$ rpki-client -vvf repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft File: B2650BD2D997B6C198A4B362B7395AC364683312.mft (raw, json) Hash identifier: 97kpUIwdAAXRfyi7zrjNcxw8a3bZXx6HKpnaAwWqz+8= Subject key identifier: 99:21:B3:12:35:91:C2:42:37:05:85:34:6D:7C:B3:28:69:1E:76:49 Authority key identifier: B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 Certificate issuer: /CN=B2650BD2D997B6C198A4B362B7395AC364683312 Certificate serial: 4F80D9B37563DBFDC1D84E1D908C4289B71640B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft Manifest number: 01C8 Signing time: Thu 24 Jul 2025 03:20:54 +0000 Manifest this update: Thu 24 Jul 2025 03:15:54 +0000 Manifest next update: Sun 27 Jul 2025 10:01:54 +0000 Files and hashes: 1: 3130332e31372e33322e302f32342d3234203d3e20313530323238.roa (hash: PXsuVPLEzGme/TvSRalwKMlC1hWsjOPUgK0Lgy+M/Is=) 2: 3130332e31372e33332e302f32342d3234203d3e20313530323238.roa (hash: JLuyTnkAd9LdVP7Ap7TsyT3WybJ3uwYm9GdHPUO4P9s=) 3: B2650BD2D997B6C198A4B362B7395AC364683312.crl (hash: Dv2SRTdZhNmUh8bbb9A3uPnpmx188r+XiAR2T5fo9gQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 10:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:80:d9:b3:75:63:db:fd:c1:d8:4e:1d:90:8c:42:89:b7:16:40:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2650BD2D997B6C198A4B362B7395AC364683312 Validity Not Before: Jul 24 03:15:54 2025 GMT Not After : Jul 27 10:01:54 2025 GMT Subject: CN=9921B3123591C242370585346D7CB328691E7649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0c:50:c1:5c:79:f4:aa:45:d8:96:12:b2:9d: 19:ba:83:af:f1:df:9c:73:9a:ec:40:4c:ee:61:5d: ed:86:08:8b:af:71:fb:dc:52:6d:11:66:df:eb:db: 46:fc:d3:d2:78:d7:76:b2:5b:5a:5e:06:fc:27:cb: 1d:ac:ef:d0:49:d0:ac:d9:73:f8:48:73:70:d5:de: 39:aa:da:25:43:bf:63:72:1e:cd:13:91:4b:7a:94: f3:7d:91:64:1a:57:d9:77:09:9b:33:67:d2:83:ec: 43:3d:a4:15:f0:b3:96:a1:60:b6:42:6d:0c:cd:b5: 81:c0:07:d6:99:f0:37:f9:7d:6a:38:de:36:cd:de: aa:d5:bf:89:9f:60:b4:88:2e:2e:35:36:32:3f:85: e9:c5:19:1e:81:60:8e:cc:ff:2f:e1:9a:84:05:5d: 82:47:49:f7:ec:cc:2a:85:b8:10:bc:07:dc:94:4f: 4b:22:5a:45:b8:65:bd:69:bf:49:f1:93:bd:84:dc: c5:20:6a:bb:97:c5:f8:a4:62:6c:f5:b8:cd:7b:dd: 5d:9f:46:bd:44:82:19:5a:ff:0c:ec:fe:d3:57:db: 8d:5c:63:bc:9b:8d:9d:63:a0:5f:ac:db:07:59:6d: ef:ad:7c:07:04:4c:06:34:68:83:fb:c4:54:0c:77: 37:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:21:B3:12:35:91:C2:42:37:05:85:34:6D:7C:B3:28:69:1E:76:49 X509v3 Authority Key Identifier: keyid:B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c4:75:c5:f7:55:6b:e9:f6:57:72:7f:54:f9:93:a1:ee:b6: 24:eb:8d:1c:59:8e:e7:cc:f9:5c:0e:ab:ff:03:e8:1d:9c:49: 08:0a:12:0d:79:13:ea:31:71:37:fc:43:cf:9e:8b:20:53:bb: d6:5f:d3:ff:04:d1:78:f1:3a:ab:20:6f:63:0b:f2:f0:77:03: b4:5e:70:ad:3f:24:fd:d3:2f:8c:31:cc:80:8f:1f:99:20:71: dd:d4:19:ad:b1:5c:10:00:c7:39:c3:45:83:01:f1:45:a9:c8: 18:f3:8e:51:2c:31:1d:21:73:f2:ea:af:ae:db:33:a0:81:b4: f2:73:67:3a:82:5d:5b:44:53:18:37:cc:65:c5:f2:16:66:66: 5e:1c:55:53:4d:2d:52:c2:f8:d1:27:88:ab:02:af:4d:9b:b2: ee:05:4b:c6:75:d5:59:7c:f9:01:19:6f:3b:ae:73:4f:93:00: b6:e2:0a:f6:19:4c:b8:d9:90:bb:39:60:69:ab:2c:b0:c0:7f: 40:2b:bb:52:20:c4:90:13:91:54:44:89:c0:ae:3c:78:21:8b: 59:33:8c:e7:d4:21:ac:70:fa:ba:75:b6:ab:68:b7:62:da:23: 58:5a:53:da:10:de:50:b4:3a:a6:3e:50:8a:ba:be:44:24:72: 44:c8:c6:a8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT4DZs3Vj2/3B2E4dkIxCibcWQLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2 NDY4MzMxMjAeFw0yNTA3MjQwMzE1NTRaFw0yNTA3MjcxMDAxNTRaMDMxMTAvBgNV BAMTKDk5MjFCMzEyMzU5MUMyNDIzNzA1ODUzNDZEN0NCMzI4NjkxRTc2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNDFDBXHn0qkXYlhKynRm6g6/x 35xzmuxATO5hXe2GCIuvcfvcUm0RZt/r20b809J413ayW1peBvwnyx2s79BJ0KzZ c/hIc3DV3jmq2iVDv2NyHs0TkUt6lPN9kWQaV9l3CZszZ9KD7EM9pBXws5ahYLZC bQzNtYHAB9aZ8Df5fWo43jbN3qrVv4mfYLSILi41NjI/henFGR6BYI7M/y/hmoQF XYJHSffszCqFuBC8B9yUT0siWkW4Zb1pv0nxk72E3MUgaruXxfikYmz1uM173V2f Rr1Eghla/wzs/tNX241cY7ybjZ1joF+s2wdZbe+tfAcETAY0aIP7xFQMdzfbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmSGzEjWRwkI3BYU0bXyzKGkedkkwHwYDVR0j BBgwFoAUsmUL0tmXtsGYpLNitzlaw2RoMxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjkwNTc2Ni00NDBlLTRiY2ItYWU3Mi0zZTc4ODMxY2U5ZGMvMC9CMjY1MEJEMkQ5 OTdCNkMxOThBNEIzNjJCNzM5NUFDMzY0NjgzMzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2NDY4 MzMxMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2I5MDU3NjYtNDQwZS00YmNiLWFl NzItM2U3ODgzMWNlOWRjLzAvQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVB QzM2NDY4MzMxMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG3EdcX3VWvp9ldyf1T5k6HutiTrjRxZjufM +VwOq/8D6B2cSQgKEg15E+oxcTf8Q8+eiyBTu9Zf0/8E0XjxOqsgb2ML8vB3A7Re cK0/JP3TL4wxzICPH5kgcd3UGa2xXBAAxznDRYMB8UWpyBjzjlEsMR0hc/Lqr67b M6CBtPJzZzqCXVtEUxg3zGXF8hZmZl4cVVNNLVLC+NEniKsCr02bsu4FS8Z11Vl8 +QEZbzuuc0+TALbiCvYZTLjZkLs5YGmrLLDAf0Aru1IgxJATkVREicCuPHghi1kz jOfUIaxw+rp1tqtot2LaI1haU9oQ3lC0OqY+UIq6vkQkckTIxqg= -----END CERTIFICATE-----Generated at Sat Jul 26 06:44:07 2025 by rpki-client