$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft File: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json) Hash identifier: K4S7eBYE3/wILvEAYcdgQ37rBQTfNXlOEeJ+VLfizrI= Subject key identifier: 73:3F:A5:61:97:63:9E:96:02:34:96:75:27:62:E1:5A:11:CB:07:43 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 607654826DBA36F9E08E384B86A4DCE92CB28821 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft Manifest number: BB Signing time: Mon 04 Aug 2025 14:11:07 +0000 Manifest this update: Mon 04 Aug 2025 14:06:07 +0000 Manifest next update: Fri 08 Aug 2025 02:03:07 +0000 Files and hashes: 1: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY=) 2: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA=) 3: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: /c9SLjZvJdx4hvjUoCA+B93oLWO13kY61KCpT6rSVFE=) 4: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA=) 5: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI=) 6: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: 4N3xCB2x4rBoMiXQaq1TIxjQcspdHHBn4voGBhoXwMQ=) 7: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 02:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:76:54:82:6d:ba:36:f9:e0:8e:38:4b:86:a4:dc:e9:2c:b2:88:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Aug 4 14:06:07 2025 GMT Not After : Aug 8 02:03:07 2025 GMT Subject: CN=733FA56197639E96023496752762E15A11CB0743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:5e:2c:e2:c7:bb:d5:9f:e6:6a:29:5f:2b: 51:29:a4:95:6c:19:f1:b5:0e:fd:f0:0c:2a:1c:6f: a7:df:d5:bf:f7:69:55:8f:b6:6b:66:d7:8b:51:e8: 47:f1:57:d1:e9:ea:6d:27:05:09:43:4a:0f:d8:9a: fc:41:84:38:93:bc:e0:59:61:77:6e:1d:36:2f:a5: 9c:b1:51:ab:d0:22:ee:ac:80:6b:d3:c4:e4:fa:13: 5e:b9:de:f3:ee:17:03:d3:5a:54:f6:bc:70:c3:2b: b2:7d:06:cf:93:9c:22:7f:d9:61:3e:3b:e2:6d:d6: e7:53:35:73:c1:25:e0:cf:f3:a1:b9:85:2c:e8:f2: 05:01:69:b7:2a:b7:fd:08:6f:40:d6:df:2d:a8:c4: 47:25:07:15:bd:61:0e:68:2b:a8:5a:47:e5:4a:43: 73:4a:4c:80:c1:50:10:af:5d:12:18:f9:08:10:1f: 6d:d1:01:43:d8:2c:21:4e:97:95:b0:2d:4d:38:34: b6:34:25:83:14:28:e6:78:8a:c7:2f:f2:78:27:e0: f5:89:ce:9f:de:28:e3:22:49:1e:6c:e3:bc:44:8e: c4:62:35:8a:7b:19:57:04:81:7f:08:46:2c:eb:86: 8a:d5:4b:12:43:6b:2e:23:68:d9:ba:e9:2e:0c:db: ae:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3F:A5:61:97:63:9E:96:02:34:96:75:27:62:E1:5A:11:CB:07:43 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:e2:e6:5b:fb:c5:2f:93:f3:91:50:8c:87:b2:60:0b:df:c2: f8:0a:c4:5a:41:ee:cb:36:2e:2c:53:07:96:ef:80:aa:bc:e3: 9a:bb:ff:7f:78:4c:24:c2:d2:e6:c6:f7:34:0a:bb:5f:6e:e3: b8:34:f5:7d:b1:01:b3:71:15:f0:a7:16:7b:af:e1:89:e0:6f: ef:03:47:96:da:4f:73:67:5d:78:a3:eb:a3:08:e3:e1:7a:64: 3c:db:79:07:71:df:d1:0c:b8:3f:f9:b7:3e:06:16:d7:41:0f: 79:7f:42:76:4a:23:51:2b:cd:77:b3:90:68:bc:29:3c:e5:c8: 56:74:41:3c:4e:29:db:de:ec:3d:6d:67:46:ae:52:8f:2f:1a: e6:bd:8f:95:a2:23:1a:d2:44:7e:de:c2:24:1d:b8:51:1e:b3: 58:53:a4:00:61:12:96:c7:33:29:39:a2:8d:b0:e4:63:68:9a: 94:5f:81:3e:6c:3c:d4:c9:b5:be:6c:96:58:80:f2:13:34:f0: d0:68:97:9a:76:ea:59:e9:34:8e:b4:3d:a5:c2:53:a9:39:3c: e5:3a:cb:69:98:15:70:a1:b2:2f:2e:bd:2c:b7:6e:fa:9c:ab: 06:7c:e5:8f:97:50:e2:51:20:4d:72:b2:0c:bb:82:83:15:a4: 25:d3:0a:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYHZUgm26NvngjjhLhqTc6SyyiCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNTA4MDQxNDA2MDdaFw0yNTA4MDgwMjAzMDdaMDMxMTAvBgNV BAMTKDczM0ZBNTYxOTc2MzlFOTYwMjM0OTY3NTI3NjJFMTVBMTFDQjA3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RF4s4se71Z/mailfK1EppJVs GfG1Dv3wDCocb6ff1b/3aVWPtmtm14tR6EfxV9Hp6m0nBQlDSg/YmvxBhDiTvOBZ YXduHTYvpZyxUavQIu6sgGvTxOT6E1653vPuFwPTWlT2vHDDK7J9Bs+TnCJ/2WE+ O+Jt1udTNXPBJeDP86G5hSzo8gUBabcqt/0Ib0DW3y2oxEclBxW9YQ5oK6haR+VK Q3NKTIDBUBCvXRIY+QgQH23RAUPYLCFOl5WwLU04NLY0JYMUKOZ4iscv8ngn4PWJ zp/eKOMiSR5s47xEjsRiNYp7GVcEgX8IRizrhorVSxJDay4jaNm66S4M2653AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcz+lYZdjnpYCNJZ1J2LhWhHLB0MwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGM3NmM4NWYtOWE0Zi00YWZjLTk2 OWItOGRhMjUzNmM1YzI0LzAvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJE MDQ0MzUzRjZGRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFji5lv7xS+T85FQjIeyYAvfwvgKxFpB7ss2 LixTB5bvgKq845q7/394TCTC0ubG9zQKu19u47g09X2xAbNxFfCnFnuv4Yngb+8D R5baT3NnXXij66MI4+F6ZDzbeQdx39EMuD/5tz4GFtdBD3l/QnZKI1ErzXezkGi8 KTzlyFZ0QTxOKdve7D1tZ0auUo8vGua9j5WiIxrSRH7ewiQduFEes1hTpABhEpbH Myk5oo2w5GNompRfgT5sPNTJtb5slliA8hM08NBol5p26lnpNI60PaXCU6k5POU6 y2mYFXChsi8uvSy3bvqcqwZ85Y+XUOJRIE1ysgy7goMVpCXTCks= -----END CERTIFICATE-----Generated at Thu Aug 7 00:27:17 2025 by rpki-client