$ rpki-client -vvf repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft File: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft (raw, json) Hash identifier: PiyxNOVW0WNH55YfuJROPulBJ4I29kAVQSPIrjyQAJI= Subject key identifier: F8:D0:40:BF:D9:DE:B9:FA:8F:FF:DF:3C:DB:FB:F1:35:E4:4E:C0:C3 Authority key identifier: 86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 Certificate issuer: /CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Certificate serial: 2009C1338DBE061E43475F8A2A0622CCB4BEFFA8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft Manifest number: 49 Signing time: Fri 05 Sep 2025 08:41:37 +0000 Manifest this update: Fri 05 Sep 2025 08:36:37 +0000 Manifest next update: Mon 08 Sep 2025 10:03:37 +0000 Files and hashes: 1: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl (hash: NGMdsvmCmNqHDC5WQ2thrjLh8YCNFF8dLXGizZGbAwA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 10:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:09:c1:33:8d:be:06:1e:43:47:5f:8a:2a:06:22:cc:b4:be:ff:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Validity Not Before: Sep 5 08:36:37 2025 GMT Not After : Sep 8 10:03:37 2025 GMT Subject: CN=F8D040BFD9DEB9FA8FFFDF3CDBFBF135E44EC0C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:2f:c0:97:b1:bd:ff:83:0c:67:cb:6c:d8: b4:7e:33:97:f2:5c:11:4b:1d:14:3f:ea:f3:eb:2f: 57:db:b2:28:a4:13:7d:a5:b6:78:7c:5c:59:67:c5: b7:41:1b:e2:84:00:83:49:bb:64:12:cc:0f:2c:b1: 02:7a:68:3d:82:e1:f9:57:a5:c1:2f:cd:54:d4:5a: a4:ee:49:93:d0:d0:22:de:0d:5b:0f:7c:1d:dd:98: 84:08:23:f7:d3:b0:80:2c:c9:b4:a5:f0:25:9c:48: a6:5e:98:a8:a4:f0:ee:a7:64:cc:89:65:4f:40:9b: ee:01:c5:8a:00:9a:ef:5f:4a:a5:a9:5f:68:38:88: 81:ba:90:b5:ee:cc:b9:8c:a1:9f:e8:c3:a4:ef:17: e6:f7:60:40:59:22:4c:ef:07:8e:a3:76:17:bb:dd: f6:5f:17:9a:b9:c5:8c:64:45:05:be:38:3e:c7:b8: c2:28:6f:0e:b5:7c:e6:40:1a:36:72:4c:71:51:7c: ba:d8:46:38:c1:78:0b:e6:39:ad:55:9b:32:e6:79: 2f:d3:61:5c:27:bc:76:dc:82:90:36:cd:3c:7f:11: 4c:8a:0e:0c:a0:fd:51:72:51:2f:b8:08:45:2d:36: 91:5a:72:cc:2d:b6:33:2a:6d:2b:4e:94:41:7c:3f: 08:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D0:40:BF:D9:DE:B9:FA:8F:FF:DF:3C:DB:FB:F1:35:E4:4E:C0:C3 X509v3 Authority Key Identifier: keyid:86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:ff:48:d1:28:d9:fa:dc:24:3f:a6:1f:0c:4a:6c:b1:b8:9c: e9:7d:21:e6:ac:be:27:f9:eb:b2:96:1c:02:75:c9:e4:65:4a: 08:c0:47:62:73:7a:70:a7:9b:ad:43:5c:b0:45:c0:6d:3a:22: a9:ea:a3:13:f8:f7:9b:b3:9e:06:d6:ae:dd:ad:30:c9:b2:0d: e5:d6:27:b1:56:1b:7b:38:e3:48:73:a6:e5:7d:0f:bb:bb:e9: c3:4d:28:de:e3:29:58:dc:15:68:09:49:f5:f7:10:44:af:ec: 46:81:60:99:1e:fe:33:ea:65:77:47:86:7f:52:7a:67:06:54: d0:0b:e1:60:37:c5:c8:89:30:df:e0:8f:7a:67:c0:0f:44:17: 50:bd:30:e0:d5:ae:45:b9:40:e4:72:bd:81:d4:9c:03:c8:43: 6f:a6:bc:3b:71:54:41:77:df:c5:c2:df:7a:b2:a8:eb:06:c4: d0:c4:5a:ca:69:41:75:28:de:2b:96:98:72:8f:43:f4:e9:ed: e2:6c:df:72:52:4b:c3:83:78:d5:d3:d5:1b:48:93:6a:42:23: 46:61:a5:c3:70:9f:f4:a2:e2:59:91:32:0f:eb:ba:af:65:19: 86:cc:21:27:44:1b:8d:e8:d1:c8:35:70:0b:62:8b:5c:b9:7c: 1e:03:36:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIAnBM42+Bh5DR1+KKgYizLS+/6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5 NzNENzMwMjAeFw0yNTA5MDUwODM2MzdaFw0yNTA5MDgxMDAzMzdaMDMxMTAvBgNV BAMTKEY4RDA0MEJGRDlERUI5RkE4RkZGREYzQ0RCRkJGMTM1RTQ0RUMwQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1i/Al7G9/4MMZ8ts2LR+M5fy XBFLHRQ/6vPrL1fbsiikE32ltnh8XFlnxbdBG+KEAINJu2QSzA8ssQJ6aD2C4flX pcEvzVTUWqTuSZPQ0CLeDVsPfB3dmIQII/fTsIAsybSl8CWcSKZemKik8O6nZMyJ ZU9Am+4BxYoAmu9fSqWpX2g4iIG6kLXuzLmMoZ/ow6TvF+b3YEBZIkzvB46jdhe7 3fZfF5q5xYxkRQW+OD7HuMIobw61fOZAGjZyTHFRfLrYRjjBeAvmOa1VmzLmeS/T YVwnvHbcgpA2zTx/EUyKDgyg/VFyUS+4CEUtNpFacswttjMqbStOlEF8PwjlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+NBAv9neufqP/9882/vxNeROwMMwHwYDVR0j BBgwFoAUhpTNu1L0rqia9Gylv6WmOZc9cwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2YwMGY4YS01Y2JkLTQ2MGYtYmZjNi1iZDg5NDJiNjUzN2MvMC84Njk0Q0RCQjUy RjRBRUE4OUFGNDZDQTVCRkE1QTYzOTk3M0Q3MzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5NzNE NzMwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGNmMDBmOGEtNWNiZC00NjBmLWJm YzYtYmQ4OTQyYjY1MzdjLzAvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2 Mzk5NzNENzMwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAD/SNEo2frcJD+mHwxKbLG4nOl9Ieasvif5 67KWHAJ1yeRlSgjAR2JzenCnm61DXLBFwG06IqnqoxP495uzngbWrt2tMMmyDeXW J7FWG3s440hzpuV9D7u76cNNKN7jKVjcFWgJSfX3EESv7EaBYJke/jPqZXdHhn9S emcGVNAL4WA3xciJMN/gj3pnwA9EF1C9MODVrkW5QORyvYHUnAPIQ2+mvDtxVEF3 38XC33qyqOsGxNDEWsppQXUo3iuWmHKPQ/Tp7eJs33JSS8ODeNXT1RtIk2pCI0Zh pcNwn/Si4lmRMg/ruq9lGYbMISdEG43o0cg1cAtii1y5fB4DNug= -----END CERTIFICATE-----Generated at Fri Sep 5 10:34:29 2025 by rpki-client