$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft File: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft (raw, json) Hash identifier: RdlygJmJ4Cijzu1yHy8wBC7pL2/gY6gTt1D0yjwwFW0= Subject key identifier: 7F:F1:62:5C:5E:2F:00:74:CC:9A:BD:4D:02:38:43:31:64:03:FE:B6 Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 0E53E26272A52EAB6D3EA49FF6B6538A9B852CFA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft Manifest number: 8A Signing time: Thu 21 Aug 2025 19:11:46 +0000 Manifest this update: Thu 21 Aug 2025 19:06:46 +0000 Manifest next update: Sun 24 Aug 2025 22:03:46 +0000 Files and hashes: 1: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (hash: EfPoQqtxgLuobpoazcJOzehsaHb5tIneq6Zek5DzcaE=) 2: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (hash: J4isEyK1ySJtCWVpvhGVyfTYrZDUM8aentftYxqK7KA=) 3: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl (hash: NhIyzviA5Y1IjoZBtw5lKaGGZL38KOKnasZ6mQjxKOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:53:e2:62:72:a5:2e:ab:6d:3e:a4:9f:f6:b6:53:8a:9b:85:2c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: Aug 21 19:06:46 2025 GMT Not After : Aug 24 22:03:46 2025 GMT Subject: CN=7FF1625C5E2F0074CC9ABD4D023843316403FEB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3d:b1:e0:bd:81:52:ab:34:70:23:e2:b8:82: e0:34:b7:b8:c5:6e:e4:e9:aa:ff:7c:92:98:ab:fc: 3c:de:f5:d9:d2:38:4e:87:fc:0b:18:7c:c5:9b:01: 39:64:13:07:85:fc:4c:cb:62:50:c4:15:f1:32:fa: 78:1f:0a:78:9d:3e:14:ed:85:52:e3:46:8f:95:8a: 50:78:8d:27:7f:23:b9:c7:87:ab:dd:84:49:4f:b0: 4c:c6:43:3d:24:39:39:4c:89:4c:a6:e2:7f:32:c9: f6:53:2e:0a:21:b6:4b:d9:67:c5:93:b2:5b:97:18: 6c:3f:93:e1:be:fd:53:a2:7d:49:55:b5:44:10:49: 20:74:74:88:66:72:26:b1:e3:0f:73:bc:fa:5e:b4: 1f:5d:d8:27:bf:6d:ee:08:d2:68:ab:73:be:50:5d: 55:1d:9a:c0:7c:60:96:cf:9f:65:7f:a3:42:d8:2f: 11:bc:1f:ec:81:7f:43:d3:d6:ba:7b:88:2b:76:1a: d7:bd:1c:06:19:ea:d6:73:e0:4c:5c:18:e3:a4:d6: 11:10:66:e7:81:d1:d4:02:2a:4c:da:47:f9:b2:b1: a7:c7:05:1f:92:a0:b5:0f:c0:f9:18:93:88:96:c6: 17:ec:29:1a:da:b5:5f:98:a2:e7:da:21:b3:78:5b: 89:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F1:62:5C:5E:2F:00:74:CC:9A:BD:4D:02:38:43:31:64:03:FE:B6 X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:82:35:40:06:9e:fe:83:65:ab:40:a4:75:e3:1b:5b:2c:e0: ab:13:73:db:cd:23:59:24:af:5c:a1:8a:d3:e7:a7:d2:d4:f7: e2:34:87:11:b5:b4:d5:7f:fd:2e:56:75:f4:ef:0c:9f:a0:46: f7:0e:8e:4f:42:aa:e6:05:d4:2a:a7:a0:ea:ee:2c:4b:de:35: bf:ee:21:1d:b0:aa:71:99:a6:f7:e8:ac:d0:ce:93:57:f2:53: 37:ad:bc:20:b2:e4:88:eb:c6:5f:0b:79:5c:d5:cb:53:9e:5a: 33:d0:60:83:3e:e7:00:87:be:8f:bc:fd:e6:41:7f:db:11:23: 8e:19:d2:f9:c5:3f:a0:9a:be:6f:52:92:0c:94:6c:09:43:3d: 34:9c:0e:55:6b:86:99:0d:bd:94:52:cc:aa:02:8f:a8:42:e8: 47:67:57:de:76:c1:67:90:48:2e:a0:9b:ae:35:f2:1d:47:71: ac:03:5f:b8:fe:da:db:1c:27:71:69:d8:47:4e:5d:74:08:b9: 4f:68:8c:89:69:48:63:27:14:2f:11:b2:0d:25:eb:77:7b:4d: 60:61:a6:02:52:cf:73:09:e1:79:1f:04:2a:71:56:9f:7b:75: ab:03:e7:19:af:9a:40:3c:9c:ef:d1:fe:b6:2d:d5:89:bb:d0: 38:71:e6:2f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDlPiYnKlLqttPqSf9rZTipuFLPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNTA4MjExOTA2NDZaFw0yNTA4MjQyMjAzNDZaMDMxMTAvBgNV BAMTKDdGRjE2MjVDNUUyRjAwNzRDQzlBQkQ0RDAyMzg0MzMxNjQwM0ZFQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlPbHgvYFSqzRwI+K4guA0t7jF buTpqv98kpir/Dze9dnSOE6H/AsYfMWbATlkEweF/EzLYlDEFfEy+ngfCnidPhTt hVLjRo+VilB4jSd/I7nHh6vdhElPsEzGQz0kOTlMiUym4n8yyfZTLgohtkvZZ8WT sluXGGw/k+G+/VOifUlVtUQQSSB0dIhmciax4w9zvPpetB9d2Ce/be4I0mirc75Q XVUdmsB8YJbPn2V/o0LYLxG8H+yBf0PT1rp7iCt2Gte9HAYZ6tZz4ExcGOOk1hEQ ZueB0dQCKkzaR/mysafHBR+SoLUPwPkYk4iWxhfsKRratV+YoufaIbN4W4lbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf/FiXF4vAHTMmr1NAjhDMWQD/rYwHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2IwMWM5NjctOTlkMC00YzIxLTk2 NDItODdhZGE2NzE1NWM4LzAvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMw MzE0Q0ZBMzE3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFmCNUAGnv6DZatApHXjG1ss4KsTc9vNI1kk r1yhitPnp9LU9+I0hxG1tNV//S5WdfTvDJ+gRvcOjk9CquYF1CqnoOruLEveNb/u IR2wqnGZpvforNDOk1fyUzetvCCy5Ijrxl8LeVzVy1OeWjPQYIM+5wCHvo+8/eZB f9sRI44Z0vnFP6Cavm9SkgyUbAlDPTScDlVrhpkNvZRSzKoCj6hC6EdnV952wWeQ SC6gm6418h1HcawDX7j+2tscJ3Fp2EdOXXQIuU9ojIlpSGMnFC8Rsg0l63d7TWBh pgJSz3MJ4XkfBCpxVp97dasD5xmvmkA8nO/R/rYt1Ym70Dhx5i8= -----END CERTIFICATE-----Generated at Sat Aug 23 12:23:01 2025 by rpki-client