$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: VB3iHGS+E5MBo7l7jtSKiTtCaEsneBjRXzIA3xxdOP8= Subject key identifier: 64:3A:CE:3B:6D:B6:04:59:25:A9:19:09:4B:92:9A:A7:46:DF:4D:41 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 54F290541E51F8719C8880AFA99CA03DEA036D34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 0491 Signing time: Fri 22 Aug 2025 16:21:16 +0000 Manifest this update: Fri 22 Aug 2025 16:16:16 +0000 Manifest next update: Mon 25 Aug 2025 20:23:16 +0000 Files and hashes: 1: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: Foy0/fWn9CkY6btBUf9wr8DZbnbqL63R5FqPZBdveSM=) 2: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: e3tuv4bUE+5sOOhpfdGmGuOFPlroiW0z6wkdn0Eg6vM=) 3: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: q5CuF5e5qYX8bk7E7KseYjajuExzeTaBW1PNtQOhgkQ=) 4: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: j9xUg13KQEtQqrg9g3ERUl0kaedTdjzl5FAcPmtGqCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 20:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f2:90:54:1e:51:f8:71:9c:88:80:af:a9:9c:a0:3d:ea:03:6d:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Aug 22 16:16:16 2025 GMT Not After : Aug 25 20:23:16 2025 GMT Subject: CN=643ACE3B6DB6045925A919094B929AA746DF4D41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:80:f6:cc:3c:de:81:8d:3c:b7:92:40:13:f3: 39:46:4b:52:a6:b6:0f:4b:d2:4d:29:fe:b4:35:30: 68:74:42:19:36:3e:05:6a:25:3f:cb:dd:a5:45:74: 45:92:44:3c:c0:19:91:6d:fe:f0:ca:1d:bf:51:96: f2:63:79:c0:ab:57:66:da:5b:44:9c:97:dc:58:f4: 0d:fd:45:a1:1b:ce:de:1c:e4:1f:16:0d:73:93:84: 63:3f:e1:ec:02:ad:bb:38:ac:33:0f:08:34:a6:ef: 04:da:c7:a5:e3:1d:49:e4:1e:77:f4:f5:4b:8e:c5: 1d:8b:fd:2c:7b:4e:ea:5d:f0:1f:1a:90:93:bf:af: f7:b8:96:2d:bd:52:ad:55:11:6d:be:7f:d0:98:8f: 54:f8:d3:fc:e5:0d:60:09:d6:3d:f1:16:52:14:43: 18:b6:8b:89:24:6e:5c:92:79:50:77:8f:92:41:62: 35:4c:e2:0f:a0:ea:44:11:92:29:93:bc:4b:d7:c0: 0e:d1:28:43:18:a7:c1:b9:71:bc:de:b3:0e:2c:fa: 9d:95:29:f7:85:92:36:4c:d1:31:6c:20:4d:8b:ac: 6d:db:e6:be:0e:a6:8a:f0:80:5f:3a:61:a7:13:28: f6:c1:90:6e:98:2b:ae:ea:d4:25:27:e4:36:67:f1: 9c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3A:CE:3B:6D:B6:04:59:25:A9:19:09:4B:92:9A:A7:46:DF:4D:41 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:9d:9e:ae:ee:4b:b6:c8:16:93:e0:ab:92:6c:dc:d1:bc:bb: 64:6a:4a:99:bf:6b:a6:fd:3a:b5:26:90:32:fa:9f:2b:26:81: a7:34:07:e8:ae:e6:75:18:ad:93:12:0e:d9:96:61:bf:cf:1d: cd:27:d1:01:9c:1c:9c:f2:1e:67:fc:d4:11:bf:65:77:c1:63: ad:15:52:4d:9b:26:be:aa:b9:dc:a4:92:9d:c5:c6:0b:d3:28: ef:ec:23:1a:07:37:95:90:00:30:f5:93:6b:d8:20:cd:97:05: ec:1d:b3:27:4a:6b:37:5c:f7:2d:42:2a:0a:66:f2:bf:61:ba: a3:84:00:75:e9:28:d3:9d:b2:de:aa:fd:c3:81:92:55:a6:40: a2:f2:aa:ed:d3:a9:c3:2d:bb:db:20:04:28:37:e3:74:cb:fb: 20:21:57:6c:58:31:d8:cf:38:92:b8:57:e5:d5:a7:44:7b:09: 38:83:d4:c1:40:3a:42:dc:d3:5f:5d:c1:50:0f:58:c4:38:31: 4a:1a:69:83:f6:ed:4f:64:2a:03:e7:8c:e9:c5:da:51:39:ae: e8:f4:34:9e:6e:6e:4d:71:07:d9:3c:48:dc:ef:49:ab:5f:70: 56:c5:3d:26:83:bf:59:50:54:b9:55:6f:8f:ff:60:ca:e3:52: bc:3e:dc:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVPKQVB5R+HGciICvqZygPeoDbTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTA4MjIxNjE2MTZaFw0yNTA4MjUyMDIzMTZaMDMxMTAvBgNV BAMTKDY0M0FDRTNCNkRCNjA0NTkyNUE5MTkwOTRCOTI5QUE3NDZERjRENDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsgPbMPN6BjTy3kkAT8zlGS1Km tg9L0k0p/rQ1MGh0Qhk2PgVqJT/L3aVFdEWSRDzAGZFt/vDKHb9RlvJjecCrV2ba W0Scl9xY9A39RaEbzt4c5B8WDXOThGM/4ewCrbs4rDMPCDSm7wTax6XjHUnkHnf0 9UuOxR2L/Sx7Tupd8B8akJO/r/e4li29Uq1VEW2+f9CYj1T40/zlDWAJ1j3xFlIU Qxi2i4kkblySeVB3j5JBYjVM4g+g6kQRkimTvEvXwA7RKEMYp8G5cbzesw4s+p2V KfeFkjZM0TFsIE2LrG3b5r4OporwgF86YacTKPbBkG6YK67q1CUn5DZn8ZyjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZDrOO222BFklqRkJS5Kap0bfTUEwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGidnq7uS7bIFpPgq5Js3NG8u2RqSpm/a6b9 OrUmkDL6nysmgac0B+iu5nUYrZMSDtmWYb/PHc0n0QGcHJzyHmf81BG/ZXfBY60V Uk2bJr6qudykkp3FxgvTKO/sIxoHN5WQADD1k2vYIM2XBewdsydKazdc9y1CKgpm 8r9huqOEAHXpKNOdst6q/cOBklWmQKLyqu3TqcMtu9sgBCg343TL+yAhV2xYMdjP OJK4V+XVp0R7CTiD1MFAOkLc019dwVAPWMQ4MUoaaYP27U9kKgPnjOnF2lE5ruj0 NJ5ubk1xB9k8SNzvSatfcFbFPSaDv1lQVLlVb4//YMrjUrw+3LE= -----END CERTIFICATE-----Generated at Sat Aug 23 16:06:39 2025 by rpki-client