$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: vyQp9wJF7G0arsZqRKW1wT0bciVv490U3Vx/uw1Jeb0= Subject key identifier: 0E:10:21:1B:EF:15:53:48:E4:12:FA:D3:1A:D4:74:9D:26:38:20:87 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 083EFCDD894846BCC446A253F0A72325486A5457 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: F5 Signing time: Sat 06 Sep 2025 11:42:10 +0000 Manifest this update: Sat 06 Sep 2025 11:37:10 +0000 Manifest next update: Tue 09 Sep 2025 17:26:10 +0000 Files and hashes: 1: 3135372e32302e39332e302f32342d3234203d3e20313532343037.roa (hash: 7xhwBLoxBcZfSoTZvdUTvLkraKKygpQjYGPK+6LQ1oA=) 2: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (hash: P7Y8t8QlzVHnPDCRyEAdHrWqFac2Md1CGzVdP33gimk=) 3: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: cPTJS+JYm0PPlnSTwpCuPlu+nlbTHsrWyCYHMSz4I9E=) 4: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (hash: QrSBRaxGaWU8ZoD0zYmeD1ZaWtynoFSmr/bVUUg5r5E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 17:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:3e:fc:dd:89:48:46:bc:c4:46:a2:53:f0:a7:23:25:48:6a:54:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Sep 6 11:37:10 2025 GMT Not After : Sep 9 17:26:10 2025 GMT Subject: CN=0E10211BEF155348E412FAD31AD4749D26382087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a6:b9:13:08:f8:bb:99:80:3e:8a:e1:23:bc: 68:fc:00:a3:2e:a4:88:cb:94:73:84:42:36:5f:23: 5d:b7:14:f8:60:88:e5:79:9d:6a:d3:d5:ac:e2:5c: c4:a0:a5:5b:c2:35:89:fa:30:6a:3d:cf:50:3c:49: e9:c3:e3:ce:bb:91:e4:00:e9:ca:22:d3:4e:3e:10: 33:b4:a7:3a:74:8b:99:ed:f2:34:b0:d6:4d:39:8e: dd:3f:d5:98:bd:8e:2c:a0:fa:e8:2d:ff:f7:72:fe: d8:09:4b:c1:68:5b:5e:2f:66:06:5a:7c:c4:cb:da: 9b:49:c4:4b:29:b0:c8:13:29:64:93:93:3c:9e:09: 08:02:43:b3:42:e9:a2:b6:95:ca:03:a0:82:26:d6: 57:99:0c:5d:6a:44:69:62:f4:22:61:de:a1:c4:bf: 72:21:83:f4:1d:7b:fb:54:eb:84:a5:e1:6e:8e:32: 74:24:30:94:74:b0:00:0b:a1:c2:18:85:3f:15:c4: 0c:5b:01:92:43:b0:1d:20:09:5d:a0:d5:ef:42:2a: 03:80:7a:e8:9d:54:3e:62:19:73:2b:46:82:3f:29: 7b:6b:4f:36:80:98:33:10:d6:7c:c3:5c:54:1b:72: 43:e5:3a:26:fa:e6:2d:8d:3f:a8:84:18:2b:5e:36: c3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:10:21:1B:EF:15:53:48:E4:12:FA:D3:1A:D4:74:9D:26:38:20:87 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:5c:42:79:cd:85:e4:81:97:95:ad:6d:ed:92:76:e0:fe:e3: 8a:0c:02:2b:44:de:88:97:9c:bf:63:6d:19:b5:ad:ec:a7:e6: 63:94:85:5f:ff:c1:40:7a:03:7e:f1:ca:52:1a:71:52:d9:f0: 16:74:d4:11:72:35:be:17:3a:72:14:d4:98:1b:61:9c:c3:63: 35:b9:dd:26:77:33:cc:11:08:30:a3:e9:5b:28:98:08:07:3a: 4b:d7:a5:09:65:77:ec:18:8c:79:06:9a:46:d4:f3:cd:b1:3a: 39:86:dc:c1:eb:40:19:4d:9c:e6:93:7d:8d:be:dc:dd:00:ef: 97:f6:ca:3f:c1:c3:98:6f:f6:ec:a6:c4:0a:91:a3:26:b2:6f: d3:b7:fa:bf:ff:9c:93:99:c3:09:a5:23:cb:b5:5e:68:77:d9: 01:a0:9c:82:65:64:9b:6a:2f:9e:ad:fe:60:7c:5e:97:7d:40: 07:f0:1e:d7:f8:6b:95:28:41:20:6a:81:02:f3:6d:3f:16:07: 0b:71:ca:c2:2f:cd:be:b8:fd:cd:62:13:86:f9:ad:c2:b1:a0: 74:ac:6e:16:87:27:12:99:cc:9b:a2:fc:a3:0a:3d:13:4b:51: 2e:03:45:68:9c:fd:4f:1e:f7:22:bc:21:00:5b:12:f1:09:b6: eb:43:ce:7c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCD783YlIRrzERqJT8KcjJUhqVFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTA5MDYxMTM3MTBaFw0yNTA5MDkxNzI2MTBaMDMxMTAvBgNV BAMTKDBFMTAyMTFCRUYxNTUzNDhFNDEyRkFEMzFBRDQ3NDlEMjYzODIwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSprkTCPi7mYA+iuEjvGj8AKMu pIjLlHOEQjZfI123FPhgiOV5nWrT1aziXMSgpVvCNYn6MGo9z1A8SenD4867keQA 6coi004+EDO0pzp0i5nt8jSw1k05jt0/1Zi9jiyg+ugt//dy/tgJS8FoW14vZgZa fMTL2ptJxEspsMgTKWSTkzyeCQgCQ7NC6aK2lcoDoIIm1leZDF1qRGli9CJh3qHE v3Ihg/Qde/tU64Sl4W6OMnQkMJR0sAALocIYhT8VxAxbAZJDsB0gCV2g1e9CKgOA euidVD5iGXMrRoI/KXtrTzaAmDMQ1nzDXFQbckPlOib65i2NP6iEGCteNsONAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDhAhG+8VU0jkEvrTGtR0nSY4IIcwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANJcQnnNheSBl5Wtbe2SduD+44oMAitE3oiX nL9jbRm1reyn5mOUhV//wUB6A37xylIacVLZ8BZ01BFyNb4XOnIU1JgbYZzDYzW5 3SZ3M8wRCDCj6VsomAgHOkvXpQlld+wYjHkGmkbU882xOjmG3MHrQBlNnOaTfY2+ 3N0A75f2yj/Bw5hv9uymxAqRoyayb9O3+r//nJOZwwmlI8u1Xmh32QGgnIJlZJtq L56t/mB8Xpd9QAfwHtf4a5UoQSBqgQLzbT8WBwtxysIvzb64/c1iE4b5rcKxoHSs bhaHJxKZzJui/KMKPRNLUS4DRWic/U8e9yK8IQBbEvEJtutDznw= -----END CERTIFICATE-----Generated at Mon Sep 8 05:09:32 2025 by rpki-client