$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: T/jlhPiZlR2C9NvDThAcTJpH5sD+4lWJsWvBMr9kgyY= Subject key identifier: 57:D0:BF:4B:51:89:7A:EF:89:57:32:52:D8:F9:01:01:44:D0:D7:D0 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 69A861ACAC9847F29224093FAC5B6062D23E0B73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 050F Signing time: Fri 22 Aug 2025 06:31:20 +0000 Manifest this update: Fri 22 Aug 2025 06:26:20 +0000 Manifest next update: Mon 25 Aug 2025 07:58:20 +0000 Files and hashes: 1: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: CwXU9VaKpcKaIL0+cwM5Fjr5bkAAawnd7hCNC9U00Bg=) 2: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: W4hcEgHSMz5IKXSkrvDUzi2v8hjLrgARmtrj175PQCM=) 3: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: e9uiS3KNGlZ+EQjSXY4m6NwJ9lRr8aifmafZU96mQ7k=) 4: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 5: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 6: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: lz/aRA5xwGbvGMSgXL70n8EEkKYV5RNTgznI5gnec7Q=) 7: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:a8:61:ac:ac:98:47:f2:92:24:09:3f:ac:5b:60:62:d2:3e:0b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Aug 22 06:26:20 2025 GMT Not After : Aug 25 07:58:20 2025 GMT Subject: CN=57D0BF4B51897AEF89573252D8F9010144D0D7D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:59:2b:88:e6:45:67:90:02:86:87:ed:5f:78: 73:c5:d0:c8:3a:0d:55:be:ae:28:26:ba:9a:5b:58: bc:be:e7:ca:7e:03:2a:e2:e6:d4:14:c7:d6:d5:31: f9:24:cb:d5:9b:a0:1a:c0:67:dd:ea:a4:a6:80:df: b2:b3:ad:90:2c:c9:47:df:cd:fa:58:db:ec:61:e2: 87:9b:28:1c:9b:d7:30:a0:fd:f7:d0:55:c7:28:bc: d6:7f:23:f2:f1:58:b0:c0:31:08:f0:3b:07:8a:05: 86:ae:eb:36:18:d2:b0:2d:13:15:f9:24:56:ee:29: 73:f0:e8:fa:52:47:f7:9f:fb:fe:22:fe:ef:1c:b8: 41:87:2e:16:41:42:42:b7:73:ed:2e:77:9a:67:ca: f9:3c:1c:56:96:71:ab:78:ec:ff:38:63:2d:c4:14: 9a:be:9b:06:4a:f5:5d:6e:98:8c:2c:09:eb:2f:2f: 4e:e2:ea:22:37:61:23:a5:e7:ab:51:97:e5:44:74: 19:b3:61:c8:7f:b8:7b:81:da:79:59:66:c5:9a:6e: 3c:f0:b2:e7:80:9b:0c:75:99:eb:2b:6e:2f:15:c4: 83:60:68:ba:c7:c0:b5:9e:6d:5f:ec:2a:3c:c0:1e: b4:7d:1b:92:91:ff:a2:0e:09:c4:4f:23:af:3b:f3: e3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D0:BF:4B:51:89:7A:EF:89:57:32:52:D8:F9:01:01:44:D0:D7:D0 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:a8:e8:61:4e:ab:5f:c3:c0:ca:8a:40:fc:b6:51:b7:f2:cc: c3:3e:c4:70:b1:54:a3:74:90:86:e1:d6:a2:e1:e2:bb:4c:6c: b8:cf:af:29:e1:5f:2c:17:5d:f6:69:38:ca:dd:89:bc:90:29: 32:95:9d:41:e4:bd:19:6d:07:b6:de:cf:01:b5:d3:55:dd:3b: 95:c0:42:aa:17:62:bc:ce:32:6e:9e:ef:2b:fe:ca:0c:0b:d5: 29:d6:e3:0e:02:3a:c5:d0:9b:04:fa:f0:4c:97:fa:fe:65:ba: 15:70:21:b0:c1:40:94:ee:d7:36:d9:46:f6:3c:96:f7:c9:23: 5a:eb:4f:be:7f:9d:af:9b:f9:c2:f0:c2:c8:26:17:96:7d:38: 90:30:52:1c:a5:75:d5:cb:5b:86:f0:9e:4a:d9:2b:45:29:82: 3d:b3:83:5a:0c:4b:91:77:a2:57:9e:49:66:9a:ab:5b:b7:bc: 11:67:3f:77:66:be:89:d4:cb:1f:9d:98:0c:9b:c9:4d:ab:4b: f7:13:e2:df:52:ea:51:8a:5f:0b:5c:e6:4f:62:7e:db:eb:86: ba:a6:10:d3:ba:74:f9:0c:8e:e3:d8:67:2b:77:e5:d9:37:01: 45:64:af:1e:e3:bf:2b:28:d4:57:0d:9a:e5:43:44:c3:dd:23: 43:02:7f:4c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaahhrKyYR/KSJAk/rFtgYtI+C3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTA4MjIwNjI2MjBaFw0yNTA4MjUwNzU4MjBaMDMxMTAvBgNV BAMTKDU3RDBCRjRCNTE4OTdBRUY4OTU3MzI1MkQ4RjkwMTAxNDREMEQ3RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxWSuI5kVnkAKGh+1feHPF0Mg6 DVW+rigmuppbWLy+58p+Ayri5tQUx9bVMfkky9WboBrAZ93qpKaA37KzrZAsyUff zfpY2+xh4oebKByb1zCg/ffQVccovNZ/I/LxWLDAMQjwOweKBYau6zYY0rAtExX5 JFbuKXPw6PpSR/ef+/4i/u8cuEGHLhZBQkK3c+0ud5pnyvk8HFaWcat47P84Yy3E FJq+mwZK9V1umIwsCesvL07i6iI3YSOl56tRl+VEdBmzYch/uHuB2nlZZsWabjzw sueAmwx1mesrbi8VxINgaLrHwLWebV/sKjzAHrR9G5KR/6IOCcRPI6878+NnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUV9C/S1GJeu+JVzJS2PkBAUTQ19AwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGSo6GFOq1/DwMqKQPy2UbfyzMM+xHCxVKN0 kIbh1qLh4rtMbLjPrynhXywXXfZpOMrdibyQKTKVnUHkvRltB7bezwG101XdO5XA QqoXYrzOMm6e7yv+ygwL1SnW4w4COsXQmwT68EyX+v5luhVwIbDBQJTu1zbZRvY8 lvfJI1rrT75/na+b+cLwwsgmF5Z9OJAwUhylddXLW4bwnkrZK0Upgj2zg1oMS5F3 oleeSWaaq1u3vBFnP3dmvonUyx+dmAybyU2rS/cT4t9S6lGKXwtc5k9iftvrhrqm ENO6dPkMjuPYZyt35dk3AUVkrx7jvyso1FcNmuVDRMPdI0MCf0w= -----END CERTIFICATE-----Generated at Sat Aug 23 10:09:13 2025 by rpki-client