$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft File: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft (raw, json) Hash identifier: gGFTCed4VsalU8zSb8ycsRfa3HM8W/Z8luQJgIoNho8= Subject key identifier: 5D:0D:37:DD:6C:24:21:93:5F:05:37:0C:8C:59:92:76:24:76:9B:0E Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Certificate serial: 2B641EE38B81462F12A3FB3E11B54BD1B45752A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft Manifest number: 028A Signing time: Tue 05 Aug 2025 11:41:55 +0000 Manifest this update: Tue 05 Aug 2025 11:36:55 +0000 Manifest next update: Fri 08 Aug 2025 11:48:55 +0000 Files and hashes: 1: 3130332e33302e3232322e302f32342d3234203d3e203338313438.roa (hash: ZPi+JZqMM8ZilEO1UdhpjL1kpie3JMIqiKeJGeN+nJU=) 2: 3130332e33302e3232332e302f32342d3234203d3e203338313438.roa (hash: 8BH7HUPp+qT0dOPwFMHWiAT720E6kg8wn1sWk04/fIM=) 3: 3130332e33302e3232312e302f32342d3234203d3e203338313438.roa (hash: w9cZPX/3pDPz2+LwzvjA2m3xBMWMxQj8fam9ODXwU7Y=) 4: 3130332e33302e3232302e302f32342d3234203d3e203338313438.roa (hash: 5MfpBewFDSPuWTooHE8O1IkKqC/swjstgMNE2K+S+q4=) 5: 3130332e33302e3232302e302f32322d3233203d3e203338313438.roa (hash: d/qApoJ7mr0vuB+K0fvN+XpOWjHSmWf3V1Wp1hQdcro=) 6: 323430313a396230303a3a2f33322d3438203d3e203338313438.roa (hash: hc6ECrtKO1f8LRbUaOngruzuLZGjjKMcrVpSYHLGH+4=) 7: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl (hash: XIZ6p0vOmGByiXD1jCRB3E7QyPpZb5vj3Xjge2yjaXw=) 8: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (hash: Q0JPOTRHz7S3KCYgxrzfh7sPXe85gqUb+g55+vjlzmE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 11:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:64:1e:e3:8b:81:46:2f:12:a3:fb:3e:11:b5:4b:d1:b4:57:52:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Validity Not Before: Aug 5 11:36:55 2025 GMT Not After : Aug 8 11:48:55 2025 GMT Subject: CN=5D0D37DD6C2421935F05370C8C59927624769B0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9f:2d:c4:c7:a8:97:b4:a1:e8:9c:e6:62:73: 3e:f5:3d:d7:ad:fe:fd:7d:35:39:3e:66:f9:44:86: 25:24:f6:09:1e:30:83:4d:5c:8c:84:28:fb:29:07: 98:93:03:ae:dd:f5:af:1e:75:f8:df:68:46:55:c2: 5c:1a:c3:45:63:de:c4:a4:16:70:89:19:9b:69:95: ba:e1:b8:88:23:d7:8f:3e:cd:7b:19:e5:78:ee:c8: 4c:0d:e7:c2:0c:cb:c6:99:95:47:16:0c:1a:d5:db: f8:6f:d6:2e:23:b5:66:f2:36:bd:58:71:b6:f1:53: ff:15:8f:0e:17:f5:83:be:3f:0f:08:ed:c2:09:5d: 6d:a9:cd:44:d8:8e:e0:07:ae:29:41:19:9d:62:45: af:e9:ec:1f:75:2b:08:fa:33:06:ec:27:60:00:57: 9e:90:9b:1b:1e:d2:58:a3:31:44:16:a6:2a:f7:5b: 13:e7:d5:ed:10:47:07:b1:e6:01:9f:37:16:8c:7d: 34:49:24:e1:8a:95:43:57:18:2a:df:c5:c3:82:89: eb:9e:1b:03:d4:37:52:8b:07:e2:ba:93:59:00:99: 68:ef:8e:e2:43:3c:1d:d7:af:aa:9b:8d:0f:83:1f: f2:72:99:c8:a7:9d:41:3b:5e:e5:33:39:12:5e:44: 3c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0D:37:DD:6C:24:21:93:5F:05:37:0C:8C:59:92:76:24:76:9B:0E X509v3 Authority Key Identifier: keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:39:6e:0b:a7:b9:9e:11:2d:ca:ec:1a:f1:bd:08:31:ed:7d: cf:e6:30:fd:d7:25:5a:13:22:f2:1f:19:1d:a4:73:82:f7:97: 3a:1b:13:15:2e:01:a6:43:ff:31:78:74:34:ea:08:46:ff:7c: 35:dc:43:8c:5e:68:73:52:b1:62:1d:b2:61:6d:a7:d9:b1:3f: e4:d3:3f:01:19:95:8b:9f:fe:3c:b8:b5:0d:74:29:36:d5:a3: cb:2a:36:9a:c4:bf:7d:54:14:0d:6f:80:c5:98:9f:48:c3:de: 37:71:38:05:5e:18:16:34:64:28:f2:14:6f:5e:7e:82:a3:e1: 03:37:23:46:ae:1d:84:c4:a6:c6:ce:f7:4e:3e:6d:60:b6:df: fd:b2:29:64:39:6a:69:d3:2d:88:43:8d:34:fb:48:09:1f:04: 04:58:a6:47:a0:c7:27:45:e0:b4:6d:b4:16:a4:0d:2c:b2:ee: df:d6:20:fd:a1:ba:ab:ee:c5:0d:96:3e:9d:69:f8:62:e1:ff: c0:52:61:6a:90:56:33:56:ec:ba:4c:cd:88:17:89:81:b6:5c: a0:d4:ae:c2:a4:25:65:40:ae:cb:e6:d8:71:90:20:d1:12:6c: e4:58:a0:55:d5:80:52:bf:8b:cb:e1:8e:a2:c1:49:1e:43:2d: aa:4f:6a:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK2Qe44uBRi8So/s+EbVL0bRXUqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEw RUIzODRFMTAeFw0yNTA4MDUxMTM2NTVaFw0yNTA4MDgxMTQ4NTVaMDMxMTAvBgNV BAMTKDVEMEQzN0RENkMyNDIxOTM1RjA1MzcwQzhDNTk5Mjc2MjQ3NjlCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ny3Ex6iXtKHonOZicz71Pdet /v19NTk+ZvlEhiUk9gkeMINNXIyEKPspB5iTA67d9a8edfjfaEZVwlwaw0Vj3sSk FnCJGZtplbrhuIgj148+zXsZ5XjuyEwN58IMy8aZlUcWDBrV2/hv1i4jtWbyNr1Y cbbxU/8Vjw4X9YO+Pw8I7cIJXW2pzUTYjuAHrilBGZ1iRa/p7B91Kwj6MwbsJ2AA V56Qmxse0lijMUQWpir3WxPn1e0QRwex5gGfNxaMfTRJJOGKlUNXGCrfxcOCieue GwPUN1KLB+K6k1kAmWjvjuJDPB3Xr6qbjQ+DH/JymcinnUE7XuUzORJeRDwFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXQ033WwkIZNfBTcMjFmSdiR2mw4wHwYDVR0j BBgwFoAUuSHaq7hJSd3CUA1PCm2T+g6zhOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTkyYzI3NC0xMWRiLTQxMjctYmFiYi1hZWFlOTkyODRiMDAvMC9COTIxREFBQkI4 NDk0OUREQzI1MDBENEYwQTZEOTNGQTBFQjM4NEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEwRUIz ODRFMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTU5MmMyNzQtMTFkYi00MTI3LWJh YmItYWVhZTk5Mjg0YjAwLzAvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkz RkEwRUIzODRFMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEA5bgunuZ4RLcrsGvG9CDHtfc/mMP3XJVoT IvIfGR2kc4L3lzobExUuAaZD/zF4dDTqCEb/fDXcQ4xeaHNSsWIdsmFtp9mxP+TT PwEZlYuf/jy4tQ10KTbVo8sqNprEv31UFA1vgMWYn0jD3jdxOAVeGBY0ZCjyFG9e foKj4QM3I0auHYTEpsbO904+bWC23/2yKWQ5amnTLYhDjTT7SAkfBARYpkegxydF 4LRttBakDSyy7t/WIP2huqvuxQ2WPp1p+GLh/8BSYWqQVjNW7LpMzYgXiYG2XKDU rsKkJWVArsvm2HGQINESbORYoFXVgFK/i8vhjqLBSR5DLapPah8= -----END CERTIFICATE-----Generated at Wed Aug 6 16:20:32 2025 by rpki-client