$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: ariKE/1IHPv7PGa3ZxmYaqJ4YH/KgCMFEw/XK6I3qgY= Subject key identifier: CA:8F:3F:C6:EF:A8:6A:21:41:3D:C0:3D:0B:11:D9:28:6F:A5:B8:6A Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 77B99ACED9C702126988491FDB9F80DDE93FDEE2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: 78 Signing time: Thu 21 Aug 2025 17:30:38 +0000 Manifest this update: Thu 21 Aug 2025 17:25:38 +0000 Manifest next update: Sun 24 Aug 2025 21:26:38 +0000 Files and hashes: 1: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: 4Y5Ddm6yUymC+qHSs8fVActMjjMDZEcHLdC59v78BoQ=) 2: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: xGHUucKhH5kmQ+65YZMYfuYlyW3kJ8ie5abut/yqhlk=) 3: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: kTHvzmqB/2veUohEP9ZdbxC595Rgd4EACGX8AypsPpY=) 4: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: rcbPi3I97LQFHeJ7b+5YyqwBaiCbsVKS3gbd8vJh030=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 21:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b9:9a:ce:d9:c7:02:12:69:88:49:1f:db:9f:80:dd:e9:3f:de:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Aug 21 17:25:38 2025 GMT Not After : Aug 24 21:26:38 2025 GMT Subject: CN=CA8F3FC6EFA86A21413DC03D0B11D9286FA5B86A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1a:97:f7:4e:2e:f6:ba:64:87:e3:87:cb:78: f0:d1:68:db:b4:8d:d8:a5:f5:d0:a9:bf:89:2b:3a: 2f:fa:68:f5:c0:b8:65:48:c9:ca:9c:48:dc:d8:a7: 7a:c6:b1:1f:24:8d:2c:ee:e2:e1:82:eb:1f:5f:98: a5:22:a3:71:84:d6:d0:cb:0d:f7:68:6c:07:22:a8: 7a:97:57:84:f4:cf:83:4f:27:ab:2a:49:f8:20:a8: a5:bc:21:1b:06:15:c1:00:a4:7e:6f:91:ed:83:07: 12:1b:15:4a:54:b4:52:2c:96:7d:20:59:81:44:2a: 53:59:19:9e:e1:94:69:f4:65:0e:41:e0:a2:e6:5a: 43:5d:84:7d:d6:76:5d:6d:e6:2e:3b:d3:d3:9c:db: b2:9e:91:a9:d1:ef:12:62:ba:65:4f:35:ff:2f:86: 1a:3e:c2:d6:98:f9:b0:00:eb:d1:af:60:87:42:0a: c1:2f:a1:df:6c:8f:d4:e4:8c:6b:c7:2f:ef:00:4f: 4f:12:09:55:2a:2c:9a:85:31:d9:c5:4b:74:31:53: 0a:f4:0d:12:88:13:54:f0:be:13:a5:18:7d:4c:07: d6:12:69:c9:f1:83:04:ab:6d:d2:da:12:ad:e9:55: 09:a0:48:39:5b:d7:7f:0b:f8:74:27:24:28:86:07: c6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8F:3F:C6:EF:A8:6A:21:41:3D:C0:3D:0B:11:D9:28:6F:A5:B8:6A X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:6a:1b:62:d3:d1:5e:ee:01:73:04:bb:c7:2e:a7:24:15:47: ec:d6:46:30:f7:73:be:27:69:59:8f:3c:72:2e:b1:ca:ee:b0: ba:6b:b1:84:aa:63:46:5d:03:f7:1f:c7:d9:37:78:03:9e:6b: bf:c5:76:0b:3e:87:e4:49:32:85:11:c3:f6:6b:0c:f7:2c:99: 08:0f:ca:00:b9:61:2a:2f:f8:38:07:ba:cc:48:df:df:6a:a3: 09:45:ec:97:7d:59:7d:e0:95:a8:c3:6d:08:b9:03:27:c3:22: 73:fb:fe:bb:4b:ba:b0:ef:98:d6:30:96:b6:74:8d:ec:93:98: fc:b6:a2:46:a2:11:b9:df:62:fa:f5:78:d9:43:7b:bc:83:31: 21:5a:e3:4c:e4:94:54:65:bf:b8:66:93:59:e5:dd:87:f3:58: 71:a7:9d:eb:db:42:cf:47:0c:af:d7:76:85:17:a8:c0:60:3b: 44:0c:c7:85:37:71:b0:16:df:00:22:cb:0f:63:09:da:4b:a7: a6:69:9f:27:ba:1d:55:6d:96:ba:bd:18:26:b2:de:c9:db:ba: 55:07:73:c7:cd:a8:99:4f:b3:43:1b:24:8b:35:3a:be:d0:69: 9e:15:8f:57:b3:a2:3b:6a:14:7c:19:ec:1e:bb:69:48:51:f6: 49:ba:82:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd7maztnHAhJpiEkf25+A3ek/3uIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTA4MjExNzI1MzhaFw0yNTA4MjQyMTI2MzhaMDMxMTAvBgNV BAMTKENBOEYzRkM2RUZBODZBMjE0MTNEQzAzRDBCMTFEOTI4NkZBNUI4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChGpf3Ti72umSH44fLePDRaNu0 jdil9dCpv4krOi/6aPXAuGVIycqcSNzYp3rGsR8kjSzu4uGC6x9fmKUio3GE1tDL DfdobAciqHqXV4T0z4NPJ6sqSfggqKW8IRsGFcEApH5vke2DBxIbFUpUtFIsln0g WYFEKlNZGZ7hlGn0ZQ5B4KLmWkNdhH3Wdl1t5i4709Oc27KekanR7xJiumVPNf8v hho+wtaY+bAA69GvYIdCCsEvod9sj9TkjGvHL+8AT08SCVUqLJqFMdnFS3QxUwr0 DRKIE1TwvhOlGH1MB9YSacnxgwSrbdLaEq3pVQmgSDlb138L+HQnJCiGB8aNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyo8/xu+oaiFBPcA9CxHZKG+luGowHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKJqG2LT0V7uAXMEu8cupyQVR+zWRjD3c74n aVmPPHIuscrusLprsYSqY0ZdA/cfx9k3eAOea7/Fdgs+h+RJMoURw/ZrDPcsmQgP ygC5YSov+DgHusxI399qowlF7Jd9WX3glajDbQi5AyfDInP7/rtLurDvmNYwlrZ0 jeyTmPy2okaiEbnfYvr1eNlDe7yDMSFa40zklFRlv7hmk1nl3YfzWHGnnevbQs9H DK/XdoUXqMBgO0QMx4U3cbAW3wAiyw9jCdpLp6Zpnye6HVVtlrq9GCay3snbulUH c8fNqJlPs0MbJIs1Or7QaZ4Vj1ezojtqFHwZ7B67aUhR9km6gt8= -----END CERTIFICATE-----Generated at Sat Aug 23 19:24:50 2025 by rpki-client