$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft File: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft (raw, json) Hash identifier: FKd4A4MlxVKM0HTZdB6p0Fulf7UXa7h9pMfp+H8j+Sc= Subject key identifier: EC:E9:3C:EB:CD:FB:1A:23:BE:A9:7A:6E:22:69:27:04:26:60:17:CA Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 2586B08E061A30985C797DD2E14E7CDD95202143 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft Manifest number: 05B6 Signing time: Mon 04 Aug 2025 16:50:38 +0000 Manifest this update: Mon 04 Aug 2025 16:45:38 +0000 Manifest next update: Fri 08 Aug 2025 04:30:38 +0000 Files and hashes: 1: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (hash: 7FX65tSRyznIseHKWjzPuHzH3CNvHvrWJempYLyB19A=) 2: 34332e3235322e3233362e302f32332d3234203d3e203535373031.roa (hash: Dc8BdtAPO03Z1L5MRp5Y72lj+merY2MxA64B93hGmbo=) 3: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl (hash: fy01Cjp4hpoJoeYJ8ogeoSgLRzM0NA+qPlUzI4gkxMA=) 4: 3130332e31382e37362e302f32322d3234203d3e203535373031.roa (hash: oa5lMgIER/j9/ZBqK2jTnvVzB4d9A9ON67O4sbQz5Lo=) 5: 34332e3235322e3233382e302f32342d3234203d3e203535373031.roa (hash: Nnf66JxT1+eZbCkYQn8x6cz4I9We7qQ0T90RTh7FkG0=) 6: 3130332e33312e3233322e302f32322d3234203d3e203535373031.roa (hash: BrB/GW7Td9VbCbmZFNch6tbk4BKMd6sCGKbNPlrCa44=) 7: 34392e302e302e302f32322d3234203d3e203535373031.roa (hash: yzJFuCgJdtqHHRWns+YkV15nd/BuBUJW5VOi1zg7H6Q=) 8: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (hash: QqG89TEZjAnI8K1IrPR29kJtDOMjh4sJXdy9wDe7GkQ=) 9: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (hash: 4zJcjhi99V9+23NjQKwrFy3Y4HQGoSDMxwY4qblbwdg=) 10: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (hash: L3e7xhgbdKiD6xLSCC6o4EcC4VabYtoVoPe/Fd1r3p4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 04:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:86:b0:8e:06:1a:30:98:5c:79:7d:d2:e1:4e:7c:dd:95:20:21:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Aug 4 16:45:38 2025 GMT Not After : Aug 8 04:30:38 2025 GMT Subject: CN=ECE93CEBCDFB1A23BEA97A6E22692704266017CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:33:8e:cf:66:92:d6:32:cc:5f:90:92:80: 4d:c5:02:d0:c8:13:58:5a:7a:90:7e:39:d8:8a:a7: 33:32:41:96:74:d6:21:9c:c2:a0:17:bc:bb:41:fd: ae:a7:55:b8:1c:e8:75:4d:b4:68:6e:a7:72:b1:2c: 3c:02:a7:4f:2a:94:a9:b7:63:e5:d7:e8:68:de:f2: 01:c8:b8:68:e2:ec:5b:95:08:99:a4:cb:53:3a:97: cf:4e:9e:a3:61:f2:79:64:4c:70:49:0e:5e:86:c8: 84:d3:b3:f0:19:a8:f6:49:82:6c:f9:53:60:93:30: 60:c2:23:64:6b:3c:2e:42:61:80:63:f2:eb:2a:ca: ca:3e:e0:c9:87:8b:98:3d:52:70:73:ea:f1:5d:98: 3e:e1:f3:87:b0:5a:05:8e:82:82:63:82:9c:c5:6f: 72:d2:4a:14:c0:45:0b:02:14:e1:d6:44:84:35:41: d3:6c:fa:a9:54:83:9e:70:d4:e2:b7:fe:7d:e8:94: ae:d7:2d:93:3d:01:42:ed:9d:68:86:f5:0b:c3:85: 9e:44:39:33:42:bc:c2:19:80:23:22:65:4a:f8:aa: 83:61:b2:33:ea:0c:0b:7c:e3:20:d7:1f:6d:11:f4: 89:f7:d6:a1:94:74:57:ce:6b:64:39:96:05:fc:33: 02:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E9:3C:EB:CD:FB:1A:23:BE:A9:7A:6E:22:69:27:04:26:60:17:CA X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:6f:9f:e1:8d:1d:00:8e:1e:4c:c7:d5:de:b4:e0:bb:f5:af: 09:d2:c7:12:81:35:9a:29:e3:a7:c2:b8:d8:35:a9:ac:64:cb: 31:f6:80:61:61:db:d7:34:0b:1f:78:e9:c0:9a:da:c8:23:4d: a8:7e:59:97:04:df:f4:9a:51:8d:a5:23:58:ff:57:37:6d:78: cb:df:b1:6c:f9:6f:dc:47:1c:63:cd:59:26:7b:9e:7b:43:cc: 17:00:c8:d9:e5:a4:9c:cd:5a:88:1f:8d:56:3d:6b:0f:00:8e: 3a:0f:34:9a:a0:f8:44:44:12:fe:03:49:43:1f:20:ad:a1:b2: 17:64:7a:9c:09:65:44:46:d8:a3:6b:ff:ba:56:d4:ca:e9:ef: e0:d1:2d:94:af:c5:27:b3:a4:93:ad:10:48:6d:20:e3:21:86: 42:48:0c:a4:d0:43:7c:5b:50:35:73:2a:0a:44:4a:c9:60:8c: 57:98:01:34:41:1a:5a:08:63:67:e0:12:08:e1:fe:a2:41:33: 1d:2e:30:60:e5:41:d8:5b:7f:c1:31:d3:e6:01:54:50:01:4e: 0e:98:b5:2d:b3:b5:49:89:53:f4:05:a6:f3:e2:42:15:02:09: db:cd:5f:d0:54:ac:f8:cf:58:80:f7:23:84:35:85:73:70:c6: 90:ca:4c:eb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJYawjgYaMJhceX3S4U583ZUgIUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNTA4MDQxNjQ1MzhaFw0yNTA4MDgwNDMwMzhaMDMxMTAvBgNV BAMTKEVDRTkzQ0VCQ0RGQjFBMjNCRUE5N0E2RTIyNjkyNzA0MjY2MDE3Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZjOOz2aS1jLMX5CSgE3FAtDI E1haepB+OdiKpzMyQZZ01iGcwqAXvLtB/a6nVbgc6HVNtGhup3KxLDwCp08qlKm3 Y+XX6Gje8gHIuGji7FuVCJmky1M6l89OnqNh8nlkTHBJDl6GyITTs/AZqPZJgmz5 U2CTMGDCI2RrPC5CYYBj8usqyso+4MmHi5g9UnBz6vFdmD7h84ewWgWOgoJjgpzF b3LSShTARQsCFOHWRIQ1QdNs+qlUg55w1OK3/n3olK7XLZM9AULtnWiG9QvDhZ5E OTNCvMIZgCMiZUr4qoNhsjPqDAt84yDXH20R9In31qGUdFfOa2Q5lgX8MwIvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7Ok86837GiO+qXpuImknBCZgF8owHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjdkOWY4NTEtN2U3My00Mzg0LTk1 MGUtOGJlOGUxNWZkM2VlLzAvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBC NzU4QkY1MEY2QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACRvn+GNHQCOHkzH1d604Lv1rwnSxxKBNZop 46fCuNg1qaxkyzH2gGFh29c0Cx946cCa2sgjTah+WZcE3/SaUY2lI1j/VzdteMvf sWz5b9xHHGPNWSZ7nntDzBcAyNnlpJzNWogfjVY9aw8AjjoPNJqg+EREEv4DSUMf IK2hshdkepwJZURG2KNr/7pW1Mrp7+DRLZSvxSezpJOtEEhtIOMhhkJIDKTQQ3xb UDVzKgpESslgjFeYATRBGloIY2fgEgjh/qJBMx0uMGDlQdhbf8Ex0+YBVFABTg6Y tS2ztUmJU/QFpvPiQhUCCdvNX9BUrPjPWID3I4Q1hXNwxpDKTOs= -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:09 2025 by rpki-client