$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: uJoBX5oJ223loEHyAo2lUhYvb/3FAsHOSYYaGSonuMc= Subject key identifier: 66:37:BA:73:5B:56:0A:1A:AE:83:DE:77:FC:4C:82:B1:9F:03:3F:59 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 1FF00BF076CD5541D9C8A1C646951A8B4D7E5666 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: 0101 Signing time: Sat 06 Sep 2025 13:30:00 +0000 Manifest this update: Sat 06 Sep 2025 13:25:00 +0000 Manifest next update: Tue 09 Sep 2025 19:11:00 +0000 Files and hashes: 1: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 2: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: Dle0B1sI4KuEri+brn6PKRvn6+6DjCmXxhPF8By9KHs=) 3: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 4: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 19:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f0:0b:f0:76:cd:55:41:d9:c8:a1:c6:46:95:1a:8b:4d:7e:56:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Sep 6 13:25:00 2025 GMT Not After : Sep 9 19:11:00 2025 GMT Subject: CN=6637BA735B560A1AAE83DE77FC4C82B19F033F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:69:fa:14:03:db:25:e3:92:ec:3c:0f:22:e0: a5:3e:ac:46:a5:2d:2b:48:c5:d2:76:c4:22:08:99: bc:5d:dc:c2:d8:f5:1d:49:83:7b:2e:fb:4c:a4:0b: a3:42:eb:db:c0:be:80:66:66:5e:50:7c:a0:7e:3f: a1:b9:98:9b:7c:ef:30:2a:4a:c5:fe:c0:2b:85:fc: 97:3e:41:05:b8:01:e0:3c:25:89:f1:62:02:f8:86: fd:d7:5e:3f:6c:29:8a:ea:cd:9a:71:aa:25:a9:c8: 3a:45:f8:49:8f:c9:4c:f1:1a:bf:57:b3:29:9d:74: bf:b1:d8:1b:bd:07:c7:1d:67:f0:72:fe:aa:62:a5: 2a:87:5d:37:48:d0:03:c4:d8:96:d7:30:d0:0a:81: 99:3a:57:91:e2:f9:00:88:da:a2:2e:e2:de:6b:34: 5f:81:30:dd:61:56:56:9c:c1:62:7a:91:2c:e3:3a: 03:3c:95:99:a5:55:08:cc:de:06:2e:01:8b:a3:ba: 53:6c:15:f4:9d:89:25:8f:30:f4:59:6c:cb:4c:9a: b5:c8:6e:3f:ff:39:bb:c8:fb:0c:ee:a3:dd:dd:4f: 69:3c:f6:cc:ec:31:50:07:43:72:54:25:8a:86:e7: 08:b7:41:59:3d:a7:80:94:34:9a:c0:3b:fa:b6:7e: 68:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:37:BA:73:5B:56:0A:1A:AE:83:DE:77:FC:4C:82:B1:9F:03:3F:59 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:19:ce:19:a5:40:a2:be:1b:77:03:d9:ae:36:7d:2c:ae:10: a2:ae:80:98:b3:a2:9f:63:5b:d9:cd:d6:23:b5:2e:52:17:e0: 77:ea:cd:be:9c:14:18:bd:92:61:4b:32:1c:0b:f8:85:49:9f: 34:30:0b:a7:af:92:45:61:1f:87:49:55:74:ad:6f:59:80:94: 4d:08:29:30:99:2f:c1:18:d9:19:ad:10:af:42:a1:ba:9f:24: 05:eb:35:bb:0f:61:80:e2:54:ed:51:6f:b8:c3:07:3a:19:69: a9:0d:74:0d:cf:e2:ec:5e:4c:6d:0b:16:d3:54:5e:ab:d8:90: f0:9f:86:42:e4:ff:2f:c5:a3:40:b7:9f:fe:5f:7d:08:27:b0: 08:1d:cf:d5:a7:e9:65:f8:cd:0f:43:d2:d6:3a:bb:c9:1e:4b: 39:24:8f:d0:23:02:86:1a:cd:ce:c1:e7:96:7a:7f:c6:d3:5b: cd:5c:89:d3:9e:4d:1d:08:87:db:36:b9:90:a5:07:00:9b:9c: 98:9b:53:71:19:c1:06:49:89:06:9e:38:75:45:99:2f:bc:11: 78:02:5f:8e:cb:cd:c1:c2:5d:b5:f3:bf:38:1d:26:6b:7d:17: ff:cb:ca:37:5d:ba:41:18:da:81:e8:28:13:0d:61:8e:dc:98: 0a:af:88:e1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH/AL8HbNVUHZyKHGRpUai01+VmYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTA5MDYxMzI1MDBaFw0yNTA5MDkxOTExMDBaMDMxMTAvBgNV BAMTKDY2MzdCQTczNUI1NjBBMUFBRTgzREU3N0ZDNEM4MkIxOUYwMzNGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5afoUA9sl45LsPA8i4KU+rEal LStIxdJ2xCIImbxd3MLY9R1Jg3su+0ykC6NC69vAvoBmZl5QfKB+P6G5mJt87zAq SsX+wCuF/Jc+QQW4AeA8JYnxYgL4hv3XXj9sKYrqzZpxqiWpyDpF+EmPyUzxGr9X symddL+x2Bu9B8cdZ/By/qpipSqHXTdI0APE2JbXMNAKgZk6V5Hi+QCI2qIu4t5r NF+BMN1hVlacwWJ6kSzjOgM8lZmlVQjM3gYuAYujulNsFfSdiSWPMPRZbMtMmrXI bj//ObvI+wzuo93dT2k89szsMVAHQ3JUJYqG5wi3QVk9p4CUNJrAO/q2fmhhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZje6c1tWChqug953/EyCsZ8DP1kwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEYZzhmlQKK+G3cD2a42fSyuEKKugJizop9j W9nN1iO1LlIX4Hfqzb6cFBi9kmFLMhwL+IVJnzQwC6evkkVhH4dJVXStb1mAlE0I KTCZL8EY2RmtEK9CobqfJAXrNbsPYYDiVO1Rb7jDBzoZaakNdA3P4uxeTG0LFtNU XqvYkPCfhkLk/y/Fo0C3n/5ffQgnsAgdz9Wn6WX4zQ9D0tY6u8keSzkkj9AjAoYa zc7B55Z6f8bTW81cidOeTR0Ih9s2uZClBwCbnJibU3EZwQZJiQaeOHVFmS+8EXgC X47LzcHCXbXzvzgdJmt9F//LyjddukEY2oHoKBMNYY7cmAqviOE= -----END CERTIFICATE-----Generated at Mon Sep 8 05:11:39 2025 by rpki-client