$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: bCa9hy27fdM6fcuO8am7uUNmIKBFvSlcArmXfur5tsQ= Subject key identifier: 50:91:05:66:AC:AD:CB:67:57:6C:FF:DD:6D:72:A4:3F:A0:F1:68:44 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 2BDFD64F4BA0922BB3CEF9B4C252139C1541F6F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 04AE Signing time: Thu 24 Jul 2025 18:10:59 +0000 Manifest this update: Thu 24 Jul 2025 18:05:59 +0000 Manifest next update: Mon 28 Jul 2025 02:15:59 +0000 Files and hashes: 1: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: u2U1JgblUovYtY6j/y3pq3IAaaVuvGqRzKJFgLKR+Qg=) 2: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=) 3: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=) 4: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=) 5: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:df:d6:4f:4b:a0:92:2b:b3:ce:f9:b4:c2:52:13:9c:15:41:f6:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Jul 24 18:05:59 2025 GMT Not After : Jul 28 02:15:59 2025 GMT Subject: CN=50910566ACADCB67576CFFDD6D72A43FA0F16844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:9a:58:06:a1:b0:0d:b6:1c:a3:10:c8:eb:21: 75:82:f3:54:22:b8:6c:e2:bf:ca:52:0b:bc:f4:15: 56:2e:f3:c6:eb:f4:0b:c9:dd:55:db:26:3e:d9:55: c8:24:78:c8:e7:69:89:a2:39:32:95:93:ec:95:48: 2f:c5:a6:15:32:ee:ae:5b:16:d8:42:f8:14:74:6a: 5e:12:b6:7f:d8:eb:0b:ab:01:4b:f9:46:0c:58:c6: 8a:dc:21:bd:5e:84:b2:b8:07:08:e4:16:ea:90:31: 7c:d4:c0:1b:8f:b2:b8:0e:50:d3:67:08:70:d4:e1: 3b:75:f4:26:6d:99:3c:df:b9:40:a6:dc:e2:7b:12: 0d:ea:41:e7:0c:34:96:02:a1:ec:a5:bf:1d:e2:15: fc:95:ae:df:5c:50:0f:62:32:98:9c:0b:67:d1:71: ab:cf:a2:8d:c2:97:b6:50:f7:0e:83:48:47:4c:e4: 27:c5:29:d6:94:f3:84:cc:b8:42:63:ba:b7:7d:f9: 99:33:f4:f4:13:47:a1:1e:0a:c0:05:40:64:93:f7: 23:df:b5:4d:67:3a:e0:25:6e:bf:48:ae:59:6a:02: 36:f7:6f:94:fc:59:0e:6c:14:74:53:b5:2c:36:21: d8:a7:44:fc:57:5c:91:73:ce:46:0d:85:8b:99:7c: 15:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:91:05:66:AC:AD:CB:67:57:6C:FF:DD:6D:72:A4:3F:A0:F1:68:44 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:ed:54:20:c9:9d:88:2b:6e:3e:fc:7c:1c:7b:6a:16:62:74: fe:f9:88:cb:4f:92:69:6a:d4:cd:1e:ba:53:a8:bb:0b:c8:70: b0:82:5e:af:e5:69:bd:3f:88:71:af:83:ab:4d:86:8a:61:22: d8:d4:3e:84:4e:13:e7:ca:e1:36:f2:9c:95:a7:33:e5:11:31: 3d:77:00:d6:10:08:2f:67:82:53:a0:c9:6d:03:f2:ec:21:6a: 7b:8b:0c:61:ca:d7:87:09:eb:e8:6b:57:b9:c7:66:7a:7a:4d: 4a:f8:ae:c5:09:70:8b:a0:78:51:95:8f:c8:db:42:a0:a7:16: cd:46:2f:33:fc:0e:d6:2d:a3:96:32:b4:b3:a9:7c:29:fc:87: 7d:11:75:fd:cd:0b:d9:eb:51:45:e0:19:d6:5d:0c:3e:68:45: a7:bf:75:79:1e:77:14:06:ae:14:1b:09:d7:b3:a9:de:8b:35: 43:0b:ba:14:6f:6b:57:07:33:dc:54:47:db:64:7a:0e:b4:58: e2:1f:22:d9:cb:07:53:a2:96:55:19:2f:93:fa:2b:1b:63:9b: 29:d1:d0:f7:9f:ad:14:d8:63:0d:35:56:f8:37:1f:fb:e4:7a: c8:f6:d9:66:8c:70:ad:65:ef:38:d3:76:23:2e:d5:c5:bc:1c: e2:7e:fa:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK9/WT0ugkiuzzvm0wlITnBVB9vgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA3MjQxODA1NTlaFw0yNTA3MjgwMjE1NTlaMDMxMTAvBgNV BAMTKDUwOTEwNTY2QUNBRENCNjc1NzZDRkZERDZENzJBNDNGQTBGMTY4NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4mlgGobANthyjEMjrIXWC81Qi uGziv8pSC7z0FVYu88br9AvJ3VXbJj7ZVcgkeMjnaYmiOTKVk+yVSC/FphUy7q5b FthC+BR0al4Stn/Y6wurAUv5RgxYxorcIb1ehLK4BwjkFuqQMXzUwBuPsrgOUNNn CHDU4Tt19CZtmTzfuUCm3OJ7Eg3qQecMNJYCoeylvx3iFfyVrt9cUA9iMpicC2fR cavPoo3Cl7ZQ9w6DSEdM5CfFKdaU84TMuEJjurd9+Zkz9PQTR6EeCsAFQGST9yPf tU1nOuAlbr9IrllqAjb3b5T8WQ5sFHRTtSw2IdinRPxXXJFzzkYNhYuZfBXTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUJEFZqyty2dXbP/dbXKkP6DxaEQwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABPtVCDJnYgrbj78fBx7ahZidP75iMtPkmlq 1M0eulOouwvIcLCCXq/lab0/iHGvg6tNhophItjUPoROE+fK4TbynJWnM+URMT13 ANYQCC9nglOgyW0D8uwhanuLDGHK14cJ6+hrV7nHZnp6TUr4rsUJcIugeFGVj8jb QqCnFs1GLzP8DtYto5YytLOpfCn8h30Rdf3NC9nrUUXgGdZdDD5oRae/dXkedxQG rhQbCdezqd6LNUMLuhRva1cHM9xUR9tkeg60WOIfItnLB1OillUZL5P6KxtjmynR 0PefrRTYYw01Vvg3H/vkesj22WaMcK1l7zjTdiMu1cW8HOJ++iU= -----END CERTIFICATE-----Generated at Fri Jul 25 04:07:31 2025 by rpki-client