$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft File: 1952B074D19D5AB562D7EE537AD3059EA097353B.mft (raw, json) Hash identifier: 7Eu2qHtsYSrLys8gtFmi83BtOckliKnUJepOEsYUU4Y= Subject key identifier: 0C:09:D1:45:C5:17:6B:31:17:4A:96:2A:CD:B1:12:DC:A3:F9:14:C9 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 792FCE197089A613BB667C98E99C94E15C25387F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft Manifest number: 01FB Signing time: Fri 22 Aug 2025 03:31:34 +0000 Manifest this update: Fri 22 Aug 2025 03:26:34 +0000 Manifest next update: Mon 25 Aug 2025 11:44:34 +0000 Files and hashes: 1: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (hash: AS7ErBWYOh3ltpqaacXCmV2CVPom+cE/4rFVdqtAK+c=) 2: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (hash: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg=) 3: 3130332e3135382e32362e302f32342d3234203d3e20313431363735.roa (hash: ykRWiMSaAsP4Z39Whyu3kvlehUT+9RaQnqBPMyF4FR0=) 4: 1952B074D19D5AB562D7EE537AD3059EA097353B.crl (hash: tmWsxcBE+ODejKFfDOnslOdOWVf9yJm/TxZDa5FUGL0=) 5: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (hash: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA=) 6: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (hash: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2f:ce:19:70:89:a6:13:bb:66:7c:98:e9:9c:94:e1:5c:25:38:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Aug 22 03:26:34 2025 GMT Not After : Aug 25 11:44:34 2025 GMT Subject: CN=0C09D145C5176B31174A962ACDB112DCA3F914C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:cd:8d:a6:b6:5e:20:60:36:bd:28:f6:be:8e: c7:80:e3:17:99:1e:31:82:40:d3:c2:0f:67:66:a0: 0d:6f:21:b0:89:c5:33:3e:ed:cb:db:00:aa:e2:93: 15:04:c8:56:07:f9:50:7c:52:52:83:9e:b4:b5:54: d4:df:19:a3:96:e8:36:f3:44:49:a0:22:be:8d:9c: fe:73:53:10:79:1e:e7:ad:37:b3:42:a8:fb:0b:e4: 47:c9:ee:18:7a:50:4d:03:ca:9e:1c:86:91:c4:1b: 0f:c1:7b:e5:dd:d8:63:d1:35:d9:d7:9c:71:b1:3d: b8:6f:4f:b1:d1:d9:df:e1:ad:f8:34:b9:64:c1:18: 59:68:34:3b:c1:1b:34:10:a9:94:05:80:09:ec:b1: c2:8f:c0:ca:1b:5f:d4:56:23:4e:54:fd:6b:8e:f1: db:c4:42:ee:b3:44:7d:ef:62:a8:95:9b:27:df:06: 9e:d5:a3:7e:ec:05:d1:e0:f3:5b:f4:ea:42:23:6f: 35:8a:2c:47:1b:e0:e8:b4:96:e9:1b:fb:f1:f6:2c: 52:f6:65:6b:b7:32:cb:cb:9d:50:13:1d:8b:db:f9: a4:25:f9:e1:06:16:4f:db:ce:c5:20:5f:b0:4f:3b: 19:52:00:d6:32:81:8f:f5:5f:5b:57:ba:55:4b:bc: 22:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:09:D1:45:C5:17:6B:31:17:4A:96:2A:CD:B1:12:DC:A3:F9:14:C9 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:39:65:ff:ee:e1:43:06:8e:3c:83:bd:fa:20:ad:04:24:83: bf:12:9b:4b:2a:73:02:4f:0a:64:d8:41:98:20:be:b1:9f:dd: 24:5c:4c:78:49:ee:59:ae:14:ca:03:57:be:18:17:fd:ad:66: 97:37:73:36:d0:35:10:52:6c:8d:bb:a9:eb:da:33:64:b5:10: a9:ee:e3:aa:9e:fa:f9:e2:24:55:43:8a:7b:5b:fb:1e:80:2f: b2:ce:1f:33:78:8e:44:c3:10:3d:d3:41:f4:6a:08:79:b6:d3: 11:58:fc:73:64:12:08:62:8d:bc:a1:b3:f7:99:88:eb:c5:f0: ba:1f:57:3b:ee:c3:5a:e6:0c:96:d4:2f:6a:43:a1:ca:0f:70: 0d:01:b1:ad:77:da:da:fc:90:2f:a2:94:a7:fa:19:80:94:f0: db:20:a5:c0:a3:d7:3a:40:95:63:52:37:d9:e6:a4:b6:f4:f6: 5e:e9:0e:d5:13:23:94:6a:fa:a5:d0:30:2b:16:74:6e:ac:f0: 92:a6:87:3c:3d:43:cb:98:16:d9:48:9f:60:bf:ff:8f:f8:c2: 94:9f:a4:9a:29:3d:af:db:df:79:86:ba:96:4a:e2:28:41:c5: 5c:05:bc:88:bb:31:b0:bc:56:2d:d9:d7:0c:63:e1:16:93:c0: 9a:ed:ab:f1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeS/OGXCJphO7ZnyY6ZyU4VwlOH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA4MjIwMzI2MzRaFw0yNTA4MjUxMTQ0MzRaMDMxMTAvBgNV BAMTKDBDMDlEMTQ1QzUxNzZCMzExNzRBOTYyQUNEQjExMkRDQTNGOTE0QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4zY2mtl4gYDa9KPa+jseA4xeZ HjGCQNPCD2dmoA1vIbCJxTM+7cvbAKrikxUEyFYH+VB8UlKDnrS1VNTfGaOW6Dbz REmgIr6NnP5zUxB5HuetN7NCqPsL5EfJ7hh6UE0Dyp4chpHEGw/Be+Xd2GPRNdnX nHGxPbhvT7HR2d/hrfg0uWTBGFloNDvBGzQQqZQFgAnsscKPwMobX9RWI05U/WuO 8dvEQu6zRH3vYqiVmyffBp7Vo37sBdHg81v06kIjbzWKLEcb4Oi0lukb+/H2LFL2 ZWu3MsvLnVATHYvb+aQl+eEGFk/bzsUgX7BPOxlSANYygY/1X1tXulVLvCK1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDAnRRcUXazEXSpYqzbES3KP5FMkwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDRmMmMwMjUtMWQ3Ni00YTM2LTgx NjAtYTllOGFmZTM1NzlmLzAvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1 OUVBMDk3MzUzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACk5Zf/u4UMGjjyDvfogrQQkg78Sm0sqcwJP CmTYQZggvrGf3SRcTHhJ7lmuFMoDV74YF/2tZpc3czbQNRBSbI27qevaM2S1EKnu 46qe+vniJFVDintb+x6AL7LOHzN4jkTDED3TQfRqCHm20xFY/HNkEghijbyhs/eZ iOvF8LofVzvuw1rmDJbUL2pDocoPcA0Bsa132tr8kC+ilKf6GYCU8NsgpcCj1zpA lWNSN9nmpLb09l7pDtUTI5Rq+qXQMCsWdG6s8JKmhzw9Q8uYFtlIn2C//4/4wpSf pJopPa/b33mGupZK4ihBxVwFvIi7MbC8Vi3Z1wxj4RaTwJrtq/E= -----END CERTIFICATE-----Generated at Sat Aug 23 14:01:53 2025 by rpki-client