$ rpki-client -vvf repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft File: 33D26363FA5B5B53C17981915CBADB375AE27253.mft (raw, json) Hash identifier: v0D04da3AAJb0zUIl5MOyX1eSLBHEzfQjf0aptGsKC0= Subject key identifier: 78:AA:0B:7B:04:BD:13:F7:84:C0:7C:B7:F3:BA:7D:A7:EE:2B:FC:20 Authority key identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 Certificate issuer: /CN=33D26363FA5B5B53C17981915CBADB375AE27253 Certificate serial: D518D085224E086818F89BF7DFADE063E55B08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft Manifest number: 7A Signing time: Thu 04 Sep 2025 07:21:24 +0000 Manifest this update: Thu 04 Sep 2025 07:16:24 +0000 Manifest next update: Sun 07 Sep 2025 09:44:24 +0000 Files and hashes: 1: 33D26363FA5B5B53C17981915CBADB375AE27253.crl (hash: O8PJfcm/LFLmrHkkq4I2oxBaln1f+GEEZSjicZQMvrI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.crl rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 09:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d5:18:d0:85:22:4e:08:68:18:f8:9b:f7:df:ad:e0:63:e5:5b:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D26363FA5B5B53C17981915CBADB375AE27253 Validity Not Before: Sep 4 07:16:24 2025 GMT Not After : Sep 7 09:44:24 2025 GMT Subject: CN=78AA0B7B04BD13F784C07CB7F3BA7DA7EE2BFC20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7a:e6:6a:f4:a8:3c:c7:eb:6b:70:4e:96:be: 16:b6:76:be:dd:a3:01:49:15:1e:ef:65:c9:c0:4b: fd:13:2c:26:31:d0:1c:1a:27:cf:69:b8:52:e3:fd: e5:bc:31:f9:34:7d:da:62:e2:2c:de:02:8b:0f:ef: 95:69:e1:5f:06:be:ae:7d:65:7a:df:c9:92:42:06: 1d:b0:11:3e:26:81:cf:e6:b1:3c:9f:cd:0d:3b:e1: c4:b3:a1:0c:28:17:8e:c1:71:b9:80:6c:47:43:ab: e4:81:8a:35:07:ba:4c:c0:11:b3:41:3e:ac:87:f4: da:07:89:a0:cb:f4:88:49:67:43:57:56:ab:8b:bc: 5c:bc:b7:03:eb:77:55:bf:31:bd:05:93:c9:f4:65: d8:84:51:8e:cc:34:46:30:22:20:65:1f:36:99:f5: 4f:0d:34:34:f7:c3:1f:4f:0e:06:93:3b:3b:62:3f: 6d:9a:2d:64:42:f3:bf:05:81:af:d0:f1:3d:65:25: 3c:02:fc:ab:31:ca:b3:ee:4f:dd:70:b2:52:9b:7e: 78:b8:e6:17:6c:ef:64:80:f0:72:ca:aa:16:2e:e5: ce:2d:08:57:b6:34:51:dc:c4:73:aa:27:a3:6d:e2: 8b:d2:0c:37:6c:fa:30:78:af:13:e7:ae:55:e8:c3: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AA:0B:7B:04:BD:13:F7:84:C0:7C:B7:F3:BA:7D:A7:EE:2B:FC:20 X509v3 Authority Key Identifier: keyid:33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:d9:14:f6:77:8f:7d:98:ea:40:0c:56:84:eb:1e:ef:f2:1a: 40:b0:9f:68:f2:54:f5:c2:61:2f:df:75:8b:fb:34:ea:20:d7: 62:c0:e8:06:b5:9c:76:6e:98:f6:07:e0:4c:06:19:9f:41:a7: 92:f6:84:75:03:04:2e:a4:7d:8d:ec:2f:ac:f1:db:33:ee:b8: c7:fa:15:27:9e:ef:b5:b6:88:d2:16:b2:93:7b:b3:8b:17:76: c9:69:36:62:30:17:6b:25:6d:4f:7d:10:57:ad:c9:08:7e:ba: 6a:8d:1a:f6:7e:a3:5b:9a:59:ec:89:64:9e:ef:ec:c7:4f:00: 5a:78:ab:58:93:f3:f0:43:d9:59:83:8d:a8:03:7c:02:27:f4: 8d:d3:b7:18:48:f7:dd:71:4f:eb:ae:8e:31:86:fb:81:59:41: ea:94:62:ff:d5:11:43:7c:77:c1:a6:ec:57:06:f4:32:4d:ce: 56:ed:4a:a3:bf:3c:f7:78:3e:32:66:8e:22:b9:7e:a2:95:57: 2d:0f:d1:f2:fc:a6:bb:1b:df:3f:66:89:50:06:34:31:21:41: 3d:72:97:cb:fd:ec:11:96:fd:b4:de:a4:b4:ca:f1:71:37:ab: 36:c5:f5:cc:fc:da:b3:c4:27:df:6a:dc:02:e7:97:c0:d6:46: c3:66:af:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUANUY0IUiTghoGPib99+t4GPlWwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURCMzc1 QUUyNzI1MzAeFw0yNTA5MDQwNzE2MjRaFw0yNTA5MDcwOTQ0MjRaMDMxMTAvBgNV BAMTKDc4QUEwQjdCMDRCRDEzRjc4NEMwN0NCN0YzQkE3REE3RUUyQkZDMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgeuZq9Kg8x+trcE6Wvha2dr7d owFJFR7vZcnAS/0TLCYx0BwaJ89puFLj/eW8Mfk0fdpi4izeAosP75Vp4V8Gvq59 ZXrfyZJCBh2wET4mgc/msTyfzQ074cSzoQwoF47BcbmAbEdDq+SBijUHukzAEbNB PqyH9NoHiaDL9IhJZ0NXVquLvFy8twPrd1W/Mb0Fk8n0ZdiEUY7MNEYwIiBlHzaZ 9U8NNDT3wx9PDgaTOztiP22aLWRC878Fga/Q8T1lJTwC/KsxyrPuT91wslKbfni4 5hds72SA8HLKqhYu5c4tCFe2NFHcxHOqJ6Nt4ovSDDds+jB4rxPnrlXowxXPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeKoLewS9E/eEwHy387p9p+4r/CAwHwYDVR0j BBgwFoAUM9JjY/pbW1PBeYGRXLrbN1riclMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzU4ZmI3Yy02N2I4LTRiY2UtOTZkOS1iZTkxMmUzZjczZGQvMS8zM0QyNjM2M0ZB NUI1QjUzQzE3OTgxOTE1Q0JBREIzNzVBRTI3MjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURCMzc1QUUy NzI1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGM1OGZiN2MtNjdiOC00YmNlLTk2 ZDktYmU5MTJlM2Y3M2RkLzEvMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURC Mzc1QUUyNzI1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADPZFPZ3j32Y6kAMVoTrHu/yGkCwn2jyVPXC YS/fdYv7NOog12LA6Aa1nHZumPYH4EwGGZ9Bp5L2hHUDBC6kfY3sL6zx2zPuuMf6 FSee77W2iNIWspN7s4sXdslpNmIwF2slbU99EFetyQh+umqNGvZ+o1uaWeyJZJ7v 7MdPAFp4q1iT8/BD2VmDjagDfAIn9I3TtxhI991xT+uujjGG+4FZQeqUYv/VEUN8 d8Gm7FcG9DJNzlbtSqO/PPd4PjJmjiK5fqKVVy0P0fL8prsb3z9miVAGNDEhQT1y l8v97BGW/bTepLTK8XE3qzbF9cz82rPEJ99q3ALnl8DWRsNmr2c= -----END CERTIFICATE-----Generated at Fri Sep 5 10:27:11 2025 by rpki-client