$ rpki-client -vvf repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft File: 952177DE616DE181FF461A8481C060AD744E2603.mft (raw, json) Hash identifier: mBe6mWkGWCA/PI+UBKQj1DV2UKRxeqXFOIkfllZI59Q= Subject key identifier: 61:F4:DD:D1:69:23:4C:C8:07:8B:EE:7C:20:4F:BF:FC:BE:B4:4A:59 Authority key identifier: 95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 Certificate issuer: /CN=952177DE616DE181FF461A8481C060AD744E2603 Certificate serial: 2E8269EB5E995EDA98ADBAA8AA68C8FD36F00DF5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft Manifest number: B7 Signing time: Fri 22 Aug 2025 10:10:41 +0000 Manifest this update: Fri 22 Aug 2025 10:05:41 +0000 Manifest next update: Mon 25 Aug 2025 15:40:41 +0000 Files and hashes: 1: 952177DE616DE181FF461A8481C060AD744E2603.crl (hash: pUc4JX+jUzxJMQTy+P7WMK6OVQY8CaxLCSQvGKFOqIo=) 2: 3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa (hash: keRrjXE2aFv5lood59DLSEKDpD72rCKDg82GWlf1ewQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 15:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:82:69:eb:5e:99:5e:da:98:ad:ba:a8:aa:68:c8:fd:36:f0:0d:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=952177DE616DE181FF461A8481C060AD744E2603 Validity Not Before: Aug 22 10:05:41 2025 GMT Not After : Aug 25 15:40:41 2025 GMT Subject: CN=61F4DDD169234CC8078BEE7C204FBFFCBEB44A59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2b:9c:0a:61:88:22:84:1d:d5:c6:44:87:df: d1:1a:7f:2e:0f:a8:ba:13:a7:e2:4d:1c:4e:d3:24: 21:c0:37:f9:3c:a0:9f:09:d1:68:8e:30:98:f2:09: 61:75:34:73:e2:6c:27:4a:19:da:7b:c6:62:da:e0: e8:a3:0d:7d:fe:4b:30:d2:6d:d1:39:32:f5:c1:13: 14:2f:2c:a2:7c:0b:9b:8f:e7:80:68:c3:6a:e3:e7: 2e:fa:c5:68:dd:62:7f:03:e6:00:d9:bf:85:87:f5: 29:d3:63:b5:e9:ab:b3:90:53:01:27:14:a3:9c:90: d1:fc:5a:41:ff:22:34:60:fa:05:82:6a:35:11:d7: 94:fc:35:bc:be:6d:25:af:2e:bd:6b:ad:34:59:3d: f8:cf:9d:18:3c:58:ef:d2:87:ed:cd:ac:75:6d:b8: ce:09:eb:62:c9:d5:39:02:43:5d:3e:1f:be:f0:9b: 98:b0:75:8f:35:49:a3:5e:30:1f:28:d5:4d:ba:6a: 6c:b3:04:eb:c3:87:e1:42:77:5a:77:09:4d:c2:fb: b5:ae:ba:a5:7a:77:c4:8e:3f:b1:46:44:69:41:b5: 00:7d:e4:3c:d2:20:73:c7:36:0c:eb:9d:a5:07:4d: 01:1f:5f:58:9f:1d:80:5f:38:76:a5:58:3b:d3:f4: 07:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F4:DD:D1:69:23:4C:C8:07:8B:EE:7C:20:4F:BF:FC:BE:B4:4A:59 X509v3 Authority Key Identifier: keyid:95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:b1:18:20:41:2f:8b:1e:da:a5:61:82:75:e2:69:d4:6c:37: 4c:ba:40:60:47:fb:be:76:f4:22:c1:0d:df:df:f9:c3:2f:f8: d9:e4:fb:d9:bd:19:0f:14:05:d6:1d:46:de:93:40:43:87:08: 58:fb:48:92:8a:c2:05:44:42:f5:18:c8:fd:3f:0e:f8:92:c5: 38:1c:7c:18:d7:ef:fe:a5:2e:e0:3a:09:b0:92:89:80:73:d8: dc:da:5a:bb:67:cf:c4:f1:ab:79:5f:52:2b:bd:06:75:b7:b6: 52:09:fa:08:3b:26:90:0f:d4:82:31:e3:65:f2:3a:a0:10:b1: 59:fc:36:3c:de:95:d7:a9:b0:f4:2e:d9:60:4f:62:73:38:cb: b8:42:03:b8:a2:dc:9d:a8:ba:ee:fe:3b:0e:70:31:ca:e0:34: 1b:e1:6c:bc:6f:cf:16:6f:f0:19:5b:70:35:f4:45:62:27:62: 52:4c:53:11:5e:1a:18:84:be:ad:77:97:32:9b:09:06:4b:72: ce:a9:d1:50:2d:24:e9:f9:50:2b:09:35:5c:d3:80:1a:20:2a: d8:78:29:69:88:bf:77:d6:91:b5:ba:65:c4:0d:19:4e:34:b1: 4a:ac:1d:80:26:66:b5:70:b5:4f:8c:b2:1f:7b:be:6c:ab:64: b1:9a:4c:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULoJp616ZXtqYrbqoqmjI/TbwDfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3 NDRFMjYwMzAeFw0yNTA4MjIxMDA1NDFaFw0yNTA4MjUxNTQwNDFaMDMxMTAvBgNV BAMTKDYxRjREREQxNjkyMzRDQzgwNzhCRUU3QzIwNEZCRkZDQkVCNDRBNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKK5wKYYgihB3VxkSH39Eafy4P qLoTp+JNHE7TJCHAN/k8oJ8J0WiOMJjyCWF1NHPibCdKGdp7xmLa4OijDX3+SzDS bdE5MvXBExQvLKJ8C5uP54Bow2rj5y76xWjdYn8D5gDZv4WH9SnTY7Xpq7OQUwEn FKOckNH8WkH/IjRg+gWCajUR15T8Nby+bSWvLr1rrTRZPfjPnRg8WO/Sh+3NrHVt uM4J62LJ1TkCQ10+H77wm5iwdY81SaNeMB8o1U26amyzBOvDh+FCd1p3CU3C+7Wu uqV6d8SOP7FGRGlBtQB95DzSIHPHNgzrnaUHTQEfX1ifHYBfOHalWDvT9AchAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYfTd0WkjTMgHi+58IE+//L60SlkwHwYDVR0j BBgwFoAUlSF33mFt4YH/RhqEgcBgrXROJgMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjAwMjk5Mi1hY2IyLTRmNzctOTk3ZC0zMjE3ZWFkOTliYjUvMC85NTIxNzdERTYx NkRFMTgxRkY0NjFBODQ4MUMwNjBBRDc0NEUyNjAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3NDRF MjYwMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWIwMDI5OTItYWNiMi00Zjc3LTk5 N2QtMzIxN2VhZDk5YmI1LzAvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYw QUQ3NDRFMjYwMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH2xGCBBL4se2qVhgnXiadRsN0y6QGBH+752 9CLBDd/f+cMv+Nnk+9m9GQ8UBdYdRt6TQEOHCFj7SJKKwgVEQvUYyP0/DviSxTgc fBjX7/6lLuA6CbCSiYBz2NzaWrtnz8Txq3lfUiu9BnW3tlIJ+gg7JpAP1IIx42Xy OqAQsVn8NjzeldepsPQu2WBPYnM4y7hCA7ii3J2ouu7+Ow5wMcrgNBvhbLxvzxZv 8BlbcDX0RWInYlJMUxFeGhiEvq13lzKbCQZLcs6p0VAtJOn5UCsJNVzTgBogKth4 KWmIv3fWkbW6ZcQNGU40sUqsHYAmZrVwtU+Msh97vmyrZLGaTGM= -----END CERTIFICATE-----Generated at Sat Aug 23 20:11:01 2025 by rpki-client