$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft File: 88BD1AAEA16D8A24550416CDB95E232152249B3E.mft (raw, json) Hash identifier: lKUnDNhQGCkoS8ktkdmCb0S77M6f+5R43uVnxnTzvvY= Subject key identifier: 63:A2:C7:63:C4:BA:4C:8D:66:FD:7E:DC:A5:4D:04:D1:43:84:5C:56 Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 3489AC85C88CCCB7C1876E3980F8E876EF0E2F23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft Manifest number: 02E2 Signing time: Thu 24 Jul 2025 04:32:19 +0000 Manifest this update: Thu 24 Jul 2025 04:27:19 +0000 Manifest next update: Sun 27 Jul 2025 13:06:19 +0000 Files and hashes: 1: 3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa (hash: k0M2XXKfU9k9Nif7dWEUq5fC7OBAzB0Ygp6xrywPUqs=) 2: 88BD1AAEA16D8A24550416CDB95E232152249B3E.crl (hash: EdIbpUcJlhAMiyiaSkTpotKqXuwxYCXFaNMkSEm3CCM=) 3: 323430343a636534303a3a2f33322d3332203d3e20313338383834.roa (hash: DcgpR3dumYc3Eoce65U1RiuqJ3FJu3j4JD+CZ1GSu4U=) 4: 323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa (hash: C+T8dBvggaTCEh5/1ll1reorawVQeZDheWzvM6XklTw=) 5: 3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa (hash: 0oC6hCIX4duxQdOJVzVwn+akSK/l98G+66CJXryC3ns=) 6: 323430343a636534303a3a2f34382d3438203d3e20313338383834.roa (hash: 18b0Gg5/45qsHWWMKCPhmvKnsrcZsZ/fmda1ZKbjIBk=) 7: 323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa (hash: /mZXNu9+SQReAU7jMOiZ9/UmtltzHLxdMGIPnZIiib4=) 8: 323430343a636534303a3a2f33362d3336203d3e20313338383834.roa (hash: Qn8e6r99j+EuTQtrHbDbOQqJz+jY/ebvh6ZX3n1vOEk=) 9: 323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa (hash: Em18K+MRLc18yaX14YQfb1826gcDLLiSRdz/WlnRnnE=) 10: 323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa (hash: 4N83F1FY8HtDNTq6OMGSFNYU4XLLuDbuSDKgz6IAVpA=) 11: 3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa (hash: fYqB3hAfKrlAMalkQPBsDTPyMiJqV+nU7PcLz8QhSAc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 13:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:89:ac:85:c8:8c:cc:b7:c1:87:6e:39:80:f8:e8:76:ef:0e:2f:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Jul 24 04:27:19 2025 GMT Not After : Jul 27 13:06:19 2025 GMT Subject: CN=63A2C763C4BA4C8D66FD7EDCA54D04D143845C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:6e:31:2b:4b:f0:b2:b4:c4:d6:b2:ee:21: 3e:75:78:e3:28:81:38:48:2f:60:27:d6:91:ad:69: 56:90:79:e8:1d:c5:70:15:7c:20:0b:f8:7c:a2:99: e9:30:88:dc:5c:eb:ee:3a:8e:05:d4:be:6a:04:3f: a9:c6:52:c6:e9:76:d4:81:98:b7:8b:bc:9e:92:c2: 58:80:99:1d:74:93:0d:e6:88:8a:41:e1:20:5b:34: be:1e:95:bc:bd:7c:6f:01:ac:40:39:27:49:ce:e2: 82:4b:70:93:d0:d7:3e:c5:fc:a7:20:ef:37:65:68: 2d:46:67:26:12:38:8a:3b:7c:e7:8b:f9:13:d8:86: 8a:91:f4:cb:8a:00:9a:32:15:4e:91:c4:57:dd:01: bb:52:d1:5c:72:24:fd:84:e6:4b:85:73:7a:84:dd: 25:14:cb:c3:58:e2:10:5c:0e:46:50:3f:75:7a:f1: f1:29:ca:ed:3b:b6:47:89:38:c1:33:e5:ea:0c:13: 01:34:60:cf:6d:03:95:94:6c:b1:c6:b0:f5:6d:1f: 49:34:a8:88:f3:73:a6:90:22:62:78:09:49:06:84: 57:59:3d:01:3a:36:7d:35:e7:f8:9f:d8:1a:fd:9a: 3a:b3:90:3b:e6:f2:d7:00:11:f6:1e:5c:f6:a7:c2: 20:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A2:C7:63:C4:BA:4C:8D:66:FD:7E:DC:A5:4D:04:D1:43:84:5C:56 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:12:23:f7:08:dd:4a:24:d7:91:94:4b:79:05:32:02:75:22: d3:52:b6:f5:b3:43:02:f1:0d:37:db:49:f3:38:e4:27:8b:9c: 6a:15:cd:f9:65:cf:5a:68:9e:77:eb:81:df:65:a6:f6:cd:0d: 84:02:60:2b:dc:e6:2a:a5:59:5a:21:1e:4e:ef:87:34:48:a3: bd:20:23:50:dd:05:1d:bf:35:1a:2a:5b:50:78:df:1d:f7:25: ef:f1:2b:f7:e9:16:f1:5e:f3:5d:1e:ca:00:61:75:4b:84:b7: 69:7f:b0:89:10:82:23:c1:68:2b:82:07:de:96:07:de:97:a5: 68:1f:dc:c3:60:e7:6d:fe:2b:8b:f5:77:b1:3e:aa:89:8e:13: c6:6c:2b:75:c6:04:8b:6b:79:ac:2a:69:6d:98:a6:cc:27:8a: 99:34:aa:d0:5f:0f:91:ff:ed:09:30:ba:de:88:ed:71:d1:e3: e1:62:e7:b8:02:b6:f5:48:f5:8b:4e:85:74:1c:e4:95:0f:7c: 7e:70:23:2b:68:2f:40:d0:cd:6f:7d:81:0e:a8:ab:e4:19:62: 52:30:12:34:2d:7f:5b:4b:ae:8c:7d:3c:8f:17:8a:fd:56:fa: e0:d0:26:6f:0c:aa:49:a8:1b:ef:86:d8:b3:ef:a5:b6:36:c5: ab:77:8a:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNImshciMzLfBh245gPjodu8OLyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA3MjQwNDI3MTlaFw0yNTA3MjcxMzA2MTlaMDMxMTAvBgNV BAMTKDYzQTJDNzYzQzRCQTRDOEQ2NkZEN0VEQ0E1NEQwNEQxNDM4NDVDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDer24xK0vwsrTE1rLuIT51eOMo gThIL2An1pGtaVaQeegdxXAVfCAL+HyimekwiNxc6+46jgXUvmoEP6nGUsbpdtSB mLeLvJ6SwliAmR10kw3miIpB4SBbNL4elby9fG8BrEA5J0nO4oJLcJPQ1z7F/Kcg 7zdlaC1GZyYSOIo7fOeL+RPYhoqR9MuKAJoyFU6RxFfdAbtS0VxyJP2E5kuFc3qE 3SUUy8NY4hBcDkZQP3V68fEpyu07tkeJOMEz5eoMEwE0YM9tA5WUbLHGsPVtH0k0 qIjzc6aQImJ4CUkGhFdZPQE6Nn015/if2Br9mjqzkDvm8tcAEfYeXPanwiCbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUY6LHY8S6TI1m/X7cpU0E0UOEXFYwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjIwYzZkNjktNjI5MC00MDJmLWE4 NGUtZDI4OWM2ZTkzYTczLzAvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIz MjE1MjI0OUIzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ4SI/cI3Uok15GUS3kFMgJ1ItNStvWzQwLx DTfbSfM45CeLnGoVzfllz1ponnfrgd9lpvbNDYQCYCvc5iqlWVohHk7vhzRIo70g I1DdBR2/NRoqW1B43x33Je/xK/fpFvFe810eygBhdUuEt2l/sIkQgiPBaCuCB96W B96XpWgf3MNg523+K4v1d7E+qomOE8ZsK3XGBItreawqaW2Ypswnipk0qtBfD5H/ 7Qkwut6I7XHR4+Fi57gCtvVI9YtOhXQc5JUPfH5wIytoL0DQzW99gQ6oq+QZYlIw EjQtf1tLrox9PI8Xiv1W+uDQJm8MqkmoG++G2LPvpbY2xat3irk= -----END CERTIFICATE-----Generated at Fri Jul 25 08:06:38 2025 by rpki-client