$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: eh4O5rURAn3fEp6Si3Q58TQFBi7Cpp14iU+eQB1TBp0= Subject key identifier: D1:B6:B1:43:3E:AA:EE:1A:45:8B:88:82:9D:95:4D:14:44:27:95:B6 Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 7B23EF01309AC27926886B6E81333D41BD1A1B7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 02D8 Signing time: Fri 05 Sep 2025 10:11:12 +0000 Manifest this update: Fri 05 Sep 2025 10:06:12 +0000 Manifest next update: Mon 08 Sep 2025 14:09:12 +0000 Files and hashes: 1: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: 56uePfrFM6q8WWqc73pT25hCPDdyO+TBL/0l1H1Eu+s=) 2: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) 3: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: omt0on/osncWzWrbGIk75aVtn8fXGKFlF84iedQ76S8=) 4: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: gcQbwwcsgWLto/MeqdtpULkQCdJ/hBMpFsyWHdzWTU8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 14:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:23:ef:01:30:9a:c2:79:26:88:6b:6e:81:33:3d:41:bd:1a:1b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Sep 5 10:06:12 2025 GMT Not After : Sep 8 14:09:12 2025 GMT Subject: CN=D1B6B1433EAAEE1A458B88829D954D14442795B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:37:bf:a7:0c:02:ba:87:41:c4:f8:ef:99:82: 22:02:14:5a:3b:af:74:1c:09:da:b4:b2:32:e5:3a: c7:da:14:2a:76:75:b8:ce:63:44:dc:69:bf:30:56: fb:7e:3b:f1:49:cb:db:b9:c4:56:27:02:3f:9b:12: f8:ab:a1:5b:4c:a9:2d:33:e4:97:f6:87:8c:14:b9: cf:fa:df:67:b0:5d:cf:a8:d0:cd:29:7a:f3:61:4f: a2:75:6d:5f:39:39:7a:5f:84:c8:64:a8:cf:fb:07: 5d:02:57:d2:7a:af:f9:4f:65:99:98:14:d4:a1:ce: d2:32:8f:6e:bc:ee:88:00:7f:55:e1:b8:ad:f6:47: eb:da:bf:8c:2c:4d:c3:5a:1e:c2:12:1f:b8:c2:d1: b5:ae:9a:e4:4a:69:fb:93:b2:41:3a:2a:2c:3f:f1: 95:17:44:0e:3c:15:10:f4:98:75:07:e6:85:b1:aa: eb:98:86:79:5d:7b:1f:69:25:f6:71:d8:69:06:a9: 3d:6b:42:e9:aa:3c:7d:26:80:81:19:67:84:f2:06: 57:a0:16:a4:e8:a4:b8:d7:bf:f7:c6:49:39:10:c4: 6f:ca:8a:97:d2:a4:48:01:25:e6:0b:ba:b3:db:b1: f7:1c:70:34:07:f5:4f:69:cc:b5:c5:f0:2a:aa:06: 25:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B6:B1:43:3E:AA:EE:1A:45:8B:88:82:9D:95:4D:14:44:27:95:B6 X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ad:19:4a:7a:fc:f7:11:68:98:ce:b8:e0:16:37:33:21:50: bf:86:5a:da:b0:1f:24:ef:bc:4b:96:e6:7a:09:5c:81:fa:73: 50:3b:59:5a:e0:a4:94:a8:6f:89:2e:8e:a6:36:0f:5d:b4:e8: 8a:d9:2d:f6:51:f5:37:b6:7f:ec:2d:56:ff:eb:54:cf:8d:cc: e7:d2:29:20:16:25:1e:c1:6b:3b:25:c8:8c:a5:00:de:72:f9: 50:ce:d4:0e:aa:7b:65:6b:37:7a:fc:04:11:6b:54:f1:22:b1: 6f:90:e3:78:2e:1b:08:d0:60:26:0c:fd:98:8a:46:d4:d2:28: 31:02:39:3e:75:65:ed:d9:84:5e:58:10:1e:f6:e6:b9:35:a8: 87:ea:91:fc:06:0b:ff:df:50:1d:b2:ae:f8:0b:c2:48:79:39: ec:7d:eb:e8:bb:b5:2b:4b:e1:8d:fe:bd:85:62:17:ae:0c:a9: 7f:14:65:36:66:3c:38:fa:bc:bf:7c:cc:65:a6:c2:ff:2a:2e: 72:57:03:c6:89:e7:f9:cd:7b:e5:ff:78:93:1b:54:82:44:b7: 1a:b6:94:19:b4:11:0a:23:41:7b:b2:08:70:11:f3:2f:e8:66: 1b:e5:84:90:14:3b:97:94:61:0f:3b:fe:b8:7f:48:77:16:66: 30:fd:67:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeyPvATCawnkmiGtugTM9Qb0aG3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNTA5MDUxMDA2MTJaFw0yNTA5MDgxNDA5MTJaMDMxMTAvBgNV BAMTKEQxQjZCMTQzM0VBQUVFMUE0NThCODg4MjlEOTU0RDE0NDQyNzk1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXN7+nDAK6h0HE+O+ZgiICFFo7 r3QcCdq0sjLlOsfaFCp2dbjOY0Tcab8wVvt+O/FJy9u5xFYnAj+bEviroVtMqS0z 5Jf2h4wUuc/632ewXc+o0M0pevNhT6J1bV85OXpfhMhkqM/7B10CV9J6r/lPZZmY FNShztIyj2687ogAf1XhuK32R+vav4wsTcNaHsISH7jC0bWumuRKafuTskE6Kiw/ 8ZUXRA48FRD0mHUH5oWxquuYhnldex9pJfZx2GkGqT1rQumqPH0mgIEZZ4TyBleg FqTopLjXv/fGSTkQxG/KipfSpEgBJeYLurPbsfcccDQH9U9pzLXF8CqqBiVBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0baxQz6q7hpFi4iCnZVNFEQnlbYwHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAutGUp6/PcRaJjOuOAWNzMhUL+GWtqwHyTv vEuW5noJXIH6c1A7WVrgpJSob4kujqY2D1206IrZLfZR9Te2f+wtVv/rVM+NzOfS KSAWJR7BazslyIylAN5y+VDO1A6qe2VrN3r8BBFrVPEisW+Q43guGwjQYCYM/ZiK RtTSKDECOT51Ze3ZhF5YEB725rk1qIfqkfwGC//fUB2yrvgLwkh5Oex96+i7tStL 4Y3+vYViF64MqX8UZTZmPDj6vL98zGWmwv8qLnJXA8aJ5/nNe+X/eJMbVIJEtxq2 lBm0EQojQXuyCHAR8y/oZhvlhJAUO5eUYQ87/rh/SHcWZjD9ZwU= -----END CERTIFICATE-----Generated at Sun Sep 7 14:03:55 2025 by rpki-client