$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft (raw, json) Hash identifier: r56cEMwnBQBKa0dpP3n82w1/DtcYMB8r/qOgab6tqhU= Subject key identifier: FD:08:1E:41:6E:D7:1D:24:C8:4C:96:9A:2D:A9:5B:8B:C6:60:74:93 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 2F8917E39002F9D054D244840ECBC57829ECD55E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft Manifest number: 016D Signing time: Wed 02 Jul 2025 01:11:24 +0000 Manifest this update: Wed 02 Jul 2025 01:06:24 +0000 Manifest next update: Sat 05 Jul 2025 01:48:24 +0000 Files and hashes: 1: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (hash: MueUJKcGkwue3xJukPLYM+05PMMpQl2v+Pz0FDXtNcM=) 2: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl (hash: 0INxsWYl1OM0RkO9RDMIrcGP394w41G9xsNVQwzEsmg=) 3: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (hash: wzb3XBaqsWwxrRVk4X/B9M9lBaxhMB40Ug9owyKd8Yw=) 4: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (hash: WdwAhrLb01WctAevsLo2E5F0+guZcHnuWIL6/QTKVQY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 01:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:89:17:e3:90:02:f9:d0:54:d2:44:84:0e:cb:c5:78:29:ec:d5:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Jul 2 01:06:24 2025 GMT Not After : Jul 5 01:48:24 2025 GMT Subject: CN=FD081E416ED71D24C84C969A2DA95B8BC6607493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5f:ce:0b:c5:32:86:12:f6:25:e9:56:10:4d: 35:38:db:cd:4f:98:a2:67:f9:f1:da:76:18:86:62: f8:ae:10:49:49:e9:2f:21:ea:7a:77:e6:bb:3a:90: a9:ad:fc:31:3c:2f:4f:49:30:aa:73:81:d0:c0:cd: 8f:64:61:46:86:85:44:07:34:93:da:4d:ad:bd:ea: 62:d2:52:81:89:46:4f:c0:78:c0:73:7d:13:01:6f: 15:f2:2d:47:c1:7b:7d:e3:d5:8d:3a:c1:30:30:84: b6:53:1e:ba:03:da:ac:c0:e8:1e:9d:eb:f9:04:05: f7:71:4e:28:a8:f4:e1:30:b9:8a:14:8c:26:44:af: 42:f6:6a:b4:c3:b6:6a:2b:0d:09:78:68:46:41:b5: 73:29:f8:4a:41:cf:b1:26:c7:4d:6f:6e:5b:2d:4d: 39:bf:1f:d8:c1:cf:73:90:76:19:89:8f:8e:af:3b: 7b:1f:63:67:e2:bf:d1:4f:37:a2:1e:6a:4c:01:35: fc:16:c2:66:20:c0:ad:7b:24:d1:ca:34:b8:16:ad: 5b:a9:63:df:64:0b:95:ae:41:04:99:db:7b:02:a0: 7e:8f:59:80:61:1a:a7:cf:e3:5a:1b:f1:41:51:90: 6a:0b:54:2c:8e:6a:36:35:14:19:8e:8f:f3:fd:8b: f3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:08:1E:41:6E:D7:1D:24:C8:4C:96:9A:2D:A9:5B:8B:C6:60:74:93 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:56:d0:04:e0:17:aa:5f:26:6b:da:35:15:3e:9f:5a:32:21: 10:f9:d4:1f:d9:14:b2:23:90:29:f0:32:ea:1f:7a:8e:ab:c4: 7b:40:4a:fb:4c:27:b7:f8:ba:32:2b:a6:2a:c8:09:d3:b1:10: 77:33:a7:9e:2b:d7:f6:ec:d0:46:3e:e5:e6:3d:57:8c:85:21: 47:9c:a7:62:aa:2c:d7:f7:18:c8:cd:cb:b0:75:ee:a3:53:1d: 73:be:dd:c2:0c:1c:50:7b:ae:e2:df:0f:5d:24:47:13:92:bb: 14:46:15:74:b8:98:fe:d9:56:1e:26:5f:ae:59:a5:7c:ce:97: af:00:24:f8:75:59:a9:81:63:34:b0:66:de:65:b0:47:ef:80: 63:56:dd:28:90:61:cd:76:51:67:53:9a:ec:bb:51:78:87:bf: bf:8c:5a:8a:e3:c4:f9:34:b2:73:1d:cb:7f:55:c4:5d:06:7c: 8c:63:40:cc:ad:e6:0f:ea:e5:da:0a:b0:d3:5b:9e:b8:2d:93: c0:cc:ee:66:d2:d3:b7:8d:67:20:b4:61:be:c5:96:ff:fb:df: ef:f0:f0:25:2b:25:89:bf:13:3b:fb:d2:40:22:7f:ff:3b:75: 26:55:95:72:c6:0b:6e:8a:3e:ab:05:83:c8:a0:97:40:92:b4: 2c:31:48:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL4kX45AC+dBU0kSEDsvFeCns1V4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTA3MDIwMTA2MjRaFw0yNTA3MDUwMTQ4MjRaMDMxMTAvBgNV BAMTKEZEMDgxRTQxNkVENzFEMjRDODRDOTY5QTJEQTk1QjhCQzY2MDc0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZX84LxTKGEvYl6VYQTTU4281P mKJn+fHadhiGYviuEElJ6S8h6np35rs6kKmt/DE8L09JMKpzgdDAzY9kYUaGhUQH NJPaTa296mLSUoGJRk/AeMBzfRMBbxXyLUfBe33j1Y06wTAwhLZTHroD2qzA6B6d 6/kEBfdxTiio9OEwuYoUjCZEr0L2arTDtmorDQl4aEZBtXMp+EpBz7Emx01vblst TTm/H9jBz3OQdhmJj46vO3sfY2fiv9FPN6IeakwBNfwWwmYgwK17JNHKNLgWrVup Y99kC5WuQQSZ23sCoH6PWYBhGqfP41ob8UFRkGoLVCyOajY1FBmOj/P9i/M1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/QgeQW7XHSTITJaaLalbi8ZgdJMwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGE4NzA2NGItNWYyNy00MjcwLTkw ZTQtOTlmNDNhZTg0ZGI3LzAvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJC OUY0RTRBMkMyNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACpW0ATgF6pfJmvaNRU+n1oyIRD51B/ZFLIj kCnwMuofeo6rxHtASvtMJ7f4ujIrpirICdOxEHczp54r1/bs0EY+5eY9V4yFIUec p2KqLNf3GMjNy7B17qNTHXO+3cIMHFB7ruLfD10kRxOSuxRGFXS4mP7ZVh4mX65Z pXzOl68AJPh1WamBYzSwZt5lsEfvgGNW3SiQYc12UWdTmuy7UXiHv7+MWorjxPk0 snMdy39VxF0GfIxjQMyt5g/q5doKsNNbnrgtk8DM7mbS07eNZyC0Yb7Flv/73+/w 8CUrJYm/Ezv70kAif/87dSZVlXLGC26KPqsFg8igl0CStCwxSMc= -----END CERTIFICATE-----Generated at Wed Jul 2 05:06:02 2025 by rpki-client