$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: TmjqqeZCIDcVcAXlFu+BoEDVnnZ8g/8Aggj2d5f4RBI= Subject key identifier: 62:81:0F:3C:34:AD:5A:93:B2:38:94:B3:E3:11:6D:9A:F9:63:3A:81 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 0B50AAB646FC287A3D7E96E4E2A6A4557E633DAD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: E0 Signing time: Tue 22 Jul 2025 07:22:10 +0000 Manifest this update: Tue 22 Jul 2025 07:17:10 +0000 Manifest next update: Fri 25 Jul 2025 11:26:10 +0000 Files and hashes: 1: 3135372e32302e39332e302f32342d3234203d3e20313532343037.roa (hash: 7xhwBLoxBcZfSoTZvdUTvLkraKKygpQjYGPK+6LQ1oA=) 2: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (hash: QrSBRaxGaWU8ZoD0zYmeD1ZaWtynoFSmr/bVUUg5r5E=) 3: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (hash: P7Y8t8QlzVHnPDCRyEAdHrWqFac2Md1CGzVdP33gimk=) 4: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: SwwC1/lFbO34XksnRn7T9me1ZVjsTxrG0zibo90mXYs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:50:aa:b6:46:fc:28:7a:3d:7e:96:e4:e2:a6:a4:55:7e:63:3d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Jul 22 07:17:10 2025 GMT Not After : Jul 25 11:26:10 2025 GMT Subject: CN=62810F3C34AD5A93B23894B3E3116D9AF9633A81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a2:ac:b2:16:0c:ee:e0:86:cb:90:97:7d:6e: c6:97:70:13:73:0f:22:e8:a5:10:54:d1:2f:52:b7: bf:8a:cf:c5:a3:0e:4f:18:03:3b:2d:76:ac:21:fe: d7:e3:db:41:83:b5:53:2c:78:6a:bb:bb:9e:02:c4: 7c:20:98:57:c1:c5:c1:c4:78:0c:1b:28:bf:20:c3: 63:4c:7b:a6:0e:46:e3:98:8b:9b:39:4f:00:a8:0e: 96:17:c8:da:67:41:53:e4:fc:72:bf:ab:a0:21:14: 95:8b:d5:3f:25:5f:3d:35:c9:6e:75:f0:4e:70:a0: a7:a0:cd:bc:84:21:85:ab:77:13:c3:56:aa:7d:52: 21:c4:b4:6b:cd:9e:61:2e:e1:44:a1:1f:11:81:c9: e2:2b:d3:f3:66:6e:6e:d6:7d:8b:7f:08:af:f5:ed: 9e:b4:4a:c4:9f:f8:46:00:c8:d9:3f:0e:b5:da:3e: 55:61:fb:d7:f9:af:97:cb:fe:08:d7:8c:c6:a2:cd: 7c:94:98:6d:ae:1b:f0:27:f7:3e:38:5e:75:38:8b: cd:b6:8d:97:8c:7b:11:dc:78:e0:13:24:41:ed:4f: 8f:2a:02:81:80:c4:c1:d8:2b:e0:d0:bc:2e:cd:72: 17:d4:0a:05:31:eb:d1:43:ee:89:ca:bf:43:cd:c7: 87:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:81:0F:3C:34:AD:5A:93:B2:38:94:B3:E3:11:6D:9A:F9:63:3A:81 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:6f:b9:74:d1:06:6c:1c:4e:94:81:dd:26:bb:ee:09:ec:bb: ed:32:e7:3e:37:d3:e0:57:5c:c2:37:32:1c:f4:b7:e1:9c:fb: 88:51:e0:73:b9:68:c4:77:3c:d9:c6:3d:28:ef:92:17:79:bf: 54:d5:d2:9d:db:2c:2d:9a:a9:cf:e9:f8:cc:27:72:85:91:cf: b2:b5:62:0e:40:08:07:0b:e6:48:55:10:0f:b7:16:87:bc:8c: 2d:fc:e6:f0:07:13:61:0d:3a:8c:04:ee:25:b4:49:47:7d:c6: ea:14:40:5d:59:8c:e5:81:0c:4f:20:28:e1:85:91:50:8a:6f: be:3e:44:50:01:1e:a3:40:ea:72:ff:22:67:71:51:83:f9:2a: c5:6a:e3:ef:54:27:fa:d5:9d:44:d0:e6:be:f7:27:05:c0:ec: b5:96:3f:db:5c:fe:f6:aa:f6:3c:37:58:eb:b2:d2:13:c1:2b: e5:8f:f5:b0:29:92:f2:2c:ed:28:dc:6a:d3:22:c0:68:85:6c: 01:01:f4:ce:07:c6:b2:d1:2c:bd:28:9a:5c:49:dd:c5:d6:4d: c9:f5:92:e2:77:9e:f9:52:fb:af:20:bf:33:c8:b2:de:19:43: 79:de:67:cb:03:dd:ba:3d:39:67:80:2f:5c:42:fe:3f:52:42: 2c:93:7a:15 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC1Cqtkb8KHo9fpbk4qakVX5jPa0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTA3MjIwNzE3MTBaFw0yNTA3MjUxMTI2MTBaMDMxMTAvBgNV BAMTKDYyODEwRjNDMzRBRDVBOTNCMjM4OTRCM0UzMTE2RDlBRjk2MzNBODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyoqyyFgzu4IbLkJd9bsaXcBNz DyLopRBU0S9St7+Kz8WjDk8YAzstdqwh/tfj20GDtVMseGq7u54CxHwgmFfBxcHE eAwbKL8gw2NMe6YORuOYi5s5TwCoDpYXyNpnQVPk/HK/q6AhFJWL1T8lXz01yW51 8E5woKegzbyEIYWrdxPDVqp9UiHEtGvNnmEu4UShHxGByeIr0/Nmbm7WfYt/CK/1 7Z60SsSf+EYAyNk/DrXaPlVh+9f5r5fL/gjXjMaizXyUmG2uG/An9z44XnU4i822 jZeMexHceOATJEHtT48qAoGAxMHYK+DQvC7NchfUCgUx69FD7onKv0PNx4dFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYoEPPDStWpOyOJSz4xFtmvljOoEwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKJvuXTRBmwcTpSB3Sa77gnsu+0y5z430+BX XMI3Mhz0t+Gc+4hR4HO5aMR3PNnGPSjvkhd5v1TV0p3bLC2aqc/p+MwncoWRz7K1 Yg5ACAcL5khVEA+3Foe8jC385vAHE2ENOowE7iW0SUd9xuoUQF1ZjOWBDE8gKOGF kVCKb74+RFABHqNA6nL/ImdxUYP5KsVq4+9UJ/rVnUTQ5r73JwXA7LWWP9tc/vaq 9jw3WOuy0hPBK+WP9bApkvIs7SjcatMiwGiFbAEB9M4HxrLRLL0omlxJ3cXWTcn1 kuJ3nvlS+68gvzPIst4ZQ3neZ8sD3bo9OWeAL1xC/j9SQiyTehU= -----END CERTIFICATE-----Generated at Wed Jul 23 18:16:48 2025 by rpki-client