$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: NNhejBnGRaFNOPIioWyXO7Z6QJpiz6O1OZesNOJQsQQ= Subject key identifier: C2:1A:86:8F:7D:19:AA:91:01:D9:12:F1:5E:44:DF:4C:13:B1:15:04 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 1BACADC726EAC1C914B7370DAABB965E2350BF70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 01AC Signing time: Fri 06 Jun 2025 10:31:45 +0000 Manifest this update: Fri 06 Jun 2025 10:26:45 +0000 Manifest next update: Mon 09 Jun 2025 17:13:45 +0000 Files and hashes: 1: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: 9E8QVBoAroDUqMrtqFLZdvTypP1Njqyq9IYgh3B0/7s=) 2: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: IogGCBWgp3JrkSQOYf566gL9gQvFCS2GUVGyd4wX/SE=) 3: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: ytISHEZjTINF6/JLNiqQH88aMAxR+zNMrStZcoc/N0o=) 4: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: nOmusyTjg1lvZ1iGKTLy/8UGF4jeQtTQYSW2SNX3cao=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ac:ad:c7:26:ea:c1:c9:14:b7:37:0d:aa:bb:96:5e:23:50:bf:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Jun 6 10:26:45 2025 GMT Not After : Jun 9 17:13:45 2025 GMT Subject: CN=C21A868F7D19AA9101D912F15E44DF4C13B11504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:a6:dd:7b:4e:f1:0a:29:40:4c:96:fb:7e: 77:5f:c6:18:11:ff:9e:b7:77:75:89:fd:4a:c1:f5: 83:81:cb:b3:6b:d3:a9:21:19:eb:dd:57:1c:c6:74: ad:76:40:c5:e9:7e:b7:0c:1e:c2:ce:5c:87:d6:e1: 9d:04:35:d2:72:89:88:b9:e6:2c:d2:61:e3:bf:1f: 02:4a:94:65:7d:af:0d:1e:ec:68:6d:cd:6a:56:a4: 4a:bf:d8:40:d9:79:2f:9a:83:29:57:eb:0b:90:5e: 98:ae:1d:68:59:25:4f:5a:c7:cb:08:6d:65:93:11: 83:dd:ef:b4:1b:22:11:66:a9:4c:61:24:63:52:50: d2:0f:d8:65:e7:7c:ba:54:bc:15:73:79:dd:71:3d: bf:6a:fa:3c:d9:b6:f9:88:28:d9:c6:b7:e5:ae:2d: 0d:b6:82:c4:36:05:5e:24:79:31:ac:1c:fd:f6:08: e5:7e:3e:28:2c:1d:64:bc:6f:c4:c5:7f:e7:33:89: f3:22:16:9d:72:cc:55:42:d7:ec:e4:ba:30:3a:02: f0:f1:b9:93:30:b4:76:84:ac:d3:87:34:f0:26:ea: 66:9e:99:05:11:cb:d4:8c:8d:85:ae:32:8d:5b:e8: 59:c0:ca:6b:ac:cf:86:f1:f3:f6:59:68:9e:a3:57: 8f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1A:86:8F:7D:19:AA:91:01:D9:12:F1:5E:44:DF:4C:13:B1:15:04 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:4d:e3:82:e6:e9:63:f8:47:8e:e7:a5:e6:a7:66:ec:b5:4f: e5:cf:f7:52:11:72:e9:30:8e:d6:7e:08:88:b1:82:e3:97:a1: 62:ea:6d:d5:7e:cb:ad:da:c6:bb:9c:d9:99:10:e1:2a:5b:20: 73:ed:4e:07:0a:26:f7:1c:5e:99:f7:99:4c:cd:d6:af:0d:56: 33:47:f4:c0:ac:31:da:f1:19:82:ee:e6:0e:20:20:70:7a:f7: 60:e7:ed:95:9e:61:c5:d2:1b:55:6a:6c:76:2f:71:c1:6c:95: 30:ba:b6:d4:c3:af:4d:e9:aa:fc:0c:41:87:4b:a9:c1:73:51: 75:ad:5e:ad:24:d3:6b:4d:c3:40:9e:87:a2:63:b1:fc:7c:97: e6:19:b1:fa:50:7c:e8:54:e2:0f:8c:f6:82:9c:4d:bd:4a:73: d5:cd:a8:ad:b1:0a:69:fc:8f:de:f7:cf:e3:3f:dd:50:6e:ee: d0:24:52:98:42:d2:3e:b3:51:13:01:22:4a:98:7f:25:87:ca: 78:56:c6:a2:08:32:1c:bc:59:b1:26:3f:17:3b:70:be:70:9e: 1c:5c:78:52:ed:4b:9b:ef:90:7d:4a:6a:b3:91:f4:5e:99:40: 65:63:25:99:82:8e:96:67:28:98:79:03:a6:41:76:50:e9:96: 02:2e:d0:86 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG6ytxybqwckUtzcNqruWXiNQv3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTA2MDYxMDI2NDVaFw0yNTA2MDkxNzEzNDVaMDMxMTAvBgNV BAMTKEMyMUE4NjhGN0QxOUFBOTEwMUQ5MTJGMTVFNDRERjRDMTNCMTE1MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6H6bde07xCilATJb7fndfxhgR /563d3WJ/UrB9YOBy7Nr06khGevdVxzGdK12QMXpfrcMHsLOXIfW4Z0ENdJyiYi5 5izSYeO/HwJKlGV9rw0e7GhtzWpWpEq/2EDZeS+agylX6wuQXpiuHWhZJU9ax8sI bWWTEYPd77QbIhFmqUxhJGNSUNIP2GXnfLpUvBVzed1xPb9q+jzZtvmIKNnGt+Wu LQ22gsQ2BV4keTGsHP32COV+PigsHWS8b8TFf+czifMiFp1yzFVC1+zkujA6AvDx uZMwtHaErNOHNPAm6maemQURy9SMjYWuMo1b6FnAymusz4bx8/ZZaJ6jV49BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwhqGj30ZqpEB2RLxXkTfTBOxFQQwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEFN44Lm6WP4R47npeanZuy1T+XP91IRcukw jtZ+CIixguOXoWLqbdV+y63axruc2ZkQ4SpbIHPtTgcKJvccXpn3mUzN1q8NVjNH 9MCsMdrxGYLu5g4gIHB692Dn7ZWeYcXSG1VqbHYvccFslTC6ttTDr03pqvwMQYdL qcFzUXWtXq0k02tNw0Ceh6Jjsfx8l+YZsfpQfOhU4g+M9oKcTb1Kc9XNqK2xCmn8 j973z+M/3VBu7tAkUphC0j6zURMBIkqYfyWHynhWxqIIMhy8WbEmPxc7cL5wnhxc eFLtS5vvkH1KarOR9F6ZQGVjJZmCjpZnKJh5A6ZBdlDplgIu0IY= -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:06 2025 by rpki-client