$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: Y7VcEh1GEfSNht8NPoB7pYFbRVvERTEVMKyv26nr1SM= Subject key identifier: B1:99:C2:DD:26:6E:1E:A6:2A:9B:A2:23:C7:B1:59:A6:2B:79:E6:A0 Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 3AE1CD027F8837F581F1FF87952F6F743FEA7001 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 0214 Signing time: Fri 22 Aug 2025 05:11:40 +0000 Manifest this update: Fri 22 Aug 2025 05:06:40 +0000 Manifest next update: Mon 25 Aug 2025 13:49:40 +0000 Files and hashes: 1: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: nNJI1VCgIYGgy5KqyttAN9fses8U/Z5TQBsyUa21I1A=) 2: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 13:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:e1:cd:02:7f:88:37:f5:81:f1:ff:87:95:2f:6f:74:3f:ea:70:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Aug 22 05:06:40 2025 GMT Not After : Aug 25 13:49:40 2025 GMT Subject: CN=B199C2DD266E1EA62A9BA223C7B159A62B79E6A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:7e:02:86:3d:b3:9b:5f:93:a2:13:0f:20: fa:e3:1b:69:13:57:1a:57:6c:88:f0:89:ed:69:bf: 4c:25:53:ed:81:06:8e:ce:a5:7e:29:ef:4d:ba:12: 31:8f:98:a3:4b:36:e3:07:c0:e6:99:fd:1c:cf:6d: 02:9f:60:1d:33:02:d2:6b:95:c0:83:80:e2:90:47: 9b:44:98:fa:d0:55:aa:5d:e1:16:36:b4:ef:eb:d1: c4:5f:0d:ab:50:29:e9:cf:ca:a3:30:f6:2c:6f:9c: 09:6d:6c:18:4a:d6:f1:d4:95:5d:31:7b:04:4d:f9: 4a:0e:a4:0f:d6:8b:55:2f:58:43:83:f6:68:50:5c: 8c:34:2a:aa:f8:1e:16:24:a7:91:39:f1:7b:bb:f0: 78:43:61:9c:c0:3e:0c:23:8f:31:62:89:a4:93:46: a2:75:e0:f4:04:3d:46:0a:12:6b:69:46:24:f6:4f: 03:d5:56:bc:b0:54:f4:50:77:60:7f:16:77:2a:29: 21:68:65:57:47:4f:4e:3a:2a:51:7c:96:31:ec:4f: a9:8c:40:89:e0:8d:97:ee:2a:4c:9c:8b:dd:45:02: 22:67:4a:48:f9:ac:e7:ea:6c:6b:ca:fb:8b:de:33: 4c:87:94:87:af:1f:17:9b:b1:77:ac:6e:f0:d9:f4: a7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:99:C2:DD:26:6E:1E:A6:2A:9B:A2:23:C7:B1:59:A6:2B:79:E6:A0 X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:ed:78:d5:80:e0:86:4f:40:91:37:28:e8:ec:fc:6e:15:36: 73:93:23:4d:3a:bd:ef:dc:86:11:9f:64:fe:45:78:12:33:10: 66:24:c7:29:2c:3f:8f:d7:4e:80:e8:70:3a:78:97:5c:35:f3: 74:9a:70:f7:6f:09:f1:fd:9d:75:8e:fb:c9:31:05:56:b1:8a: 44:bd:1c:0e:60:9f:bc:f9:74:51:22:ed:3f:ac:2a:d8:d3:e8: 69:45:97:12:3c:e7:a7:73:c2:b0:f6:cd:fa:b7:13:8f:4d:2c: c7:37:ab:27:2e:30:79:21:16:51:77:30:a7:17:83:10:f3:69: 20:69:c4:8b:9e:69:dc:b0:3f:57:65:09:a9:6f:d7:79:fa:b0: aa:dc:63:38:1e:2e:57:36:ae:da:1a:f6:59:03:b4:4c:06:1d: 90:b3:06:65:6e:29:d6:53:f0:57:fe:de:25:dc:5c:cd:c8:7e: d6:29:31:9d:3d:12:02:62:4b:b2:03:c6:41:37:e7:28:07:1c: 3e:ab:ca:75:99:9a:e6:84:57:d5:2e:8f:39:22:63:fd:1e:9a: 76:fd:6a:80:12:6d:6c:96:84:91:38:22:a3:4c:1c:97:4c:95: f8:cf:22:a9:ca:6e:34:36:75:29:1c:17:e9:49:7a:2e:cf:ff: 17:70:ac:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOuHNAn+IN/WB8f+HlS9vdD/qcAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNTA4MjIwNTA2NDBaFw0yNTA4MjUxMzQ5NDBaMDMxMTAvBgNV BAMTKEIxOTlDMkREMjY2RTFFQTYyQTlCQTIyM0M3QjE1OUE2MkI3OUU2QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClJH4Chj2zm1+TohMPIPrjG2kT VxpXbIjwie1pv0wlU+2BBo7OpX4p7026EjGPmKNLNuMHwOaZ/RzPbQKfYB0zAtJr lcCDgOKQR5tEmPrQVapd4RY2tO/r0cRfDatQKenPyqMw9ixvnAltbBhK1vHUlV0x ewRN+UoOpA/Wi1UvWEOD9mhQXIw0Kqr4HhYkp5E58Xu78HhDYZzAPgwjjzFiiaST RqJ14PQEPUYKEmtpRiT2TwPVVrywVPRQd2B/FncqKSFoZVdHT046KlF8ljHsT6mM QIngjZfuKkyci91FAiJnSkj5rOfqbGvK+4veM0yHlIevHxebsXesbvDZ9KfLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsZnC3SZuHqYqm6Ijx7FZpit55qAwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGXteNWA4IZPQJE3KOjs/G4VNnOTI006ve/c hhGfZP5FeBIzEGYkxyksP4/XToDocDp4l1w183SacPdvCfH9nXWO+8kxBVaxikS9 HA5gn7z5dFEi7T+sKtjT6GlFlxI856dzwrD2zfq3E49NLMc3qycuMHkhFlF3MKcX gxDzaSBpxIueadywP1dlCalv13n6sKrcYzgeLlc2rtoa9lkDtEwGHZCzBmVuKdZT 8Ff+3iXcXM3IftYpMZ09EgJiS7IDxkE35ygHHD6rynWZmuaEV9UujzkiY/0emnb9 aoASbWyWhJE4IqNMHJdMlfjPIqnKbjQ2dSkcF+lJei7P/xdwrAQ= -----END CERTIFICATE-----Generated at Sat Aug 23 13:28:19 2025 by rpki-client