$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft File: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft (raw, json) Hash identifier: DTdvVXmr9bFPUiSn4GrmON029Y75xoY6veX6/rRHKMM= Subject key identifier: 4E:1B:24:7E:44:D0:D6:1D:34:44:4C:CA:87:91:7C:A7:8B:16:A1:E5 Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 6A60D863605D320956868B831DFB7ED8B08BC510 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft Manifest number: 030C Signing time: Sat 06 Sep 2025 17:01:41 +0000 Manifest this update: Sat 06 Sep 2025 16:56:41 +0000 Manifest next update: Tue 09 Sep 2025 19:28:41 +0000 Files and hashes: 1: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (hash: 9s1ITUmg2kGqf5Jx5LPfpxTxCb9voDIi9IZi6C1ddpU=) 2: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl (hash: pCXVwFP3HnGTrselYterKgKWoJy+KpBkyiDsEN29KQw=) 3: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (hash: kkQvEgsJeO+CrA3Ye9kDXGk01vieQEZNvkHA4XJOOhQ=) 4: 3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa (hash: SPW5Gl3BeUVHO5fIh7gLc9Co4QXzBznSK3/ByXd6mfU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 19:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:60:d8:63:60:5d:32:09:56:86:8b:83:1d:fb:7e:d8:b0:8b:c5:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Sep 6 16:56:41 2025 GMT Not After : Sep 9 19:28:41 2025 GMT Subject: CN=4E1B247E44D0D61D34444CCA87917CA78B16A1E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:08:d2:78:73:7e:66:72:23:8f:fc:32:3a: 20:02:5c:95:18:d5:01:ec:5a:23:83:dc:f5:c9:5d: d2:bc:ad:18:c0:44:1d:c2:f1:d4:b4:e1:d4:59:d6: a2:cf:a8:77:5f:92:d9:85:82:4f:39:5f:f1:73:f6: 2d:80:e8:e0:c0:90:ac:32:ae:36:8e:5a:d0:2e:29: 9e:c4:e4:e0:7e:67:63:b0:56:92:fe:61:7a:6a:56: f1:42:f6:92:80:75:b4:73:5c:73:8f:01:05:df:dc: c4:47:5c:d5:fe:c2:35:8e:4b:cd:95:7b:e5:24:da: 5a:7c:41:ba:07:1b:44:71:1e:34:60:99:72:eb:aa: e5:19:2e:cc:c7:73:c4:fe:d8:45:13:d9:1d:f7:0d: 68:b7:62:c7:fd:72:0c:b2:30:80:86:80:20:0a:76: f9:eb:66:09:08:36:02:28:7c:6a:d0:a2:8a:0b:f3: 2a:84:20:f7:bd:3c:ae:a9:a2:96:a9:a0:73:a6:14: 8c:5e:d3:b3:a4:8c:46:45:e2:04:3c:d8:f9:71:18: 75:b4:17:d5:bd:aa:5f:b5:01:80:44:4f:07:c2:df: 1c:4f:3a:d3:66:32:33:67:55:33:cf:5e:53:6c:1c: cd:42:42:bf:63:62:a0:57:65:e8:1d:da:97:62:3c: 65:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1B:24:7E:44:D0:D6:1D:34:44:4C:CA:87:91:7C:A7:8B:16:A1:E5 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:d9:2c:fb:0c:be:e5:4f:be:f5:3d:ac:a2:7b:d0:59:aa:ee: 44:51:27:f1:e0:e1:e1:2b:31:dc:3f:36:cd:fb:96:8b:a9:2c: 30:d1:3a:79:03:a9:d6:0f:47:2f:ee:57:65:1c:d9:69:87:ac: 3d:2a:db:f0:d7:fd:d3:6c:7c:fb:c5:8c:50:31:ba:74:80:d3: 96:b1:42:eb:ea:5d:3a:4a:c9:3b:fe:e6:49:98:cc:3d:20:7c: 8e:ef:13:98:c3:9d:58:5d:99:40:7f:18:c3:93:93:69:d5:33: 40:94:de:64:53:62:4f:ed:7b:8e:e6:81:16:38:42:69:64:ec: b1:f3:bb:bc:40:c8:98:4d:c4:f7:8a:9c:b9:5b:90:58:fc:23: a3:28:dd:f4:ba:d1:77:79:40:e1:97:a2:70:5b:a1:73:37:c3: 34:5d:bb:08:1a:dc:98:ff:4d:d0:9e:39:d3:36:b6:41:1c:ff: 6e:7a:10:e4:62:ae:5c:be:c4:23:9f:2d:41:9b:37:f3:67:e1: d6:09:48:63:9a:93:1a:f6:a7:56:33:d3:7d:5a:a3:b0:b4:07: 8f:b0:84:0b:05:3d:ad:e7:6c:c0:f7:07:60:a2:54:9f:04:e6: 8c:85:f9:9f:da:1d:72:5f:03:ba:71:62:f3:4d:e8:f6:a5:d1: 5f:18:15:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUamDYY2BdMglWhouDHft+2LCLxRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNTA5MDYxNjU2NDFaFw0yNTA5MDkxOTI4NDFaMDMxMTAvBgNV BAMTKDRFMUIyNDdFNDREMEQ2MUQzNDQ0NENDQTg3OTE3Q0E3OEIxNkExRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC9gjSeHN+ZnIjj/wyOiACXJUY 1QHsWiOD3PXJXdK8rRjARB3C8dS04dRZ1qLPqHdfktmFgk85X/Fz9i2A6ODAkKwy rjaOWtAuKZ7E5OB+Z2OwVpL+YXpqVvFC9pKAdbRzXHOPAQXf3MRHXNX+wjWOS82V e+Uk2lp8QboHG0RxHjRgmXLrquUZLszHc8T+2EUT2R33DWi3Ysf9cgyyMICGgCAK dvnrZgkINgIofGrQoooL8yqEIPe9PK6popapoHOmFIxe07OkjEZF4gQ82PlxGHW0 F9W9ql+1AYBETwfC3xxPOtNmMjNnVTPPXlNsHM1CQr9jYqBXZegd2pdiPGXZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUThskfkTQ1h00REzKh5F8p4sWoeUwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjFkYjZjOWItZDhmYy00ZDhjLTgw Y2ItZmQyMjQxMjA4ZGRlLzAvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2 OUYwNTZERjA5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHfZLPsMvuVPvvU9rKJ70Fmq7kRRJ/Hg4eEr Mdw/Ns37loupLDDROnkDqdYPRy/uV2Uc2WmHrD0q2/DX/dNsfPvFjFAxunSA05ax QuvqXTpKyTv+5kmYzD0gfI7vE5jDnVhdmUB/GMOTk2nVM0CU3mRTYk/te47mgRY4 Qmlk7LHzu7xAyJhNxPeKnLlbkFj8I6Mo3fS60Xd5QOGXonBboXM3wzRduwga3Jj/ TdCeOdM2tkEc/256EORirly+xCOfLUGbN/Nn4dYJSGOakxr2p1Yz031ao7C0B4+w hAsFPa3nbMD3B2CiVJ8E5oyF+Z/aHXJfA7pxYvNN6Pal0V8YFbI= -----END CERTIFICATE-----Generated at Sun Sep 7 15:25:54 2025 by rpki-client