$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: 1VXu+RpMs8mKaEmzkWuLUyLcX+n7l+z6bcS/GQlCVZk= Subject key identifier: 6B:82:CE:EF:52:1B:E4:4D:E9:8B:99:DB:B9:43:1A:03:20:C3:78:E2 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 1BBC7ABBD3BFC4A2F2C4C859A00EDF86ADD6A559 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: FB Signing time: Sat 23 Aug 2025 01:20:00 +0000 Manifest this update: Sat 23 Aug 2025 01:15:00 +0000 Manifest next update: Tue 26 Aug 2025 12:15:00 +0000 Files and hashes: 1: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 2: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) 3: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 4: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: NchvtS9ZlpDvE/K3rkxUtz8FN9+af6WeEsk6AGASEmI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bc:7a:bb:d3:bf:c4:a2:f2:c4:c8:59:a0:0e:df:86:ad:d6:a5:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Aug 23 01:15:00 2025 GMT Not After : Aug 26 12:15:00 2025 GMT Subject: CN=6B82CEEF521BE44DE98B99DBB9431A0320C378E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:29:4a:54:f7:33:63:b2:60:7a:b5:8f:7d: aa:53:ae:08:d1:76:67:5f:f7:0b:a8:44:00:21:14: 07:dc:4f:95:2f:c2:ba:5a:23:fa:4b:19:ed:00:32: 27:24:06:ac:62:2f:81:68:7e:e7:43:df:79:cb:1a: 97:86:b5:05:2a:78:f6:51:8c:d8:71:32:c6:6f:8d: 06:e2:63:90:e1:d7:c8:c2:e0:37:c4:02:73:8e:b5: de:3c:fc:c6:fa:66:fa:46:ab:20:72:f5:13:c2:50: 8b:76:b3:64:98:e5:9a:76:29:be:5b:81:33:c8:30: 3a:7a:1b:b4:82:6c:be:8b:ef:02:60:e8:63:30:98: 18:e1:87:39:20:1a:a2:4f:81:ed:e9:b2:f7:1b:b7: b7:2a:b0:0c:59:b7:fb:a2:b0:29:4b:37:d8:94:61: 9c:79:f7:47:17:51:f1:44:92:7e:4e:e5:ed:b1:73: e6:61:f8:be:2a:6e:4e:0d:97:60:8e:85:b4:2a:e3: 95:34:f6:7e:82:b1:62:3b:a9:3c:4b:2a:8b:ef:d0: 01:1e:59:b7:49:b5:97:13:eb:03:e0:c6:ea:9a:f9: 86:fa:b6:a2:2e:a7:2a:16:e2:e6:d1:23:e6:f2:ce: cb:1b:35:e9:f5:38:4b:b3:20:44:4c:0a:0c:54:e7: ad:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:82:CE:EF:52:1B:E4:4D:E9:8B:99:DB:B9:43:1A:03:20:C3:78:E2 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption db:12:8f:66:e6:99:5e:b1:e1:68:88:66:90:79:f6:e0:1b:d5: be:0b:be:63:e5:4e:35:64:5e:c2:3b:05:9f:51:cd:78:81:95: 2d:8f:39:9f:13:17:6c:b4:11:be:fe:d7:19:ae:bc:69:cd:5e: 27:6e:74:50:dc:ba:b1:e4:3c:42:8e:d9:78:94:e2:f0:cd:19: dc:29:83:bc:e4:75:da:69:c2:f8:e6:cb:f3:0b:30:0e:30:ca: 73:9c:84:34:ef:30:8c:c2:a9:4e:86:72:fe:d3:26:18:4d:e9: 7a:7b:e2:c2:69:c0:33:bb:56:eb:4a:7b:d5:42:25:96:7c:ef: 42:dc:1e:30:08:7a:17:c7:ba:38:bb:97:73:72:bf:96:61:db: c6:a4:ff:0d:2d:04:c3:fd:bf:0d:a1:23:0a:ba:78:65:58:9c: 74:9a:a2:82:d4:24:57:6a:e7:59:6d:2b:4f:f0:bd:48:8d:81: 85:e5:ed:42:3b:d8:2b:41:dc:e3:6b:f0:d0:de:e3:e1:07:d4: 6f:cc:f9:8f:b1:8b:fc:8f:2b:59:9a:ee:f0:b8:22:72:c9:20: 2a:8b:d2:91:f6:9f:6b:05:df:a3:50:65:55:46:05:ef:1e:bf: 17:fe:67:79:a9:c6:8a:4b:d5:d2:1b:53:1e:f8:4e:bc:90:66: 80:0f:0c:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG7x6u9O/xKLyxMhZoA7fhq3WpVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTA4MjMwMTE1MDBaFw0yNTA4MjYxMjE1MDBaMDMxMTAvBgNV BAMTKDZCODJDRUVGNTIxQkU0NERFOThCOTlEQkI5NDMxQTAzMjBDMzc4RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE3SlKVPczY7JgerWPfapTrgjR dmdf9wuoRAAhFAfcT5UvwrpaI/pLGe0AMickBqxiL4FofudD33nLGpeGtQUqePZR jNhxMsZvjQbiY5Dh18jC4DfEAnOOtd48/Mb6ZvpGqyBy9RPCUIt2s2SY5Zp2Kb5b gTPIMDp6G7SCbL6L7wJg6GMwmBjhhzkgGqJPge3psvcbt7cqsAxZt/uisClLN9iU YZx590cXUfFEkn5O5e2xc+Zh+L4qbk4Nl2COhbQq45U09n6CsWI7qTxLKovv0AEe WbdJtZcT6wPgxuqa+Yb6tqIupyoW4ubRI+byzssbNen1OEuzIERMCgxU560jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUa4LO71Ib5E3pi5nbuUMaAyDDeOIwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANsSj2bmmV6x4WiIZpB59uAb1b4LvmPlTjVk XsI7BZ9RzXiBlS2POZ8TF2y0Eb7+1xmuvGnNXidudFDcurHkPEKO2XiU4vDNGdwp g7zkddppwvjmy/MLMA4wynOchDTvMIzCqU6Gcv7TJhhN6Xp74sJpwDO7VutKe9VC JZZ870LcHjAIehfHuji7l3Nyv5Zh28ak/w0tBMP9vw2hIwq6eGVYnHSaooLUJFdq 51ltK0/wvUiNgYXl7UI72CtB3ONr8NDe4+EH1G/M+Y+xi/yPK1ma7vC4InLJICqL 0pH2n2sF36NQZVVGBe8evxf+Z3mpxopL1dIbUx74TryQZoAPDLs= -----END CERTIFICATE-----Generated at Sat Aug 23 19:53:53 2025 by rpki-client