$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: gYll2MtKg6R33I7ExU6noq3qPO1UkD0+ZQrjCPeTAeU= Subject key identifier: 73:A4:E3:D1:E9:ED:62:DD:A0:ED:4F:44:4A:7B:A0:63:A5:AA:BA:F4 Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 4DC16B6691901D7ECD579C0BF9B9E85C467FDA04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: ED Signing time: Sat 06 Sep 2025 01:42:16 +0000 Manifest this update: Sat 06 Sep 2025 01:37:16 +0000 Manifest next update: Tue 09 Sep 2025 09:34:16 +0000 Files and hashes: 1: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: 0KSMhkdmo2dt1KO5SOvZGhBgkOpI1i7rKI9N4dIrk00=) 2: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: mIAtzNrfjeKiFzHKpCt4+yI3FhKtEfckYghfutbPb44=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 09:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c1:6b:66:91:90:1d:7e:cd:57:9c:0b:f9:b9:e8:5c:46:7f:da:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Sep 6 01:37:16 2025 GMT Not After : Sep 9 09:34:16 2025 GMT Subject: CN=73A4E3D1E9ED62DDA0ED4F444A7BA063A5AABAF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c1:8d:6c:d1:aa:6d:34:39:88:e9:e4:d3:88: 5e:cf:51:b0:22:37:42:f0:d2:5e:e5:b9:08:49:bb: 19:d3:8a:99:2a:32:84:16:07:1e:ea:05:df:93:3a: b4:91:28:d1:a2:16:9c:43:4d:02:53:84:31:12:b1: d1:a0:a0:c7:b2:a0:8c:bb:56:16:ce:57:44:a3:a7: 08:21:72:8d:f0:77:7d:45:ce:39:d5:dc:bd:43:86: 20:a5:0d:74:a6:09:fb:f8:db:ce:2b:5b:3f:b8:ff: 30:63:4b:6b:77:f2:d6:bc:e1:a3:e4:cf:ac:13:f1: 03:0f:fd:14:69:06:9e:43:a8:3f:9b:20:09:c9:15: 5f:df:a3:c7:b0:1a:c0:53:82:d3:91:7d:dc:bf:b9: 60:12:b4:64:1a:e4:a7:22:a5:57:3e:52:12:34:5b: 48:3d:ad:22:34:d2:49:9b:77:75:05:ff:79:ac:f2: e4:8a:db:27:e5:2a:9b:64:1a:12:fb:e7:e0:d7:8e: cc:7c:76:5d:c6:86:36:0b:cf:0a:c3:a3:19:60:97: 7f:81:f9:2c:a2:c4:09:a1:eb:e1:f5:cc:b4:38:72: 90:bd:3d:1c:0c:dc:50:a2:57:66:b1:7c:46:59:2a: 91:ec:a7:e0:9d:fc:34:46:40:91:64:d3:a8:3c:bb: 00:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A4:E3:D1:E9:ED:62:DD:A0:ED:4F:44:4A:7B:A0:63:A5:AA:BA:F4 X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:bb:eb:9c:70:23:d4:7c:af:a3:8c:d1:c7:29:17:26:9d:4a: 43:87:11:eb:e9:c5:30:0a:84:0b:df:5a:23:4c:8f:f0:39:29: b5:3b:b2:ba:ae:97:ea:20:3d:af:33:7c:7e:3f:4b:92:6b:46: 83:da:81:e0:07:9a:57:5e:42:e6:e2:07:d0:3d:c4:9e:fd:a5: 1a:1c:ae:34:13:10:22:a9:35:12:7a:60:8b:e3:0a:5e:49:ae: 36:80:c4:14:bc:1e:e8:9c:1a:82:56:0a:39:ad:2c:3b:ad:87: a9:6d:45:68:c3:15:16:1b:39:92:e5:bf:5c:fb:ea:f0:68:50: 01:32:44:1e:b9:f6:bb:d6:93:bb:a6:9b:20:4e:37:3d:c3:65: 92:3f:22:99:8a:bb:63:57:a7:53:da:fe:e0:52:cd:fb:d1:1f: cc:7a:52:e3:84:94:33:71:a3:a3:95:ab:66:8d:4f:70:fd:6a: 28:43:aa:2a:39:a2:38:f6:c4:67:9a:a4:6a:51:d1:99:e7:1f: 6b:54:b3:17:4b:51:ec:87:37:41:95:8b:03:3b:24:d4:fe:57: 80:a5:57:86:10:5b:e7:46:bf:26:8e:ba:e1:dc:b2:eb:8b:7b: 3e:dd:9f:1d:b6:51:9f:27:e8:a1:b2:8d:11:53:19:9f:63:69: 4d:f3:cc:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTcFrZpGQHX7NV5wL+bnoXEZ/2gQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNTA5MDYwMTM3MTZaFw0yNTA5MDkwOTM0MTZaMDMxMTAvBgNV BAMTKDczQTRFM0QxRTlFRDYyRERBMEVENEY0NDRBN0JBMDYzQTVBQUJBRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwwY1s0aptNDmI6eTTiF7PUbAi N0Lw0l7luQhJuxnTipkqMoQWBx7qBd+TOrSRKNGiFpxDTQJThDESsdGgoMeyoIy7 VhbOV0Sjpwghco3wd31FzjnV3L1DhiClDXSmCfv4284rWz+4/zBjS2t38ta84aPk z6wT8QMP/RRpBp5DqD+bIAnJFV/fo8ewGsBTgtORfdy/uWAStGQa5KcipVc+UhI0 W0g9rSI00kmbd3UF/3ms8uSK2yflKptkGhL75+DXjsx8dl3GhjYLzwrDoxlgl3+B +SyixAmh6+H1zLQ4cpC9PRwM3FCiV2axfEZZKpHsp+Cd/DRGQJFk06g8uwBfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUc6Tj0entYt2g7U9ESnugY6WquvQwHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIK765xwI9R8r6OM0ccpFyadSkOHEevpxTAK hAvfWiNMj/A5KbU7srqul+ogPa8zfH4/S5JrRoPageAHmldeQubiB9A9xJ79pRoc rjQTECKpNRJ6YIvjCl5JrjaAxBS8HuicGoJWCjmtLDuth6ltRWjDFRYbOZLlv1z7 6vBoUAEyRB659rvWk7ummyBONz3DZZI/IpmKu2NXp1Pa/uBSzfvRH8x6UuOElDNx o6OVq2aNT3D9aihDqio5ojj2xGeapGpR0ZnnH2tUsxdLUeyHN0GViwM7JNT+V4Cl V4YQW+dGvyaOuuHcsuuLez7dnx22UZ8n6KGyjRFTGZ9jaU3zzFE= -----END CERTIFICATE-----Generated at Mon Sep 8 08:35:02 2025 by rpki-client