$ rpki-client -vvf repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft File: CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft (raw, json) Hash identifier: +x8F2Ir+TY+qUlFsnPYTeCgJyDi7xwLi5GRlmsa3Wzc= Subject key identifier: FC:A8:AA:55:D6:53:A0:63:FF:A5:34:FC:C4:08:84:78:A2:7B:94:9E Authority key identifier: CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B Certificate issuer: /CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B Certificate serial: 31277577CFF84129EF5A457AFAB7D0CB2D8CC32D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft Manifest number: 050B Signing time: Sun 07 Sep 2025 18:51:53 +0000 Manifest this update: Sun 07 Sep 2025 18:46:53 +0000 Manifest next update: Wed 10 Sep 2025 19:14:53 +0000 Files and hashes: 1: CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl (hash: eAounzVYprBLW+sIB6zR3lNLWIoIQRUEJ1GUSEX8rVE=) 2: 3130332e36362e38362e302f32342d3234203d3e20313431313037.roa (hash: HELC9mdQ84lzVVvguuZaZieGiyQ03u73Eihy4Pkp6bs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 19:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:27:75:77:cf:f8:41:29:ef:5a:45:7a:fa:b7:d0:cb:2d:8c:c3:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B Validity Not Before: Sep 7 18:46:53 2025 GMT Not After : Sep 10 19:14:53 2025 GMT Subject: CN=FCA8AA55D653A063FFA534FCC4088478A27B949E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f2:31:43:77:22:13:c4:99:0e:ce:9b:f8:9a: 9a:10:52:91:f7:75:2d:a9:07:6b:46:4c:bb:f9:97: 9e:7b:00:28:d7:ba:38:39:27:73:96:dd:d3:ac:f7: 66:3a:e5:55:24:c5:4f:df:94:92:7c:e1:c0:ab:a8: 83:7f:66:38:5f:fa:ee:89:48:46:69:cb:89:5c:85: 08:d1:1c:86:14:d4:df:a9:87:58:95:38:04:5f:d2: bb:6b:a1:38:29:13:92:f6:5c:36:05:e4:6b:f3:92: 91:39:01:bd:06:e9:47:0e:52:55:41:82:4b:ed:2d: 6e:d6:6b:dc:b1:b9:f7:6f:34:a5:46:92:c7:39:b2: 90:d7:19:52:70:26:15:1a:41:ab:13:0f:f5:18:5f: 92:da:d4:26:8b:09:d4:de:1a:6d:09:45:2f:7b:0a: 79:19:4c:3b:db:34:af:d5:c2:43:eb:e8:17:ba:d9: 8d:96:cb:e1:0c:d1:6a:53:99:a6:ea:2a:bc:1e:cc: 64:37:f4:0b:14:b1:04:bf:dd:5b:a6:e1:00:0e:b5: 79:34:52:4b:e3:cd:b1:ad:b7:f8:41:6b:e7:54:02: 36:dd:5a:ba:d5:03:ce:08:19:b2:12:c9:d1:97:2a: 43:c2:e0:77:b2:27:1e:7c:f1:a1:64:49:8b:68:6f: 49:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A8:AA:55:D6:53:A0:63:FF:A5:34:FC:C4:08:84:78:A2:7B:94:9E X509v3 Authority Key Identifier: keyid:CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:00:4a:c8:44:95:8a:aa:4d:80:e6:5a:7c:ae:c8:e0:61:0d: 34:ee:be:a5:86:b1:a6:15:80:f6:46:75:2c:6a:e2:48:73:ad: e7:cc:83:92:a9:0f:87:aa:9c:32:a6:6a:53:f7:36:9e:d2:5e: 3a:ae:40:89:6f:cc:26:83:78:62:ab:49:89:cd:3d:8a:6f:b4: 80:8f:83:b0:46:00:1c:3d:6a:3b:01:ae:b4:fe:f9:e9:25:e9: 29:10:5a:06:5b:56:fe:c4:21:ed:09:82:e0:e4:77:0f:78:38: 02:80:83:77:2b:63:d8:e7:54:0a:71:44:97:78:76:df:c2:3e: 6d:fd:ba:77:4f:93:20:2f:6b:43:08:21:e7:ec:d2:3d:d8:29: c7:a2:5a:e0:7f:95:d5:4f:77:5c:ec:14:e8:f1:93:fd:70:34: 8f:9a:91:75:c9:bc:e2:7e:af:c2:ab:7e:e7:63:89:8e:ea:e4: a6:b1:c2:b0:86:ce:6e:15:5e:a9:e4:36:3a:f4:c6:87:d8:eb: 6d:a6:e3:05:43:a2:aa:d6:7e:f9:dd:da:be:1d:01:70:fa:d0: 03:5f:4b:aa:ee:0c:18:cf:85:03:53:48:c7:f0:da:40:7a:6f: 11:b8:35:69:2d:92:d2:8b:a5:43:03:40:34:32:c9:e9:55:21: 60:ae:54:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMSd1d8/4QSnvWkV6+rfQyy2Mwy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzcz MjE0MDk5QjAeFw0yNTA5MDcxODQ2NTNaFw0yNTA5MTAxOTE0NTNaMDMxMTAvBgNV BAMTKEZDQThBQTU1RDY1M0EwNjNGRkE1MzRGQ0M0MDg4NDc4QTI3Qjk0OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT8jFDdyITxJkOzpv4mpoQUpH3 dS2pB2tGTLv5l557ACjXujg5J3OW3dOs92Y65VUkxU/flJJ84cCrqIN/Zjhf+u6J SEZpy4lchQjRHIYU1N+ph1iVOARf0rtroTgpE5L2XDYF5GvzkpE5Ab0G6UcOUlVB gkvtLW7Wa9yxufdvNKVGksc5spDXGVJwJhUaQasTD/UYX5La1CaLCdTeGm0JRS97 CnkZTDvbNK/VwkPr6Be62Y2Wy+EM0WpTmabqKrwezGQ39AsUsQS/3Vum4QAOtXk0 UkvjzbGtt/hBa+dUAjbdWrrVA84IGbISydGXKkPC4HeyJx588aFkSYtob0mXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/KiqVdZToGP/pTT8xAiEeKJ7lJ4wHwYDVR0j BBgwFoAUykHd41kdz4m70VvJbgW9xzIUCZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmNjMmQ0NC05NDE4LTQwMTMtOTcyMy1hOTc4ZjhiZDhiNmIvMC9DQTQxRERFMzU5 MURDRjg5QkJEMTVCQzk2RTA1QkRDNzMyMTQwOTlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzczMjE0 MDk5Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGZjYzJkNDQtOTQxOC00MDEzLTk3 MjMtYTk3OGY4YmQ4YjZiLzAvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJE QzczMjE0MDk5Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKUASshElYqqTYDmWnyuyOBhDTTuvqWGsaYV gPZGdSxq4khzrefMg5KpD4eqnDKmalP3Np7SXjquQIlvzCaDeGKrSYnNPYpvtICP g7BGABw9ajsBrrT++ekl6SkQWgZbVv7EIe0JguDkdw94OAKAg3crY9jnVApxRJd4 dt/CPm39undPkyAva0MIIefs0j3YKceiWuB/ldVPd1zsFOjxk/1wNI+akXXJvOJ+ r8KrfudjiY7q5KaxwrCGzm4VXqnkNjr0xofY622m4wVDoqrWfvnd2r4dAXD60ANf S6ruDBjPhQNTSMfw2kB6bxG4NWktktKLpUMDQDQyyelVIWCuVPg= -----END CERTIFICATE-----Generated at Mon Sep 8 10:46:20 2025 by rpki-client