$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft File: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft (raw, json) Hash identifier: 9OftuUqVk1WGgU1cjwDIzcsxYttvngkV2KypFFxn+Cw= Subject key identifier: 8A:21:C6:AA:F0:2E:25:08:2D:2B:35:BF:B5:08:EE:15:CE:52:43:42 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 10E7DA197D1C8664EE15FC0AD13FBD7F00DEE31D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft Manifest number: 059A Signing time: Tue 17 Jun 2025 04:30:37 +0000 Manifest this update: Tue 17 Jun 2025 04:25:37 +0000 Manifest next update: Fri 20 Jun 2025 13:12:37 +0000 Files and hashes: 1: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (hash: QqG89TEZjAnI8K1IrPR29kJtDOMjh4sJXdy9wDe7GkQ=) 2: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl (hash: 2d9Kax1QXjn4hlQi3GjG/nImxjCNJRQ6mHokAAWsftw=) 3: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (hash: 7FX65tSRyznIseHKWjzPuHzH3CNvHvrWJempYLyB19A=) 4: 34392e302e302e302f32322d3234203d3e203535373031.roa (hash: yzJFuCgJdtqHHRWns+YkV15nd/BuBUJW5VOi1zg7H6Q=) 5: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (hash: L3e7xhgbdKiD6xLSCC6o4EcC4VabYtoVoPe/Fd1r3p4=) 6: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (hash: 4zJcjhi99V9+23NjQKwrFy3Y4HQGoSDMxwY4qblbwdg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 13:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e7:da:19:7d:1c:86:64:ee:15:fc:0a:d1:3f:bd:7f:00:de:e3:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 17 04:25:37 2025 GMT Not After : Jun 20 13:12:37 2025 GMT Subject: CN=8A21C6AAF02E25082D2B35BFB508EE15CE524342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:27:45:61:20:10:0a:2c:f1:c6:ad:c9:58: 2a:6b:79:ed:a0:f8:57:59:d2:08:58:55:21:84:7e: 51:2d:b6:c3:29:1b:76:68:86:e7:36:35:4b:72:b3: 39:0c:09:73:ce:0e:9b:52:81:d0:dc:87:99:33:4e: df:81:52:0b:03:cf:31:fd:a0:b4:6e:f6:f8:bc:82: 5a:9b:73:3c:92:4d:2c:b5:4f:ea:27:cc:65:3b:37: 74:f1:29:b3:16:c8:1e:44:62:63:fd:62:98:f4:a4: 37:d5:ce:0b:bc:c6:8f:b9:f9:62:b1:f5:33:7d:87: 44:ad:c0:e6:c6:42:1a:c3:62:0c:4c:3f:8f:30:c1: 87:a8:83:c4:ab:84:7e:ab:95:77:cc:4a:c5:9d:e4: 9a:3b:8a:2b:a8:a7:2e:f5:c0:c4:d3:99:fd:69:d3: 1d:7c:04:b1:84:99:d4:68:eb:75:42:0b:ef:7a:41: d6:a0:ab:92:9c:78:06:c4:a8:fc:8d:81:26:4b:c3: 3d:4a:5d:08:5b:25:89:42:bb:d7:7e:a9:de:9b:25: 76:c2:74:a8:7a:c2:3e:01:8a:59:ff:2f:71:2e:08: eb:94:5d:50:a2:5f:d2:c1:49:89:df:26:9c:e8:97: a0:46:35:0b:ad:44:50:36:50:f8:94:d9:ba:ba:bf: 9b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:21:C6:AA:F0:2E:25:08:2D:2B:35:BF:B5:08:EE:15:CE:52:43:42 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:8f:69:fb:b6:61:c7:1f:54:1d:3c:92:13:31:16:b1:27:ce: 68:6e:52:90:9d:9a:cf:a4:50:a6:34:43:44:ac:c6:0a:90:e9: 6d:63:96:27:6b:fb:b5:09:a8:71:36:8d:f4:6f:f6:8c:c1:f0: 7e:8c:c9:20:34:1c:70:7d:27:4e:9b:ea:fb:0d:78:c7:6f:ba: 9e:ef:3d:81:d3:e6:e2:b7:fc:f6:32:77:25:52:92:86:9a:c5: 3a:67:5f:a0:3b:63:db:81:e4:6f:1f:1f:48:79:79:94:6f:2d: e9:cc:96:9b:86:df:4c:8b:4c:e9:71:6a:92:d7:3e:61:ba:0c: 3c:1a:bd:0e:19:bc:94:44:3f:69:21:20:b2:a9:d8:02:6b:8a: 21:90:43:0a:6b:0b:37:cc:9e:4c:da:27:41:0f:7d:43:8d:3d: fd:cd:ae:3a:27:79:77:74:d5:b4:69:ba:b0:75:e0:b7:d4:e8: 88:d7:46:ce:f5:05:72:eb:ee:d6:f3:46:e0:c9:94:a6:b4:3b: 4d:69:28:64:b9:ae:42:e9:fc:2e:84:70:8b:93:23:60:d0:60: 92:25:0b:3d:17:b8:04:ec:23:7f:02:24:0e:c2:91:e2:53:21: 93:97:11:85:00:50:61:4b:c6:7c:04:fb:16:e7:81:3e:e7:72: 49:2c:4f:0a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEOfaGX0chmTuFfwK0T+9fwDe4x0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNTA2MTcwNDI1MzdaFw0yNTA2MjAxMzEyMzdaMDMxMTAvBgNV BAMTKDhBMjFDNkFBRjAyRTI1MDgyRDJCMzVCRkI1MDhFRTE1Q0U1MjQzNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7gidFYSAQCizxxq3JWCpree2g +FdZ0ghYVSGEflEttsMpG3Zohuc2NUtyszkMCXPODptSgdDch5kzTt+BUgsDzzH9 oLRu9vi8glqbczySTSy1T+onzGU7N3TxKbMWyB5EYmP9Ypj0pDfVzgu8xo+5+WKx 9TN9h0StwObGQhrDYgxMP48wwYeog8SrhH6rlXfMSsWd5Jo7iiuopy71wMTTmf1p 0x18BLGEmdRo63VCC+96Qdagq5KceAbEqPyNgSZLwz1KXQhbJYlCu9d+qd6bJXbC dKh6wj4Biln/L3EuCOuUXVCiX9LBSYnfJpzol6BGNQutRFA2UPiU2bq6v5vRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiiHGqvAuJQgtKzW/tQjuFc5SQ0IwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjdkOWY4NTEtN2U3My00Mzg0LTk1 MGUtOGJlOGUxNWZkM2VlLzAvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBC NzU4QkY1MEY2QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJuPafu2YccfVB08khMxFrEnzmhuUpCdms+k UKY0Q0SsxgqQ6W1jlidr+7UJqHE2jfRv9ozB8H6MySA0HHB9J06b6vsNeMdvup7v PYHT5uK3/PYydyVSkoaaxTpnX6A7Y9uB5G8fH0h5eZRvLenMlpuG30yLTOlxapLX PmG6DDwavQ4ZvJREP2khILKp2AJriiGQQwprCzfMnkzaJ0EPfUONPf3NrjoneXd0 1bRpurB14LfU6IjXRs71BXLr7tbzRuDJlKa0O01pKGS5rkLp/C6EcIuTI2DQYJIl Cz0XuATsI38CJA7CkeJTIZOXEYUAUGFLxnwE+xbngT7nckksTwo= -----END CERTIFICATE-----Generated at Wed Jun 18 00:07:45 2025 by rpki-client