$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft File: CA978B7ACEF55A251B74721E04A034CA3601A88B.mft (raw, json) Hash identifier: 8g/ErrX9VZfAfsSzXqOf8x9OhK0OpJv9Lpa1D3QijXk= Subject key identifier: 54:2A:52:66:6F:74:A8:5F:FB:4C:2C:88:AA:EF:27:2E:2D:77:AE:C5 Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 175BA5AE39F95FEE616ECFA1D6767F3804B61769 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft Manifest number: 0119 Signing time: Thu 21 Aug 2025 12:01:27 +0000 Manifest this update: Thu 21 Aug 2025 11:56:27 +0000 Manifest next update: Sun 24 Aug 2025 14:07:27 +0000 Files and hashes: 1: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (hash: qSzxrfqd29Pg9HOqmUjPO7crmnWP/zs2luJUdYRC76s=) 2: CA978B7ACEF55A251B74721E04A034CA3601A88B.crl (hash: Sxi+D0KrI69JCybVuruyLcNkYLWPGHNamLUgpmRMwcA=) 3: 3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa (hash: IHqcErbm/jh+8G9ITpkeHubYhwRm77oQuURliUYMdFs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 14:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:5b:a5:ae:39:f9:5f:ee:61:6e:cf:a1:d6:76:7f:38:04:b6:17:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Aug 21 11:56:27 2025 GMT Not After : Aug 24 14:07:27 2025 GMT Subject: CN=542A52666F74A85FFB4C2C88AAEF272E2D77AEC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:96:29:ee:55:5f:aa:48:e3:ff:c9:ea:66:e4: ed:66:27:e2:38:6f:99:04:32:cf:27:80:90:6f:ae: ed:bf:8a:73:c0:67:3d:95:91:8f:54:ab:48:ee:7d: b4:9f:5e:ea:6e:e9:0d:b8:24:c0:8d:f4:6e:00:d2: ed:67:6d:85:de:d0:c2:2b:e7:73:81:8a:f8:e1:fb: 3d:01:e2:09:f2:89:b7:2d:9c:0e:34:38:4e:3b:a9: c2:2f:1c:b4:78:e9:4c:a8:79:01:91:80:d6:8a:2e: 95:1a:4f:6b:c2:9f:63:bc:85:96:f6:87:6b:11:2e: ad:09:73:7f:45:e3:4e:94:4a:af:cd:7f:6a:ea:70: 01:4f:23:6a:e6:57:d2:57:01:b1:0d:03:31:41:10: 38:98:11:1b:9c:de:f7:1d:eb:ec:c1:f4:14:11:16: e6:c7:2d:ac:a8:5f:03:3c:31:62:c1:38:c5:3b:8c: f0:57:e6:a6:96:e6:35:45:06:f8:7f:11:7d:07:f9: 75:a9:4b:e2:b8:4f:3e:4e:58:ec:5a:9c:b9:fb:ce: 0e:d0:eb:0d:e7:fe:2b:49:46:4b:8d:6c:94:b2:ba: 6b:9f:1e:b4:aa:54:c6:36:ed:a1:12:45:97:5d:76: d5:db:2e:ac:1d:a6:6c:a6:7e:88:ed:9d:50:ee:e1: e8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2A:52:66:6F:74:A8:5F:FB:4C:2C:88:AA:EF:27:2E:2D:77:AE:C5 X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:54:7e:69:63:97:84:e6:49:b7:ae:a2:5e:61:b0:dc:5e:2c: 3f:52:85:da:5a:76:f6:1b:e4:c0:8c:4a:37:45:d8:11:54:7a: f0:85:c3:7d:cf:87:e5:06:cc:22:8c:2b:6e:a4:ac:5a:10:f4: a4:bd:cb:80:eb:97:69:d2:50:c7:82:6e:ed:dc:8f:d1:ed:f9: ed:ee:65:81:6a:ed:ba:3b:1a:5f:6e:90:e1:66:f5:4e:10:6c: d6:b6:f3:8b:5f:4f:9a:74:ec:ea:b9:95:51:d8:43:9f:4b:4c: 1f:84:dd:41:7a:1a:31:92:cc:2b:07:9f:ee:84:97:cf:39:0e: ad:36:74:65:03:0f:bc:a3:13:7d:50:18:ff:f2:23:d1:4c:1c: cc:e3:21:77:e7:0a:96:a2:cf:92:98:23:fb:54:da:d2:77:b0: e8:4f:ed:96:a2:08:5f:2f:33:1b:71:de:14:aa:9f:53:d6:1b: 6d:a6:c2:d3:a6:db:9c:80:d8:71:24:ea:3e:71:98:d8:49:e5: 67:f4:06:ff:a1:ca:34:43:41:8d:02:ed:07:32:ee:d8:7d:08: dd:d0:ad:94:2a:54:10:c0:df:af:eb:47:e1:24:d2:09:05:5b: c2:49:73:6d:51:97:51:81:46:a2:38:a8:6b:16:c9:f1:aa:f1: 80:22:6b:24 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF1ulrjn5X+5hbs+h1nZ/OAS2F2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNTA4MjExMTU2MjdaFw0yNTA4MjQxNDA3MjdaMDMxMTAvBgNV BAMTKDU0MkE1MjY2NkY3NEE4NUZGQjRDMkM4OEFBRUYyNzJFMkQ3N0FFQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5linuVV+qSOP/yepm5O1mJ+I4 b5kEMs8ngJBvru2/inPAZz2VkY9Uq0jufbSfXupu6Q24JMCN9G4A0u1nbYXe0MIr 53OBivjh+z0B4gnyibctnA40OE47qcIvHLR46UyoeQGRgNaKLpUaT2vCn2O8hZb2 h2sRLq0Jc39F406USq/Nf2rqcAFPI2rmV9JXAbENAzFBEDiYERuc3vcd6+zB9BQR FubHLayoXwM8MWLBOMU7jPBX5qaW5jVFBvh/EX0H+XWpS+K4Tz5OWOxanLn7zg7Q 6w3n/itJRkuNbJSyumufHrSqVMY27aESRZdddtXbLqwdpmymfojtnVDu4eipAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVCpSZm90qF/7TCyIqu8nLi13rsUwHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZhM2NmZjctMmFhMS00NGRmLTkx NGMtZjE5MTg0ZjZmM2IxLzAvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0 Q0EzNjAxQTg4Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK9Ufmljl4TmSbeuol5hsNxeLD9ShdpadvYb 5MCMSjdF2BFUevCFw33Ph+UGzCKMK26krFoQ9KS9y4Drl2nSUMeCbu3cj9Ht+e3u ZYFq7bo7Gl9ukOFm9U4QbNa284tfT5p07Oq5lVHYQ59LTB+E3UF6GjGSzCsHn+6E l885Dq02dGUDD7yjE31QGP/yI9FMHMzjIXfnCpaiz5KYI/tU2tJ3sOhP7ZaiCF8v Mxtx3hSqn1PWG22mwtOm25yA2HEk6j5xmNhJ5Wf0Bv+hyjRDQY0C7Qcy7th9CN3Q rZQqVBDA36/rR+Ek0gkFW8JJc21Rl1GBRqI4qGsWyfGq8YAiayQ= -----END CERTIFICATE-----Generated at Sat Aug 23 12:10:05 2025 by rpki-client