$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft File: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft (raw, json) Hash identifier: UQWf5gnZrqNA+SH5FGAtmbaUGhHHciXBBvwMLI9eQY8= Subject key identifier: 79:B5:A9:F7:57:57:74:3A:23:53:D9:98:88:51:E2:20:4F:77:AD:1D Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 55C852050A4C6B3E22472E9A0925C9BB804F3501 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft Manifest number: 0294 Signing time: Fri 22 Aug 2025 03:21:35 +0000 Manifest this update: Fri 22 Aug 2025 03:16:35 +0000 Manifest next update: Mon 25 Aug 2025 06:35:35 +0000 Files and hashes: 1: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl (hash: +9gtYqkR2nrL8GJjwRgshhIjoEFY2517kOO3MaUfmO8=) 2: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (hash: K+UHygo4qrap0HRp21an4Bv2wYIc+LITQ2V+cthKQG0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 06:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c8:52:05:0a:4c:6b:3e:22:47:2e:9a:09:25:c9:bb:80:4f:35:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Aug 22 03:16:35 2025 GMT Not After : Aug 25 06:35:35 2025 GMT Subject: CN=79B5A9F75757743A2353D9988851E2204F77AD1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4f:a0:bd:37:b0:c3:b1:36:60:73:29:7f:2f: cd:29:dc:41:ad:af:81:f5:7c:98:7c:fa:db:ea:cb: a3:a9:0b:8d:68:a1:d6:6c:90:ad:43:78:bf:13:76: b5:91:22:22:79:f5:e0:be:31:da:b4:c9:ca:e9:0a: d3:bf:8b:e5:da:34:cb:f0:d1:f9:f7:6c:01:23:85: 7c:36:d6:9b:53:e8:7e:80:f1:91:0f:c1:70:4b:d7: a2:70:85:34:1b:21:1e:3e:13:43:42:a0:49:d4:55: 7a:bb:39:12:40:5b:32:e6:89:7c:69:f3:ee:6b:15: 4b:43:c9:93:6d:d4:8a:5c:55:6b:d9:8d:9c:93:84: 8a:9e:ba:8a:4b:c8:5a:96:d6:d2:26:fc:9a:0f:35: 7a:23:60:f9:a4:61:4d:9e:39:f5:3f:df:9d:27:ba: bb:55:39:ea:6a:86:f8:96:12:b6:ca:dd:61:2a:79: 74:e7:b5:ca:f2:9e:3e:95:92:aa:6d:1b:f5:40:42: 62:3f:0c:09:01:46:e0:9e:97:3a:ca:3a:7f:aa:25: 01:5c:cb:c1:87:26:e3:4f:81:36:6d:31:37:55:0b: 9f:e5:20:38:a7:de:b4:05:1d:9c:04:a1:1a:86:d4: b6:df:85:31:88:9a:d0:ac:46:6e:91:36:3d:94:ea: af:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B5:A9:F7:57:57:74:3A:23:53:D9:98:88:51:E2:20:4F:77:AD:1D X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:80:cd:08:1c:91:65:ee:96:1d:6c:e6:17:2c:0c:0d:53:18: 41:8c:fa:f1:0f:be:a5:3c:28:a4:f2:2e:e6:2b:b0:f9:ed:ea: af:b2:75:38:c1:31:37:66:56:0e:d7:ce:6b:18:b0:37:4f:1e: 78:a5:2f:e9:b3:b3:b9:56:cc:81:11:6c:64:d4:82:12:d5:98: 13:7c:3e:c3:43:d7:f7:53:f9:2e:b5:1e:b5:78:ba:5f:3f:31: 96:7a:98:dc:05:e3:46:96:70:d4:30:50:34:da:5f:a2:f2:0e: 9f:c1:c5:d3:2c:da:3b:c6:73:12:92:36:7a:c3:65:9a:9b:c0: fe:73:4e:8d:c3:c3:11:e6:17:b5:11:b7:44:c9:c0:02:2c:cb: 3d:93:9e:67:31:f2:f2:9c:50:02:62:b2:a6:f5:fc:64:df:41: 39:85:81:5c:97:e8:48:e8:48:54:63:89:da:9e:40:43:64:65: a6:24:54:1c:33:df:df:d3:fa:b4:db:b9:b3:05:38:28:ea:56: eb:e8:3b:17:ca:2b:97:f6:5b:05:44:18:cb:3b:1e:f2:a0:1c: 2c:89:64:3d:d6:d7:8f:e2:b7:35:9f:97:49:0f:65:dc:9f:ed: 64:bc:31:7a:97:b6:e8:56:01:4f:31:0b:bc:18:fa:9f:2d:b7: 09:6c:ee:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVchSBQpMaz4iRy6aCSXJu4BPNQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNTA4MjIwMzE2MzVaFw0yNTA4MjUwNjM1MzVaMDMxMTAvBgNV BAMTKDc5QjVBOUY3NTc1Nzc0M0EyMzUzRDk5ODg4NTFFMjIwNEY3N0FEMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7T6C9N7DDsTZgcyl/L80p3EGt r4H1fJh8+tvqy6OpC41oodZskK1DeL8TdrWRIiJ59eC+Mdq0ycrpCtO/i+XaNMvw 0fn3bAEjhXw21ptT6H6A8ZEPwXBL16JwhTQbIR4+E0NCoEnUVXq7ORJAWzLmiXxp 8+5rFUtDyZNt1IpcVWvZjZyThIqeuopLyFqW1tIm/JoPNXojYPmkYU2eOfU/350n urtVOepqhviWErbK3WEqeXTntcrynj6VkqptG/VAQmI/DAkBRuCelzrKOn+qJQFc y8GHJuNPgTZtMTdVC5/lIDin3rQFHZwEoRqG1LbfhTGImtCsRm6RNj2U6q93AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUebWp91dXdDojU9mYiFHiIE93rR0wHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmQ3ZjllZjQtZjk5Zi00NGZmLWI5 NjgtNzBkNDUyNGQ3MjA3LzAvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJB QzMxRDMzN0FDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD2AzQgckWXulh1s5hcsDA1TGEGM+vEPvqU8 KKTyLuYrsPnt6q+ydTjBMTdmVg7XzmsYsDdPHnilL+mzs7lWzIERbGTUghLVmBN8 PsND1/dT+S61HrV4ul8/MZZ6mNwF40aWcNQwUDTaX6LyDp/BxdMs2jvGcxKSNnrD ZZqbwP5zTo3DwxHmF7URt0TJwAIsyz2Tnmcx8vKcUAJisqb1/GTfQTmFgVyX6Ejo SFRjidqeQENkZaYkVBwz39/T+rTbubMFOCjqVuvoOxfKK5f2WwVEGMs7HvKgHCyJ ZD3W14/itzWfl0kPZdyf7WS8MXqXtuhWAU8xC7wY+p8ttwls7ps= -----END CERTIFICATE-----Generated at Sat Aug 23 12:10:34 2025 by rpki-client