$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: 7GyHYLlFcxcRn52HrZ6rCUanE9FvOSQuDqfyiZIJYsE= Subject key identifier: B3:2A:C3:0C:BB:29:0F:31:3C:85:7B:A0:7C:EC:BC:7B:49:44:A8:6B Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 4203B526E8C6693CE9F32FB66D0D6167586E8725 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 01EB Signing time: Sat 25 Oct 2025 04:51:46 +0000 Manifest this update: Sat 25 Oct 2025 04:46:46 +0000 Manifest next update: Tue 28 Oct 2025 15:16:46 +0000 Files and hashes: 1: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 3: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: cavCecML/ZNVTHnvXr8DKVU1iY+LpVPnmQ691H1DMHY=) 4: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 15:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:03:b5:26:e8:c6:69:3c:e9:f3:2f:b6:6d:0d:61:67:58:6e:87:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Oct 25 04:46:46 2025 GMT Not After : Oct 28 15:16:46 2025 GMT Subject: CN=B32AC30CBB290F313C857BA07CECBC7B4944A86B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:51:9c:5e:08:21:42:d2:57:e2:04:ea:12: a7:3f:7b:89:41:57:dd:fb:b8:5a:60:4f:24:17:33: 5f:2b:e0:ad:70:67:21:05:c7:59:7e:6e:7d:2d:ec: 36:dd:ca:c8:6b:09:b0:ea:df:30:39:a1:9a:c0:80: 18:18:38:28:9a:99:45:ae:a0:d0:d1:51:07:98:2d: 06:68:10:ac:27:50:de:6b:c0:2a:7c:03:97:6b:8c: 1b:04:dc:97:36:f6:0d:a9:65:13:2d:55:5f:fe:60: 4c:fd:41:f7:80:3a:47:7a:7e:9b:33:b1:90:1d:b9: 83:d4:46:2b:dd:45:5e:0b:ad:78:87:92:75:ca:4e: 47:49:78:be:44:da:2b:be:88:e5:39:18:ee:1c:cc: c7:6d:67:24:ad:ea:98:28:2a:06:91:28:9b:3d:d2: b6:d2:02:d1:c9:c2:7c:35:42:b8:ac:b4:d0:b6:c6: 19:2b:1d:f2:a3:b2:8e:af:d6:f6:1a:2c:a7:10:e1: 06:02:2a:2c:4c:e7:8e:c5:36:24:ea:4d:86:e6:b7: 31:c2:d0:61:5d:2f:30:4f:d4:b4:93:0f:b3:14:e1: 90:f2:df:57:ad:47:7b:e6:5b:04:2f:6c:2a:97:b3: 14:a4:7f:a0:06:50:8d:8c:08:3a:a5:8c:bf:b9:33: 4f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2A:C3:0C:BB:29:0F:31:3C:85:7B:A0:7C:EC:BC:7B:49:44:A8:6B X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:1a:e2:31:4a:19:36:3a:28:77:1f:ec:17:9b:38:4c:f9:0e: 9c:ce:dd:f7:96:3a:0e:0c:bc:81:c1:42:3e:96:38:53:db:8a: 39:46:4d:56:39:c1:8d:c5:ea:1e:67:47:d6:4d:60:04:cb:74: 58:82:58:86:7e:bd:0c:7d:a2:6f:4e:94:da:d5:2a:98:14:4e: a4:0c:44:66:10:77:eb:9f:5f:df:fe:0e:80:c5:4b:28:a6:d6: 2f:1b:4b:c1:16:15:b7:4c:34:53:ad:3d:2c:a4:b6:bf:e0:f8: d1:d9:44:4f:e4:66:0e:31:bf:f2:92:9c:8e:a7:43:c0:e5:92: f1:1e:cd:fa:6e:97:fc:fb:aa:6e:2d:79:79:ea:34:88:ce:56: 0b:6d:71:ab:6c:25:3c:5f:4f:ea:cc:90:7c:d0:86:36:9f:40: 26:8c:81:88:67:8c:9e:27:ac:70:f0:3a:6d:34:1d:78:94:a8: 96:2e:fd:a3:dc:01:0d:c9:b1:65:c3:8f:59:5e:f8:8c:8d:11: d0:ee:a4:8f:76:28:cb:a4:b7:71:29:eb:bc:f6:a3:aa:f2:b3: 22:48:92:e9:99:9d:61:3b:08:15:95:ea:11:74:fb:2b:35:83: 7e:70:60:5c:43:e9:26:00:80:60:4f:a6:1b:6b:c4:2f:6d:00: 12:04:62:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQgO1JujGaTzp8y+2bQ1hZ1huhyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTEwMjUwNDQ2NDZaFw0yNTEwMjgxNTE2NDZaMDMxMTAvBgNV BAMTKEIzMkFDMzBDQkIyOTBGMzEzQzg1N0JBMDdDRUNCQzdCNDk0NEE4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJS1GcXgghQtJX4gTqEqc/e4lB V937uFpgTyQXM18r4K1wZyEFx1l+bn0t7DbdyshrCbDq3zA5oZrAgBgYOCiamUWu oNDRUQeYLQZoEKwnUN5rwCp8A5drjBsE3Jc29g2pZRMtVV/+YEz9QfeAOkd6fpsz sZAduYPURivdRV4LrXiHknXKTkdJeL5E2iu+iOU5GO4czMdtZySt6pgoKgaRKJs9 0rbSAtHJwnw1QristNC2xhkrHfKjso6v1vYaLKcQ4QYCKixM547FNiTqTYbmtzHC 0GFdLzBP1LSTD7MU4ZDy31etR3vmWwQvbCqXsxSkf6AGUI2MCDqljL+5M0/pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsyrDDLspDzE8hXugfOy8e0lEqGswHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADwa4jFKGTY6KHcf7BebOEz5DpzO3feWOg4M vIHBQj6WOFPbijlGTVY5wY3F6h5nR9ZNYATLdFiCWIZ+vQx9om9OlNrVKpgUTqQM RGYQd+ufX9/+DoDFSyim1i8bS8EWFbdMNFOtPSyktr/g+NHZRE/kZg4xv/KSnI6n Q8DlkvEezfpul/z7qm4teXnqNIjOVgttcatsJTxfT+rMkHzQhjafQCaMgYhnjJ4n rHDwOm00HXiUqJYu/aPcAQ3JsWXDj1le+IyNEdDupI92KMukt3Ep67z2o6rysyJI kumZnWE7CBWV6hF0+ys1g35wYFxD6SYAgGBPphtrxC9tABIEYrE= -----END CERTIFICATE-----Generated at Sun Oct 26 20:37:41 2025 by rpki-client