$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft File: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft (raw, json) Hash identifier: cwDuc0a81NiAYaAWoLa12Yplkv/k5OS34zMnmpIlM3w= Subject key identifier: D3:3F:39:05:30:AB:7E:E9:13:39:5B:F1:6E:98:A3:80:22:6F:82:E6 Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 31A84DB7A9572B4F8252F36C4DDB315807697250 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft Manifest number: 027C Signing time: Sun 29 Jun 2025 14:01:33 +0000 Manifest this update: Sun 29 Jun 2025 13:56:33 +0000 Manifest next update: Wed 02 Jul 2025 14:45:33 +0000 Files and hashes: 1: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (hash: K+UHygo4qrap0HRp21an4Bv2wYIc+LITQ2V+cthKQG0=) 2: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl (hash: a/SNW3n3AeNwbx76Qd2PcjxUDb6qiCI1yolImr3zHFA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 14:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a8:4d:b7:a9:57:2b:4f:82:52:f3:6c:4d:db:31:58:07:69:72:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Jun 29 13:56:33 2025 GMT Not After : Jul 2 14:45:33 2025 GMT Subject: CN=D33F390530AB7EE913395BF16E98A380226F82E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:32:99:4b:b8:ad:86:d2:3f:08:db:3d:45: 6d:9f:93:19:22:b8:ca:e7:57:7d:18:07:c1:c4:9a: 3a:aa:fe:c4:93:6e:34:e7:43:28:50:11:75:1e:02: 37:7c:af:a2:75:91:76:01:5b:8e:c3:ad:74:7c:de: 39:57:d6:e0:1a:7e:7f:95:e1:29:99:10:ec:70:cb: 32:21:44:09:40:0f:73:14:4d:81:d6:b1:1c:ca:80: 4f:11:6b:02:a5:1d:0a:ac:31:90:97:c7:94:da:3d: 9b:93:19:e1:9c:b0:80:0d:49:ee:9d:ab:9a:b3:39: 94:17:1b:e2:9c:f6:cc:86:48:94:8b:40:59:45:50: e9:39:c1:09:59:9e:65:5b:79:ce:e5:69:c7:f3:8f: 2f:b8:f9:2a:88:ad:cd:0c:7c:d7:ce:d4:2c:e0:4b: 40:06:11:ec:81:59:a4:58:a5:ea:79:dd:94:69:66: 8e:0e:f6:1a:30:45:65:f3:08:da:37:fd:b6:5d:cd: fe:3e:e2:8e:41:b1:39:d8:15:34:e5:ff:37:66:05: 7b:16:cc:6a:5e:26:83:8f:a7:80:c4:82:9a:06:b7: 34:6a:7b:bd:a6:78:8a:6d:41:a2:71:21:7d:0e:ca: 44:26:f2:8e:e7:00:ab:8d:0d:87:4f:e0:98:6b:df: d3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3F:39:05:30:AB:7E:E9:13:39:5B:F1:6E:98:A3:80:22:6F:82:E6 X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:ec:87:ff:09:70:0b:64:8d:40:79:3e:84:ca:2b:f8:a7:d5: d7:5f:0c:ce:08:27:db:b5:ff:ce:7d:05:6a:bb:9b:fc:5d:19: 15:e0:d7:53:d9:f2:44:58:2b:fe:49:2a:ca:9b:17:ab:9d:2c: db:e1:b0:9a:12:66:4a:e9:8f:2c:9c:69:56:8a:0a:86:9d:01: 6b:a9:77:a8:c6:58:4f:d8:14:20:1d:d6:69:c2:31:a9:a3:e0: 4a:dc:b5:7b:58:a4:03:04:1a:38:9c:f7:6c:02:6e:e4:ac:b0: 6b:2c:42:7f:45:21:33:26:da:ec:37:e5:43:cc:1d:5d:e4:98: 60:0d:fc:2f:58:63:af:a4:5c:62:c1:6f:06:31:ee:9c:32:9f: ab:58:23:32:42:0b:bb:92:b8:6d:47:ba:55:4c:99:c4:51:3c: ca:26:32:e7:98:67:a5:15:45:b5:73:6e:cc:60:28:7c:b4:1a: 0a:3a:ad:4b:9e:1c:9d:6c:2c:46:dc:71:cc:13:b3:fa:e2:ac: 29:c4:ba:7b:f5:4f:1b:f7:1e:12:80:59:f0:f3:d7:d6:24:ce: 31:46:7a:ea:a8:eb:5c:a1:58:05:8b:f5:1a:a9:cf:37:cf:6d: fc:2a:ee:29:48:a8:08:1d:71:c6:8a:dc:fe:b5:1c:e9:90:40: 06:7c:cf:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMahNt6lXK0+CUvNsTdsxWAdpclAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNTA2MjkxMzU2MzNaFw0yNTA3MDIxNDQ1MzNaMDMxMTAvBgNV BAMTKEQzM0YzOTA1MzBBQjdFRTkxMzM5NUJGMTZFOThBMzgwMjI2RjgyRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4xTKZS7ithtI/CNs9RW2fkxki uMrnV30YB8HEmjqq/sSTbjTnQyhQEXUeAjd8r6J1kXYBW47DrXR83jlX1uAafn+V 4SmZEOxwyzIhRAlAD3MUTYHWsRzKgE8RawKlHQqsMZCXx5TaPZuTGeGcsIANSe6d q5qzOZQXG+Kc9syGSJSLQFlFUOk5wQlZnmVbec7lacfzjy+4+SqIrc0MfNfO1Czg S0AGEeyBWaRYpep53ZRpZo4O9howRWXzCNo3/bZdzf4+4o5BsTnYFTTl/zdmBXsW zGpeJoOPp4DEgpoGtzRqe72meIptQaJxIX0OykQm8o7nAKuNDYdP4Jhr39N3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0z85BTCrfukTOVvxbpijgCJvguYwHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmQ3ZjllZjQtZjk5Zi00NGZmLWI5 NjgtNzBkNDUyNGQ3MjA3LzAvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJB QzMxRDMzN0FDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMLsh/8JcAtkjUB5PoTKK/in1ddfDM4IJ9u1 /859BWq7m/xdGRXg11PZ8kRYK/5JKsqbF6udLNvhsJoSZkrpjyycaVaKCoadAWup d6jGWE/YFCAd1mnCMamj4ErctXtYpAMEGjic92wCbuSssGssQn9FITMm2uw35UPM HV3kmGAN/C9YY6+kXGLBbwYx7pwyn6tYIzJCC7uSuG1HulVMmcRRPMomMueYZ6UV RbVzbsxgKHy0Ggo6rUueHJ1sLEbcccwTs/rirCnEunv1Txv3HhKAWfDz19YkzjFG euqo61yhWAWL9RqpzzfPbfwq7ilIqAgdccaK3P61HOmQQAZ8z2A= -----END CERTIFICATE-----Generated at Mon Jun 30 18:53:26 2025 by rpki-client