$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: LUiHsQL1Yn7WaVF1vczpI/5mzJEmbiHEUrtdCfVFz+0= Subject key identifier: 8F:C3:51:4F:20:B0:01:56:EB:3D:25:C7:7E:27:4B:2A:7B:76:33:03 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 4CD47FC2970982823360BF6227465307CDB7628C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 01D7 Signing time: Tue 09 Sep 2025 02:41:46 +0000 Manifest this update: Tue 09 Sep 2025 02:36:46 +0000 Manifest next update: Fri 12 Sep 2025 05:32:46 +0000 Files and hashes: 1: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 2: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: wfoGP0lrBrEN0OHFTMttm1wfexHD48iJSWiNGTelOMU=) 3: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 4: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d4:7f:c2:97:09:82:82:33:60:bf:62:27:46:53:07:cd:b7:62:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Sep 9 02:36:46 2025 GMT Not After : Sep 12 05:32:46 2025 GMT Subject: CN=8FC3514F20B00156EB3D25C77E274B2A7B763303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c5:41:bf:68:e0:d4:13:2e:31:9c:43:06:c1: 94:0e:cb:a6:30:eb:fb:14:c2:6e:11:a2:e8:23:c8: 1b:62:2d:85:f3:e6:13:48:28:c9:92:41:04:d9:d4: 59:93:5c:62:c3:2f:e0:de:87:7d:93:30:7e:6a:7d: 88:b9:9c:89:c6:7e:eb:21:6b:23:60:eb:64:39:95: 96:8b:60:e2:79:5f:c6:4b:69:0b:d9:de:43:33:e8: b0:eb:d5:05:f3:ed:86:ae:d6:84:27:7e:07:a9:36: 57:7d:86:11:f4:00:db:be:76:bd:1e:d4:a7:51:62: e8:0e:3d:fa:88:1b:9d:7d:e5:d0:0d:e0:b7:f6:3f: 92:f4:ca:35:09:4f:7e:20:b6:9f:0b:20:f4:64:69: 87:85:e3:74:89:c9:d1:1f:35:71:d5:03:a1:b8:58: 99:7d:c7:fe:42:97:25:b4:3a:99:7a:b7:8f:c0:bd: 2d:f7:b6:47:82:50:38:95:f9:40:2e:da:28:68:b6: c7:14:2e:70:d3:04:24:0c:40:3f:6b:66:08:81:b4: 97:01:f8:8e:d6:3f:47:e3:4d:54:c5:7c:da:a0:00: 97:72:2b:47:61:b4:82:82:e2:0e:a3:0f:5b:71:ac: 81:eb:4e:41:14:8c:72:dd:51:86:97:9c:87:7a:ca: 23:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C3:51:4F:20:B0:01:56:EB:3D:25:C7:7E:27:4B:2A:7B:76:33:03 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:77:38:5a:5b:1d:d3:03:79:36:3b:6c:50:c5:cf:28:c4:a7: 62:c7:22:c6:67:2d:92:7a:00:91:a4:f5:4c:a4:7d:8b:16:74: 26:98:49:ea:43:90:64:64:5b:0e:78:8b:de:94:a5:53:fd:96: 74:fc:15:90:17:e1:c4:5e:10:55:bc:be:cb:89:1d:2a:76:24: 6a:1b:8e:b3:6b:5c:05:46:f1:f1:cb:bf:e8:5f:53:fe:b2:99: 6e:c6:8b:45:88:ff:de:6f:aa:f8:f3:02:31:34:64:70:a3:a8: 93:53:ad:66:dc:ff:53:1e:86:fd:70:97:f8:22:0c:29:5f:c6: 6b:c1:85:eb:c0:24:5e:d4:ec:dc:f1:38:10:26:68:dc:fc:86: 1e:eb:24:e7:d0:7d:47:6a:75:62:66:69:96:0c:30:a5:46:db: 85:40:7a:38:48:11:b1:80:7c:88:ac:74:01:82:35:cd:72:e2: bb:da:f9:dc:ac:1a:92:ef:2f:40:66:99:4b:ce:f8:11:c7:be: 09:4c:cf:97:01:3d:80:8c:d4:bb:f0:56:f8:6a:d1:b3:2b:e2: 71:25:e2:ba:39:1b:ba:54:9b:14:53:b6:42:55:be:d0:5c:88: a7:9b:8f:89:44:d3:3b:ca:68:9b:f5:fd:21:ec:9f:2d:4b:2f: 63:42:53:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTNR/wpcJgoIzYL9iJ0ZTB823YowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTA5MDkwMjM2NDZaFw0yNTA5MTIwNTMyNDZaMDMxMTAvBgNV BAMTKDhGQzM1MTRGMjBCMDAxNTZFQjNEMjVDNzdFMjc0QjJBN0I3NjMzMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChxUG/aODUEy4xnEMGwZQOy6Yw 6/sUwm4RougjyBtiLYXz5hNIKMmSQQTZ1FmTXGLDL+Deh32TMH5qfYi5nInGfush ayNg62Q5lZaLYOJ5X8ZLaQvZ3kMz6LDr1QXz7Yau1oQnfgepNld9hhH0ANu+dr0e 1KdRYugOPfqIG5195dAN4Lf2P5L0yjUJT34gtp8LIPRkaYeF43SJydEfNXHVA6G4 WJl9x/5ClyW0Opl6t4/AvS33tkeCUDiV+UAu2ihotscULnDTBCQMQD9rZgiBtJcB +I7WP0fjTVTFfNqgAJdyK0dhtIKC4g6jD1txrIHrTkEUjHLdUYaXnId6yiMHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUj8NRTyCwAVbrPSXHfidLKnt2MwMwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM53OFpbHdMDeTY7bFDFzyjEp2LHIsZnLZJ6 AJGk9UykfYsWdCaYSepDkGRkWw54i96UpVP9lnT8FZAX4cReEFW8vsuJHSp2JGob jrNrXAVG8fHLv+hfU/6ymW7Gi0WI/95vqvjzAjE0ZHCjqJNTrWbc/1Mehv1wl/gi DClfxmvBhevAJF7U7NzxOBAmaNz8hh7rJOfQfUdqdWJmaZYMMKVG24VAejhIEbGA fIisdAGCNc1y4rva+dysGpLvL0BmmUvO+BHHvglMz5cBPYCM1LvwVvhq0bMr4nEl 4ro5G7pUmxRTtkJVvtBciKebj4lE0zvKaJv1/SHsny1LL2NCU/g= -----END CERTIFICATE-----Generated at Tue Sep 9 14:17:14 2025 by rpki-client