$ rpki-client -vvf repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft File: CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft (raw, json) Hash identifier: M6pLXmVmEp4M8MdGBv2omJq7JUlixxHAh7tyBXsV/Qk= Subject key identifier: 63:4A:28:03:8F:48:46:3B:E3:76:47:5F:A4:49:C6:62:3A:89:09:20 Authority key identifier: CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 Certificate issuer: /CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Certificate serial: 2FEDD034F67212640F7BFFE389D0E2EF0A720B5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft Manifest number: 017E Signing time: Thu 21 Aug 2025 07:51:07 +0000 Manifest this update: Thu 21 Aug 2025 07:46:07 +0000 Manifest next update: Sun 24 Aug 2025 09:37:07 +0000 Files and hashes: 1: 3130332e3133322e34302e302f32342d3234203d3e20313530393730.roa (hash: zG4bUujzmzqdwkICkCb1gdMUqEbOsnXYVfCYSY0KH6c=) 2: CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl (hash: Nve3/SZVn069Kd891KCcgRht+nYeRHzhj8egTnigWLg=) 3: 3130332e3133322e34302e302f32332d3234203d3e20313530393730.roa (hash: KLg+Fz2BzcIwd4SxZ1zeV5yC0o2hRKcPTvTH6A9r9sk=) 4: 3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa (hash: tzY1XNU5cVp0pp1q9NAQ2OMSeEZ2zfRfv6jNIeP9/Ac=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 09:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ed:d0:34:f6:72:12:64:0f:7b:ff:e3:89:d0:e2:ef:0a:72:0b:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Validity Not Before: Aug 21 07:46:07 2025 GMT Not After : Aug 24 09:37:07 2025 GMT Subject: CN=634A28038F48463BE376475FA449C6623A890920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:33:c0:6a:92:0d:a5:9f:a8:e3:58:e8:8f:f7: dd:b0:21:dc:f0:53:14:59:7f:b4:f0:20:77:7d:5f: 29:d5:42:07:45:de:c7:c2:0c:6e:20:37:19:1a:9e: 44:76:d2:0e:51:90:e8:e4:34:75:07:33:88:10:72: 02:53:97:16:8e:66:b8:ae:80:94:71:4a:9b:09:bb: 8e:0e:9c:8d:4b:c6:94:65:fc:8d:ec:ac:97:43:b6: ae:15:aa:22:70:84:dc:a7:36:4d:6e:b8:2b:27:9d: d9:06:8a:e8:f3:26:e9:2d:68:57:2f:6e:d9:f0:f9: 63:d6:3e:5d:75:a7:b3:ce:b8:62:dc:3b:d1:f8:43: 10:c6:29:52:34:23:b2:3f:49:f9:20:c9:1d:7d:4a: 65:1c:01:7f:f9:e5:d3:61:44:da:76:19:f2:60:6c: 06:4b:e7:4e:33:d3:45:41:0d:e5:69:60:3b:78:5d: 52:95:a5:16:bb:0d:05:bb:b4:37:70:ef:72:ca:a1: af:46:6a:3e:a1:b7:30:3b:5e:32:5d:3a:09:ed:bb: b4:ff:71:d5:5f:2c:ec:a3:7d:8f:9f:1d:36:ab:3b: e1:85:03:83:55:8c:c0:f4:2f:70:c8:7d:0a:51:8c: ee:37:69:5a:10:93:af:4d:a0:22:85:4b:11:e9:3f: 66:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4A:28:03:8F:48:46:3B:E3:76:47:5F:A4:49:C6:62:3A:89:09:20 X509v3 Authority Key Identifier: keyid:CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:32:76:58:8f:ba:51:6b:1f:a1:49:41:53:64:b2:d6:54:98: 13:83:35:95:0c:16:53:ad:9b:5e:e5:58:8f:62:f4:e5:a4:73: 55:2d:8d:cf:aa:ea:a6:b2:7c:e7:bd:80:d4:6d:77:03:9a:4c: 2a:e1:e4:be:fe:4e:d1:7d:cf:93:36:0b:58:9d:b4:10:95:d3: 5f:15:c8:06:1a:7c:ad:6d:0e:51:75:77:a7:bd:4e:aa:bb:af: b7:46:0f:fc:9a:e4:83:7f:ac:68:15:26:44:fe:66:a3:0f:38: 82:a0:4b:e1:5c:26:d0:04:9c:06:6c:03:c1:9c:ae:4f:41:eb: 45:3a:2e:65:08:c6:4a:47:aa:e6:5b:f2:06:ee:61:ec:97:24: d9:78:91:b4:3b:8e:74:02:fc:82:df:4b:f7:31:94:91:56:27: ad:0a:ef:2c:a1:b7:46:62:1b:0a:dd:e5:84:53:f9:da:c9:2e: 02:32:f4:cf:49:a8:cb:d2:38:b9:8f:34:44:84:50:51:ac:25: e8:ee:09:56:11:f9:18:20:37:a5:48:19:d6:f0:57:f9:00:e9: 48:82:c9:5a:fb:c1:5a:5a:e1:1b:fe:34:da:5e:31:da:8c:34: a1:12:6b:68:a2:a7:60:cb:35:fe:99:73:f0:b7:35:47:8e:84: 1d:68:d7:26 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL+3QNPZyEmQPe//jidDi7wpyC14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJE MkYwRUI4NTAeFw0yNTA4MjEwNzQ2MDdaFw0yNTA4MjQwOTM3MDdaMDMxMTAvBgNV BAMTKDYzNEEyODAzOEY0ODQ2M0JFMzc2NDc1RkE0NDlDNjYyM0E4OTA5MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtM8Bqkg2ln6jjWOiP992wIdzw UxRZf7TwIHd9XynVQgdF3sfCDG4gNxkankR20g5RkOjkNHUHM4gQcgJTlxaOZriu gJRxSpsJu44OnI1LxpRl/I3srJdDtq4VqiJwhNynNk1uuCsnndkGiujzJuktaFcv btnw+WPWPl11p7POuGLcO9H4QxDGKVI0I7I/SfkgyR19SmUcAX/55dNhRNp2GfJg bAZL504z00VBDeVpYDt4XVKVpRa7DQW7tDdw73LKoa9Gaj6htzA7XjJdOgntu7T/ cdVfLOyjfY+fHTarO+GFA4NVjMD0L3DIfQpRjO43aVoQk69NoCKFSxHpP2a5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUY0ooA49IRjvjdkdfpEnGYjqJCSAwHwYDVR0j BBgwFoAUy5ZiczFTwC5MQRt9LyueItLw64UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGYyZmZkYS0wNWQxLTQwODUtYTEzNS0wMzk4N2EwN2YzOWUvMC9DQjk2NjI3MzMx NTNDMDJFNEM0MTFCN0QyRjJCOUUyMkQyRjBFQjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJEMkYw RUI4NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGRmMmZmZGEtMDVkMS00MDg1LWEx MzUtMDM5ODdhMDdmMzllLzAvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlF MjJEMkYwRUI4NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE0ydliPulFrH6FJQVNkstZUmBODNZUMFlOt m17lWI9i9OWkc1Utjc+q6qayfOe9gNRtdwOaTCrh5L7+TtF9z5M2C1idtBCV018V yAYafK1tDlF1d6e9Tqq7r7dGD/ya5IN/rGgVJkT+ZqMPOIKgS+FcJtAEnAZsA8Gc rk9B60U6LmUIxkpHquZb8gbuYeyXJNl4kbQ7jnQC/ILfS/cxlJFWJ60K7yyht0Zi Gwrd5YRT+drJLgIy9M9JqMvSOLmPNESEUFGsJejuCVYR+RggN6VIGdbwV/kA6UiC yVr7wVpa4Rv+NNpeMdqMNKESa2iip2DLNf6Zc/C3NUeOhB1o1yY= -----END CERTIFICATE-----Generated at Sat Aug 23 10:09:23 2025 by rpki-client