hugJGOj04MT318plTJJoO deaZgtEaAsPNPqfVXe/cjFhQo8tcH0Oaq2A08Yul6S33qgOg7iM= -----END CERTIFICATE-----Generated at Sat Aug 23 10:12:43 2025 by rpki-client