$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: +hM9XR8vwk1C9yNQBhY1nzlO0/Vy5O7scqU5ai4plEM= Subject key identifier: 28:4F:B9:2E:01:EA:9E:0B:D1:58:A9:44:D9:F7:B4:B3:F4:76:B8:0B Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 47CF5AC80C69D3DE7465A4B542743C836711D3FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: BD Signing time: Fri 29 Aug 2025 11:41:05 +0000 Manifest this update: Fri 29 Aug 2025 11:36:05 +0000 Manifest next update: Mon 01 Sep 2025 14:49:05 +0000 Files and hashes: 1: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: 8M3Sa6Bw+6TmmCMCpPI1qBU99FCfs6fREbQ+0l5zFfQ=) 2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) 3: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 4: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 14:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:cf:5a:c8:0c:69:d3:de:74:65:a4:b5:42:74:3c:83:67:11:d3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Aug 29 11:36:05 2025 GMT Not After : Sep 1 14:49:05 2025 GMT Subject: CN=284FB92E01EA9E0BD158A944D9F7B4B3F476B80B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c3:ae:39:b7:af:41:40:59:6d:30:f0:50:c1: 69:06:65:1e:dc:fa:ef:ab:d4:fa:c9:a2:ed:6b:15: 19:07:f7:77:e8:1b:86:ab:a6:d2:fb:94:b2:11:e9: f4:b6:da:50:20:05:1d:ca:f0:28:fa:c0:33:74:8d: 46:dd:a7:b0:0e:06:01:db:dd:0e:d9:51:f6:15:8d: 5f:65:f6:e1:73:e2:70:b1:fa:be:5b:8b:cd:64:c0: 99:61:cd:f5:fe:2f:ea:77:4f:2f:1e:e4:e6:9a:c8: 3f:26:14:18:1a:93:16:34:2f:c6:88:9b:6d:66:bd: d9:d3:73:b9:40:a5:89:a3:1e:38:a1:52:90:82:89: 1c:d3:67:60:74:2f:c4:ea:3d:83:6e:63:76:ed:f3: ba:d2:8a:ef:aa:2d:f6:c6:e5:dc:3c:f3:68:2d:3f: cc:20:d5:a2:d8:41:56:f2:78:dd:51:68:cd:39:fd: 5a:b8:68:5a:8e:39:ae:b3:a0:b4:22:7c:43:1f:25: ac:1c:34:d4:89:93:b0:35:7b:c9:18:01:4c:d1:64: d3:a3:fd:e3:45:1c:03:d5:2a:b1:28:36:3f:5c:97: d4:1b:c9:02:d0:59:56:38:86:21:67:2f:69:95:68: d7:1f:5d:29:e2:d4:81:b1:9c:9b:ca:a5:22:9f:6a: 42:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4F:B9:2E:01:EA:9E:0B:D1:58:A9:44:D9:F7:B4:B3:F4:76:B8:0B X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:e7:8e:a0:84:c2:03:38:76:9f:de:0a:8c:04:0c:bf:52:d5: c7:96:6f:30:05:6d:1a:25:c3:37:a6:cc:56:92:52:be:11:9a: 7b:7b:fe:18:74:d1:53:0d:38:9c:f0:c2:b3:78:61:38:01:86: 66:f5:fd:dc:f4:96:25:a4:e7:0d:6d:5b:b9:d1:be:dc:af:e5: 1e:fa:d5:a4:48:10:ff:e4:68:0b:31:2d:58:12:26:61:20:ac: 56:f1:0a:c6:b6:17:9c:94:4c:1a:b1:c2:22:53:02:03:21:29: f8:48:9b:0f:da:0e:d2:d9:3d:54:7d:14:8d:10:3f:15:7c:82: c5:53:bc:19:15:ba:56:9f:26:6e:95:89:49:6d:56:71:2f:55: 72:0f:ed:e0:94:f5:8f:8e:0f:dc:2d:de:4c:cb:df:02:fd:fc: 3e:1d:24:92:65:59:a5:32:39:ad:d3:71:2b:a9:da:0b:78:d7: 5a:46:68:75:cb:c5:a2:8f:92:89:29:64:64:20:f7:24:35:b1: 8d:de:15:16:66:b0:fb:4a:39:12:5d:d2:bf:43:b9:6b:00:ef: 9a:8a:21:42:56:e9:fc:be:cb:b4:f9:4b:19:34:1c:ea:88:72: 3a:b0:c0:8e:3c:5e:83:0a:d4:35:cf:d3:64:c1:e7:f0:82:63: df:65:06:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR89ayAxp0950ZaS1QnQ8g2cR0/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTA4MjkxMTM2MDVaFw0yNTA5MDExNDQ5MDVaMDMxMTAvBgNV BAMTKDI4NEZCOTJFMDFFQTlFMEJEMTU4QTk0NEQ5RjdCNEIzRjQ3NkI4MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAw645t69BQFltMPBQwWkGZR7c +u+r1PrJou1rFRkH93foG4arptL7lLIR6fS22lAgBR3K8Cj6wDN0jUbdp7AOBgHb 3Q7ZUfYVjV9l9uFz4nCx+r5bi81kwJlhzfX+L+p3Ty8e5OaayD8mFBgakxY0L8aI m21mvdnTc7lApYmjHjihUpCCiRzTZ2B0L8TqPYNuY3bt87rSiu+qLfbG5dw882gt P8wg1aLYQVbyeN1RaM05/Vq4aFqOOa6zoLQifEMfJawcNNSJk7A1e8kYAUzRZNOj /eNFHAPVKrEoNj9cl9QbyQLQWVY4hiFnL2mVaNcfXSni1IGxnJvKpSKfakIrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKE+5LgHqngvRWKlE2fe0s/R2uAswHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHDnjqCEwgM4dp/eCowEDL9S1ceWbzAFbRol wzemzFaSUr4Rmnt7/hh00VMNOJzwwrN4YTgBhmb1/dz0liWk5w1tW7nRvtyv5R76 1aRIEP/kaAsxLVgSJmEgrFbxCsa2F5yUTBqxwiJTAgMhKfhImw/aDtLZPVR9FI0Q PxV8gsVTvBkVulafJm6ViUltVnEvVXIP7eCU9Y+OD9wt3kzL3wL9/D4dJJJlWaUy Oa3TcSup2gt411pGaHXLxaKPkokpZGQg9yQ1sY3eFRZmsPtKORJd0r9DuWsA75qK IUJW6fy+y7T5Sxk0HOqIcjqwwI48XoMK1DXP02TB5/CCY99lBu0= -----END CERTIFICATE-----Generated at Sun Aug 31 03:07:23 2025 by rpki-client