$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: 0U4ulS/rlH19CLAM7AVOX/64hPl0yj/te5LR28QM4jQ= Subject key identifier: 27:FA:ED:34:92:05:36:EC:39:04:FF:2D:F9:86:D9:37:DC:53:78:7D Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 366A7F5C133994FEB0EB08D0F2A74E58920F8BC0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 024A Signing time: Mon 21 Jul 2025 01:21:58 +0000 Manifest this update: Mon 21 Jul 2025 01:16:58 +0000 Manifest next update: Thu 24 Jul 2025 07:45:58 +0000 Files and hashes: 1: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 2: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) 3: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: 2gVCxg+hDmKkdBfr1IN+Jz7t1loTVbupLhThyLDp4zk=) 4: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=) 5: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: 9KPsbeCQkExzReLmMOH5Ur9YtOsBW6t+5aOuw3ELYWw=) 6: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 7: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) 8: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 9: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 10: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:6a:7f:5c:13:39:94:fe:b0:eb:08:d0:f2:a7:4e:58:92:0f:8b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jul 21 01:16:58 2025 GMT Not After : Jul 24 07:45:58 2025 GMT Subject: CN=27FAED34920536EC3904FF2DF986D937DC53787D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:87:fe:46:74:ac:a9:66:7e:6a:2e:55:bc: cd:79:d6:97:84:69:d3:ae:80:b8:57:6e:98:2f:02: 56:6a:8f:1f:84:7a:91:03:d6:b7:72:91:8d:d1:5a: ff:2b:33:9a:0a:ba:88:47:3c:61:7a:a2:6d:2c:31: c4:e2:04:27:3f:f0:b6:06:e5:5a:c5:93:e3:fc:9f: 12:7b:76:b5:a2:c6:9a:15:9f:bb:73:b3:be:4d:34: fe:46:6e:af:65:c7:ac:82:b2:1c:18:7e:3e:8a:56: 26:ba:b0:dd:9c:77:67:e4:f8:f5:f3:36:ec:1d:ad: c7:db:4b:dd:cf:6c:bf:d7:1c:d9:83:44:65:5b:0f: 5c:d3:2b:f5:d3:0e:b4:4d:de:69:f6:a4:bc:82:25: 48:2c:56:ac:4e:4b:6b:76:00:9e:76:b9:1c:47:1d: 81:2c:20:8a:81:13:1d:aa:95:8b:6c:9f:49:f2:0c: a0:a9:3a:56:e3:bc:b7:3d:c2:64:2c:de:06:d4:13: 9c:99:5d:38:e9:df:58:1d:4c:8f:8c:f3:aa:2d:bf: de:07:7b:56:20:70:0c:d3:db:bb:41:6b:87:3c:53: 58:55:ea:1e:cb:3e:6f:76:ac:9e:91:2b:54:bb:a0: 82:5a:66:2f:1a:2c:82:13:b7:e6:80:13:dc:9a:ef: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FA:ED:34:92:05:36:EC:39:04:FF:2D:F9:86:D9:37:DC:53:78:7D X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:ad:9e:00:20:19:dc:b7:ed:f4:b4:45:85:60:ab:e2:1c:1e: e9:2f:06:9a:9e:a2:1a:d3:11:9f:dd:d3:51:d8:b3:97:0f:41: f0:26:6b:67:9d:e7:23:0b:64:cb:3d:79:fd:cc:e1:df:0f:e9: 47:1d:24:e1:46:fa:6d:1d:07:0f:f1:c5:f0:6b:95:0f:e9:f6: 7d:47:cd:a7:82:e1:4c:2f:2d:69:15:4c:37:15:4a:30:6d:f5: 2c:89:9b:51:de:f0:67:07:b4:c5:96:3a:00:9b:f1:11:97:50: b3:c5:ed:a3:05:9f:2b:af:99:53:15:10:36:cf:61:35:7c:0a: 6c:c6:8d:60:60:7b:4e:b9:d9:18:e1:ae:7f:ea:f2:ad:5f:f0: 1e:0c:db:35:e0:2f:d9:37:08:b1:ab:05:16:07:3e:0e:e8:e6: 4d:57:0f:27:2d:42:48:61:d1:a9:de:29:0d:05:31:18:e7:f1: 91:56:fd:bb:7d:c8:6e:e3:f0:71:94:5f:8c:45:09:3b:9b:60: a2:e3:b5:9d:61:73:4d:63:7d:e1:8f:3b:36:3b:c2:2b:bb:48: 1c:2a:c6:53:bf:f8:34:de:89:f3:5d:70:e7:05:cb:32:99:8a: 3f:68:29:0e:fe:39:78:7a:5a:30:1f:f4:47:8b:53:ac:3c:11: 7e:8e:40:ff -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNmp/XBM5lP6w6wjQ8qdOWJIPi8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTA3MjEwMTE2NThaFw0yNTA3MjQwNzQ1NThaMDMxMTAvBgNV BAMTKDI3RkFFRDM0OTIwNTM2RUMzOTA0RkYyREY5ODZEOTM3REM1Mzc4N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEsIf+RnSsqWZ+ai5VvM151peE adOugLhXbpgvAlZqjx+EepED1rdykY3RWv8rM5oKuohHPGF6om0sMcTiBCc/8LYG 5VrFk+P8nxJ7drWixpoVn7tzs75NNP5Gbq9lx6yCshwYfj6KVia6sN2cd2fk+PXz NuwdrcfbS93PbL/XHNmDRGVbD1zTK/XTDrRN3mn2pLyCJUgsVqxOS2t2AJ52uRxH HYEsIIqBEx2qlYtsn0nyDKCpOlbjvLc9wmQs3gbUE5yZXTjp31gdTI+M86otv94H e1YgcAzT27tBa4c8U1hV6h7LPm92rJ6RK1S7oIJaZi8aLIITt+aAE9ya77mhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ/rtNJIFNuw5BP8t+YbZN9xTeH0wHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALCtngAgGdy37fS0RYVgq+IcHukvBpqeohrT EZ/d01HYs5cPQfAma2ed5yMLZMs9ef3M4d8P6UcdJOFG+m0dBw/xxfBrlQ/p9n1H zaeC4UwvLWkVTDcVSjBt9SyJm1He8GcHtMWWOgCb8RGXULPF7aMFnyuvmVMVEDbP YTV8CmzGjWBge0652Rjhrn/q8q1f8B4M2zXgL9k3CLGrBRYHPg7o5k1XDyctQkhh 0aneKQ0FMRjn8ZFW/bt9yG7j8HGUX4xFCTubYKLjtZ1hc01jfeGPOzY7wiu7SBwq xlO/+DTeifNdcOcFyzKZij9oKQ7+OXh6WjAf9EeLU6w8EX6OQP8= -----END CERTIFICATE-----Generated at Mon Jul 21 07:24:51 2025 by rpki-client