$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft File: 295CEF87CDB74B1A43287E630C3FE568272D2F33.mft (raw, json) Hash identifier: w/qHs2hr+6ZTbCQHTmKpuBRWxxuY+RkNbU/rF9NOeYU= Subject key identifier: 21:86:40:11:90:51:71:60:74:B7:ED:67:05:69:CD:C0:3F:49:8B:7A Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 3D067E9F3D516CC6473E248FCC8B09438559258C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft Manifest number: 050E Signing time: Sat 06 Sep 2025 22:41:37 +0000 Manifest this update: Sat 06 Sep 2025 22:36:37 +0000 Manifest next update: Wed 10 Sep 2025 09:11:37 +0000 Files and hashes: 1: 3130362e302e34382e302f32322d3234203d3e2039343232.roa (hash: ECzNZR+t4Bdt6LAAlKcBfTJvufVHsod6z7EXxaTCQXQ=) 2: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (hash: 73W8GLSa6I8P01k3aFdjjpvb756Sn1uc1jeTJZ00bq4=) 3: 3232332e3133302e32322e302f32332d3234203d3e2039343232.roa (hash: 7z/4k9uh8qc3CYPaIfLqUwfu/s9Fgtg25t7b4ka8UOQ=) 4: 3130332e3234362e302e302f32322d3234203d3e2039343232.roa (hash: nhGmrbnsJZJKbXEVM2224rOUYqSyOnxXP3J6DVLRP58=) 5: 3232332e3133302e32302e302f32342d3234203d3e20313338313238.roa (hash: 0qgtJcGFp2PSnsHTLVJD3e7NXsCz70cPkWqnqoXUWi0=) 6: 295CEF87CDB74B1A43287E630C3FE568272D2F33.crl (hash: cB9v7r/PgfvbdQZZv9MTqo7tDw6/cy91nlU99tHzdqk=) 7: 3232332e3133302e32302e302f32332d3234203d3e20313338313238.roa (hash: 4XaAtrPhzGDBzDHWlHXMB0whCb6rytr+C1+HuznU5f0=) 8: 3130332e3230362e3235322e302f32322d3234203d3e2039343232.roa (hash: PMWu4w2Q+6FhMFUf3/IiRjbR53qP/H9SS7SsSz4BOlo=) 9: 3230322e3135342e3138342e302f32312d3234203d3e2039343232.roa (hash: S3vWYnYF+l4dhX20RDpIzaZuA3umTZ3b74Itz4An65E=) 10: 34332e3232352e3138342e302f32322d3234203d3e2039343232.roa (hash: 6l4eA4hgKKdV7HePb7GT4qkO7B2rOBXkYrSr+9u6X7c=) 11: 3230322e34332e3232382e302f32322d3234203d3e2039343232.roa (hash: pPyEloQMF0TdeYTY5eM6CCjgFQy8xkkymm+/u9Rl4Cw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 09:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:06:7e:9f:3d:51:6c:c6:47:3e:24:8f:cc:8b:09:43:85:59:25:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Sep 6 22:36:37 2025 GMT Not After : Sep 10 09:11:37 2025 GMT Subject: CN=218640119051716074B7ED670569CDC03F498B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1a:9d:8a:ba:9a:ab:48:d8:2f:5d:cc:d5:c5: 10:50:ff:7b:05:c6:7c:f2:34:0e:5b:01:28:6f:a7: 9f:ad:9d:3e:37:a0:85:be:82:3e:3b:c4:2e:a9:97: c1:0b:70:1b:9f:68:57:fa:03:dd:c4:62:bc:c2:a2: 57:cb:74:58:4e:81:4a:30:09:f2:4c:ed:82:5d:1e: 8d:b9:a4:ff:72:eb:ff:cf:08:f0:f2:c7:7e:11:a1: 49:7d:3f:fd:be:d0:0e:e9:94:41:26:59:63:81:d9: 66:1e:e0:50:90:d5:d4:e0:f6:4d:4c:5d:b0:34:65: 2b:53:06:8d:31:53:42:46:1a:f5:6c:ca:ad:7a:eb: 60:0f:64:ec:c0:6a:e1:e8:12:f0:1b:8b:44:4d:5a: 87:be:3c:b6:11:b8:3e:51:a3:f2:2c:58:16:28:fe: 38:fc:9e:83:ca:e9:3d:a2:f1:b3:0b:56:0f:23:9e: 68:11:eb:f2:44:50:dc:50:0e:a6:c7:fa:f0:a0:f3: d9:07:c6:a7:e1:46:53:23:ab:f2:da:73:79:9c:28: 6f:35:1d:61:0c:36:e6:0b:3d:c0:61:9e:8a:0e:bb: 5c:24:6b:fc:dd:9b:87:5b:b9:22:d4:ea:f1:3a:05: 8d:bc:98:68:b1:e4:36:33:78:6b:d9:89:e8:c7:75: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:86:40:11:90:51:71:60:74:B7:ED:67:05:69:CD:C0:3F:49:8B:7A X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:bb:48:ff:bc:32:4d:7b:8c:fe:c8:7d:09:4f:1b:98:af:21: 81:4f:41:0c:b9:ab:c5:d2:6a:92:fa:33:cc:11:17:02:92:af: d5:d5:69:22:81:d4:cd:b3:81:28:ca:4f:33:a9:b4:45:b5:af: 67:94:4c:e5:1f:d5:6b:d5:47:10:fd:11:87:1b:ba:b3:26:46: 52:86:e5:40:23:74:9a:fc:77:80:52:74:14:68:51:17:17:95: 15:d8:9d:f5:9a:c7:96:98:6a:e2:5c:19:a8:5c:8a:45:8b:d7: 08:76:10:b8:4f:79:95:dc:ab:ce:19:8a:e5:4b:df:79:f3:78: e3:75:96:20:52:30:3f:33:99:84:c5:15:0f:b7:1a:85:08:7a: 0e:f7:7a:ca:1e:bd:bc:10:5d:a1:b3:6b:c5:da:ac:54:37:58: eb:1c:8a:64:25:6a:12:9d:e2:72:78:42:7c:64:e8:62:47:9e: f2:5e:a9:4b:19:bc:f8:94:d2:d6:80:c6:6e:5c:4e:21:a9:79: cd:4b:c9:d9:96:a3:c0:a3:69:4d:6d:2c:0b:da:39:4f:e5:36: 9b:29:74:1d:a5:76:33:0b:8b:3e:f6:70:e2:2c:ac:0b:a9:16: 35:ca:34:8b:16:9c:7c:c7:bd:3e:ac:32:59:bc:78:27:d9:f7: 48:ad:70:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPQZ+nz1RbMZHPiSPzIsJQ4VZJYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA5MDYyMjM2MzdaFw0yNTA5MTAwOTExMzdaMDMxMTAvBgNV BAMTKDIxODY0MDExOTA1MTcxNjA3NEI3RUQ2NzA1NjlDREMwM0Y0OThCN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxGp2KupqrSNgvXczVxRBQ/3sF xnzyNA5bAShvp5+tnT43oIW+gj47xC6pl8ELcBufaFf6A93EYrzColfLdFhOgUow CfJM7YJdHo25pP9y6//PCPDyx34RoUl9P/2+0A7plEEmWWOB2WYe4FCQ1dTg9k1M XbA0ZStTBo0xU0JGGvVsyq1662APZOzAauHoEvAbi0RNWoe+PLYRuD5Ro/IsWBYo /jj8noPK6T2i8bMLVg8jnmgR6/JEUNxQDqbH+vCg89kHxqfhRlMjq/Lac3mcKG81 HWEMNuYLPcBhnooOu1wka/zdm4dbuSLU6vE6BY28mGix5DYzeGvZiejHdVjzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIYZAEZBRcWB0t+1nBWnNwD9Ji3owHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTg3ZDc5YmEtZmI1NS00OWE1LTk2 N2ItMWVkYzc0OWQwMTI4LzAvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1 NjgyNzJEMkYzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABu7SP+8Mk17jP7IfQlPG5ivIYFPQQy5q8XS apL6M8wRFwKSr9XVaSKB1M2zgSjKTzOptEW1r2eUTOUf1WvVRxD9EYcburMmRlKG 5UAjdJr8d4BSdBRoURcXlRXYnfWax5aYauJcGahcikWL1wh2ELhPeZXcq84ZiuVL 33nzeON1liBSMD8zmYTFFQ+3GoUIeg73esoevbwQXaGza8XarFQ3WOscimQlahKd 4nJ4Qnxk6GJHnvJeqUsZvPiU0taAxm5cTiGpec1LydmWo8CjaU1tLAvaOU/lNpsp dB2ldjMLiz72cOIsrAupFjXKNIsWnHzHvT6sMlm8eCfZ90itcPc= -----END CERTIFICATE-----Generated at Mon Sep 8 13:57:37 2025 by rpki-client