$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft File: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft (raw, json) Hash identifier: O4q09qTMkmCnqHmx7KBhA/QDyYOd2118aaIZR5zPciQ= Subject key identifier: 1B:60:AC:19:F9:8C:74:A4:54:0B:EC:5B:8A:A4:25:0C:C8:4A:F2:11 Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 3F95C229AA77F1CD768F6A97096E7F913F3DAF10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft Manifest number: 0286 Signing time: Mon 21 Jul 2025 19:31:33 +0000 Manifest this update: Mon 21 Jul 2025 19:26:33 +0000 Manifest next update: Thu 24 Jul 2025 20:45:33 +0000 Files and hashes: 1: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl (hash: Qt7H/6n2SG1qMyFeagDMR5cfH/oYk6FXYs34TrNLhcI=) 2: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (hash: K+UHygo4qrap0HRp21an4Bv2wYIc+LITQ2V+cthKQG0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 20:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:95:c2:29:aa:77:f1:cd:76:8f:6a:97:09:6e:7f:91:3f:3d:af:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Jul 21 19:26:33 2025 GMT Not After : Jul 24 20:45:33 2025 GMT Subject: CN=1B60AC19F98C74A4540BEC5B8AA4250CC84AF211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:ad:72:e7:95:42:20:81:72:e5:55:35:89: ee:10:91:55:80:e4:b0:dd:f4:2e:2d:10:51:8a:d6: a6:e9:4d:9b:ce:08:00:1f:68:5c:f0:8a:cf:84:c7: 68:be:b7:e8:0f:19:f5:f6:2d:71:d5:d6:87:e6:45: 97:24:c5:ef:74:f4:b7:b8:db:29:ed:fe:3f:6e:9d: d7:d0:4f:e9:11:86:7e:dd:72:c5:89:3d:db:dc:5f: 81:b4:66:12:47:42:5b:c4:cb:7d:0c:22:ba:75:f7: 64:ff:17:0d:d6:5a:5a:e1:44:ef:ba:d3:f0:5a:c2: 04:02:ff:29:f2:88:7b:c2:f9:d1:02:dc:99:8f:1c: fe:bd:2a:6b:c8:c7:e1:dd:21:f2:2e:b9:95:fe:08: 6f:ba:98:f0:1d:8e:97:55:a4:fe:05:a3:9d:b1:be: 0e:bc:74:eb:2f:8a:f3:bf:f5:f6:fe:1a:6a:c0:1e: 70:60:7d:28:02:c4:65:ae:06:66:8c:5e:df:8a:5c: 9d:59:2c:a7:93:02:57:85:e0:2d:b2:32:ab:e4:cb: bf:9d:e7:48:0c:2c:0e:42:bd:8a:dc:58:b8:49:b7: a8:3c:c3:b5:d6:b5:01:4c:45:b2:cc:02:9a:b5:48: 37:4f:14:37:c1:cf:9b:42:0c:29:a5:11:83:ff:51: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:60:AC:19:F9:8C:74:A4:54:0B:EC:5B:8A:A4:25:0C:C8:4A:F2:11 X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:fd:f4:89:b1:0b:51:2f:ae:01:76:e1:c3:e9:03:a7:d4:76: 5a:a5:63:6a:75:d9:93:e8:48:36:26:9b:83:b7:38:18:8d:0d: 21:99:a5:93:3f:c9:d6:2c:e0:5e:cf:b2:0a:1c:37:49:a0:ce: f5:e1:dd:12:db:8e:20:9f:de:ed:14:52:bd:d1:d0:f2:f1:67: c2:60:73:a4:15:46:5e:b9:54:7e:29:d4:21:d0:da:c7:4a:af: 7d:5e:87:4a:fe:4c:e5:7c:8e:6b:93:63:ce:fb:06:81:85:30: 91:a6:59:85:ba:df:6a:12:15:7c:ce:e2:33:a5:82:f4:72:74: 58:73:22:42:b0:68:24:be:76:63:28:70:8f:22:aa:6e:3d:b9: db:33:f1:5f:4b:43:b5:97:fb:e7:97:bd:f7:a7:80:77:60:18: 01:4f:f6:54:03:ca:67:e4:c6:d1:47:a1:6d:f2:3c:34:ef:94: 1e:b7:22:5c:3f:5d:83:27:f4:13:b7:c3:b1:60:c3:a4:36:bd: c9:cf:4c:b2:49:2f:e8:7a:be:d6:c3:34:5f:84:78:a5:5f:f8: 38:92:2c:d4:0b:4a:c6:d0:6f:02:e5:6b:1f:11:2e:01:16:89: ed:a5:79:ec:4d:d5:c4:44:1f:b2:d3:6c:ae:89:e3:50:2e:44: c5:91:e0:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP5XCKap38c12j2qXCW5/kT89rxAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNTA3MjExOTI2MzNaFw0yNTA3MjQyMDQ1MzNaMDMxMTAvBgNV BAMTKDFCNjBBQzE5Rjk4Qzc0QTQ1NDBCRUM1QjhBQTQyNTBDQzg0QUYyMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5aq1y55VCIIFy5VU1ie4QkVWA 5LDd9C4tEFGK1qbpTZvOCAAfaFzwis+Ex2i+t+gPGfX2LXHV1ofmRZckxe909Le4 2ynt/j9undfQT+kRhn7dcsWJPdvcX4G0ZhJHQlvEy30MIrp192T/Fw3WWlrhRO+6 0/BawgQC/ynyiHvC+dEC3JmPHP69KmvIx+HdIfIuuZX+CG+6mPAdjpdVpP4Fo52x vg68dOsvivO/9fb+GmrAHnBgfSgCxGWuBmaMXt+KXJ1ZLKeTAleF4C2yMqvky7+d 50gMLA5CvYrcWLhJt6g8w7XWtQFMRbLMApq1SDdPFDfBz5tCDCmlEYP/UbQHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG2CsGfmMdKRUC+xbiqQlDMhK8hEwHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmQ3ZjllZjQtZjk5Zi00NGZmLWI5 NjgtNzBkNDUyNGQ3MjA3LzAvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJB QzMxRDMzN0FDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEf99ImxC1EvrgF24cPpA6fUdlqlY2p12ZPo SDYmm4O3OBiNDSGZpZM/ydYs4F7PsgocN0mgzvXh3RLbjiCf3u0UUr3R0PLxZ8Jg c6QVRl65VH4p1CHQ2sdKr31eh0r+TOV8jmuTY877BoGFMJGmWYW632oSFXzO4jOl gvRydFhzIkKwaCS+dmMocI8iqm49udsz8V9LQ7WX++eXvfengHdgGAFP9lQDymfk xtFHoW3yPDTvlB63Ilw/XYMn9BO3w7Fgw6Q2vcnPTLJJL+h6vtbDNF+EeKVf+DiS LNQLSsbQbwLlax8RLgEWie2leexN1cREH7LTbK6J41AuRMWR4Ek= -----END CERTIFICATE-----Generated at Wed Jul 23 12:10:20 2025 by rpki-client