$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft File: D4DD8244BC2EB2B187B4181226714505DF8F4452.mft (raw, json) Hash identifier: gmRtGDIIiMpRSTTH0RrOPW6Z4p576Dlcgh8AXQbVKgo= Subject key identifier: 23:9B:02:24:9E:B0:5E:4D:B0:1E:DB:86:0E:F3:4F:07:69:59:C2:40 Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 5FA954E855700836E938079C69A66B15B4B0ED43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft Manifest number: 01F2 Signing time: Fri 22 Aug 2025 15:51:10 +0000 Manifest this update: Fri 22 Aug 2025 15:46:10 +0000 Manifest next update: Mon 25 Aug 2025 18:48:10 +0000 Files and hashes: 1: 3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa (hash: OXRZ526Vg7TmkLT93n/Qe4MisAG7vaUJuVBZqKmzdzU=) 2: 3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa (hash: wbDj2qVwWojdiwUQq1leoVbmSXtniu4/S6z44a48QLw=) 3: D4DD8244BC2EB2B187B4181226714505DF8F4452.crl (hash: x9zeOOocgSzkQi4EC5uFyX4AVKKOODjO2eil3pYL8zo=) 4: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (hash: WbsQ68Cu40oqUa2yh2wFEKvkhfxO2KVKndxoFM4DO5k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a9:54:e8:55:70:08:36:e9:38:07:9c:69:a6:6b:15:b4:b0:ed:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Aug 22 15:46:10 2025 GMT Not After : Aug 25 18:48:10 2025 GMT Subject: CN=239B02249EB05E4DB01EDB860EF34F076959C240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:06:3a:c5:1c:aa:f6:54:c6:96:96:1f:c5:66: bc:8f:29:7a:6c:61:25:57:fe:bd:c8:ff:53:56:fb: cd:ed:db:c6:c9:31:55:62:cd:9d:04:67:96:c6:e3: b4:98:06:d3:4d:35:3a:e5:10:fd:8d:9f:de:9e:f7: 51:91:d1:aa:21:df:37:29:4c:be:59:d7:3e:f2:89: 3b:29:af:17:a7:8e:8d:bd:a3:03:70:d7:ce:81:32: 57:ba:90:6b:d3:24:18:96:fa:d6:8d:9d:7d:82:12: b7:a6:5b:f3:26:1e:bf:b4:cc:a2:f6:b2:4e:18:21: 7d:b7:aa:9f:3e:f8:33:75:52:35:ed:a8:eb:ad:18: 67:99:c2:02:37:c3:f9:62:5c:be:84:08:77:17:6a: aa:45:4e:98:19:9a:8d:27:c7:87:31:20:ab:ac:b3: d4:24:c0:3f:19:56:b5:2b:3b:e3:81:d9:f5:a7:70: 1f:4a:ae:c0:67:be:1c:f6:0a:b4:19:f3:ac:37:43: 74:31:64:58:ae:7a:30:19:32:08:c8:77:80:87:33: da:23:48:3f:78:fe:ef:ac:fc:73:0e:fc:1f:1b:37: 02:74:1b:5b:0d:d9:e7:bc:21:f6:99:08:cb:03:90: 50:d8:9e:42:93:d8:1e:89:76:43:33:5e:3e:47:ed: b7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9B:02:24:9E:B0:5E:4D:B0:1E:DB:86:0E:F3:4F:07:69:59:C2:40 X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:3d:f6:27:33:c8:05:6e:ea:fa:11:e2:ce:4b:0c:21:ae:c1: 4c:e3:9c:84:08:c8:a2:b3:5c:e4:7b:e1:a9:fb:34:8b:bd:91: 83:99:14:c8:ab:8f:11:fa:29:f9:eb:64:b3:6c:dc:38:ea:8a: d1:0e:44:63:ee:9a:7b:06:37:18:3d:e0:5a:90:b3:a0:aa:57: 19:b8:0b:d6:c5:9f:c6:11:3f:1f:79:46:50:08:62:15:70:c1: 1a:b6:fe:3a:e9:48:73:f1:c8:8d:7a:79:af:f1:27:93:c9:aa: 4c:ea:6d:32:63:bd:42:f9:47:cc:8d:6d:31:0f:b4:d3:cd:c4: 4d:e7:1e:c5:8f:bf:4c:b5:4f:df:5a:cf:eb:82:77:03:d5:ee: 1d:f6:a3:ba:a6:ae:e5:a0:02:0d:c4:65:0a:84:4f:9e:2d:ea: 10:2f:bc:21:78:3c:cb:fc:01:47:b5:0b:f4:d2:55:a0:ed:6b: 91:2d:c2:ba:d9:a5:fb:ed:02:48:cb:92:60:de:69:fb:db:30: e4:76:b4:9d:b5:c1:96:0a:77:b0:37:5f:68:f4:30:60:65:c6: 81:a6:4c:e6:c4:f3:94:d0:f6:14:e3:78:3a:14:88:8d:95:a5: 4f:7e:c2:b3:90:40:e1:ed:c3:bd:0b:5d:30:1b:a7:1b:dc:f5: ac:15:d9:d1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX6lU6FVwCDbpOAecaaZrFbSw7UMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNTA4MjIxNTQ2MTBaFw0yNTA4MjUxODQ4MTBaMDMxMTAvBgNV BAMTKDIzOUIwMjI0OUVCMDVFNERCMDFFREI4NjBFRjM0RjA3Njk1OUMyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaBjrFHKr2VMaWlh/FZryPKXps YSVX/r3I/1NW+83t28bJMVVizZ0EZ5bG47SYBtNNNTrlEP2Nn96e91GR0aoh3zcp TL5Z1z7yiTsprxenjo29owNw186BMle6kGvTJBiW+taNnX2CEremW/MmHr+0zKL2 sk4YIX23qp8++DN1UjXtqOutGGeZwgI3w/liXL6ECHcXaqpFTpgZmo0nx4cxIKus s9QkwD8ZVrUrO+OB2fWncB9KrsBnvhz2CrQZ86w3Q3QxZFiuejAZMgjId4CHM9oj SD94/u+s/HMO/B8bNwJ0G1sN2ee8IfaZCMsDkFDYnkKT2B6JdkMzXj5H7bfvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUI5sCJJ6wXk2wHtuGDvNPB2lZwkAwHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWFmMGY0MjMtM2JlZC00OTM4LTlm ODktMTVlNjI2OWJkZGNhLzAvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1 MDVERjhGNDQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJk99iczyAVu6voR4s5LDCGuwUzjnIQIyKKz XOR74an7NIu9kYOZFMirjxH6KfnrZLNs3DjqitEORGPumnsGNxg94FqQs6CqVxm4 C9bFn8YRPx95RlAIYhVwwRq2/jrpSHPxyI16ea/xJ5PJqkzqbTJjvUL5R8yNbTEP tNPNxE3nHsWPv0y1T99az+uCdwPV7h32o7qmruWgAg3EZQqET54t6hAvvCF4PMv8 AUe1C/TSVaDta5EtwrrZpfvtAkjLkmDeafvbMOR2tJ21wZYKd7A3X2j0MGBlxoGm TObE85TQ9hTjeDoUiI2VpU9+wrOQQOHtw70LXTAbpxvc9awV2dE= -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:17 2025 by rpki-client