$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft File: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft (raw, json) Hash identifier: FcATr9Z+27aYg+8v/+7IaqE8Gu9g0NQI/C/uUbEJPig= Subject key identifier: 78:C8:88:2B:23:14:F3:59:8C:B5:14:DE:1C:8E:FD:0B:5D:8A:BD:1C Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 0350EA53C5BEB2A50A6AFDD12672D4BA522EC5CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft Manifest number: 04BC Signing time: Tue 22 Jul 2025 08:11:47 +0000 Manifest this update: Tue 22 Jul 2025 08:06:47 +0000 Manifest next update: Fri 25 Jul 2025 13:23:47 +0000 Files and hashes: 1: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl (hash: sCTyDUiFN2qACxHaRxo5ii0DhWiOHgbIZK9gLEn7I/c=) 2: 3130332e34372e3133342e302f32342d3234203d3e203633383539.roa (hash: ISUPB5yjW6tmMrkjewjTPmASyvfsPyLCAirfzGZHkUw=) 3: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (hash: Lg5dQN6opERAWYn9yaTR81th2kNEptreAqT5F7qUOxg=) 4: 3130332e34372e3133322e302f32342d3234203d3e203633383539.roa (hash: KrQXE8D2Q5Yo3g//mdDYJidQwyMwsHM3lR4ILfL9Uvk=) 5: 3130332e34372e3133332e302f32342d3234203d3e203633383539.roa (hash: EZteEph/2m/6PSU4HhniFTSW+lioN4P6OqCDsqE63rs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 13:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:50:ea:53:c5:be:b2:a5:0a:6a:fd:d1:26:72:d4:ba:52:2e:c5:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Jul 22 08:06:47 2025 GMT Not After : Jul 25 13:23:47 2025 GMT Subject: CN=78C8882B2314F3598CB514DE1C8EFD0B5D8ABD1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6a:f0:cc:d3:3e:52:32:fc:34:2d:e8:f1:cf: 0d:db:7a:9c:8f:e3:dc:59:44:43:3a:7e:74:c9:b6: 37:ba:d3:c1:f3:2b:86:a6:97:71:76:93:3e:c8:8d: 86:9e:77:11:86:d5:73:50:50:d6:a0:fb:30:2d:b1: 11:8d:8b:e6:74:22:b1:78:02:ca:93:55:6d:44:16: b7:e6:d9:25:c4:39:f1:05:29:f9:e3:73:79:34:78: 2e:76:4c:ec:41:0c:aa:49:80:bf:c4:f0:56:9a:eb: 9c:44:dd:f4:8d:fa:33:d2:46:14:91:0d:5a:07:78: 21:a4:48:0d:cd:d4:29:b2:af:6e:80:46:3a:11:0e: e4:78:37:5b:99:85:bb:53:76:f4:a0:a8:10:8a:c5: af:87:92:68:dc:67:a3:1f:87:db:a7:22:98:3b:89: df:0c:91:06:37:34:c0:4d:5a:6d:a3:bb:2b:e1:ce: f2:54:7d:a0:5a:13:ed:42:c3:0f:79:9d:90:30:85: 47:77:65:60:54:b5:ae:55:50:7b:b9:9c:f2:e1:12: 39:c6:d9:81:b0:ed:bd:b9:aa:f8:9b:1d:c9:9d:d9: a9:f3:11:c0:6c:f7:80:ee:d2:19:c1:f8:5e:ff:13: b2:42:86:cf:68:cc:a6:6f:c2:7d:6e:7e:dd:6f:67: 0f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C8:88:2B:23:14:F3:59:8C:B5:14:DE:1C:8E:FD:0B:5D:8A:BD:1C X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:8c:46:d9:11:39:75:0c:83:3f:7e:5f:4b:b0:18:a6:fd:56: 2a:34:a4:2f:6f:26:99:ea:40:31:86:3e:b1:5e:a7:88:fb:3c: bf:36:c3:7a:68:d1:45:10:0c:d4:de:a1:eb:aa:67:24:39:28: ad:fd:8e:22:b5:c8:6a:f1:ba:62:8d:06:f2:6c:17:e7:69:96: 6f:84:5d:e3:22:cc:a4:1c:51:91:0a:f2:70:b9:95:27:0c:9f: c8:a5:18:f6:b1:8d:ba:5d:5b:5d:46:86:ce:a9:47:1a:61:70: a6:98:03:cd:f5:02:e3:f6:72:d4:94:ca:41:59:14:e6:48:4b: e0:1b:46:8f:0e:cc:fc:20:bd:c8:0d:23:71:e8:b8:2f:81:93: 1c:cc:8b:4a:ff:73:28:0c:46:79:89:70:6e:8c:66:4e:90:8f: ff:b4:ec:cf:a6:53:61:f1:39:a7:7f:06:b7:14:a7:51:10:c0: af:4f:df:e5:2e:f6:e1:f5:c8:9e:c6:3e:19:ca:7a:ca:58:3a: 42:fa:4d:19:63:2a:20:4e:f4:00:a1:94:f7:fc:26:cf:e8:f8: 15:28:8d:d3:84:b7:f1:40:f2:6b:cd:58:ec:b9:c4:f3:75:43: af:2f:19:8c:27:5c:e5:12:83:e2:e2:df:a7:39:89:e7:b5:f7: e1:5e:4e:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUA1DqU8W+sqUKav3RJnLUulIuxcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNTA3MjIwODA2NDdaFw0yNTA3MjUxMzIzNDdaMDMxMTAvBgNV BAMTKDc4Qzg4ODJCMjMxNEYzNTk4Q0I1MTRERTFDOEVGRDBCNUQ4QUJEMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcavDM0z5SMvw0Lejxzw3bepyP 49xZREM6fnTJtje608HzK4aml3F2kz7IjYaedxGG1XNQUNag+zAtsRGNi+Z0IrF4 AsqTVW1EFrfm2SXEOfEFKfnjc3k0eC52TOxBDKpJgL/E8Faa65xE3fSN+jPSRhSR DVoHeCGkSA3N1Cmyr26ARjoRDuR4N1uZhbtTdvSgqBCKxa+HkmjcZ6Mfh9unIpg7 id8MkQY3NMBNWm2juyvhzvJUfaBaE+1Cww95nZAwhUd3ZWBUta5VUHu5nPLhEjnG 2YGw7b25qvibHcmd2anzEcBs94Du0hnB+F7/E7JChs9ozKZvwn1uft1vZw+LAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeMiIKyMU81mMtRTeHI79C12KvRwwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2JiYjI3MzQtZTVmYS00MGViLTg1 OTgtYjdjZDEwMTM0M2NhLzAvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBB NTkyN0E3NDRFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGyMRtkROXUMgz9+X0uwGKb9Vio0pC9vJpnq QDGGPrFep4j7PL82w3po0UUQDNTeoeuqZyQ5KK39jiK1yGrxumKNBvJsF+dplm+E XeMizKQcUZEK8nC5lScMn8ilGPaxjbpdW11Ghs6pRxphcKaYA831AuP2ctSUykFZ FOZIS+AbRo8OzPwgvcgNI3HouC+BkxzMi0r/cygMRnmJcG6MZk6Qj/+07M+mU2Hx Oad/BrcUp1EQwK9P3+Uu9uH1yJ7GPhnKespYOkL6TRljKiBO9AChlPf8Js/o+BUo jdOEt/FA8mvNWOy5xPN1Q68vGYwnXOUSg+Li36c5iee19+FeTs0= -----END CERTIFICATE-----Generated at Thu Jul 24 03:54:21 2025 by rpki-client