$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: fisSro6FtUnP4sN/h2pCv2DyfDO7K3lKiTn+TOG5XLE= Subject key identifier: 9C:AB:F5:8A:49:D0:D5:A9:BE:16:A2:72:3C:99:C9:A5:AC:E8:21:AA Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 0422283D8FB645DD3C19CDA89367D5120745261F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: D8 Signing time: Wed 04 Jun 2025 04:50:00 +0000 Manifest this update: Wed 04 Jun 2025 04:45:00 +0000 Manifest next update: Sat 07 Jun 2025 07:25:00 +0000 Files and hashes: 1: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 2: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 3: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) 4: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: xpFID8DRpdvoKu3I50Ql9eAR6JrbDuWS8A8fhx7Zc+c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:22:28:3d:8f:b6:45:dd:3c:19:cd:a8:93:67:d5:12:07:45:26:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Jun 4 04:45:00 2025 GMT Not After : Jun 7 07:25:00 2025 GMT Subject: CN=9CABF58A49D0D5A9BE16A2723C99C9A5ACE821AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:49:a6:b5:e6:26:39:2e:3b:60:fa:63:2c:77: 09:1a:53:fd:2b:28:21:e6:17:d8:b0:03:67:92:b2: 6a:4c:50:ca:d9:cf:a3:6c:6e:d7:ed:ef:14:36:01: 21:da:27:1d:3d:35:d0:b6:3e:5d:5b:e2:d5:8c:83: 0b:79:e3:c2:2b:19:7c:f5:43:3d:a7:0f:26:fd:41: c2:cd:f4:12:5b:6d:e8:f2:83:a9:af:31:9a:56:49: d8:ed:ae:45:09:e6:bb:92:ac:3c:40:17:97:eb:51: f2:5a:f2:c6:85:f3:7e:6f:ce:26:f3:7d:0a:a0:fe: ca:7f:35:9e:1a:97:62:d3:16:6f:c8:25:4c:99:a3: 6c:86:85:20:93:fa:3c:f3:04:90:9f:46:fe:0c:9a: 87:e1:58:79:f6:11:06:f9:b5:9a:b6:4e:16:75:24: 0a:84:36:4b:b3:5a:f3:7f:a9:f5:73:ab:2e:a8:72: 69:db:f2:69:70:5c:b5:90:22:df:00:b5:ce:af:44: 7f:52:d5:b6:89:7b:79:fa:ff:f9:30:dd:33:0d:50: 5e:db:f4:48:d1:5e:9b:8f:4d:d9:3f:35:df:0c:bf: b8:aa:cb:0a:a4:e4:5f:cf:8e:89:7c:e3:3b:99:0e: e3:5a:13:54:51:b9:b9:e1:ce:9b:dd:e0:82:5c:5a: 9e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:AB:F5:8A:49:D0:D5:A9:BE:16:A2:72:3C:99:C9:A5:AC:E8:21:AA X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:15:3c:8d:0d:a6:36:60:bc:59:4b:c1:d7:4a:d5:64:c2:0b: 00:4c:ec:03:c4:27:3e:5f:3e:c3:a6:62:40:5a:65:b4:79:6d: 27:20:4d:9b:87:59:63:0b:82:14:de:01:fc:79:ad:cf:cd:08: 43:9a:c1:b9:68:19:5e:ed:4c:97:92:a8:43:3d:31:ba:d4:10: ce:f2:a0:7e:69:a7:be:8b:c3:b4:b1:31:44:66:73:e8:3d:36: e9:0c:01:f1:a9:97:0c:66:52:88:ff:cb:aa:b9:a0:dd:5b:3e: ed:06:06:b9:3d:03:cb:6c:da:ca:5c:02:10:cb:7f:5a:ac:fc: b1:28:02:31:89:bf:7c:4e:30:51:d7:0d:db:b0:b5:97:3c:3f: dd:7c:dd:ca:03:df:cd:15:cb:cb:23:4b:ea:65:b4:ec:0b:02: 9e:5a:e5:75:49:43:f1:b5:38:2b:51:49:21:18:50:42:e3:bf: bc:9d:d5:36:13:9f:6c:7c:ab:c7:8b:d6:59:6d:37:3d:1a:c2: c6:c1:8d:bd:4a:0b:ee:4f:c3:6b:cb:91:8c:65:31:a2:98:b4: 13:d9:c4:91:78:5b:bd:a5:b7:55:78:14:ed:3c:30:5e:1d:e3: cc:cc:f8:fc:b4:2b:38:56:28:9f:51:33:e2:8a:d3:0e:05:18: 5e:3c:e2:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBCIoPY+2Rd08Gc2ok2fVEgdFJh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTA2MDQwNDQ1MDBaFw0yNTA2MDcwNzI1MDBaMDMxMTAvBgNV BAMTKDlDQUJGNThBNDlEMEQ1QTlCRTE2QTI3MjNDOTlDOUE1QUNFODIxQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBSaa15iY5Ljtg+mMsdwkaU/0r KCHmF9iwA2eSsmpMUMrZz6Nsbtft7xQ2ASHaJx09NdC2Pl1b4tWMgwt548IrGXz1 Qz2nDyb9QcLN9BJbbejyg6mvMZpWSdjtrkUJ5ruSrDxAF5frUfJa8saF835vzibz fQqg/sp/NZ4al2LTFm/IJUyZo2yGhSCT+jzzBJCfRv4MmofhWHn2EQb5tZq2ThZ1 JAqENkuzWvN/qfVzqy6ocmnb8mlwXLWQIt8Atc6vRH9S1baJe3n6//kw3TMNUF7b 9EjRXpuPTdk/Nd8Mv7iqywqk5F/Pjol84zuZDuNaE1RRubnhzpvd4IJcWp59AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnKv1iknQ1am+FqJyPJnJpazoIaowHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEIVPI0NpjZgvFlLwddK1WTCCwBM7APEJz5f PsOmYkBaZbR5bScgTZuHWWMLghTeAfx5rc/NCEOawbloGV7tTJeSqEM9MbrUEM7y oH5pp76Lw7SxMURmc+g9NukMAfGplwxmUoj/y6q5oN1bPu0GBrk9A8ts2spcAhDL f1qs/LEoAjGJv3xOMFHXDduwtZc8P9183coD380Vy8sjS+pltOwLAp5a5XVJQ/G1 OCtRSSEYUELjv7yd1TYTn2x8q8eL1lltNz0awsbBjb1KC+5Pw2vLkYxlMaKYtBPZ xJF4W72lt1V4FO08MF4d48zM+Py0KzhWKJ9RM+KK0w4FGF484s8= -----END CERTIFICATE-----Generated at Fri Jun 6 06:30:33 2025 by rpki-client