$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft File: B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft (raw, json) Hash identifier: QsTjoWMaoQySNJGrfq2ymEEbkeUHcilzVHbhAXZMQww= Subject key identifier: 01:C2:1D:BC:98:95:CB:C7:0E:FB:4F:CC:57:58:22:97:B0:77:2D:21 Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 4EE315FB51E8BB5C6345C2108F28681E317F7AF7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft Manifest number: 04EE Signing time: Mon 21 Jul 2025 01:51:38 +0000 Manifest this update: Mon 21 Jul 2025 01:46:38 +0000 Manifest next update: Thu 24 Jul 2025 12:22:38 +0000 Files and hashes: 1: 3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa (hash: J9nhXOhW6jatN3t2cMwD6dQ3cCJrOL1soCUmU7Ehehg=) 2: 323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa (hash: O/T9Xztwa1eZpftLg0Xl5KOsLOQM47dFO4VcGsJ1wDg=) 3: B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl (hash: VW5WZ598nV4m6D0ea4crk4ApTBo/9CcXspf53RdMo3g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 12:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:e3:15:fb:51:e8:bb:5c:63:45:c2:10:8f:28:68:1e:31:7f:7a:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: Jul 21 01:46:38 2025 GMT Not After : Jul 24 12:22:38 2025 GMT Subject: CN=01C21DBC9895CBC70EFB4FCC57582297B0772D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a0:4d:fc:02:6e:98:76:8b:ab:ac:d2:83:70: 07:4f:41:f2:4e:e6:5c:32:ba:42:1f:85:d2:cf:91: 77:54:85:5a:e8:a5:0e:1a:e2:98:30:dc:a0:0d:8d: f4:9a:54:0c:66:31:ab:27:27:92:fb:6f:07:dc:fc: d9:89:bb:70:24:78:c8:8d:83:97:51:ad:c7:e3:32: 2d:ce:24:1e:59:5e:66:32:ac:f8:2a:20:90:55:6d: 60:0d:30:9e:af:a8:0a:c7:3c:a7:9c:82:88:7f:1e: f3:7e:80:11:14:17:53:6c:db:52:24:7a:3a:e9:66: 64:df:9c:83:7b:e8:32:ae:80:b3:94:c2:22:72:54: 6f:87:f5:8e:5b:f5:ae:ab:95:86:8d:31:da:03:53: 3a:c6:48:d9:02:31:05:be:73:f5:91:ae:5c:2c:c9: 22:a0:85:4d:ac:95:1a:0e:52:48:a4:e6:a4:6a:cb: 01:0a:68:73:6a:f2:73:71:80:06:87:72:85:c7:58: 88:3e:7b:90:8c:ad:f5:4a:e6:7d:e6:6d:3e:b0:14: 16:bc:3e:75:d7:e8:a7:5d:05:fb:50:1f:11:16:c8: c2:3f:8b:5c:a8:0b:4b:5c:3f:e5:5a:ae:c1:04:71: ec:64:d4:1f:df:7a:3e:0f:1d:19:bd:ac:72:60:fa: 5a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C2:1D:BC:98:95:CB:C7:0E:FB:4F:CC:57:58:22:97:B0:77:2D:21 X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:97:52:40:0d:fe:69:f9:9f:b6:a0:ee:e7:f2:c9:e4:2e:a0: 6e:ed:df:2f:93:de:c8:63:4e:e1:65:d7:2c:5e:59:d6:60:13: d7:06:00:33:9b:6a:e8:35:21:56:4f:2e:4d:40:6f:24:aa:d7: 1d:f4:bd:bc:98:2d:12:6e:98:07:f0:42:4f:00:7b:5a:33:d6: 32:1e:80:d0:fd:77:45:41:49:26:62:39:a7:e3:32:e6:7e:19: e8:00:aa:5c:2a:2c:81:0c:d1:44:ab:f3:69:1e:cf:7b:2d:65: d1:06:b5:6d:e8:ab:5a:cc:60:1f:9b:83:f9:57:59:a2:cd:ec: b9:39:ba:13:c4:40:5c:f5:ef:e4:95:3c:b6:48:1e:cc:fa:eb: 76:03:88:97:88:c3:0b:27:cc:9a:89:29:91:b0:18:f5:2a:3e: a5:2b:94:96:37:13:a2:34:19:f1:ee:ee:0a:45:e9:1b:58:e4: 78:b1:84:80:56:99:84:ec:a2:51:a8:5e:cd:21:09:58:b1:54: eb:bc:e5:15:28:d5:72:6d:89:3c:19:44:8d:3d:66:53:13:6e: e5:55:3d:84:12:42:68:24:c9:b8:f1:01:4f:e8:7d:cc:6e:13: cf:69:2c:e7:53:4d:84:6e:7a:4e:f5:d6:d6:d8:52:a3:23:b1: a3:2d:f5:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTuMV+1Hou1xjRcIQjyhoHjF/evcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yNTA3MjEwMTQ2MzhaFw0yNTA3MjQxMjIyMzhaMDMxMTAvBgNV BAMTKDAxQzIxREJDOTg5NUNCQzcwRUZCNEZDQzU3NTgyMjk3QjA3NzJEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzoE38Am6YdourrNKDcAdPQfJO 5lwyukIfhdLPkXdUhVropQ4a4pgw3KANjfSaVAxmMasnJ5L7bwfc/NmJu3AkeMiN g5dRrcfjMi3OJB5ZXmYyrPgqIJBVbWANMJ6vqArHPKecgoh/HvN+gBEUF1Ns21Ik ejrpZmTfnIN76DKugLOUwiJyVG+H9Y5b9a6rlYaNMdoDUzrGSNkCMQW+c/WRrlws ySKghU2slRoOUkik5qRqywEKaHNq8nNxgAaHcoXHWIg+e5CMrfVK5n3mbT6wFBa8 PnXX6KddBftQHxEWyMI/i1yoC0tcP+VarsEEcexk1B/fej4PHRm9rHJg+lqZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAcIdvJiVy8cO+0/MV1gil7B3LSEwHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGVhNzkzNDAtNGRiMi00NThkLTk1 ZGQtYWYyMGI0ZmNkYjNkLzAvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4 Q0RGRkM5Q0MxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAECXUkAN/mn5n7ag7ufyyeQuoG7t3y+T3shj TuFl1yxeWdZgE9cGADObaug1IVZPLk1AbySq1x30vbyYLRJumAfwQk8Ae1oz1jIe gND9d0VBSSZiOafjMuZ+GegAqlwqLIEM0USr82kez3stZdEGtW3oq1rMYB+bg/lX WaLN7Lk5uhPEQFz17+SVPLZIHsz663YDiJeIwwsnzJqJKZGwGPUqPqUrlJY3E6I0 GfHu7gpF6RtY5HixhIBWmYTsolGoXs0hCVixVOu85RUo1XJtiTwZRI09ZlMTbuVV PYQSQmgkybjxAU/ofcxuE89pLOdTTYRuek711tbYUqMjsaMt9ac= -----END CERTIFICATE-----Generated at Mon Jul 21 09:00:44 2025 by rpki-client