$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: qr290sAjVcrGIctC+WDqTVjTLGAKml3uRIM5H7LywEU= Subject key identifier: F0:98:21:0E:DE:A1:A1:EA:C4:B5:98:AF:4C:BA:73:47:D0:40:A2:0E Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 5A2A5E58A2B93809F87DC00DBA7B39F40E8E0673 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 04B4 Signing time: Thu 07 Aug 2025 13:01:00 +0000 Manifest this update: Thu 07 Aug 2025 12:56:00 +0000 Manifest next update: Mon 11 Aug 2025 00:23:00 +0000 Files and hashes: 1: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=) 2: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: RhfOeKNZ4j1KvALyW4SxaRw/kBv+Dgu0smuwmiknx1Y=) 3: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8=) 4: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=) 5: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: KD2y7ye2pJE8ZczMxdX04TJtd/Pig6DpTU113M0T7qE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 22:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:2a:5e:58:a2:b9:38:09:f8:7d:c0:0d:ba:7b:39:f4:0e:8e:06:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Aug 7 12:56:00 2025 GMT Not After : Aug 11 00:23:00 2025 GMT Subject: CN=F098210EDEA1A1EAC4B598AF4CBA7347D040A20E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7f:14:e1:a2:4f:3d:97:a4:75:d3:22:fa:e2: 2f:a9:50:68:cf:de:a4:96:a4:7d:c3:13:d4:80:7f: d6:38:90:76:0e:c5:bf:ca:13:ec:63:3b:f0:ba:2d: 6c:29:85:8e:fa:b5:4c:82:81:20:a3:2c:3e:41:27: 15:82:24:6a:a3:69:5a:d2:da:82:14:fc:a8:48:19: 02:39:f4:83:b7:f3:5e:2e:12:9d:d7:2f:9b:22:b8: 32:b7:f8:85:dd:35:d1:fd:40:67:dd:0b:51:b4:8c: 49:ad:d3:94:f0:ae:a4:6b:41:53:29:0d:54:a4:11: 77:55:38:06:47:e0:8b:8c:97:a5:23:5b:b8:94:bb: 48:0d:23:fb:e6:09:d7:ab:80:e5:0b:2b:3d:73:3b: 44:2a:9f:3c:35:b9:f5:2d:1c:42:4e:b7:b6:14:3c: bc:5a:e9:2a:2c:3d:07:d9:37:a5:4f:f9:5b:2f:5d: 7b:6b:73:19:1b:11:60:07:96:55:12:78:86:6a:ea: fe:d1:67:83:77:d3:a0:ca:4f:7f:b1:57:99:e8:3f: d1:bc:7b:d7:e5:28:68:e7:97:9a:44:42:a7:2e:a8: e5:bb:f7:77:ba:c8:12:2c:33:91:12:f0:97:7a:b4: ac:c7:6c:b7:cd:6a:90:0c:4f:20:dd:ab:7c:ae:93: 80:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:98:21:0E:DE:A1:A1:EA:C4:B5:98:AF:4C:BA:73:47:D0:40:A2:0E X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:5b:54:93:fd:32:fa:cf:38:51:78:15:07:58:3c:2f:56:8d: cb:65:b3:69:77:2f:0d:1b:bc:40:4f:38:cd:51:4c:cb:09:c2: 74:2f:c5:e6:b4:d3:7d:4b:8a:6d:97:ca:01:6f:18:c7:b2:f3: ff:11:7d:45:35:4a:56:8b:0f:db:b5:5e:1f:0d:d1:7d:0a:77: 76:31:b5:54:36:1e:76:5e:7a:73:4e:50:12:a7:85:05:ee:80: 2f:a3:dc:6b:11:17:f4:3a:35:43:4b:2b:d3:f3:c4:b5:73:cb: ae:65:25:1e:39:22:15:8b:33:ca:46:75:78:79:45:5f:07:06: 06:44:fe:dc:16:73:27:8b:cb:db:f5:07:29:f0:3a:c9:7f:14: 3a:4a:11:fb:b0:74:b7:bc:bd:f9:db:a6:55:55:52:51:0f:d7: b1:06:7d:ff:72:61:51:78:9c:39:cc:6e:da:7b:97:b2:b1:7e: 26:0c:17:20:36:7a:f1:e5:7e:af:08:43:8e:58:ea:19:9a:23: e5:01:f4:ee:8b:97:4e:ac:fe:33:3e:d2:06:63:94:c6:4d:37: fc:cf:8c:0e:73:57:8f:29:5c:f5:13:32:58:f5:c7:e6:cb:ff: 6b:5c:eb:49:90:aa:9d:e1:37:44:e6:7d:0a:02:90:91:38:a1: 48:94:06:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWipeWKK5OAn4fcANuns59A6OBnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA4MDcxMjU2MDBaFw0yNTA4MTEwMDIzMDBaMDMxMTAvBgNV BAMTKEYwOTgyMTBFREVBMUExRUFDNEI1OThBRjRDQkE3MzQ3RDA0MEEyMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnfxThok89l6R10yL64i+pUGjP 3qSWpH3DE9SAf9Y4kHYOxb/KE+xjO/C6LWwphY76tUyCgSCjLD5BJxWCJGqjaVrS 2oIU/KhIGQI59IO3814uEp3XL5siuDK3+IXdNdH9QGfdC1G0jEmt05TwrqRrQVMp DVSkEXdVOAZH4IuMl6UjW7iUu0gNI/vmCdergOULKz1zO0Qqnzw1ufUtHEJOt7YU PLxa6SosPQfZN6VP+VsvXXtrcxkbEWAHllUSeIZq6v7RZ4N306DKT3+xV5noP9G8 e9flKGjnl5pEQqcuqOW793e6yBIsM5ES8Jd6tKzHbLfNapAMTyDdq3yuk4AhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8JghDt6hoerEtZivTLpzR9BAog4wHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGNbVJP9MvrPOFF4FQdYPC9Wjctls2l3Lw0b vEBPOM1RTMsJwnQvxea0031Lim2XygFvGMey8/8RfUU1SlaLD9u1Xh8N0X0Kd3Yx tVQ2HnZeenNOUBKnhQXugC+j3GsRF/Q6NUNLK9PzxLVzy65lJR45IhWLM8pGdXh5 RV8HBgZE/twWcyeLy9v1BynwOsl/FDpKEfuwdLe8vfnbplVVUlEP17EGff9yYVF4 nDnMbtp7l7KxfiYMFyA2evHlfq8IQ45Y6hmaI+UB9O6Ll06s/jM+0gZjlMZNN/zP jA5zV48pXPUTMlj1x+bL/2tc60mQqp3hN0TmfQoCkJE4oUiUBoc= -----END CERTIFICATE-----Generated at Fri Aug 8 00:18:57 2025 by rpki-client