$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft File: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft (raw, json) Hash identifier: QFnJ7PnnspteRTcL+ZkAsr18lNhfcg7s0HrAX9YFlOs= Subject key identifier: B0:6F:C5:E1:7A:3D:AA:FF:9A:96:E9:16:ED:A1:A8:19:F3:C8:1D:C2 Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 7C82110634D92C0CF3A4C8646370FAAC42A87517 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft Manifest number: 04D3 Signing time: Sat 23 Aug 2025 11:53:11 +0000 Manifest this update: Sat 23 Aug 2025 11:48:11 +0000 Manifest next update: Tue 26 Aug 2025 14:35:11 +0000 Files and hashes: 1: 323430343a613463303a3a2f33322d3438203d3e20313338383232.roa (hash: jd8RzIV4pb6xOSx8M2iJByCvMa7m6mddhFLRaUaFvoI=) 2: 3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa (hash: mA/rP0hr8/EieVP2HKsGbfcjdkP2Kd8or4Jc67/Y7I0=) 3: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl (hash: n5mZ7LuDVTYRowOEenoIrcx/og9QmT1hEWCA+IjouA8=) 4: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (hash: 8BcFapwe+X3BcAcYyUi0aKlB+9OoLNEUNoO57IgvOug=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 14:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:82:11:06:34:d9:2c:0c:f3:a4:c8:64:63:70:fa:ac:42:a8:75:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Aug 23 11:48:11 2025 GMT Not After : Aug 26 14:35:11 2025 GMT Subject: CN=B06FC5E17A3DAAFF9A96E916EDA1A819F3C81DC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a3:cb:2d:8d:28:06:da:6c:b7:97:49:d8:b2: 4c:97:b1:c1:4c:70:68:fb:78:9c:45:3a:26:6c:ed: 89:a5:b7:f0:67:0e:5f:5e:e2:16:8c:67:3d:f9:c3: 4a:be:51:8b:3a:9e:b8:02:b8:4c:cf:10:13:7b:4a: 08:7b:82:13:b3:b6:9c:31:59:0a:5c:ba:b9:b7:c0: b4:4e:2b:be:0a:be:07:5d:aa:1f:cb:8e:75:28:5c: 54:5b:53:db:32:ba:2e:10:94:55:8b:ab:6f:2f:d7: 3f:11:a8:d7:fc:c2:03:08:0f:b4:29:ec:07:81:f4: 7d:fe:f3:93:ac:ed:e3:cb:9b:35:12:48:78:b9:d5: 3e:76:03:0a:8f:50:a6:59:e4:0c:5b:92:4a:84:d8: 22:61:8b:ce:8a:aa:08:06:97:02:4c:bc:78:f5:94: 61:3a:8d:c1:8f:d1:45:66:a2:fe:bc:d9:11:b6:ef: 1c:41:b2:c9:61:f8:1b:6b:e5:d9:fe:e3:cc:49:6b: 0c:1d:d4:a8:55:21:d1:0b:3e:5d:c5:69:70:c6:74: 68:6f:70:fc:5f:0d:3e:98:56:31:17:42:cb:7c:b9: 18:70:f1:ce:5b:af:4c:85:17:9d:73:0a:dc:7c:da: 10:97:f2:f4:c7:1d:ff:a3:53:29:9c:43:d1:00:84: fa:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6F:C5:E1:7A:3D:AA:FF:9A:96:E9:16:ED:A1:A8:19:F3:C8:1D:C2 X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:7c:34:ce:86:67:d0:ff:93:34:32:eb:c6:88:2d:86:1c:dd: 78:6a:e5:08:08:dc:d4:7a:c0:28:3f:ab:d9:41:0b:6d:1c:b8: 91:b5:64:0c:ee:7e:c2:f2:71:a5:d8:b2:8a:e1:b9:cb:dd:60: 7f:1c:e9:fe:67:f8:8a:c7:c0:e6:b4:77:2f:99:51:cb:d6:a4: d5:6e:75:69:74:b5:7b:64:13:a8:e9:1e:a8:5d:81:d5:22:6d: a2:49:99:f3:01:17:45:84:4f:49:ba:c5:e3:5c:94:dd:d3:d0: be:78:9c:14:4a:48:7b:5c:51:de:2a:18:7b:d9:cc:e0:62:90: 6a:1e:a8:d0:d2:4c:0f:6f:d4:45:84:64:90:62:66:2a:7a:3d: f1:82:33:13:c2:cb:0c:71:05:a5:0f:26:59:a4:9c:df:e8:a0: 21:d5:82:0d:54:1b:ff:a1:d6:b8:30:05:55:76:99:76:7c:ae: 11:6c:eb:82:74:e8:b4:11:02:06:25:a1:76:0d:b8:54:bc:ac: 4f:c8:c9:52:4a:64:85:20:78:53:d0:ca:43:4d:ce:a1:db:92: c3:7a:53:a8:17:00:ce:9d:1c:2f:9b:91:1b:35:3e:0f:77:43: 36:f0:2e:d4:f5:24:ef:a4:17:40:0a:28:79:b6:5e:f4:46:6e: f4:bf:a5:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfIIRBjTZLAzzpMhkY3D6rEKodRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNTA4MjMxMTQ4MTFaFw0yNTA4MjYxNDM1MTFaMDMxMTAvBgNV BAMTKEIwNkZDNUUxN0EzREFBRkY5QTk2RTkxNkVEQTFBODE5RjNDODFEQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvo8stjSgG2my3l0nYskyXscFM cGj7eJxFOiZs7Ymlt/BnDl9e4haMZz35w0q+UYs6nrgCuEzPEBN7Sgh7ghOztpwx WQpcurm3wLROK74Kvgddqh/LjnUoXFRbU9syui4QlFWLq28v1z8RqNf8wgMID7Qp 7AeB9H3+85Os7ePLmzUSSHi51T52AwqPUKZZ5AxbkkqE2CJhi86KqggGlwJMvHj1 lGE6jcGP0UVmov682RG27xxBsslh+Btr5dn+48xJawwd1KhVIdELPl3FaXDGdGhv cPxfDT6YVjEXQst8uRhw8c5br0yFF51zCtx82hCX8vTHHf+jUymcQ9EAhPqlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsG/F4Xo9qv+alukW7aGoGfPIHcIwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTNiYmYxZGEtZTMxNy00OGVmLWFk NmQtZmU4YThiZjA4NDAwLzAvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4 NDM4M0E2MzNENC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALV8NM6GZ9D/kzQy68aILYYc3Xhq5QgI3NR6 wCg/q9lBC20cuJG1ZAzufsLycaXYsorhucvdYH8c6f5n+IrHwOa0dy+ZUcvWpNVu dWl0tXtkE6jpHqhdgdUibaJJmfMBF0WET0m6xeNclN3T0L54nBRKSHtcUd4qGHvZ zOBikGoeqNDSTA9v1EWEZJBiZip6PfGCMxPCywxxBaUPJlmknN/ooCHVgg1UG/+h 1rgwBVV2mXZ8rhFs64J06LQRAgYloXYNuFS8rE/IyVJKZIUgeFPQykNNzqHbksN6 U6gXAM6dHC+bkRs1Pg93QzbwLtT1JO+kF0AKKHm2XvRGbvS/pbE= -----END CERTIFICATE-----Generated at Sun Aug 24 02:29:42 2025 by rpki-client