$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: XU3Zmo+tFiSTCoksJt5CNDnGa6J0s1xYtWox4vrWO8w= Subject key identifier: F5:48:50:F1:6D:92:AB:99:1F:E7:BC:A9:4C:11:AC:D8:7A:D1:3C:1D Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 2FF223B64EF352044AAAB1EF60A1E6506E4AD920 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 01C7 Signing time: Thu 21 Aug 2025 17:21:46 +0000 Manifest this update: Thu 21 Aug 2025 17:16:46 +0000 Manifest next update: Mon 25 Aug 2025 04:23:46 +0000 Files and hashes: 1: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: gPUtkiflqIbBm3oBhACGPytJR+M+hXsa4WNoF9GCSiY=) 2: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZsYKQLKtHkVTslRdGYlW0kXwJ9gapNRm2k1uNrTnTX0=) 3: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: FkjuZkviekb7VaMyMmuCMchrVU1yZ527lgE1cprIhiU=) 4: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: c6BbZqskhId1bW3l6aSuRQLjcbQNOmGBaOGbC28FTXg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 04:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f2:23:b6:4e:f3:52:04:4a:aa:b1:ef:60:a1:e6:50:6e:4a:d9:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Aug 21 17:16:46 2025 GMT Not After : Aug 25 04:23:46 2025 GMT Subject: CN=F54850F16D92AB991FE7BCA94C11ACD87AD13C1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5a:25:33:7e:83:d9:03:d6:53:d2:2b:cc:99: 73:f4:3b:a7:4f:25:8f:dc:97:5f:44:d6:ac:73:10: d9:f4:c6:f8:41:de:1e:82:37:5b:f0:6b:c5:ce:27: 99:2a:4f:7d:22:8c:28:b3:3a:5c:92:a1:56:34:b3: 7c:51:70:68:2e:45:11:47:32:c4:61:3d:2d:bf:61: c5:0c:d0:74:73:6b:48:a4:3f:b7:bd:dd:08:8b:47: 5c:e2:05:be:26:82:76:5e:fb:cb:1b:3b:1d:6c:37: 7c:00:a4:ea:50:3f:ea:bd:69:6f:5c:5d:b7:50:4a: f4:63:c4:36:b9:72:8a:87:d1:a2:95:36:01:67:1d: d9:f2:66:a5:f7:10:b4:74:27:d4:df:b4:02:91:be: 5c:bd:be:5c:03:8a:29:87:c2:17:46:63:3a:7a:34: 17:8a:59:75:20:9d:59:21:4f:70:5f:6e:61:1d:90: 41:ed:03:1e:36:0d:72:94:0b:1c:ba:a8:76:10:bf: ad:6b:25:3d:60:70:b7:6e:85:c8:9c:a0:04:28:b3: 07:e3:ac:d4:c9:a3:89:51:d8:07:03:09:42:92:61: e1:d9:95:41:9b:6c:1e:1d:bd:e0:06:6a:b4:77:2e: 13:5f:5a:60:a9:50:c7:7f:02:74:13:10:b5:01:fd: 90:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:48:50:F1:6D:92:AB:99:1F:E7:BC:A9:4C:11:AC:D8:7A:D1:3C:1D X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:61:43:2d:c2:7e:a4:06:c2:eb:0c:f4:00:13:42:bd:a6:7c: df:01:06:89:d7:35:d9:99:5f:fa:c1:38:d9:c5:90:4c:bd:d5: 4d:73:7d:42:bd:b0:a9:4e:ad:1e:99:11:71:78:9a:3e:29:10: e6:8a:d5:26:db:f1:67:eb:a6:e2:b6:d1:7b:66:80:ea:b0:56: bb:aa:15:78:18:86:d5:db:db:14:b5:8e:6d:ee:b5:a7:16:5a: fa:1d:9e:a7:e3:ca:fa:31:63:b2:2d:4d:ec:22:70:ae:a5:b6: c3:4a:45:64:bf:28:62:73:a7:81:48:75:21:6f:e5:02:d1:4b: 42:d5:12:99:0e:ec:29:4e:66:11:58:a3:d5:9a:6f:33:34:4c: 77:f6:31:c4:58:a1:8d:0b:11:a5:72:8d:f4:b6:05:b7:70:8f: 79:fd:86:e3:56:f3:3c:d2:bd:6f:a4:01:da:26:48:71:42:23: d9:40:4a:b3:b5:8d:7e:01:cc:d6:cc:b4:bb:e5:12:62:9c:0e: 8f:38:27:c5:c6:2b:b4:7d:cd:04:3b:f1:e0:c3:67:ad:d1:31: 03:3d:36:e4:94:25:aa:ff:7c:31:2e:b8:cd:b4:85:6a:91:b1: c3:18:07:18:58:70:48:e9:77:b5:d7:20:82:4c:40:7e:75:57: b7:29:70:45 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL/Ijtk7zUgRKqrHvYKHmUG5K2SAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTA4MjExNzE2NDZaFw0yNTA4MjUwNDIzNDZaMDMxMTAvBgNV BAMTKEY1NDg1MEYxNkQ5MkFCOTkxRkU3QkNBOTRDMTFBQ0Q4N0FEMTNDMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoWiUzfoPZA9ZT0ivMmXP0O6dP JY/cl19E1qxzENn0xvhB3h6CN1vwa8XOJ5kqT30ijCizOlySoVY0s3xRcGguRRFH MsRhPS2/YcUM0HRza0ikP7e93QiLR1ziBb4mgnZe+8sbOx1sN3wApOpQP+q9aW9c XbdQSvRjxDa5coqH0aKVNgFnHdnyZqX3ELR0J9TftAKRvly9vlwDiimHwhdGYzp6 NBeKWXUgnVkhT3BfbmEdkEHtAx42DXKUCxy6qHYQv61rJT1gcLduhcicoAQoswfj rNTJo4lR2AcDCUKSYeHZlUGbbB4dveAGarR3LhNfWmCpUMd/AnQTELUB/ZB1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9UhQ8W2Sq5kf57ypTBGs2HrRPB0wHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANhQy3CfqQGwusM9AATQr2mfN8BBonXNdmZ X/rBONnFkEy91U1zfUK9sKlOrR6ZEXF4mj4pEOaK1Sbb8WfrpuK20XtmgOqwVruq FXgYhtXb2xS1jm3utacWWvodnqfjyvoxY7ItTewicK6ltsNKRWS/KGJzp4FIdSFv 5QLRS0LVEpkO7ClOZhFYo9WabzM0THf2McRYoY0LEaVyjfS2Bbdwj3n9huNW8zzS vW+kAdomSHFCI9lASrO1jX4BzNbMtLvlEmKcDo84J8XGK7R9zQQ78eDDZ63RMQM9 NuSUJar/fDEuuM20hWqRscMYBxhYcEjpd7XXIIJMQH51V7cpcEU= -----END CERTIFICATE-----Generated at Sat Aug 23 10:33:03 2025 by rpki-client