$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft File: 8CFA88063D5C0A51C1D737A5170338865A245358.mft (raw, json) Hash identifier: qa1WqjCnK0JvlpsDPQ+hSXgpQ+klIOfmAAm604HdNC4= Subject key identifier: 05:EB:1D:8C:54:B8:9D:99:35:45:40:DC:F4:52:DB:3D:C2:58:1A:34 Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358 Certificate serial: 0F8CA000D650AAEF98495C6DCD5D2F420E8E204B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft Manifest number: 04F9 Signing time: Mon 11 Aug 2025 15:51:44 +0000 Manifest this update: Mon 11 Aug 2025 15:46:44 +0000 Manifest next update: Thu 14 Aug 2025 16:01:44 +0000 Files and hashes: 1: 8CFA88063D5C0A51C1D737A5170338865A245358.crl (hash: 2zXBn2RvfY0sBp0kMmsEZNz4+CuXCebX0l44lsiRolQ=) 2: 3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa (hash: iKqR4sdrDvQYzAbaXB9On/A/Jy5fdaFvtV4f3tabdnk=) 3: 323430343a313034303a3a2f33322d3332203d3e20313338313133.roa (hash: IwOy6L011wgRp4Z43jUYFVOd/TCfuz6IilpFz+BTytc=) 4: 3130332e3132362e3230302e302f32332d3233203d3e20313338313133.roa (hash: OX5qJy0ELn8OIpv9cwcHP0OwwrzKVk8H6b2UKzBtyEg=) 5: 3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa (hash: x7tsLph+/FB0QeKJjGm8RZPvo26S0bN0rsI7VAab3d8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 16:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8c:a0:00:d6:50:aa:ef:98:49:5c:6d:cd:5d:2f:42:0e:8e:20:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358 Validity Not Before: Aug 11 15:46:44 2025 GMT Not After : Aug 14 16:01:44 2025 GMT Subject: CN=05EB1D8C54B89D99354540DCF452DB3DC2581A34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b7:99:05:b8:54:06:1e:17:e1:25:bf:b1:ae: 77:d6:0c:83:3a:fa:f5:6f:27:be:f8:22:a5:b7:33: a2:f7:7c:78:7f:b0:c6:55:99:89:81:3e:f1:7a:8e: 18:06:08:d4:c8:29:75:8f:b3:4b:fc:2c:79:06:a9: 99:ad:6a:e3:e9:76:d3:7e:16:ce:94:36:9b:3a:d0: be:3e:16:2a:8a:9e:c4:6d:1e:83:d1:10:4a:4a:53: b6:65:33:9e:e4:8a:c9:8c:13:c9:0c:67:76:ef:f5: 2b:cc:49:75:a7:e7:48:c9:72:3f:7e:3a:a5:ba:83: 4d:2a:cf:f1:7d:01:4a:09:cf:af:a0:06:5f:3d:f7: fe:88:10:3b:3d:52:3d:41:5d:ab:da:ad:de:8b:09: 54:cb:0e:74:bf:f3:c0:2c:bd:35:bd:0d:1c:7e:85: 72:f8:de:17:31:93:91:b1:d6:c3:82:f0:ee:70:9c: c4:73:3f:2f:ab:1a:09:2b:02:d2:c1:1f:42:e0:c7: ab:b0:57:45:ba:d3:53:5a:fb:df:ec:fd:59:8d:e6: 2b:20:c8:3d:1e:83:c1:0c:c3:9d:1d:49:14:c9:3c: 9f:1b:d9:f1:0c:e3:6b:f5:2a:9e:7d:76:7c:0e:73: 66:8b:73:3c:4d:02:8f:13:c6:bb:b3:3a:91:0d:a1: a4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:EB:1D:8C:54:B8:9D:99:35:45:40:DC:F4:52:DB:3D:C2:58:1A:34 X509v3 Authority Key Identifier: keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:7f:03:ce:af:b8:60:53:60:ee:d2:45:c8:4d:9f:bd:a6:87: 04:d5:ac:a2:b1:ce:06:88:ac:9d:1d:db:24:35:15:9e:23:63: 9b:e3:f2:e2:8d:7d:97:4f:06:f9:68:e4:18:91:b1:25:01:06: a2:d5:16:5a:e4:bb:c5:09:ab:dd:b9:a0:ea:2a:1a:0e:c6:41: 60:01:79:85:e0:e2:48:b9:de:cd:45:e7:7d:12:07:eb:a0:4f: 42:15:d9:c8:b9:88:56:d6:2e:6e:e7:d3:11:46:55:a0:6e:63: 56:a1:5f:bb:77:82:8d:ce:6f:2c:d0:aa:43:ea:b3:4d:91:01: de:ae:f3:79:c6:71:f7:9f:66:5f:47:c9:90:1d:28:e9:04:d5: 46:89:9e:85:0f:7d:33:f3:0f:4f:a3:02:7f:0f:6d:aa:06:65: 22:56:57:da:9c:fd:88:c3:c8:95:8c:f3:6f:a2:72:15:34:4c: b9:49:4a:e0:ed:aa:bb:c6:a9:48:62:be:22:40:b9:3a:35:5a: d1:85:8f:b2:f3:36:65:6d:f3:03:c2:50:f8:c0:04:b3:00:a4: 6f:16:da:06:de:48:5c:d6:b6:f0:78:0c:7b:c5:81:2b:f1:bb: 93:3b:0a:ef:d5:52:df:a1:85:b7:63:9c:9a:36:93:1a:23:cd: ae:5a:55:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD4ygANZQqu+YSVxtzV0vQg6OIEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1 QTI0NTM1ODAeFw0yNTA4MTExNTQ2NDRaFw0yNTA4MTQxNjAxNDRaMDMxMTAvBgNV BAMTKDA1RUIxRDhDNTRCODlEOTkzNTQ1NDBEQ0Y0NTJEQjNEQzI1ODFBMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4t5kFuFQGHhfhJb+xrnfWDIM6 +vVvJ774IqW3M6L3fHh/sMZVmYmBPvF6jhgGCNTIKXWPs0v8LHkGqZmtauPpdtN+ Fs6UNps60L4+FiqKnsRtHoPREEpKU7ZlM57kismME8kMZ3bv9SvMSXWn50jJcj9+ OqW6g00qz/F9AUoJz6+gBl899/6IEDs9Uj1BXavard6LCVTLDnS/88AsvTW9DRx+ hXL43hcxk5Gx1sOC8O5wnMRzPy+rGgkrAtLBH0Lgx6uwV0W601Na+9/s/VmN5isg yD0eg8EMw50dSRTJPJ8b2fEM42v1Kp59dnwOc2aLczxNAo8TxruzOpENoaRNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBesdjFS4nZk1RUDc9FLbPcJYGjQwHwYDVR0j BBgwFoAUjPqIBj1cClHB1zelFwM4hlokU1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTJlNWI2OS1hZGJkLTRlMmQtODQ3ZC0zNzQ4MTU1ODFkODYvMC84Q0ZBODgwNjNE NUMwQTUxQzFENzM3QTUxNzAzMzg4NjVBMjQ1MzU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1QTI0 NTM1OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGEyZTViNjktYWRiZC00ZTJkLTg0 N2QtMzc0ODE1NTgxZDg2LzAvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4 ODY1QTI0NTM1OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI5/A86vuGBTYO7SRchNn72mhwTVrKKxzgaI rJ0d2yQ1FZ4jY5vj8uKNfZdPBvlo5BiRsSUBBqLVFlrku8UJq925oOoqGg7GQWAB eYXg4ki53s1F530SB+ugT0IV2ci5iFbWLm7n0xFGVaBuY1ahX7t3go3ObyzQqkPq s02RAd6u83nGcfefZl9HyZAdKOkE1UaJnoUPfTPzD0+jAn8PbaoGZSJWV9qc/YjD yJWM82+ichU0TLlJSuDtqrvGqUhiviJAuTo1WtGFj7LzNmVt8wPCUPjABLMApG8W 2gbeSFzWtvB4DHvFgSvxu5M7Cu/VUt+hhbdjnJo2kxojza5aVUM= -----END CERTIFICATE-----Generated at Wed Aug 13 07:37:06 2025 by rpki-client