$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft File: 8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft (raw, json) Hash identifier: IPF3Kn+OCEBBwbl7h/gHNd39FiShrPI2zBj3xG7i1kI= Subject key identifier: E3:D7:E6:E2:41:E9:4C:E3:55:04:C4:68:E0:A6:DB:30:34:DB:8A:89 Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 2D895FD7EAA28140E17F2499E81737DC90943361 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft Manifest number: 03DF Signing time: Wed 23 Jul 2025 08:41:55 +0000 Manifest this update: Wed 23 Jul 2025 08:36:55 +0000 Manifest next update: Sat 26 Jul 2025 11:04:55 +0000 Files and hashes: 1: 3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa (hash: bezCvX8XgFSa6OMSK27HUjxxwyFifSYbogKsMqbTNHQ=) 2: 323430353a633763303a3a2f33322d3332203d3e20313339393738.roa (hash: piwF7+ON2R793sJiaX+4aFfo5D7cOZdp7goWhivyjxE=) 3: 3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa (hash: U5t1gz5Lu8bYdTDoG7TIErUjYPNGo4xQEu5agXugT3k=) 4: 8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl (hash: Mjo6HYpbFXx5g1CNMEkkH1I1dbUz8RI1Q7NRQORqK2w=) 5: 3130332e3134382e31382e302f32332d3233203d3e20313339393738.roa (hash: 4K0py4cnYyh8vI10iLQo1yG8FCXY4pSX4oMXyg6m2pw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 10:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:89:5f:d7:ea:a2:81:40:e1:7f:24:99:e8:17:37:dc:90:94:33:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Jul 23 08:36:55 2025 GMT Not After : Jul 26 11:04:55 2025 GMT Subject: CN=E3D7E6E241E94CE35504C468E0A6DB3034DB8A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:f8:a8:df:86:f0:40:30:b3:57:94:e6:d5: 06:5a:a4:99:4e:fd:0c:8e:72:dc:0b:01:d2:7e:e9: e4:ce:3e:62:c9:03:24:ce:3c:0b:21:2c:88:45:0c: 83:9e:f4:53:65:c1:16:92:e7:f9:db:7e:b0:06:f6: 64:d7:1d:e4:d7:42:24:2e:0b:92:8b:47:59:ba:c7: 81:0e:8b:34:6a:4a:e5:2a:e9:8b:c2:09:40:32:86: 6c:da:4b:81:60:23:76:8c:6f:9a:30:8c:25:2c:bb: de:d6:82:7a:56:5d:c2:2f:31:08:4a:e7:1d:0a:b6: f8:28:a9:5c:90:3f:64:7a:30:76:5f:21:28:10:0b: ba:31:d2:32:9f:34:4f:0f:c8:80:0d:76:cf:35:b6: ab:c8:78:05:47:52:7e:16:92:71:02:67:ff:b9:73: ea:b6:31:a0:c5:c8:93:6c:21:a5:d6:2c:d6:6c:36: ad:65:98:6e:9c:31:17:a4:6f:75:b1:1b:49:8c:9d: 65:1e:4a:8b:6c:b5:df:2f:fc:0f:6d:f3:c7:9d:c5: f9:dd:83:8b:76:25:bb:fe:bf:44:57:a0:f0:bf:c8: c2:f7:a9:8f:64:fd:bb:7e:35:aa:7c:52:b4:6b:07: cc:74:61:5a:94:9e:a1:c3:c0:93:3f:5b:31:13:cb: 75:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D7:E6:E2:41:E9:4C:E3:55:04:C4:68:E0:A6:DB:30:34:DB:8A:89 X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:14:06:62:df:7b:4e:82:9d:c1:1e:7c:11:83:d6:8f:dc:44: 76:9b:2c:e9:dc:e9:63:c4:7e:a9:88:04:60:87:90:05:3b:21: 5c:f2:99:28:2d:76:1b:a9:a3:a9:01:c2:11:3a:07:71:78:06: c8:ee:95:d1:44:d8:89:61:a8:ea:15:0a:7a:1e:c9:20:4e:06: 25:7a:31:39:a4:76:43:a2:6e:71:85:da:69:ff:ec:bf:58:ff: 9c:c6:50:84:29:b7:4d:8b:41:3b:2f:91:98:cb:86:cc:2b:db: 2d:47:f1:82:13:86:bf:f5:ad:a9:e8:80:90:d5:44:5a:19:63: 63:c6:5a:e6:21:56:b0:04:68:00:18:38:29:28:94:12:74:1d: 84:a3:09:fa:1d:13:b7:d8:43:b0:de:11:15:a7:8f:90:92:82: 37:79:fb:fb:15:98:e2:19:bf:e9:4d:53:ac:ac:77:10:7a:7c: c7:33:12:39:0b:58:19:65:33:1d:5b:01:00:67:82:4b:0f:21: 80:9b:4b:ff:f2:10:1b:c9:33:34:68:c2:66:72:78:14:f3:04: aa:da:b4:20:b2:68:8d:14:fd:e8:f7:57:a6:2f:57:df:f6:6e: 4b:1d:cb:fc:b0:9f:37:77:a8:e1:80:5e:3c:9e:a8:af:6d:84: 80:6e:b9:0b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULYlf1+qigUDhfySZ6Bc33JCUM2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNTA3MjMwODM2NTVaFw0yNTA3MjYxMTA0NTVaMDMxMTAvBgNV BAMTKEUzRDdFNkUyNDFFOTRDRTM1NTA0QzQ2OEUwQTZEQjMwMzREQjhBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXM/io34bwQDCzV5Tm1QZapJlO /QyOctwLAdJ+6eTOPmLJAyTOPAshLIhFDIOe9FNlwRaS5/nbfrAG9mTXHeTXQiQu C5KLR1m6x4EOizRqSuUq6YvCCUAyhmzaS4FgI3aMb5owjCUsu97WgnpWXcIvMQhK 5x0KtvgoqVyQP2R6MHZfISgQC7ox0jKfNE8PyIANds81tqvIeAVHUn4WknECZ/+5 c+q2MaDFyJNsIaXWLNZsNq1lmG6cMRekb3WxG0mMnWUeSotstd8v/A9t88edxfnd g4t2Jbv+v0RXoPC/yML3qY9k/bt+Nap8UrRrB8x0YVqUnqHDwJM/WzETy3URAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU49fm4kHpTONVBMRo4KbbMDTbiokwHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjdiODdmNmQtMjlhNy00YjRjLTgx YzctNWI0Y2JkYjJjYjZhLzAvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhF Mjc5NjNBRkUxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJcUBmLfe06CncEefBGD1o/cRHabLOnc6WPE fqmIBGCHkAU7IVzymSgtdhupo6kBwhE6B3F4BsjuldFE2IlhqOoVCnoeySBOBiV6 MTmkdkOibnGF2mn/7L9Y/5zGUIQpt02LQTsvkZjLhswr2y1H8YIThr/1ranogJDV RFoZY2PGWuYhVrAEaAAYOCkolBJ0HYSjCfodE7fYQ7DeERWnj5CSgjd5+/sVmOIZ v+lNU6ysdxB6fMczEjkLWBllMx1bAQBngksPIYCbS//yEBvJMzRowmZyeBTzBKra tCCyaI0U/ej3V6YvV9/2bksdy/ywnzd3qOGAXjyeqK9thIBuuQs= -----END CERTIFICATE-----Generated at Wed Jul 23 12:45:06 2025 by rpki-client