$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft File: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft (raw, json) Hash identifier: KpUDE8v0egOse6oFDQsLp58BHrZR6Con1dw+TthoqWI= Subject key identifier: 95:62:6F:34:52:AE:75:CC:E0:80:72:9A:45:92:58:FF:EA:CA:6F:79 Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 4B71B81E3041D7A6853542F2DDB2B954359392A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft Manifest number: A3 Signing time: Fri 05 Sep 2025 04:41:02 +0000 Manifest this update: Fri 05 Sep 2025 04:36:02 +0000 Manifest next update: Mon 08 Sep 2025 15:06:02 +0000 Files and hashes: 1: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl (hash: wDVxa+fYw165u3cETUMYD6MYOirOakyYyzqP75bhzvs=) 2: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (hash: XksCWCwCEfjKtaahou1lG189rxAz7b8EI9jL1IweY6M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 15:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:71:b8:1e:30:41:d7:a6:85:35:42:f2:dd:b2:b9:54:35:93:92:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Sep 5 04:36:02 2025 GMT Not After : Sep 8 15:06:02 2025 GMT Subject: CN=95626F3452AE75CCE080729A459258FFEACA6F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:91:31:2f:21:d7:ae:c0:78:dc:30:9f:d1: b1:7c:e3:4a:65:08:c2:07:ed:e3:0a:10:08:83:39: 3c:64:6e:35:93:34:2b:9f:5a:0d:f7:3a:5e:b9:a4: 88:f7:a5:9c:c6:36:9a:7b:f2:0f:fe:2e:f4:15:41: 51:8f:6a:13:36:e5:31:1b:b9:62:12:96:f3:a6:8d: ca:f4:28:00:b1:5c:da:79:a4:15:84:70:a4:f1:4a: 71:4b:1e:36:79:94:2c:c9:24:0e:54:8f:c8:27:56: 18:a1:b1:f9:76:2e:be:1d:03:50:ff:30:b1:22:43: 57:b8:d2:2d:48:e8:37:37:b1:44:35:66:73:71:aa: 08:b2:e2:ad:e6:2a:58:e9:c7:4c:fb:80:7c:a9:d2: b9:6f:01:aa:6d:ac:dd:5e:1e:b9:57:07:d6:19:43: e8:b8:47:84:a1:95:35:69:bf:c6:d3:43:6c:dd:d5: 65:33:99:b1:06:61:33:b5:00:57:02:40:62:6c:27: 4e:d5:0a:75:18:f8:ca:e2:4e:04:ab:3a:bf:c0:84: 4f:b1:9a:27:eb:64:bb:1e:d6:68:ce:c0:5c:32:ba: 0a:b9:5d:65:f2:bc:64:1c:b6:83:97:59:94:4c:8d: d2:d2:55:dd:92:79:e1:2a:21:27:0a:ec:0c:d8:98: 10:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:62:6F:34:52:AE:75:CC:E0:80:72:9A:45:92:58:FF:EA:CA:6F:79 X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:4a:3b:3b:c0:33:36:a3:c5:80:5e:77:ff:97:81:94:4d:27: c0:8a:6e:71:51:08:23:2e:40:e9:29:ba:d9:33:92:f8:00:41: a9:80:a0:0e:07:35:9b:62:f7:af:e4:24:3d:fc:4f:fe:d6:d1: b8:70:2b:e5:e6:10:52:da:27:33:5d:3e:06:18:8e:a3:0b:46: 03:93:a3:7d:4c:fc:2b:c1:fb:b2:f2:61:d2:a9:8e:50:e7:de: 58:6b:5e:01:ba:21:7e:72:8d:1f:51:6d:67:f2:ed:3c:b7:bd: d6:1d:50:94:04:79:0c:7a:a3:72:ea:e0:13:f3:e3:85:3d:b0: 8e:97:30:07:21:a6:71:15:c7:cd:85:bb:e0:6a:ca:8c:54:57: 91:eb:ed:68:2d:33:99:a2:2c:92:ec:a2:8f:65:a7:56:c4:fa: 36:e5:1a:49:b3:7b:ce:06:0a:ae:8d:24:9f:88:e9:f6:f2:c5: d7:79:e4:a6:7f:81:21:32:e7:04:bb:e8:18:c7:a2:83:42:ff: 86:03:23:fe:1f:4e:3b:3e:bf:f7:08:0d:f9:8e:63:6d:f9:22: f2:a9:93:62:3a:5a:db:09:3e:51:c8:fc:71:30:c8:b6:9b:e9: 95:fc:f9:31:94:e4:f9:23:2d:58:8a:58:0c:f5:c5:a6:72:af: 65:d2:2d:78 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS3G4HjBB16aFNULy3bK5VDWTkqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNTA5MDUwNDM2MDJaFw0yNTA5MDgxNTA2MDJaMDMxMTAvBgNV BAMTKDk1NjI2RjM0NTJBRTc1Q0NFMDgwNzI5QTQ1OTI1OEZGRUFDQTZGNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHppExLyHXrsB43DCf0bF840pl CMIH7eMKEAiDOTxkbjWTNCufWg33Ol65pIj3pZzGNpp78g/+LvQVQVGPahM25TEb uWISlvOmjcr0KACxXNp5pBWEcKTxSnFLHjZ5lCzJJA5Uj8gnVhihsfl2Lr4dA1D/ MLEiQ1e40i1I6Dc3sUQ1ZnNxqgiy4q3mKljpx0z7gHyp0rlvAaptrN1eHrlXB9YZ Q+i4R4ShlTVpv8bTQ2zd1WUzmbEGYTO1AFcCQGJsJ07VCnUY+MriTgSrOr/AhE+x mifrZLse1mjOwFwyugq5XWXyvGQctoOXWZRMjdLSVd2SeeEqIScK7AzYmBCjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlWJvNFKudczggHKaRZJY/+rKb3kwHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDk3ZjUxNjEtMDcwZi00MzM5LWFm NGUtYmMzM2ZkZmI2N2I4LzAvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3 MDE3Nzk1N0UzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK5KOzvAMzajxYBed/+XgZRNJ8CKbnFRCCMu QOkputkzkvgAQamAoA4HNZti96/kJD38T/7W0bhwK+XmEFLaJzNdPgYYjqMLRgOT o31M/CvB+7LyYdKpjlDn3lhrXgG6IX5yjR9RbWfy7Ty3vdYdUJQEeQx6o3Lq4BPz 44U9sI6XMAchpnEVx82Fu+BqyoxUV5Hr7WgtM5miLJLsoo9lp1bE+jblGkmze84G Cq6NJJ+I6fbyxdd55KZ/gSEy5wS76BjHooNC/4YDI/4fTjs+v/cIDfmOY235IvKp k2I6WtsJPlHI/HEwyLab6ZX8+TGU5PkjLViKWAz1xaZyr2XSLXg= -----END CERTIFICATE-----Generated at Sun Sep 7 13:59:05 2025 by rpki-client