$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft File: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft (raw, json) Hash identifier: cX0uysctcvS+UkHPCcXt/ywHnPEOYh9DzypfHaLKoQg= Subject key identifier: C4:5D:13:13:66:9F:45:36:1A:66:66:B9:90:BD:39:DC:0D:9E:5F:A1 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 6E2E9B73F9BD39C58F2F856A21C11932EA2FBA5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft Manifest number: 04BD Signing time: Thu 24 Jul 2025 13:31:46 +0000 Manifest this update: Thu 24 Jul 2025 13:26:46 +0000 Manifest next update: Mon 28 Jul 2025 00:19:46 +0000 Files and hashes: 1: 3130332e34372e3133342e302f32342d3234203d3e203633383539.roa (hash: ISUPB5yjW6tmMrkjewjTPmASyvfsPyLCAirfzGZHkUw=) 2: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl (hash: 8026eRrplXMpT3xhjywHrcaNDRezq3HFkhrVZtOsgxM=) 3: 3130332e34372e3133332e302f32342d3234203d3e203633383539.roa (hash: EZteEph/2m/6PSU4HhniFTSW+lioN4P6OqCDsqE63rs=) 4: 3130332e34372e3133322e302f32342d3234203d3e203633383539.roa (hash: KrQXE8D2Q5Yo3g//mdDYJidQwyMwsHM3lR4ILfL9Uvk=) 5: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (hash: Lg5dQN6opERAWYn9yaTR81th2kNEptreAqT5F7qUOxg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:2e:9b:73:f9:bd:39:c5:8f:2f:85:6a:21:c1:19:32:ea:2f:ba:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Jul 24 13:26:46 2025 GMT Not After : Jul 28 00:19:46 2025 GMT Subject: CN=C45D1313669F45361A6666B990BD39DC0D9E5FA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:95:ca:4e:b3:95:9f:e6:84:e0:e1:ea:24:ae: 30:23:82:1b:4a:3c:65:3f:68:03:08:28:f3:9e:ed: e8:08:dd:e5:67:6b:f2:92:b2:dc:98:9f:a3:33:e3: b8:04:ef:0a:17:63:1a:34:64:1f:d7:5b:38:e8:71: 10:35:9e:65:70:18:1a:4f:15:90:bc:61:84:a9:a0: 4a:07:2d:31:d5:2a:ce:ae:7a:d9:0a:03:a0:09:eb: 02:9f:e4:dc:b3:b8:6f:e2:31:24:9a:1e:d9:56:57: ea:4d:37:28:68:dd:15:34:58:57:31:9d:83:90:6b: 0c:21:63:fa:8a:f0:2a:59:93:d9:f1:33:95:9e:5f: 32:31:39:d7:2c:5c:6e:6d:fa:df:55:bb:55:a6:e0: 3f:7a:d2:03:79:70:0e:a1:13:65:ae:2d:e6:ec:77: 52:a9:d6:1d:27:ae:ec:de:d0:77:3f:3a:35:b9:8d: 6a:7d:9b:b5:3b:81:42:c3:79:e7:c6:8e:67:b2:17: 52:bb:d6:07:8a:12:34:cf:40:9c:dc:7f:e8:ca:ee: 04:ed:f7:b8:89:c7:ef:14:ec:e5:56:38:44:e8:e4: 90:74:03:71:9a:17:61:0d:a6:d5:6d:f5:be:89:5b: df:01:fc:76:25:36:0f:98:84:96:96:30:f4:db:7a: b3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5D:13:13:66:9F:45:36:1A:66:66:B9:90:BD:39:DC:0D:9E:5F:A1 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:74:a4:42:11:e3:49:57:40:0e:08:c4:ea:bf:f2:bf:12:d4: cd:20:e3:e5:44:89:9f:62:62:ee:e7:51:6d:97:cd:57:bf:f0: da:27:77:bc:7c:79:f7:25:1b:0c:ba:74:24:3a:56:fb:45:60: b1:32:08:ab:e6:3f:b5:f4:ae:db:b0:75:7e:fe:45:41:d7:31: 81:8e:67:21:b0:1c:6c:20:b2:c8:b6:c1:39:b6:8e:55:a1:fb: 31:84:76:6e:21:d8:c3:6e:20:b7:89:ba:7d:15:27:03:be:55: dd:01:c6:39:de:23:d1:6b:64:ea:d5:2d:52:ed:8b:0c:ac:bc: 74:00:3f:7b:62:99:5d:f6:3c:5b:3e:e1:26:3e:2c:fb:34:47: c0:9d:ac:0e:d5:24:0f:59:f4:6a:b6:aa:42:04:00:17:bf:14: bf:c7:66:fa:52:44:88:8f:56:52:0d:ed:91:2a:55:a6:fb:54: bd:74:9f:3b:75:f0:e7:32:38:75:ce:e1:9e:85:95:49:68:cc: 22:5e:23:7c:27:63:79:de:70:c4:44:32:1f:02:71:98:54:90: c4:c2:85:b4:8c:b8:d5:a4:3a:0d:98:8f:3a:f0:70:a8:d8:96: f1:2f:59:71:6b:e7:bf:f1:4c:9d:41:7f:02:36:72:64:3c:4c: 94:e7:3b:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbi6bc/m9OcWPL4VqIcEZMuovulowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNTA3MjQxMzI2NDZaFw0yNTA3MjgwMDE5NDZaMDMxMTAvBgNV BAMTKEM0NUQxMzEzNjY5RjQ1MzYxQTY2NjZCOTkwQkQzOURDMEQ5RTVGQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIlcpOs5Wf5oTg4eokrjAjghtK PGU/aAMIKPOe7egI3eVna/KSstyYn6Mz47gE7woXYxo0ZB/XWzjocRA1nmVwGBpP FZC8YYSpoEoHLTHVKs6uetkKA6AJ6wKf5NyzuG/iMSSaHtlWV+pNNyho3RU0WFcx nYOQawwhY/qK8CpZk9nxM5WeXzIxOdcsXG5t+t9Vu1Wm4D960gN5cA6hE2WuLebs d1Kp1h0nruze0Hc/OjW5jWp9m7U7gULDeefGjmeyF1K71geKEjTPQJzcf+jK7gTt 97iJx+8U7OVWOETo5JB0A3GaF2ENptVt9b6JW98B/HYlNg+YhJaWMPTberONAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxF0TE2afRTYaZma5kL053A2eX6EwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2JiYjI3MzQtZTVmYS00MGViLTg1 OTgtYjdjZDEwMTM0M2NhLzAvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBB NTkyN0E3NDRFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANh0pEIR40lXQA4IxOq/8r8S1M0g4+VEiZ9i Yu7nUW2XzVe/8Nond7x8efclGwy6dCQ6VvtFYLEyCKvmP7X0rtuwdX7+RUHXMYGO ZyGwHGwgssi2wTm2jlWh+zGEdm4h2MNuILeJun0VJwO+Vd0BxjneI9FrZOrVLVLt iwysvHQAP3timV32PFs+4SY+LPs0R8CdrA7VJA9Z9Gq2qkIEABe/FL/HZvpSRIiP VlIN7ZEqVab7VL10nzt18OcyOHXO4Z6FlUlozCJeI3wnY3necMREMh8CcZhUkMTC hbSMuNWkOg2YjzrwcKjYlvEvWXFr57/xTJ1BfwI2cmQ8TJTnO4s= -----END CERTIFICATE-----Generated at Fri Jul 25 03:58:45 2025 by rpki-client