$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft File: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft (raw, json) Hash identifier: P2Q7SFF1d3uv/FhpR55UGrMsMeJh2HRxzOKe3aIIPWg= Subject key identifier: DA:D8:35:BC:25:A5:BF:B6:BE:88:30:CE:48:74:F9:CA:2B:62:2E:8D Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 43E2FC670E1BF0EAFEAE10E7DB9AE4183DAD20C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft Manifest number: 0189 Signing time: Sat 23 Aug 2025 07:11:15 +0000 Manifest this update: Sat 23 Aug 2025 07:06:15 +0000 Manifest next update: Tue 26 Aug 2025 17:47:15 +0000 Files and hashes: 1: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: 6gVzJ3lnoTzbRecAFAnRC8x24kDXXXW3lAWqPBdz2dw=) 2: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl (hash: vYm0NW4YQmIaReshlFLtXbilEKeE30yqj8QrUgMzh/4=) 3: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: JiNsqLJvEYFIyhrR6R0JR1hrj3KWiaaB75HG9L5QPcg=) 4: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: Q3xxSdQXC23vXFGFdHyLQV020HZB9BgH6IL3S5vtQAA=) 5: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: 6N2J2kg+Zlk+0sQHWC1BIhfECV5xjbZiRhQRFmUUNag=) 6: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: 1f4e1XEuXG9su40zHvwmNI+q39l2fKb22IFThBoIE0Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 17:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e2:fc:67:0e:1b:f0:ea:fe:ae:10:e7:db:9a:e4:18:3d:ad:20:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Aug 23 07:06:15 2025 GMT Not After : Aug 26 17:47:15 2025 GMT Subject: CN=DAD835BC25A5BFB6BE8830CE4874F9CA2B622E8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e9:ee:7c:3f:7b:0d:45:c7:21:55:eb:bb:04: 4e:85:1f:87:f9:61:1d:af:43:42:40:57:b2:58:63: 5c:74:1b:60:f5:bf:34:aa:fc:36:62:28:d3:15:fc: ea:70:b9:0b:08:14:80:49:bf:e4:58:0c:71:fc:43: a6:fd:2d:2e:b0:22:04:ea:d4:c9:31:eb:4b:cb:81: 77:ca:da:c5:28:b4:0a:96:66:cd:26:83:b4:77:6d: d8:07:2e:7e:b9:99:8c:62:d0:85:e0:f2:a1:6f:38: cd:d2:24:76:73:9b:9e:e2:af:b7:c2:c4:03:0d:a6: bf:81:84:3d:10:b0:d8:f1:85:2c:36:b0:a3:7e:c7: 61:6e:d1:de:e1:e7:e0:51:01:75:5a:fc:57:66:34: f4:a2:c2:69:5b:b0:6e:c5:a6:73:c3:2f:6f:a6:04: 85:24:ac:7f:c2:ab:d2:f0:3f:4c:b9:8d:e6:ac:15: 22:18:1a:ce:61:4e:8d:8c:5f:99:22:71:38:97:5d: a4:3e:88:36:eb:5f:46:f0:0c:f8:e8:01:71:43:20: 0e:61:63:e2:f5:b4:16:27:01:a5:20:b6:a4:44:d3: 48:80:3a:b6:7e:19:18:dc:f2:0d:17:06:e1:53:7b: 39:8a:92:57:6f:93:e1:22:e9:28:dd:19:74:f1:74: 82:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D8:35:BC:25:A5:BF:B6:BE:88:30:CE:48:74:F9:CA:2B:62:2E:8D X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:7c:ac:44:05:50:44:aa:d9:dc:93:07:6c:cc:1c:d9:c2:b2: c5:26:81:8f:7d:59:3d:6c:6b:25:23:9f:8a:a4:3c:50:89:02: ed:49:f9:15:a8:fc:68:39:c0:1e:d2:00:b9:9f:15:ab:69:77: 3c:29:6b:04:a5:a4:89:ab:39:f1:06:9c:04:0f:4e:61:9b:05: ec:49:1c:17:3d:6a:bf:b0:99:6d:af:ab:f1:b9:f8:e8:a6:78: 02:6e:52:11:de:c1:41:69:cc:f9:ae:20:40:0c:ad:e4:c3:98: fa:42:5a:df:c9:1c:d1:a0:d3:09:05:d5:f1:06:8a:5c:8e:2f: 53:e2:83:af:9e:40:c6:c5:c6:48:f7:ca:0a:e8:0f:39:b8:54: 95:45:c2:3a:24:d5:a1:c6:9c:31:59:b5:e6:ef:a8:41:9e:3e: 86:57:95:78:ad:f9:e4:ee:68:18:97:26:d6:d8:59:ba:66:44: 41:17:24:60:b7:62:7e:72:be:12:88:84:eb:fc:df:f8:f6:a8: e0:19:53:4e:0d:86:b9:33:7e:75:a5:ea:30:c5:e3:f1:a9:17: b9:d1:bd:74:1d:25:78:9c:3a:1d:68:f3:1a:36:2e:ba:3e:0c: 29:13:f5:58:28:7c:6b:b8:2d:5e:cd:0f:72:51:f2:0f:5f:a0: fb:0b:a9:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ+L8Zw4b8Or+rhDn25rkGD2tIMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTA4MjMwNzA2MTVaFw0yNTA4MjYxNzQ3MTVaMDMxMTAvBgNV BAMTKERBRDgzNUJDMjVBNUJGQjZCRTg4MzBDRTQ4NzRGOUNBMkI2MjJFOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW6e58P3sNRcchVeu7BE6FH4f5 YR2vQ0JAV7JYY1x0G2D1vzSq/DZiKNMV/OpwuQsIFIBJv+RYDHH8Q6b9LS6wIgTq 1Mkx60vLgXfK2sUotAqWZs0mg7R3bdgHLn65mYxi0IXg8qFvOM3SJHZzm57ir7fC xAMNpr+BhD0QsNjxhSw2sKN+x2Fu0d7h5+BRAXVa/FdmNPSiwmlbsG7FpnPDL2+m BIUkrH/Cq9LwP0y5jeasFSIYGs5hTo2MX5kicTiXXaQ+iDbrX0bwDPjoAXFDIA5h Y+L1tBYnAaUgtqRE00iAOrZ+GRjc8g0XBuFTezmKkldvk+Ei6SjdGXTxdIJ/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2tg1vCWlv7a+iDDOSHT5yitiLo0wHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4 MDlCNTM2OTVGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAV8rEQFUESq2dyTB2zMHNnCssUmgY99WT1s ayUjn4qkPFCJAu1J+RWo/Gg5wB7SALmfFatpdzwpawSlpImrOfEGnAQPTmGbBexJ HBc9ar+wmW2vq/G5+OimeAJuUhHewUFpzPmuIEAMreTDmPpCWt/JHNGg0wkF1fEG ilyOL1Pig6+eQMbFxkj3ygroDzm4VJVFwjok1aHGnDFZtebvqEGePoZXlXit+eTu aBiXJtbYWbpmREEXJGC3Yn5yvhKIhOv83/j2qOAZU04NhrkzfnWl6jDF4/GpF7nR vXQdJXicOh1o8xo2Lro+DCkT9VgofGu4LV7ND3JR8g9foPsLqdY= -----END CERTIFICATE-----Generated at Sat Aug 23 19:46:36 2025 by rpki-client