$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: KlZZem1rFGWgGzIrN8qCPT9SPNxlmTA8DzwsHr/Ajnk= Subject key identifier: 7A:A7:30:02:2E:D1:B5:A6:0E:56:A3:C7:9F:5E:F3:35:78:B3:E4:9E Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 505D8FBA4D174DD6F48A0DD7B8CB94271834FF58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 0354 Signing time: Thu 04 Sep 2025 07:51:04 +0000 Manifest this update: Thu 04 Sep 2025 07:46:04 +0000 Manifest next update: Sun 07 Sep 2025 17:10:04 +0000 Files and hashes: 1: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: wuLvX+Xgm0i3AJgZLRAJ8zSBRz4zFDFFXcC9P9aZOYA=) 2: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: AU2BjjxLKOB7x1afsJypIVoDqfBt5Pa++/i1Uy3JBXs=) 3: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: TMI4EChGxNzOmVZzOhKHXv2sxVEPKlzAynwTOiXVM50=) 4: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: g29pf8GRD5KEsQ3xMiXcjqqLaCsv5cRFguqUqUNSeQU=) 5: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: T9vPzFVrVbtfkOIbIR0gBtReDHG4KgAtDeHT2T3EGwQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 17:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:5d:8f:ba:4d:17:4d:d6:f4:8a:0d:d7:b8:cb:94:27:18:34:ff:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Sep 4 07:46:04 2025 GMT Not After : Sep 7 17:10:04 2025 GMT Subject: CN=7AA730022ED1B5A60E56A3C79F5EF33578B3E49E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:96:51:08:a3:1d:1b:56:b2:3f:89:50:d2:fa: 81:68:b5:5f:35:b8:23:d2:7c:41:63:7a:aa:b2:87: ec:09:40:33:ec:51:12:03:4a:ca:88:02:36:91:92: eb:fb:42:c8:52:80:de:e0:ea:0e:30:20:90:66:40: ec:8c:41:25:d3:27:d9:f0:2d:61:b4:b5:3d:74:6b: 55:88:63:78:9c:d9:58:37:17:46:15:f9:55:00:51: fe:94:73:1f:37:59:db:2b:2f:39:93:ca:07:06:07: bf:c9:a0:33:eb:21:e9:a1:ab:e8:3d:53:3d:99:ad: 2b:b0:28:e1:51:09:20:91:20:38:34:4d:41:00:d7: 65:64:02:80:56:7d:68:3b:1b:04:dc:93:fb:d4:35: 85:69:00:b0:f5:e6:50:6f:6c:7e:45:63:0e:0d:67: 77:ab:e0:ea:a6:ae:c5:dc:94:a5:47:4a:27:68:a1: 9d:7c:26:bb:64:32:61:ef:6e:57:10:f3:fa:33:57: 6f:3c:78:49:49:3e:bb:b6:7e:a3:ae:ec:cd:03:83: 08:b8:30:f4:c8:d7:3c:9f:8c:0f:ad:86:9c:6a:37: 02:88:9d:20:a6:52:43:e1:a6:bd:86:21:5a:95:00: e0:66:0a:bc:a4:47:50:e9:48:83:f8:c8:02:a5:3e: e6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A7:30:02:2E:D1:B5:A6:0E:56:A3:C7:9F:5E:F3:35:78:B3:E4:9E X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e3:cb:2b:dd:d5:69:82:c6:ca:56:c6:62:c5:9e:4a:b7:5b: 19:c1:56:5c:f4:36:96:70:8e:c3:a2:e2:b0:28:b4:15:6b:85: 52:6a:d7:6c:4e:49:cc:e7:da:77:b9:58:69:b8:4d:0c:19:f2: 85:34:38:66:b4:ec:49:79:8e:fa:76:6d:bb:3b:4b:e6:f4:b7: 37:72:88:d8:9c:fa:3c:3f:7b:b4:03:ef:1b:6b:bd:42:10:7f: b4:fd:dc:02:4f:fa:73:64:ff:ee:27:9c:ea:eb:6a:eb:f8:1e: 6a:b7:e1:1f:43:bc:4a:a1:7e:6f:f5:b0:3b:c6:2a:34:93:df: 6b:a1:0d:97:db:6a:18:c6:c4:ca:d0:4b:a9:fc:f7:13:32:09: 21:77:fd:b9:c4:d0:63:1e:01:09:ee:75:71:9d:c6:f3:a9:7e: 32:70:cb:b4:9f:51:e8:bf:c7:da:82:e6:7d:10:ca:b2:b3:a7: 20:df:7b:57:e1:52:4b:42:cf:08:16:50:cd:6a:27:75:dc:af: 52:25:fa:93:94:79:67:b5:6d:42:50:8e:81:3a:c4:23:22:ae: 1a:3f:bc:97:88:08:6d:16:69:73:7f:62:f9:47:b7:d2:61:11: 6d:37:80:c1:d0:25:de:97:64:c2:2b:5f:77:40:dd:d1:3f:d4: 1c:68:72:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUF2Puk0XTdb0ig3XuMuUJxg0/1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNTA5MDQwNzQ2MDRaFw0yNTA5MDcxNzEwMDRaMDMxMTAvBgNV BAMTKDdBQTczMDAyMkVEMUI1QTYwRTU2QTNDNzlGNUVGMzM1NzhCM0U0OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCullEIox0bVrI/iVDS+oFotV81 uCPSfEFjeqqyh+wJQDPsURIDSsqIAjaRkuv7QshSgN7g6g4wIJBmQOyMQSXTJ9nw LWG0tT10a1WIY3ic2Vg3F0YV+VUAUf6Ucx83WdsrLzmTygcGB7/JoDPrIemhq+g9 Uz2ZrSuwKOFRCSCRIDg0TUEA12VkAoBWfWg7GwTck/vUNYVpALD15lBvbH5FYw4N Z3er4OqmrsXclKVHSidooZ18JrtkMmHvblcQ8/ozV288eElJPru2fqOu7M0Dgwi4 MPTI1zyfjA+thpxqNwKInSCmUkPhpr2GIVqVAOBmCrykR1DpSIP4yAKlPua3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeqcwAi7RtaYOVqPHn17zNXiz5J4wHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAErjyyvd1WmCxspWxmLFnkq3WxnBVlz0NpZw jsOi4rAotBVrhVJq12xOSczn2ne5WGm4TQwZ8oU0OGa07El5jvp2bbs7S+b0tzdy iNic+jw/e7QD7xtrvUIQf7T93AJP+nNk/+4nnOrrauv4Hmq34R9DvEqhfm/1sDvG KjST32uhDZfbahjGxMrQS6n89xMyCSF3/bnE0GMeAQnudXGdxvOpfjJwy7SfUei/ x9qC5n0QyrKzpyDfe1fhUktCzwgWUM1qJ3Xcr1Il+pOUeWe1bUJQjoE6xCMirho/ vJeICG0WaXN/YvlHt9JhEW03gMHQJd6XZMIrX3dA3dE/1Bxocuw= -----END CERTIFICATE-----Generated at Fri Sep 5 12:13:59 2025 by rpki-client