$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft File: A2F125E1CDB95BA2AF5636AF284A399496555F38.mft (raw, json) Hash identifier: QguMt/U0AEP9doZJT7F5R1qRmjVBjbkuMO3hne+L7e4= Subject key identifier: 4E:2C:E1:9A:F0:50:31:9C:D9:E7:49:7A:64:3D:30:BB:5D:6C:7F:0B Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 3762ACFB2BEEA7A516252F3C5968558B34588819 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft Manifest number: 01EB Signing time: Thu 21 Aug 2025 15:31:55 +0000 Manifest this update: Thu 21 Aug 2025 15:26:55 +0000 Manifest next update: Sun 24 Aug 2025 23:21:55 +0000 Files and hashes: 1: A2F125E1CDB95BA2AF5636AF284A399496555F38.crl (hash: VdIjojg31VEhqmNmgjc9DVHGkzxEnbGwY5ic35Iicao=) 2: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (hash: k7X14J+QdS7MEz6uDJt6u3xkxSH91jVPDLJqXdryTNc=) 3: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (hash: GYOdgB5E6zAfN6csGwKvCQu8t1dBnuZsHYI8ZcYsOXc=) 4: 3130332e3139312e3231392e302f32342d3234203d3e20313439393330.roa (hash: wMwayzIPwqMBIP88IOsXTpqmzpX3PVf3WfVEJ/JlX8M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 23:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:62:ac:fb:2b:ee:a7:a5:16:25:2f:3c:59:68:55:8b:34:58:88:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Aug 21 15:26:55 2025 GMT Not After : Aug 24 23:21:55 2025 GMT Subject: CN=4E2CE19AF050319CD9E7497A643D30BB5D6C7F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8e:ca:fa:b3:e1:62:23:bb:af:0d:33:56:92: 4a:ae:c7:d9:99:ad:13:b4:e0:9e:ee:49:a7:86:26: ae:49:8e:2a:41:d5:c6:b1:63:91:2a:b6:9b:a4:11: df:0e:94:6b:bb:c2:32:88:02:01:53:53:69:d3:4e: 5d:c3:09:cd:b3:99:ae:84:0b:8d:92:77:51:70:71: a6:93:34:12:7e:e9:ee:c9:29:20:36:7e:bf:c4:1f: 85:15:2b:63:d3:4d:ec:cd:94:19:5f:d7:a8:8b:96: f3:99:ec:46:15:5f:bf:f4:3b:16:55:6e:57:15:04: 62:f2:4a:65:f2:c2:73:ea:20:70:55:07:67:ba:24: 1b:d9:b0:05:49:08:84:20:83:eb:47:fd:78:e2:c8: 4f:8d:6a:cf:98:a3:1c:2c:eb:71:32:66:1d:e5:2f: 63:c8:c9:7a:f4:61:c1:5e:53:ac:c1:29:85:6c:4a: c9:e1:61:2e:d9:5e:41:9b:ea:d5:02:83:85:3a:46: 6f:c2:f9:6a:5a:4b:fe:02:26:ed:11:1d:2d:11:60: 71:14:17:58:b0:93:b1:a3:e5:d4:46:11:41:55:fe: 0c:21:0e:a6:20:93:8e:36:45:66:f6:30:32:e0:6c: 17:96:84:76:1b:99:91:dd:fa:25:ba:29:e9:b7:4b: 5c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2C:E1:9A:F0:50:31:9C:D9:E7:49:7A:64:3D:30:BB:5D:6C:7F:0B X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:bf:a0:4c:11:ea:a4:35:66:51:6a:d3:36:f0:02:a9:46:69: b3:ac:e4:01:46:ca:9d:09:f8:3c:72:95:9c:1a:cf:20:4c:7a: 64:6c:27:1a:c4:05:c2:e0:49:62:c1:a3:2f:26:6a:75:77:6e: fa:0e:88:bf:fe:74:4a:2d:63:12:90:9d:1e:cc:b5:08:b6:92: 12:ea:d3:17:84:03:d5:56:dd:2f:66:bd:87:5a:50:fc:02:c4: 29:3e:8c:58:85:98:60:56:31:39:ff:6d:66:b7:2f:42:53:0b: e0:60:a1:01:72:d5:a3:37:d3:da:3b:cd:67:8d:10:ea:7e:f9: f7:f6:3d:2e:f7:58:7c:4b:36:18:00:9c:0b:d9:a2:fa:2b:8a: 47:16:80:d7:3b:fa:aa:13:6f:f9:bd:b3:54:cd:cf:85:c9:93: f5:ed:04:57:01:41:d6:42:4d:ab:1a:a4:55:29:4f:33:89:1c: 17:f1:23:f2:45:ea:e1:5a:4f:2b:c3:7a:3c:ab:8f:1c:db:63: b5:f4:91:ec:43:86:df:58:33:fc:87:85:0d:d9:1d:4f:54:78: fe:8c:2f:64:70:90:41:21:a1:ee:76:bf:97:8a:98:d3:6f:b4: 1b:90:1c:7f:47:7a:0e:24:45:a0:b2:82:ae:7a:cf:90:14:f5: e5:c6:d4:a9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN2Ks+yvup6UWJS88WWhVizRYiBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNTA4MjExNTI2NTVaFw0yNTA4MjQyMzIxNTVaMDMxMTAvBgNV BAMTKDRFMkNFMTlBRjA1MDMxOUNEOUU3NDk3QTY0M0QzMEJCNUQ2QzdGMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdjsr6s+FiI7uvDTNWkkqux9mZ rRO04J7uSaeGJq5JjipB1caxY5EqtpukEd8OlGu7wjKIAgFTU2nTTl3DCc2zma6E C42Sd1FwcaaTNBJ+6e7JKSA2fr/EH4UVK2PTTezNlBlf16iLlvOZ7EYVX7/0OxZV blcVBGLySmXywnPqIHBVB2e6JBvZsAVJCIQgg+tH/XjiyE+Nas+Yoxws63EyZh3l L2PIyXr0YcFeU6zBKYVsSsnhYS7ZXkGb6tUCg4U6Rm/C+WpaS/4CJu0RHS0RYHEU F1iwk7Gj5dRGEUFV/gwhDqYgk442RWb2MDLgbBeWhHYbmZHd+iW6Kem3S1y5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTizhmvBQMZzZ50l6ZD0wu11sfwswHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjMzNzBkMjQtYTY1Ni00MzM2LTg0 MmItOWJkNWRjYTJiNDBhLzAvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5 OTQ5NjU1NUYzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABi/oEwR6qQ1ZlFq0zbwAqlGabOs5AFGyp0J +DxylZwazyBMemRsJxrEBcLgSWLBoy8manV3bvoOiL/+dEotYxKQnR7MtQi2khLq 0xeEA9VW3S9mvYdaUPwCxCk+jFiFmGBWMTn/bWa3L0JTC+BgoQFy1aM309o7zWeN EOp++ff2PS73WHxLNhgAnAvZovorikcWgNc7+qoTb/m9s1TNz4XJk/XtBFcBQdZC TasapFUpTzOJHBfxI/JF6uFaTyvDejyrjxzbY7X0kexDht9YM/yHhQ3ZHU9UeP6M L2RwkEEhoe52v5eKmNNvtBuQHH9Heg4kRaCygq56z5AU9eXG1Kk= -----END CERTIFICATE-----Generated at Sat Aug 23 12:13:18 2025 by rpki-client