$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft File: 8659BE8500DEBB314448F1412FA1E264025A4148.mft (raw, json) Hash identifier: PqqoLSj6BD33GnH128mVrMuX/qLzhj3s8jCerximhkA= Subject key identifier: BE:C9:46:E9:41:48:6B:58:1F:83:3B:4B:8C:17:C5:84:82:F3:B8:74 Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 1E0E2F878EA636A932C4F73814C979AA5936F97C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft Manifest number: 01AA Signing time: Sun 15 Jun 2025 19:31:06 +0000 Manifest this update: Sun 15 Jun 2025 19:26:06 +0000 Manifest next update: Thu 19 Jun 2025 06:37:06 +0000 Files and hashes: 1: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (hash: 7sEaXq5J0k7o+6aixvbPc/tcT7LYiqm7IslpQ0Vezhk=) 2: 8659BE8500DEBB314448F1412FA1E264025A4148.crl (hash: GcKRipl+XsJdl0jHArXz0+O/850AcdO1NCg8E4tgN1E=) 3: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (hash: cJnOaGwkWse+gaN5dpuLlcDR+J9MkVOMmGejBDI/J0U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 06:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:0e:2f:87:8e:a6:36:a9:32:c4:f7:38:14:c9:79:aa:59:36:f9:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Jun 15 19:26:06 2025 GMT Not After : Jun 19 06:37:06 2025 GMT Subject: CN=BEC946E941486B581F833B4B8C17C58482F3B874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:74:6b:d8:8d:58:c5:09:43:97:eb:24:a2: 1b:64:23:ae:06:ac:d6:df:4d:9b:1a:44:4b:ee:93: 5b:82:90:fb:25:74:0d:3e:ee:97:05:d1:70:02:bf: 2b:d1:87:45:6f:b5:8f:3e:52:11:26:21:54:c7:0d: 7f:30:cb:a6:63:48:43:a1:b1:54:78:c9:ba:48:ad: 33:ee:22:20:67:33:08:5a:bf:ed:94:eb:71:07:4e: fc:11:89:aa:38:c4:1f:53:17:f3:db:bb:49:34:2a: 5b:2e:ef:a9:b9:8a:87:7c:ff:63:f3:37:c4:97:47: 19:f3:1e:f5:22:72:f0:84:69:fa:f2:fb:62:7f:6a: e2:11:be:2f:ee:a3:65:5d:37:70:5a:13:a0:45:96: 13:e5:48:16:31:73:6e:e5:d8:a5:b1:c3:fb:03:9e: bf:13:3b:d0:49:89:94:a9:d7:da:1f:d8:1b:f8:fb: a0:ba:6d:51:b6:31:55:35:d5:4a:d0:8c:fd:72:2a: e9:39:b1:09:b7:ac:0e:32:78:d6:16:6a:21:6b:d9: b5:f7:53:24:74:9d:39:f5:c8:bc:ab:fa:a7:e6:45: f6:d3:58:ec:92:5e:ee:50:13:4c:fa:80:35:3f:97: 5e:c7:1d:60:c3:ac:60:3d:55:3b:25:da:45:7e:33: 9e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C9:46:E9:41:48:6B:58:1F:83:3B:4B:8C:17:C5:84:82:F3:B8:74 X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:71:7e:1d:9e:92:a5:19:d5:5f:92:9b:72:b3:f8:1f:dc:2c: a2:34:ce:b1:a1:ca:b2:35:51:29:41:fd:b6:1f:60:7e:1c:53: 98:09:d5:0f:ea:3e:17:d5:e7:91:b0:28:c1:00:9e:d1:d6:f6: d8:a4:c8:4c:4d:54:33:0e:89:11:48:48:df:db:24:2c:71:f5: 86:50:2f:40:db:40:dd:33:3e:07:ab:f5:5c:a5:a0:ea:b0:6c: 6a:9d:5e:b4:d5:87:0f:a3:53:9d:c8:1f:ae:75:df:41:eb:6f: e5:3b:30:b5:b3:9d:98:c4:00:09:59:b2:6d:c2:b7:b8:4d:4a: 6f:20:ff:2a:6d:b3:34:b9:c6:f9:ed:50:0e:77:e0:44:e5:98: 48:83:a1:31:ee:71:0c:d9:05:06:e0:86:08:0b:23:0d:19:17: b9:38:9d:cc:1c:37:28:3e:c3:f0:90:8b:8a:84:33:d7:c7:b5: 21:33:08:16:26:ec:9a:a8:22:09:87:0c:05:2e:74:61:25:6b: b7:9b:73:36:c6:9a:be:e4:dd:cb:d0:1c:79:b8:f0:48:03:6b: 07:d4:c8:d8:7d:33:cd:96:b1:33:5b:25:92:1e:e3:7d:04:26: fe:31:a9:99:c2:20:f2:2d:75:7c:ce:fc:aa:b0:34:0a:9f:4b: 50:c3:03:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHg4vh46mNqkyxPc4FMl5qlk2+XwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNTA2MTUxOTI2MDZaFw0yNTA2MTkwNjM3MDZaMDMxMTAvBgNV BAMTKEJFQzk0NkU5NDE0ODZCNTgxRjgzM0I0QjhDMTdDNTg0ODJGM0I4NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvg3Rr2I1YxQlDl+skohtkI64G rNbfTZsaREvuk1uCkPsldA0+7pcF0XACvyvRh0VvtY8+UhEmIVTHDX8wy6ZjSEOh sVR4ybpIrTPuIiBnMwhav+2U63EHTvwRiao4xB9TF/Pbu0k0Klsu76m5iod8/2Pz N8SXRxnzHvUicvCEafry+2J/auIRvi/uo2VdN3BaE6BFlhPlSBYxc27l2KWxw/sD nr8TO9BJiZSp19of2Bv4+6C6bVG2MVU11UrQjP1yKuk5sQm3rA4yeNYWaiFr2bX3 UyR0nTn1yLyr+qfmRfbTWOySXu5QE0z6gDU/l17HHWDDrGA9VTsl2kV+M557AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvslG6UFIa1gfgztLjBfFhILzuHQwHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJhNDhlNGUtZmM5NS00YWNmLWJl YWMtZDkzYTBmNjk0NDIxLzAvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUy NjQwMjVBNDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHpxfh2ekqUZ1V+Sm3Kz+B/cLKI0zrGhyrI1 USlB/bYfYH4cU5gJ1Q/qPhfV55GwKMEAntHW9tikyExNVDMOiRFISN/bJCxx9YZQ L0DbQN0zPger9VyloOqwbGqdXrTVhw+jU53IH65130Hrb+U7MLWznZjEAAlZsm3C t7hNSm8g/yptszS5xvntUA534ETlmEiDoTHucQzZBQbghggLIw0ZF7k4ncwcNyg+ w/CQi4qEM9fHtSEzCBYm7JqoIgmHDAUudGEla7ebczbGmr7k3cvQHHm48EgDawfU yNh9M82WsTNbJZIe430EJv4xqZnCIPItdXzO/KqwNAqfS1DDA14= -----END CERTIFICATE-----Generated at Tue Jun 17 01:27:15 2025 by rpki-client