$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: gWwWT89CR2A/gvaTiaGfwzPu1tLj1ckH4g5QOMl8IAU= Subject key identifier: 7A:B8:55:37:3F:DC:A3:C8:AA:D9:EC:79:1E:FA:D1:E0:60:FA:09:E5 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 65A1CFDA03D3B4977BD82BB845F4918818B55B5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: EC Signing time: Sat 19 Jul 2025 09:20:00 +0000 Manifest this update: Sat 19 Jul 2025 09:15:00 +0000 Manifest next update: Tue 22 Jul 2025 20:42:00 +0000 Files and hashes: 1: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) 2: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: 5kMBVrg+VqR7o0tq7nFkkAKW7mwh5ruu5dgc23AVtlU=) 3: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 4: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 20:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:a1:cf:da:03:d3:b4:97:7b:d8:2b:b8:45:f4:91:88:18:b5:5b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Jul 19 09:15:00 2025 GMT Not After : Jul 22 20:42:00 2025 GMT Subject: CN=7AB855373FDCA3C8AAD9EC791EFAD1E060FA09E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2f:c7:4d:08:d2:d0:6d:fd:1f:3e:2d:7c:1a: b1:c3:c6:0d:0d:3a:fb:3d:fb:74:c7:a0:f1:b6:8f: e5:8c:a7:e2:2b:56:26:92:30:79:4f:ce:65:8e:15: 08:fa:92:f0:16:82:e9:d8:b2:cf:4c:49:ff:6f:a2: f7:77:10:52:17:0c:65:73:a5:35:50:e8:fc:b6:f4: 12:bf:40:1d:17:d6:72:dd:a1:5d:d7:8d:8f:73:c8: 5a:c6:84:7b:07:c9:90:17:3c:20:1b:31:08:03:18: 83:df:0d:c0:58:d2:35:48:63:a2:03:05:96:e1:e3: 05:92:24:cd:36:ed:28:5b:65:1d:67:4d:03:dc:b0: 46:4e:20:43:70:92:75:19:6d:61:63:55:8a:f8:43: 0a:91:77:0e:5f:93:59:90:5d:61:1f:6f:da:f8:e0: 74:7f:27:da:55:dc:10:a6:6a:86:f5:37:c7:82:b1: b5:9d:4f:56:38:4c:a0:d4:af:52:ad:51:a3:77:15: 8a:ec:3e:b4:7b:6f:57:6f:5c:0f:64:ea:49:b8:ae: 49:c9:fa:99:8b:19:7a:33:60:28:0b:38:ae:22:ca: a0:28:2a:c8:31:c2:34:01:03:a3:09:b2:97:99:9a: 50:8f:bf:13:5e:3f:fc:e6:e7:cb:4e:9f:32:e0:a3: 54:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B8:55:37:3F:DC:A3:C8:AA:D9:EC:79:1E:FA:D1:E0:60:FA:09:E5 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d9:58:9e:97:f4:12:91:17:1e:0a:e6:27:9e:6c:17:8a:bc: b1:26:50:4f:76:6d:46:28:8c:fb:84:34:77:d0:0d:29:06:0d: 41:98:3d:b0:ea:4d:eb:ca:29:56:4b:e1:ab:55:2b:8a:57:7b: e8:36:4b:81:44:bf:bf:e3:c6:ae:af:18:dc:c8:50:aa:9e:2e: 8d:80:87:fc:84:de:e1:6c:f3:51:56:41:08:66:09:ba:63:41: d3:5c:67:02:fd:a5:45:0b:1f:00:a2:64:7c:a1:36:42:96:0e: b5:3c:4d:fd:95:53:6c:27:80:9d:4a:34:39:49:b3:10:e4:4a: b6:76:f8:1c:ce:ff:df:3e:9b:77:a7:af:1b:89:1a:ee:a0:02: fd:56:f7:d7:5f:6c:85:93:c9:f1:fa:28:85:10:75:cd:fe:3c: 88:45:2d:cc:aa:23:9d:16:55:fe:36:40:a2:ad:08:db:dd:09: 95:09:0f:b4:89:3f:f7:8f:8f:52:ab:fb:de:b0:a1:a6:1b:eb: 5f:f7:bf:32:00:0c:91:b6:a0:ae:c1:3e:e9:03:a4:1a:17:13: 0c:ce:2d:0e:86:6f:56:59:6d:84:bc:40:8d:85:9c:f7:de:49: 39:cc:78:9d:8f:ed:9b:cb:2e:98:0b:bf:70:3f:60:cd:fe:82: 9f:92:57:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZaHP2gPTtJd72Cu4RfSRiBi1W1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTA3MTkwOTE1MDBaFw0yNTA3MjIyMDQyMDBaMDMxMTAvBgNV BAMTKDdBQjg1NTM3M0ZEQ0EzQzhBQUQ5RUM3OTFFRkFEMUUwNjBGQTA5RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+L8dNCNLQbf0fPi18GrHDxg0N Ovs9+3THoPG2j+WMp+IrViaSMHlPzmWOFQj6kvAWgunYss9MSf9vovd3EFIXDGVz pTVQ6Py29BK/QB0X1nLdoV3XjY9zyFrGhHsHyZAXPCAbMQgDGIPfDcBY0jVIY6ID BZbh4wWSJM027ShbZR1nTQPcsEZOIENwknUZbWFjVYr4QwqRdw5fk1mQXWEfb9r4 4HR/J9pV3BCmaob1N8eCsbWdT1Y4TKDUr1KtUaN3FYrsPrR7b1dvXA9k6km4rknJ +pmLGXozYCgLOK4iyqAoKsgxwjQBA6MJspeZmlCPvxNeP/zm58tOnzLgo1TxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUerhVNz/co8iq2ex5HvrR4GD6CeUwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF7ZWJ6X9BKRFx4K5ieebBeKvLEmUE92bUYo jPuENHfQDSkGDUGYPbDqTevKKVZL4atVK4pXe+g2S4FEv7/jxq6vGNzIUKqeLo2A h/yE3uFs81FWQQhmCbpjQdNcZwL9pUULHwCiZHyhNkKWDrU8Tf2VU2wngJ1KNDlJ sxDkSrZ2+BzO/98+m3enrxuJGu6gAv1W99dfbIWTyfH6KIUQdc3+PIhFLcyqI50W Vf42QKKtCNvdCZUJD7SJP/ePj1Kr+96woaYb61/3vzIADJG2oK7BPukDpBoXEwzO LQ6Gb1ZZbYS8QI2FnPfeSTnMeJ2P7ZvLLpgLv3A/YM3+gp+SV8M= -----END CERTIFICATE-----Generated at Mon Jul 21 10:38:25 2025 by rpki-client