$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: N/pHzwkQmQudt/I7Kh/E2eCCUX67TaWp+WWmc96lE3A= Subject key identifier: 85:AC:68:5B:DD:8E:0C:D3:E3:EF:49:C0:88:A4:9A:58:FA:FC:59:80 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 52C439872C97D7D22608EA4E34E3978579D20263 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 0258 Signing time: Thu 21 Aug 2025 07:03:31 +0000 Manifest this update: Thu 21 Aug 2025 06:58:31 +0000 Manifest next update: Sun 24 Aug 2025 17:04:31 +0000 Files and hashes: 1: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) 2: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: 2gVCxg+hDmKkdBfr1IN+Jz7t1loTVbupLhThyLDp4zk=) 3: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=) 4: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 5: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: om0ifbhGS887HykZLrWfabzziCVoy/gRC0MaPyFc2lE=) 6: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 7: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 8: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 9: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) 10: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:c4:39:87:2c:97:d7:d2:26:08:ea:4e:34:e3:97:85:79:d2:02:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Aug 21 06:58:31 2025 GMT Not After : Aug 24 17:04:31 2025 GMT Subject: CN=85AC685BDD8E0CD3E3EF49C088A49A58FAFC5980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9f:bb:2b:0d:11:81:87:bd:4d:56:f5:4d:ae: 95:3b:3b:cd:c7:37:23:bc:ec:40:c2:77:8f:04:90: 58:6e:63:a1:1d:22:46:53:bb:72:39:c7:be:06:a2: 6e:cc:90:6d:8d:05:3a:54:0a:99:59:ef:18:7e:29: 3b:67:de:95:a0:ea:cf:2d:be:8f:24:8d:64:e4:e9: 1c:c8:88:83:5e:06:bd:9b:4d:7a:fb:d7:2c:82:07: 19:43:d1:f1:72:64:31:43:87:ec:6d:f6:ca:e8:35: 72:72:0a:3c:21:cb:04:35:7d:da:db:de:29:42:e4: 0f:b0:7a:d4:78:a6:6f:ba:6a:a7:7c:44:9e:ea:85: c7:71:22:c3:ee:fb:09:ff:97:c4:7d:5b:92:54:6d: d0:d0:37:a3:e7:19:fe:27:40:95:5d:14:1a:0e:53: da:70:2b:61:d0:aa:36:78:8e:ef:3d:f0:12:fc:56: 3e:44:94:c9:0c:7a:30:56:27:1e:fc:78:50:31:66: 3d:a6:4c:64:30:53:7f:c1:7a:ad:47:e9:26:66:7b: e7:4a:4a:24:b9:f9:09:04:01:30:7f:03:1f:07:0c: a6:83:b1:79:4c:69:55:12:aa:87:79:6c:da:c3:fe: bf:27:2d:20:e1:49:8f:24:b4:a5:00:cb:17:bb:5e: 87:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AC:68:5B:DD:8E:0C:D3:E3:EF:49:C0:88:A4:9A:58:FA:FC:59:80 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:92:a5:97:01:8c:26:1d:95:31:9a:6e:b6:af:1b:e2:49:66: 23:9e:16:e0:80:39:38:c6:2c:a9:5e:c2:65:bf:22:96:58:d8: 0e:d4:0e:1f:0d:bb:46:13:cc:9d:b1:4c:97:be:1b:02:0f:9a: 34:28:90:8b:7b:f7:70:96:98:b9:24:20:0e:30:db:e7:32:22: f8:f1:11:ce:bb:6b:e6:78:a0:dc:fb:b4:c4:97:4e:b8:a3:17: 58:98:08:54:d8:7d:0d:b4:9a:4e:5b:38:0f:72:f7:cf:af:a5: 4e:5c:d5:33:22:ab:f3:53:a7:1f:09:e4:dc:95:02:fa:81:6c: 42:d4:ae:3a:b4:1d:87:bc:d5:dd:8d:6b:28:04:e6:10:37:7f: e5:4d:36:b9:9f:98:d0:dc:6b:1b:83:74:2e:eb:0b:10:c6:6b: ef:b4:09:78:9a:da:44:da:e1:6b:0d:b3:7d:44:04:73:91:0e: fc:d9:1f:8d:5d:f4:ee:41:59:20:2f:3a:22:dc:65:93:71:03: 79:3f:d9:49:ba:d2:9d:73:94:c5:89:26:c6:61:87:c3:38:ce: 9e:2c:0a:53:9e:86:8e:de:92:c4:35:04:a4:af:e8:12:73:6c: bc:00:c0:44:c8:08:30:2e:49:cb:c3:70:35:ba:a6:20:78:1b: ac:fc:ba:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUsQ5hyyX19ImCOpONOOXhXnSAmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTA4MjEwNjU4MzFaFw0yNTA4MjQxNzA0MzFaMDMxMTAvBgNV BAMTKDg1QUM2ODVCREQ4RTBDRDNFM0VGNDlDMDg4QTQ5QTU4RkFGQzU5ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNn7srDRGBh71NVvVNrpU7O83H NyO87EDCd48EkFhuY6EdIkZTu3I5x74Gom7MkG2NBTpUCplZ7xh+KTtn3pWg6s8t vo8kjWTk6RzIiINeBr2bTXr71yyCBxlD0fFyZDFDh+xt9sroNXJyCjwhywQ1fdrb 3ilC5A+wetR4pm+6aqd8RJ7qhcdxIsPu+wn/l8R9W5JUbdDQN6PnGf4nQJVdFBoO U9pwK2HQqjZ4ju898BL8Vj5ElMkMejBWJx78eFAxZj2mTGQwU3/Beq1H6SZme+dK SiS5+QkEATB/Ax8HDKaDsXlMaVUSqod5bNrD/r8nLSDhSY8ktKUAyxe7XoeVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhaxoW92ODNPj70nAiKSaWPr8WYAwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGSSpZcBjCYdlTGabravG+JJZiOeFuCAOTjG LKlewmW/IpZY2A7UDh8Nu0YTzJ2xTJe+GwIPmjQokIt793CWmLkkIA4w2+cyIvjx Ec67a+Z4oNz7tMSXTrijF1iYCFTYfQ20mk5bOA9y98+vpU5c1TMiq/NTpx8J5NyV AvqBbELUrjq0HYe81d2NaygE5hA3f+VNNrmfmNDcaxuDdC7rCxDGa++0CXia2kTa 4WsNs31EBHORDvzZH41d9O5BWSAvOiLcZZNxA3k/2Um60p1zlMWJJsZhh8M4zp4s ClOeho7eksQ1BKSv6BJzbLwAwETICDAuScvDcDW6piB4G6z8uiE= -----END CERTIFICATE-----Generated at Sat Aug 23 18:30:48 2025 by rpki-client