$ rpki-client -vvf repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft File: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft (raw, json) Hash identifier: eexLgKrkmjPssNtQgJrq73k2eGVQvUn8bAY80l/5Vrs= Subject key identifier: 4F:19:21:49:33:2B:14:A8:59:B1:9F:14:C4:BC:49:CF:41:6F:7C:F6 Authority key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Certificate issuer: /CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Certificate serial: 76EF6B5808384E909B49B6007F44B217C9707C0C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft Manifest number: 0171 Signing time: Tue 05 Aug 2025 17:02:08 +0000 Manifest this update: Tue 05 Aug 2025 16:57:08 +0000 Manifest next update: Sat 09 Aug 2025 04:31:08 +0000 Files and hashes: 1: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl (hash: 68iceRo6da6wyXh9TwD3liGJTHW9dedIJBuiA8W1vBw=) 2: 323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa (hash: b4NjxQmSbJ+wk760b/yGVrpvatI7XP4yXIQB6LdeYtw=) 3: 3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa (hash: ty2A/+XUIZKKt+5K+zVnVNMiG2s1JjDQEBRNkGaNrQE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 04:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ef:6b:58:08:38:4e:90:9b:49:b6:00:7f:44:b2:17:c9:70:7c:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Validity Not Before: Aug 5 16:57:08 2025 GMT Not After : Aug 9 04:31:08 2025 GMT Subject: CN=4F192149332B14A859B19F14C4BC49CF416F7CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:54:20:19:81:85:8e:36:ac:2a:6e:6c:bd:ad: ca:8f:7a:27:d2:55:a1:e5:db:23:3f:5a:a4:b6:45: 1b:ee:2d:1b:b6:be:37:4a:9a:b7:16:54:57:d6:cb: d3:53:71:cd:2e:2b:fe:d6:43:d2:39:99:39:cd:24: 13:14:33:ca:fd:87:9d:38:7d:dd:a7:17:5b:e7:22: b0:d2:6b:2c:10:03:4d:7c:7a:ca:7d:68:b2:15:fa: 75:33:be:65:29:87:50:42:d7:60:81:b1:15:52:c9: 57:55:a0:46:f4:05:b9:84:af:0d:0e:7e:21:dc:cd: ad:64:e3:90:b2:3a:23:70:60:45:4d:f5:7f:1c:0f: da:1e:08:22:b3:6a:5d:8e:c0:13:29:94:15:e9:27: 15:07:f2:7b:4f:bb:d2:10:ce:b8:32:5b:39:cd:ac: d5:f5:99:fa:b0:17:16:cb:49:c1:f7:fb:80:ed:7c: 99:13:b5:b5:13:d9:95:be:0e:06:4e:42:d6:f0:42: 50:4c:f1:48:db:ad:05:3c:f6:b2:11:68:e8:03:66: 2c:5b:00:54:c6:1f:11:d2:75:01:c2:fe:25:cc:8f: 2c:7c:4c:34:64:f0:db:bf:9f:b5:f0:24:1d:50:d6: 7d:69:ee:f7:ea:47:61:cd:ea:e5:dc:a8:6c:7c:f4: 58:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:19:21:49:33:2B:14:A8:59:B1:9F:14:C4:BC:49:CF:41:6F:7C:F6 X509v3 Authority Key Identifier: keyid:82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:3a:65:1a:c7:be:d9:70:ca:35:20:37:87:7e:c8:8b:73:69: 28:c2:5b:1b:a7:8c:de:f4:34:bc:b3:c4:07:60:43:ab:83:5c: d7:69:f6:85:1b:ac:7d:32:ec:0b:06:1f:ed:96:f7:16:8f:f9: 8b:4e:ca:b1:62:f9:1b:f0:31:d7:0d:a7:61:e0:74:f7:0f:84: 1d:b2:34:8e:3b:c1:de:88:82:cd:fb:34:2f:a0:51:02:09:f8: a4:48:c1:e9:a8:32:46:f8:17:2d:40:5c:fd:7f:28:c9:df:26: da:4b:7b:ef:89:72:95:0e:8b:79:85:89:dc:30:76:bb:46:86: 5c:83:28:11:ba:00:66:00:82:a0:d2:f6:53:22:cb:80:67:dd: 1e:95:9e:ff:6b:e7:fe:f6:5d:f2:8c:64:45:e9:e5:48:b6:9c: b6:d0:e3:3d:96:48:4c:79:46:60:ac:55:87:94:8b:10:d9:18: bf:b6:cd:97:28:91:ee:33:e6:e5:69:6b:64:95:a5:35:70:9d: 4a:da:81:5b:53:aa:39:a1:c9:60:1c:aa:0c:4d:1c:d7:8d:bf: 91:a1:1b:54:0c:d8:51:08:22:a6:45:20:a8:0c:c3:f4:8a:e8: db:8a:d2:1f:8a:71:ab:fe:80:51:b1:26:21:58:c2:de:1d:04: e6:87:58:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdu9rWAg4TpCbSbYAf0SyF8lwfAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJC NTNDQzY4MTAeFw0yNTA4MDUxNjU3MDhaFw0yNTA4MDkwNDMxMDhaMDMxMTAvBgNV BAMTKDRGMTkyMTQ5MzMyQjE0QTg1OUIxOUYxNEM0QkM0OUNGNDE2RjdDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPVCAZgYWONqwqbmy9rcqPeifS VaHl2yM/WqS2RRvuLRu2vjdKmrcWVFfWy9NTcc0uK/7WQ9I5mTnNJBMUM8r9h504 fd2nF1vnIrDSaywQA018esp9aLIV+nUzvmUph1BC12CBsRVSyVdVoEb0BbmErw0O fiHcza1k45CyOiNwYEVN9X8cD9oeCCKzal2OwBMplBXpJxUH8ntPu9IQzrgyWznN rNX1mfqwFxbLScH3+4DtfJkTtbUT2ZW+DgZOQtbwQlBM8UjbrQU89rIRaOgDZixb AFTGHxHSdQHC/iXMjyx8TDRk8Nu/n7XwJB1Q1n1p7vfqR2HN6uXcqGx89Fj9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTxkhSTMrFKhZsZ8UxLxJz0FvfPYwHwYDVR0j BBgwFoAUgggxeiSrTNgozYhV+B8+8rU8xoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMC84MjA4MzE3QTI0 QUI0Q0Q4MjhDRDg4NTVGODFGM0VGMkI1M0NDNjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJCNTND QzY4MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODg3ODhhOGItNTQxYi00Y2JmLWJh YjktOGRjMzc3YmMxMjg0LzAvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNF RjJCNTNDQzY4MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM06ZRrHvtlwyjUgN4d+yItzaSjCWxunjN70 NLyzxAdgQ6uDXNdp9oUbrH0y7AsGH+2W9xaP+YtOyrFi+RvwMdcNp2HgdPcPhB2y NI47wd6Igs37NC+gUQIJ+KRIwemoMkb4Fy1AXP1/KMnfJtpLe++JcpUOi3mFidww drtGhlyDKBG6AGYAgqDS9lMiy4Bn3R6Vnv9r5/72XfKMZEXp5Ui2nLbQ4z2WSEx5 RmCsVYeUixDZGL+2zZcoke4z5uVpa2SVpTVwnUragVtTqjmhyWAcqgxNHNeNv5Gh G1QM2FEIIqZFIKgMw/SK6NuK0h+Kcav+gFGxJiFYwt4dBOaHWBs= -----END CERTIFICATE-----Generated at Thu Aug 7 05:03:15 2025 by rpki-client