$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft File: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft (raw, json) Hash identifier: FEvt1/+2MNVQkRjxREf2+YSeBDlpoEn76zCQRSbQoPw= Subject key identifier: E3:EF:31:6E:E0:B1:2E:36:99:02:0C:95:19:95:84:B1:7B:1C:00:29 Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Certificate serial: 48010AEF2A07A9344A5F0B7BBF74A6A945D5C93D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft Manifest number: 0292 Signing time: Sat 23 Aug 2025 07:11:53 +0000 Manifest this update: Sat 23 Aug 2025 07:06:53 +0000 Manifest next update: Tue 26 Aug 2025 14:31:53 +0000 Files and hashes: 1: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (hash: Q0JPOTRHz7S3KCYgxrzfh7sPXe85gqUb+g55+vjlzmE=) 2: 323430313a396230303a3a2f33322d3438203d3e203338313438.roa (hash: hc6ECrtKO1f8LRbUaOngruzuLZGjjKMcrVpSYHLGH+4=) 3: 3130332e33302e3232302e302f32342d3234203d3e203338313438.roa (hash: 5MfpBewFDSPuWTooHE8O1IkKqC/swjstgMNE2K+S+q4=) 4: 3130332e33302e3232322e302f32342d3234203d3e203338313438.roa (hash: ZPi+JZqMM8ZilEO1UdhpjL1kpie3JMIqiKeJGeN+nJU=) 5: 3130332e33302e3232312e302f32342d3234203d3e203338313438.roa (hash: w9cZPX/3pDPz2+LwzvjA2m3xBMWMxQj8fam9ODXwU7Y=) 6: 3130332e33302e3232302e302f32322d3233203d3e203338313438.roa (hash: d/qApoJ7mr0vuB+K0fvN+XpOWjHSmWf3V1Wp1hQdcro=) 7: 3130332e33302e3232332e302f32342d3234203d3e203338313438.roa (hash: 8BH7HUPp+qT0dOPwFMHWiAT720E6kg8wn1sWk04/fIM=) 8: B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl (hash: CCNrqywrS8QhS0ByTX/+t07B/39lxVfJbC5aoOj2o3M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 14:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:01:0a:ef:2a:07:a9:34:4a:5f:0b:7b:bf:74:a6:a9:45:d5:c9:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Validity Not Before: Aug 23 07:06:53 2025 GMT Not After : Aug 26 14:31:53 2025 GMT Subject: CN=E3EF316EE0B12E3699020C95199584B17B1C0029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:22:f3:ce:9b:f7:09:9b:77:59:44:94:07:98: 67:88:20:83:71:40:4e:17:bf:5d:c1:7e:1f:c0:b6: fc:6d:3a:c5:b2:87:80:aa:b9:21:67:49:f0:f7:29: fd:38:34:f4:97:c3:c6:11:c2:1e:18:05:76:88:63: 30:1c:b8:0b:66:63:b8:d3:be:38:53:40:82:5b:bf: a5:a5:4a:31:93:b3:f0:16:b4:a4:7b:7a:c7:27:58: bf:7b:54:3b:83:bb:76:cc:92:15:52:5e:f8:cf:16: bc:bb:fc:eb:4d:89:03:c5:72:4a:56:9b:39:9d:5a: 89:7d:88:33:a2:41:90:ae:88:00:d2:78:36:e2:b6: 4a:59:3a:6a:f4:47:02:b6:48:21:02:0a:53:19:ec: 57:2b:c1:96:6a:be:1f:05:3c:e2:57:ed:bf:4a:de: 90:fe:e9:c9:06:bc:4d:5e:34:2b:af:3f:07:f2:e0: 50:32:5e:21:4b:9a:eb:ca:cf:7b:e3:e9:ee:43:6b: b9:b1:55:90:e0:fd:cd:7c:f9:a0:31:b9:70:47:fc: d2:d6:e3:36:98:07:f1:1c:04:38:43:e8:8c:9e:61: 64:27:db:ba:93:44:1e:be:a9:cc:52:9f:11:4e:89: cd:46:16:35:ae:4a:7d:69:d6:a0:88:fa:c1:c0:97: 90:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EF:31:6E:E0:B1:2E:36:99:02:0C:95:19:95:84:B1:7B:1C:00:29 X509v3 Authority Key Identifier: keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:9b:a3:b4:e5:3a:60:e8:0c:8d:2f:bc:56:1f:12:a1:5b:23: 83:a8:ce:79:31:7c:30:46:f7:f3:ad:82:32:5b:63:5a:03:41: a0:33:e2:65:a5:fe:3e:42:c2:24:2c:6a:62:60:49:8c:3e:de: 8b:15:ec:2d:30:b3:85:e0:a9:d0:d0:92:95:e4:39:ed:bc:82: 39:14:24:14:8b:1e:4b:f8:8c:e3:65:ba:33:98:cd:a3:80:3d: fa:b8:d5:e8:66:ad:3b:d8:be:9d:9c:5d:5e:59:de:4f:20:85: 0a:86:1a:20:24:9a:7f:f5:30:c0:03:d4:22:16:bb:45:6e:83: 48:68:e2:c0:46:ec:30:29:7a:b1:49:bf:b2:98:5a:d6:e8:31: 2d:9e:4e:d6:c7:e3:1a:91:e9:2d:02:3a:92:26:e0:96:02:cc: 8a:23:bf:98:2e:dd:7f:a8:57:d3:6b:35:bb:46:ae:bf:01:f9: 4e:6c:92:a5:2c:82:76:16:34:00:d0:c3:cb:e0:6a:92:95:51: 3c:0d:bd:aa:b0:a1:cc:29:de:b1:b8:09:a0:57:ea:52:2b:97: ce:d5:8c:c7:7d:81:f1:1a:35:dd:1e:e4:48:a4:2d:26:6a:71: aa:91:02:c2:01:a5:35:d6:ab:68:df:5c:b9:e6:c1:06:2d:d9: 62:ee:74:9f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSAEK7yoHqTRKXwt7v3SmqUXVyT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEw RUIzODRFMTAeFw0yNTA4MjMwNzA2NTNaFw0yNTA4MjYxNDMxNTNaMDMxMTAvBgNV BAMTKEUzRUYzMTZFRTBCMTJFMzY5OTAyMEM5NTE5OTU4NEIxN0IxQzAwMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLIvPOm/cJm3dZRJQHmGeIIINx QE4Xv13Bfh/AtvxtOsWyh4CquSFnSfD3Kf04NPSXw8YRwh4YBXaIYzAcuAtmY7jT vjhTQIJbv6WlSjGTs/AWtKR7escnWL97VDuDu3bMkhVSXvjPFry7/OtNiQPFckpW mzmdWol9iDOiQZCuiADSeDbitkpZOmr0RwK2SCECClMZ7FcrwZZqvh8FPOJX7b9K 3pD+6ckGvE1eNCuvPwfy4FAyXiFLmuvKz3vj6e5Da7mxVZDg/c18+aAxuXBH/NLW 4zaYB/EcBDhD6IyeYWQn27qTRB6+qcxSnxFOic1GFjWuSn1p1qCI+sHAl5D5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4+8xbuCxLjaZAgyVGZWEsXscACkwHwYDVR0j BBgwFoAUuSHaq7hJSd3CUA1PCm2T+g6zhOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTkyYzI3NC0xMWRiLTQxMjctYmFiYi1hZWFlOTkyODRiMDAvMC9COTIxREFBQkI4 NDk0OUREQzI1MDBENEYwQTZEOTNGQTBFQjM4NEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEwRUIz ODRFMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTU5MmMyNzQtMTFkYi00MTI3LWJh YmItYWVhZTk5Mjg0YjAwLzAvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkz RkEwRUIzODRFMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFWbo7TlOmDoDI0vvFYfEqFbI4OoznkxfDBG 9/OtgjJbY1oDQaAz4mWl/j5CwiQsamJgSYw+3osV7C0ws4XgqdDQkpXkOe28gjkU JBSLHkv4jONlujOYzaOAPfq41ehmrTvYvp2cXV5Z3k8ghQqGGiAkmn/1MMAD1CIW u0Vug0ho4sBG7DAperFJv7KYWtboMS2eTtbH4xqR6S0COpIm4JYCzIojv5gu3X+o V9NrNbtGrr8B+U5skqUsgnYWNADQw8vgapKVUTwNvaqwocwp3rG4CaBX6lIrl87V jMd9gfEaNd0e5EikLSZqcaqRAsIBpTXWq2jfXLnmwQYt2WLudJ8= -----END CERTIFICATE-----Generated at Sat Aug 23 10:33:16 2025 by rpki-client