$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft File: 99A17325620A243689E32E6074D5CFCA91D915EB.mft (raw, json) Hash identifier: aMggGfYu0QwhIfbJ1O3kgeBXc8OwPI3BtwjGQsI+U8o= Subject key identifier: 65:6C:A9:63:E9:B9:88:98:CE:7D:4E:F4:54:80:76:4E:BF:18:04:AF Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB Certificate serial: 53409B9E1A577582D148B2724238DEBDC716998C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft Manifest number: E8 Signing time: Fri 29 Aug 2025 09:33:17 +0000 Manifest this update: Fri 29 Aug 2025 09:28:17 +0000 Manifest next update: Mon 01 Sep 2025 10:02:17 +0000 Files and hashes: 1: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (hash: W4T3x6W6F80SSirpXVn9D/iy5Cn3YHJGBUQbdlxcTEY=) 2: 99A17325620A243689E32E6074D5CFCA91D915EB.crl (hash: swlouhzFIgZR9tjqrN3Yz+F9e3Yw+pzkqf3AuDzeiDo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 10:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:40:9b:9e:1a:57:75:82:d1:48:b2:72:42:38:de:bd:c7:16:99:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB Validity Not Before: Aug 29 09:28:17 2025 GMT Not After : Sep 1 10:02:17 2025 GMT Subject: CN=656CA963E9B98898CE7D4EF45480764EBF1804AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e0:c4:0a:ba:ed:f0:c7:d1:ab:6a:5b:0b:8a: 02:40:1d:50:5b:51:73:70:72:dd:14:73:ef:47:41: 93:a9:5c:3b:7b:bb:47:00:e7:73:fd:55:56:54:ca: 26:4e:e6:b3:e2:a7:90:86:91:4d:76:6b:39:81:15: c1:1c:63:10:82:97:aa:fa:a4:b3:b3:48:bd:f2:7f: 04:f0:46:4f:86:51:3f:39:c9:49:12:9a:15:c8:7c: 81:bb:bc:60:a9:30:dd:ac:09:ee:b1:b0:1d:66:8c: e9:ab:88:9d:f2:3f:9f:10:e3:4e:5b:83:e7:ab:9d: c3:0d:16:fb:72:56:05:34:05:c8:ca:f9:02:94:42: dc:37:c4:34:ea:48:55:43:fc:89:68:76:57:36:bf: a2:f6:81:4c:49:ef:99:03:32:c3:1f:02:8b:1d:65: 4a:c8:f0:5d:16:8b:1c:20:ee:cb:7b:8b:a2:88:78: 70:58:58:96:35:8b:98:da:03:12:d3:dc:4f:12:18: 35:fa:d4:51:68:d0:42:89:20:81:d0:94:5e:a8:08: 4f:a5:dd:b4:f8:af:c4:ca:0b:af:72:e0:b9:8f:a4: cd:21:cd:93:32:86:36:d2:1e:59:ae:5c:dc:e6:41: 7a:0f:08:4d:4c:69:73:d3:9b:08:12:c4:29:cc:7c: e7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6C:A9:63:E9:B9:88:98:CE:7D:4E:F4:54:80:76:4E:BF:18:04:AF X509v3 Authority Key Identifier: keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:76:34:43:ae:97:73:cb:e0:63:09:58:7c:f7:26:42:be:37: 17:99:3f:1f:ad:56:6f:7f:7b:af:41:2c:69:8e:44:ee:e7:a2: a0:ed:43:23:e0:83:12:42:24:5f:bb:07:8b:49:7d:1c:be:64: 14:c9:93:de:8c:ae:5e:e8:3d:60:00:a5:c3:41:5b:59:98:ab: 3a:cb:1d:26:59:29:72:b6:ed:ca:0f:10:c3:39:b4:7b:c3:6a: 58:fb:09:20:c7:86:df:ed:3e:a6:0b:96:d1:9c:84:08:c0:4f: 17:b8:49:34:b1:c4:59:19:08:65:44:48:de:4b:3a:48:b3:af: 21:29:9b:37:42:60:89:97:01:0a:37:85:b6:a3:93:af:e8:29: ac:8b:f3:d2:fe:1c:9e:f1:19:15:0b:54:be:49:23:db:50:76: 72:2b:9e:d0:4e:d9:d8:a1:6b:2a:b7:98:a4:7c:bd:a8:4e:4f: 0d:28:a0:d2:99:96:66:03:34:1e:98:30:93:74:e1:da:43:a3: 67:7d:d5:83:28:cd:01:d8:75:56:08:2a:22:c5:ae:41:94:40: 26:9c:30:0f:9a:d6:8d:37:d9:9f:af:22:dd:aa:de:70:b6:5b: c8:ac:2b:aa:01:25:ae:3b:40:0c:0f:10:cf:d1:6d:6f:af:77: 36:de:39:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU0CbnhpXdYLRSLJyQjjevccWmYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5 MUQ5MTVFQjAeFw0yNTA4MjkwOTI4MTdaFw0yNTA5MDExMDAyMTdaMDMxMTAvBgNV BAMTKDY1NkNBOTYzRTlCOTg4OThDRTdENEVGNDU0ODA3NjRFQkYxODA0QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb4MQKuu3wx9GralsLigJAHVBb UXNwct0Uc+9HQZOpXDt7u0cA53P9VVZUyiZO5rPip5CGkU12azmBFcEcYxCCl6r6 pLOzSL3yfwTwRk+GUT85yUkSmhXIfIG7vGCpMN2sCe6xsB1mjOmriJ3yP58Q405b g+erncMNFvtyVgU0BcjK+QKUQtw3xDTqSFVD/Ilodlc2v6L2gUxJ75kDMsMfAosd ZUrI8F0Wixwg7st7i6KIeHBYWJY1i5jaAxLT3E8SGDX61FFo0EKJIIHQlF6oCE+l 3bT4r8TKC69y4LmPpM0hzZMyhjbSHlmuXNzmQXoPCE1MaXPTmwgSxCnMfOdzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZWypY+m5iJjOfU70VIB2Tr8YBK8wHwYDVR0j BBgwFoAUmaFzJWIKJDaJ4y5gdNXPypHZFeswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDU5YjgyMi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC85OUExNzMyNTYy MEEyNDM2ODlFMzJFNjA3NEQ1Q0ZDQTkxRDkxNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5MUQ5 MTVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWQ1OWI4MjItNWMwOC00NmYxLWIy NWUtNzU4ZGMxOGU5OTA1LzAvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNG Q0E5MUQ5MTVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADh2NEOul3PL4GMJWHz3JkK+NxeZPx+tVm9/ e69BLGmORO7noqDtQyPggxJCJF+7B4tJfRy+ZBTJk96Mrl7oPWAApcNBW1mYqzrL HSZZKXK27coPEMM5tHvDalj7CSDHht/tPqYLltGchAjATxe4STSxxFkZCGVESN5L OkizryEpmzdCYImXAQo3hbajk6/oKayL89L+HJ7xGRULVL5JI9tQdnIrntBO2dih ayq3mKR8vahOTw0ooNKZlmYDNB6YMJN04dpDo2d91YMozQHYdVYIKiLFrkGUQCac MA+a1o032Z+vIt2q3nC2W8isK6oBJa47QAwPEM/RbW+vdzbeOeY= -----END CERTIFICATE-----Generated at Sun Aug 31 08:04:40 2025 by rpki-client