$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: pe4k3FZd/Bi7t/CY8moWfyK/qCQQ7sci2Cg72e2HzrU= Subject key identifier: 2A:8D:27:B8:BB:31:51:FE:21:79:52:AE:87:BA:92:2C:F5:6A:D1:36 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 1F252C303FBE1E369E4206E5F77099F30440E5EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: E4 Signing time: Tue 01 Jul 2025 05:00:00 +0000 Manifest this update: Tue 01 Jul 2025 04:55:00 +0000 Manifest next update: Fri 04 Jul 2025 06:22:00 +0000 Files and hashes: 1: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: DtpkDdx7EQQ7d2KWmmeJfw/5WMwYQkdkN5FQ7KS7f+8=) 2: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 3: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 4: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 06:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:25:2c:30:3f:be:1e:36:9e:42:06:e5:f7:70:99:f3:04:40:e5:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Jul 1 04:55:00 2025 GMT Not After : Jul 4 06:22:00 2025 GMT Subject: CN=2A8D27B8BB3151FE217952AE87BA922CF56AD136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:12:08:1b:7e:3a:6b:51:d0:11:53:64:e8:16: a5:81:d0:a0:0c:96:e7:52:98:b8:d0:bd:2d:e4:27: 55:44:3e:a5:80:d5:8b:90:ef:c6:6c:ac:c3:83:d6: 81:29:3d:7e:d0:91:41:0e:4e:56:2b:6e:28:5e:14: e6:0c:73:14:80:fc:da:65:e5:08:21:de:e7:02:b2: e3:0e:d9:0a:15:d0:51:ed:57:53:30:55:0e:b8:72: 41:da:da:11:9a:8d:6d:4e:5e:2e:c7:b0:ea:d1:fc: e2:b4:d2:6b:57:3a:e8:d4:99:99:12:31:58:66:fc: c8:b0:a1:91:f7:28:33:a3:61:ad:23:43:3e:12:8c: 6f:c2:70:0c:03:8a:53:7c:0f:87:02:15:27:37:ae: 38:59:76:67:b1:6d:be:62:43:64:cc:9f:0c:8d:4e: 17:87:fc:cc:1c:dd:31:2a:05:37:a4:94:7d:48:55: 81:23:9a:0e:88:f5:f1:2f:19:5a:75:7f:1a:c7:f7: b2:2a:a0:aa:77:f3:8c:45:00:fb:38:4e:e5:59:2d: ea:fe:bb:a4:8a:22:68:f9:73:cf:3c:a8:99:bc:b6: 2d:ea:c7:01:87:90:7d:93:22:df:cd:cf:59:01:38: 92:b8:e1:11:72:53:29:48:f0:a8:2a:f5:ae:ab:2a: 0e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8D:27:B8:BB:31:51:FE:21:79:52:AE:87:BA:92:2C:F5:6A:D1:36 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:80:e3:91:fe:cb:9a:3d:7d:8a:33:66:81:a0:1b:72:f2:64: 21:0a:49:f0:6f:12:5d:da:b9:7f:c6:52:fd:04:b4:ec:7d:55: 16:96:dc:b9:46:da:86:60:06:bb:12:5c:1f:f7:63:31:11:fd: 94:34:ff:65:a6:a6:24:75:35:e1:19:8f:b3:1f:b3:41:f9:f1: 51:c7:d1:7d:c4:85:4a:99:59:e2:3a:88:3d:82:90:91:21:89: bd:92:3a:b6:a6:c9:84:68:3c:3e:5f:d2:07:e4:4b:52:f2:ef: 56:c7:29:d5:66:a8:92:70:20:59:ef:fd:1e:96:55:e9:1f:18: f7:3e:58:dd:d1:4f:30:41:76:0c:b5:f1:81:c5:aa:8d:09:40: 09:48:00:16:d5:47:3f:b9:0f:8e:b2:ed:1e:ec:e4:12:17:7f: 90:4a:97:10:06:10:9e:b3:87:6b:7b:04:e3:68:5f:4f:4a:69: 44:3d:c4:76:84:be:ba:20:ab:d3:5c:76:e9:d1:c4:03:d4:05: f2:6d:bd:b8:49:fc:8e:5d:9c:1b:6f:4d:c0:a4:4e:a5:f8:ff: 6e:87:3d:14:c3:70:90:08:06:3e:ba:ae:58:7b:12:9e:60:dc: b6:67:3b:a1:99:c5:d5:4e:45:51:54:8d:99:80:e8:52:f3:5a: 78:c5:d6:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHyUsMD++HjaeQgbl93CZ8wRA5eowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTA3MDEwNDU1MDBaFw0yNTA3MDQwNjIyMDBaMDMxMTAvBgNV BAMTKDJBOEQyN0I4QkIzMTUxRkUyMTc5NTJBRTg3QkE5MjJDRjU2QUQxMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqEggbfjprUdARU2ToFqWB0KAM ludSmLjQvS3kJ1VEPqWA1YuQ78ZsrMOD1oEpPX7QkUEOTlYrbiheFOYMcxSA/Npl 5Qgh3ucCsuMO2QoV0FHtV1MwVQ64ckHa2hGajW1OXi7HsOrR/OK00mtXOujUmZkS MVhm/MiwoZH3KDOjYa0jQz4SjG/CcAwDilN8D4cCFSc3rjhZdmexbb5iQ2TMnwyN TheH/Mwc3TEqBTeklH1IVYEjmg6I9fEvGVp1fxrH97IqoKp384xFAPs4TuVZLer+ u6SKImj5c888qJm8ti3qxwGHkH2TIt/Nz1kBOJK44RFyUylI8Kgq9a6rKg5TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKo0nuLsxUf4heVKuh7qSLPVq0TYwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACCA45H+y5o9fYozZoGgG3LyZCEKSfBvEl3a uX/GUv0EtOx9VRaW3LlG2oZgBrsSXB/3YzER/ZQ0/2WmpiR1NeEZj7Mfs0H58VHH 0X3EhUqZWeI6iD2CkJEhib2SOramyYRoPD5f0gfkS1Ly71bHKdVmqJJwIFnv/R6W VekfGPc+WN3RTzBBdgy18YHFqo0JQAlIABbVRz+5D46y7R7s5BIXf5BKlxAGEJ6z h2t7BONoX09KaUQ9xHaEvrogq9NcdunRxAPUBfJtvbhJ/I5dnBtvTcCkTqX4/26H PRTDcJAIBj66rlh7Ep5g3LZnO6GZxdVORVFUjZmA6FLzWnjF1iw= -----END CERTIFICATE-----Generated at Tue Jul 1 21:29:57 2025 by rpki-client