$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft File: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft (raw, json) Hash identifier: KF1f8yNqLp92favWrNYz0eACCELMFnYQC2DySV3jL0U= Subject key identifier: 9A:0D:4A:A1:31:A1:82:33:0F:78:9F:35:C7:33:C0:B7:01:4D:3C:D5 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 55AB1927482CEDFFF1E9E62DC065D0DE1947C3F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft Manifest number: A7 Signing time: Sat 06 Sep 2025 08:41:58 +0000 Manifest this update: Sat 06 Sep 2025 08:36:58 +0000 Manifest next update: Tue 09 Sep 2025 16:57:58 +0000 Files and hashes: 1: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: mDFd08tPILLw1T3gAXQau9nwubN6g+t2GLdqlL1NiMc=) 2: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: sRyhu6fDfcemdhV/NAA1n4G4NdnybRSnokvW0ioWtBY=) 3: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: IGC+YzF7hbNTh+lU4Xp4ZN99v7lUHzjLqU8mpRmWZMw=) 4: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl (hash: h85qe3vkmWbzWWiPyXy/RbnCtQ1NlVcs1vb8DKzS1Ss=) 5: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: Sds95Ss3ilJlMKDO38Rkj40VQdzRD9GgP564MrRxXGU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 16:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ab:19:27:48:2c:ed:ff:f1:e9:e6:2d:c0:65:d0:de:19:47:c3:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Sep 6 08:36:58 2025 GMT Not After : Sep 9 16:57:58 2025 GMT Subject: CN=9A0D4AA131A182330F789F35C733C0B7014D3CD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ff:86:7b:12:47:89:b9:c4:9e:62:04:eb:c9: 51:59:c9:e6:d9:c1:5f:0b:83:59:b9:15:9a:42:4e: f3:79:47:d7:6d:b2:5d:e4:c5:b2:2d:2d:a0:a0:2c: bf:6d:ac:3b:1a:62:f8:c8:7e:64:1c:b6:62:e2:15: c5:8b:a9:65:01:06:fa:07:37:ac:0a:6e:41:91:84: 06:12:39:82:82:d2:d8:a6:45:a4:99:79:ac:ee:ab: eb:69:d5:b5:f1:20:72:6b:54:c3:c5:07:ef:c6:35: 6b:81:c3:55:2c:40:c5:a2:0a:f2:6a:a3:59:65:7b: 66:70:87:6f:95:7b:89:4b:6d:be:ae:24:fe:a9:65: ef:d5:6c:f7:84:b8:37:85:0c:45:6d:56:af:a4:a3: b0:92:3c:d5:81:25:85:77:db:94:01:95:2a:ca:54: f9:70:22:d8:92:c4:bb:e2:67:8b:f2:e8:9c:3e:61: 25:59:c5:3a:10:ce:bc:95:a4:43:63:7b:5d:29:94: 81:c2:e9:ff:99:0d:55:ab:2d:e4:c4:2c:87:e4:2c: 78:7a:25:62:7c:f2:09:f3:e2:43:75:2d:c2:2e:a7: 4a:25:73:e4:31:6d:fb:d3:a5:2a:d5:66:d7:19:43: 26:66:cc:cf:9d:43:18:9c:8b:b5:91:45:a1:50:b4: f4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0D:4A:A1:31:A1:82:33:0F:78:9F:35:C7:33:C0:B7:01:4D:3C:D5 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:81:61:07:b0:6f:65:43:49:38:27:ca:77:a2:d9:e1:a7:3c: d0:2e:53:f9:2a:6b:5c:c3:38:88:69:41:9e:0f:f5:1f:f9:57: d1:93:92:ed:54:5e:6b:0e:ff:e4:13:1f:0e:96:a4:15:a1:e1: ac:36:39:dc:33:89:bb:0b:17:f4:07:d9:9e:18:05:14:ab:6d: 21:a1:54:38:a0:a5:b6:74:d0:24:d2:5d:bd:8d:1b:fa:04:1e: f1:98:8c:92:c7:8a:3e:c2:b9:52:6f:fe:d3:3c:7e:e7:f0:2d: bb:c5:08:ca:42:1c:76:70:0d:e1:ca:94:46:2f:9f:38:e1:9d: 46:9b:85:db:0a:98:46:35:a4:89:70:9a:3c:1c:42:78:93:88: 3d:c3:5e:90:ce:6f:ea:e7:f9:31:bb:74:e4:e0:5b:e2:8e:43: d0:a0:d4:68:b5:1c:f7:4d:88:83:4b:69:8a:69:f7:5f:a6:ac: de:a6:66:8f:47:08:2d:e7:b2:8f:4b:57:89:d9:dd:06:11:53: 2f:2f:ce:1b:6a:98:e7:67:48:ee:1f:49:40:d5:02:81:f9:90: 93:64:3a:71:81:ca:ac:98:f1:fd:43:83:05:4b:fc:11:8b:38: a3:eb:c9:89:17:ed:9f:d8:b0:46:b2:5d:c9:0d:70:ab:b1:c6: 05:54:71:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVasZJ0gs7f/x6eYtwGXQ3hlHw/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNTA5MDYwODM2NThaFw0yNTA5MDkxNjU3NThaMDMxMTAvBgNV BAMTKDlBMEQ0QUExMzFBMTgyMzMwRjc4OUYzNUM3MzNDMEI3MDE0RDNDRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0/4Z7EkeJucSeYgTryVFZyebZ wV8Lg1m5FZpCTvN5R9dtsl3kxbItLaCgLL9trDsaYvjIfmQctmLiFcWLqWUBBvoH N6wKbkGRhAYSOYKC0timRaSZeazuq+tp1bXxIHJrVMPFB+/GNWuBw1UsQMWiCvJq o1lle2Zwh2+Ve4lLbb6uJP6pZe/VbPeEuDeFDEVtVq+ko7CSPNWBJYV325QBlSrK VPlwItiSxLviZ4vy6Jw+YSVZxToQzryVpENje10plIHC6f+ZDVWrLeTELIfkLHh6 JWJ88gnz4kN1LcIup0olc+QxbfvTpSrVZtcZQyZmzM+dQxici7WRRaFQtPTlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmg1KoTGhgjMPeJ81xzPAtwFNPNUwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcx MTQzNEM0OEFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK2BYQewb2VDSTgnynei2eGnPNAuU/kqa1zD OIhpQZ4P9R/5V9GTku1UXmsO/+QTHw6WpBWh4aw2OdwzibsLF/QH2Z4YBRSrbSGh VDigpbZ00CTSXb2NG/oEHvGYjJLHij7CuVJv/tM8fufwLbvFCMpCHHZwDeHKlEYv nzjhnUabhdsKmEY1pIlwmjwcQniTiD3DXpDOb+rn+TG7dOTgW+KOQ9Cg1Gi1HPdN iINLaYpp91+mrN6mZo9HCC3nso9LV4nZ3QYRUy8vzhtqmOdnSO4fSUDVAoH5kJNk OnGByqyY8f1DgwVL/BGLOKPryYkX7Z/YsEayXckNcKuxxgVUcbI= -----END CERTIFICATE-----Generated at Sun Sep 7 13:59:41 2025 by rpki-client