$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: PuzN3iOxdoIZsDtf5ydrlGoCpQrLuY2zn3v9HAdE7Z0= Subject key identifier: 27:5A:B9:C5:02:94:34:20:4F:B8:F0:F9:10:94:99:16:5D:E3:D7:F8 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 3889FA23D81AFE2E12EEED4B67E1B9ED32DF41F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 01C9 Signing time: Sun 10 Aug 2025 06:51:46 +0000 Manifest this update: Sun 10 Aug 2025 06:46:46 +0000 Manifest next update: Wed 13 Aug 2025 14:39:46 +0000 Files and hashes: 1: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: IogGCBWgp3JrkSQOYf566gL9gQvFCS2GUVGyd4wX/SE=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: nOmusyTjg1lvZ1iGKTLy/8UGF4jeQtTQYSW2SNX3cao=) 3: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: 9E8QVBoAroDUqMrtqFLZdvTypP1Njqyq9IYgh3B0/7s=) 4: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: eJ4vwWHKhK9y2gUbnJuLRR9tJbwM/YcAmSFP/VQ3iyU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 06:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:89:fa:23:d8:1a:fe:2e:12:ee:ed:4b:67:e1:b9:ed:32:df:41:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Aug 10 06:46:46 2025 GMT Not After : Aug 13 14:39:46 2025 GMT Subject: CN=275AB9C5029434204FB8F0F9109499165DE3D7F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e1:4a:a9:67:3d:0a:23:2c:c4:a9:64:96:a7: bd:62:01:91:da:79:d4:a4:af:8c:6e:c4:99:85:91: 09:65:19:2a:91:3e:13:8b:7b:49:53:1b:93:9a:70: 28:4f:86:f7:03:15:11:b5:81:3c:ca:d1:dd:37:31: a4:01:53:aa:c0:ae:ad:01:08:04:31:d2:4a:b5:7a: 3e:b4:15:ae:dd:66:90:d2:bd:73:6a:55:73:63:90: 35:26:fc:21:51:64:dc:32:60:83:c0:30:ca:7e:ae: d1:0b:67:07:79:23:7f:c2:46:0a:33:f6:4e:18:53: 2c:f9:c2:e9:03:ff:81:33:75:9a:22:98:7e:06:87: 09:47:6d:dc:21:7a:ca:3b:81:c7:75:4d:b0:68:4a: a7:1a:3f:ca:2f:71:e6:f9:7c:94:e5:db:d6:8c:2f: 26:e9:b3:8e:95:7e:28:cb:62:9a:9c:e9:bc:ee:05: dc:b5:7b:9f:dc:1e:f6:f9:2f:36:d7:d5:b2:58:0a: 5d:04:72:38:f6:1f:7a:78:ed:43:1a:9a:65:70:c6: 1f:e5:83:9d:f0:1f:6b:30:99:de:e6:8b:9f:17:b2: 1a:78:89:76:d5:c1:d0:53:2f:93:dc:0a:52:06:25: 65:05:b0:ef:11:a6:e4:3b:9a:33:00:35:da:7f:fa: d5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5A:B9:C5:02:94:34:20:4F:B8:F0:F9:10:94:99:16:5D:E3:D7:F8 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:37:a7:34:ff:f5:02:a5:21:24:e0:7d:8c:d2:e8:5a:41:9b: a1:53:a6:43:26:f1:d3:29:39:55:80:88:f9:53:32:b9:cf:9d: 98:d6:3e:2a:e4:33:2d:46:21:c5:dc:ad:38:3b:e3:03:37:84: 0f:9b:b9:70:47:6a:65:65:3c:73:ff:cf:d7:09:bb:34:45:a6: 47:f6:91:2e:c9:82:ca:d8:79:69:d4:94:e3:e4:8f:75:64:e5: 5a:98:c3:02:6d:5d:ea:05:40:1e:05:bf:49:34:4c:10:dd:ef: 35:d9:0c:94:98:a1:c7:21:9e:12:ba:f4:20:64:0c:d4:70:e2: 3d:32:27:d6:41:46:35:a9:0e:3d:f9:23:46:ac:ab:a6:4a:c9: 6f:20:fd:e9:11:42:fe:5f:34:d8:60:f8:71:a5:92:9d:95:28: 26:b3:9d:16:da:94:e5:32:8d:32:3e:27:ed:52:3a:ef:be:c5: a6:27:05:af:ab:55:2f:47:08:d1:a7:66:d2:e5:e5:6a:10:5e: 6d:bf:f2:ad:ee:23:ec:e6:f7:e8:28:19:76:d4:24:6f:03:45: 66:50:03:5d:f4:90:8b:0e:ca:fe:97:7c:ff:05:2a:12:33:9a: f9:70:ce:d8:89:46:5a:5f:21:cc:17:ce:19:ae:42:41:8c:5d: 0c:af:df:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOIn6I9ga/i4S7u1LZ+G57TLfQfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTA4MTAwNjQ2NDZaFw0yNTA4MTMxNDM5NDZaMDMxMTAvBgNV BAMTKDI3NUFCOUM1MDI5NDM0MjA0RkI4RjBGOTEwOTQ5OTE2NURFM0Q3RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE4UqpZz0KIyzEqWSWp71iAZHa edSkr4xuxJmFkQllGSqRPhOLe0lTG5OacChPhvcDFRG1gTzK0d03MaQBU6rArq0B CAQx0kq1ej60Fa7dZpDSvXNqVXNjkDUm/CFRZNwyYIPAMMp+rtELZwd5I3/CRgoz 9k4YUyz5wukD/4EzdZoimH4GhwlHbdwheso7gcd1TbBoSqcaP8ovceb5fJTl29aM Lybps46VfijLYpqc6bzuBdy1e5/cHvb5LzbX1bJYCl0Ecjj2H3p47UMammVwxh/l g53wH2swmd7mi58Xshp4iXbVwdBTL5PcClIGJWUFsO8RpuQ7mjMANdp/+tVPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ1q5xQKUNCBPuPD5EJSZFl3j1/gwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFs3pzT/9QKlISTgfYzS6FpBm6FTpkMm8dMp OVWAiPlTMrnPnZjWPirkMy1GIcXcrTg74wM3hA+buXBHamVlPHP/z9cJuzRFpkf2 kS7JgsrYeWnUlOPkj3Vk5VqYwwJtXeoFQB4Fv0k0TBDd7zXZDJSYocchnhK69CBk DNRw4j0yJ9ZBRjWpDj35I0asq6ZKyW8g/ekRQv5fNNhg+HGlkp2VKCaznRbalOUy jTI+J+1SOu++xaYnBa+rVS9HCNGnZtLl5WoQXm2/8q3uI+zm9+goGXbUJG8DRWZQ A130kIsOyv6XfP8FKhIzmvlwztiJRlpfIcwXzhmuQkGMXQyv30M= -----END CERTIFICATE-----Generated at Sun Aug 10 13:45:27 2025 by rpki-client