$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft (raw, json) Hash identifier: rFk13XyjTbo9Gl8ASE84MCc4jXCO+8cn6Lgi8R5gl8o= Subject key identifier: BE:C7:2B:1E:47:1F:E0:E5:39:39:FB:CF:0A:70:B8:58:03:40:BB:09 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 57AA740A97E7DDF6A97F8D7687DB7FA017B7580C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft Manifest number: 0184 Signing time: Fri 22 Aug 2025 01:11:26 +0000 Manifest this update: Fri 22 Aug 2025 01:06:26 +0000 Manifest next update: Mon 25 Aug 2025 08:00:26 +0000 Files and hashes: 1: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (hash: WdwAhrLb01WctAevsLo2E5F0+guZcHnuWIL6/QTKVQY=) 2: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (hash: MueUJKcGkwue3xJukPLYM+05PMMpQl2v+Pz0FDXtNcM=) 3: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (hash: wzb3XBaqsWwxrRVk4X/B9M9lBaxhMB40Ug9owyKd8Yw=) 4: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl (hash: zic7u+6+pNpJstgnn7I0surCzkikyuIjIucF81NzFBc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:aa:74:0a:97:e7:dd:f6:a9:7f:8d:76:87:db:7f:a0:17:b7:58:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Aug 22 01:06:26 2025 GMT Not After : Aug 25 08:00:26 2025 GMT Subject: CN=BEC72B1E471FE0E53939FBCF0A70B8580340BB09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:7a:7f:0f:68:2e:40:66:c3:8b:64:2e:22: 99:84:ec:70:8d:ab:df:a4:45:8b:94:e9:31:f8:46: c0:f2:87:f2:a4:15:1a:ac:81:7b:f5:e7:37:65:b1: 86:fd:4e:51:83:20:d9:71:af:4a:0f:39:20:03:7a: df:b3:0e:68:62:75:f7:2c:21:d4:1f:6f:ad:9d:75: 55:6b:3f:04:70:96:62:60:f7:87:ac:e2:bc:dd:65: fb:50:ce:c2:6b:ce:a6:0c:5a:31:e5:65:d4:cb:11: ad:a7:41:56:81:11:b7:75:6c:d8:e9:c9:89:86:14: 39:7a:67:a1:79:ea:92:5d:e0:6f:89:04:e2:42:42: 8f:56:22:b2:6d:63:ac:3c:90:8e:2f:56:be:58:a4: 41:8f:37:73:a5:0a:78:41:7c:fd:b5:42:48:b2:b6: 5c:0a:ab:df:c7:94:19:df:85:cb:ba:6a:56:d5:9f: 6f:52:56:c0:4e:77:53:5b:13:b5:89:05:dc:23:88: 34:1c:31:78:69:db:86:0c:0c:5b:c0:e3:33:92:29: 88:b3:43:26:22:c9:0d:72:ce:5e:75:29:21:6f:fa: e7:70:ac:37:bb:51:84:31:9f:d3:3f:b0:b6:fb:c4: c2:11:d6:d2:5b:0e:60:da:28:3a:db:10:cf:7f:47: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C7:2B:1E:47:1F:E0:E5:39:39:FB:CF:0A:70:B8:58:03:40:BB:09 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:d2:e7:75:87:95:70:0e:64:ba:09:bf:29:b7:0b:d7:be:6e: d9:c2:14:f4:67:2c:16:bb:27:1f:bc:f1:f3:62:06:64:b1:ee: 5b:cf:b4:61:6f:46:df:4a:20:d9:3c:3b:37:e6:82:99:fa:01: 51:05:a1:f3:3f:e5:48:8c:4c:21:8b:07:4e:6e:50:a5:81:b9: e1:72:8f:10:51:b0:33:15:cc:2a:a2:9f:6a:d2:34:b6:69:c7: 0b:11:c7:03:f6:88:33:0d:2c:4e:f8:2c:20:50:13:8c:d7:ca: 58:ad:cd:b9:9f:0e:b1:ee:8a:cc:92:ae:cb:83:a6:ef:42:78: 2e:de:bb:57:8d:dd:06:e4:11:10:ca:6f:db:66:d5:eb:97:52: 4f:c0:06:8a:9a:3d:e1:11:9e:0a:4f:74:80:26:75:cc:93:10: 83:89:dd:c0:ac:aa:aa:7c:72:f2:06:73:de:21:ab:fc:bc:c8: b2:ab:ce:10:97:3d:2c:c3:e9:ba:3b:95:c0:e2:7d:a5:45:28: 1d:5f:c3:44:41:28:62:73:d9:f1:74:54:79:52:6e:b3:6c:e5: c7:d6:e9:e2:4e:e8:26:7f:b5:ad:cc:f4:d1:1f:97:7d:5c:a2: 6f:2a:4a:bc:22:59:aa:19:9a:a6:a0:8d:dc:60:25:fc:44:c7: 91:e8:8d:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV6p0Cpfn3fapf412h9t/oBe3WAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTA4MjIwMTA2MjZaFw0yNTA4MjUwODAwMjZaMDMxMTAvBgNV BAMTKEJFQzcyQjFFNDcxRkUwRTUzOTM5RkJDRjBBNzBCODU4MDM0MEJCMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4L3p/D2guQGbDi2QuIpmE7HCN q9+kRYuU6TH4RsDyh/KkFRqsgXv15zdlsYb9TlGDINlxr0oPOSADet+zDmhidfcs IdQfb62ddVVrPwRwlmJg94es4rzdZftQzsJrzqYMWjHlZdTLEa2nQVaBEbd1bNjp yYmGFDl6Z6F56pJd4G+JBOJCQo9WIrJtY6w8kI4vVr5YpEGPN3OlCnhBfP21Qkiy tlwKq9/HlBnfhcu6albVn29SVsBOd1NbE7WJBdwjiDQcMXhp24YMDFvA4zOSKYiz QyYiyQ1yzl51KSFv+udwrDe7UYQxn9M/sLb7xMIR1tJbDmDaKDrbEM9/RzyFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvscrHkcf4OU5OfvPCnC4WANAuwkwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGE4NzA2NGItNWYyNy00MjcwLTkw ZTQtOTlmNDNhZTg0ZGI3LzAvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJC OUY0RTRBMkMyNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALnS53WHlXAOZLoJvym3C9e+btnCFPRnLBa7 Jx+88fNiBmSx7lvPtGFvRt9KINk8Ozfmgpn6AVEFofM/5UiMTCGLB05uUKWBueFy jxBRsDMVzCqin2rSNLZpxwsRxwP2iDMNLE74LCBQE4zXylitzbmfDrHuisySrsuD pu9CeC7eu1eN3QbkERDKb9tm1euXUk/ABoqaPeERngpPdIAmdcyTEIOJ3cCsqqp8 cvIGc94hq/y8yLKrzhCXPSzD6bo7lcDifaVFKB1fw0RBKGJz2fF0VHlSbrNs5cfW 6eJO6CZ/ta3M9NEfl31com8qSrwiWaoZmqagjdxgJfxEx5HojUs= -----END CERTIFICATE-----Generated at Sat Aug 23 14:25:43 2025 by rpki-client