$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: E5QsQ8pLF7qGigcZdYr4m9X7tKRSOxCSlcuGVHj3Rww= Subject key identifier: 84:A7:E2:1A:B7:1B:69:4E:EE:EA:CA:62:E3:3C:95:DF:81:85:A1:EC Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 3DA3BF68A4D97283C1B69E5E2FC1FDF9D04E4A1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 01F8 Signing time: Thu 21 Aug 2025 23:00:53 +0000 Manifest this update: Thu 21 Aug 2025 22:55:53 +0000 Manifest next update: Mon 25 Aug 2025 10:58:53 +0000 Files and hashes: 1: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: 47QPFOL8mX/2udY1mOS7qf+KUtielu2a/Cdc0urYGrc=) 2: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: NcRBqt1Wn/tuGvM1xfS0JFewwd6sRo22gfKxjNahc88=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 10:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a3:bf:68:a4:d9:72:83:c1:b6:9e:5e:2f:c1:fd:f9:d0:4e:4a:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Aug 21 22:55:53 2025 GMT Not After : Aug 25 10:58:53 2025 GMT Subject: CN=84A7E21AB71B694EEEEACA62E33C95DF8185A1EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:90:cf:70:4a:13:24:dc:a0:8f:36:b6:45:69: 9d:fd:ef:bc:f5:02:3f:fb:d9:db:28:a4:fe:81:fc: 71:a3:c3:10:04:ec:69:59:57:1e:00:41:44:be:2c: e5:23:ce:4b:ba:44:83:ad:ed:18:f8:e9:b7:24:7a: 70:47:d9:e5:7b:04:5c:1a:4f:8a:f0:51:5c:b0:a1: 72:cc:82:80:eb:53:54:bb:76:6d:94:b8:3a:76:5e: bf:57:75:2b:54:20:0f:cb:92:7f:52:89:ae:ba:d0: 36:d1:85:8a:75:ff:1c:b7:7b:d5:3e:1d:d3:46:36: 7a:c7:c4:79:6c:29:f6:a2:38:c7:f5:aa:b2:3a:2e: 4a:f9:45:35:70:79:e7:40:d8:f2:f6:4f:70:ef:20: 32:79:a1:0d:a0:a4:33:dd:6d:12:37:6f:a6:5b:e1: a0:79:99:c7:ec:94:5f:1d:26:ff:08:6b:81:39:bf: db:b7:b5:c5:46:bc:90:55:d8:6d:e5:9c:0f:82:15: 58:de:ee:16:1b:b9:5d:65:7a:71:8f:a5:82:d9:f3: 24:81:17:cb:c5:c9:33:a6:21:33:eb:61:7e:2e:b9: 63:77:6a:38:b4:3f:4f:e2:3f:eb:fd:ab:bb:d2:f5: 04:e2:3e:8f:89:5f:c9:21:6a:cf:e1:21:61:af:77: 1d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A7:E2:1A:B7:1B:69:4E:EE:EA:CA:62:E3:3C:95:DF:81:85:A1:EC X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:66:bc:f4:f0:73:2c:5e:de:58:b7:2f:98:32:d5:8b:1b:ac: 8e:2f:2c:ff:b9:cb:1f:a7:79:34:dd:38:eb:eb:f1:56:b8:6d: 8b:76:f7:c3:4c:6c:c2:f3:fc:f8:29:f8:4c:a6:93:35:bb:84: 8b:fb:d0:84:8c:6e:61:ff:14:92:e9:68:16:6a:0c:f3:4c:a3: 77:c8:4e:aa:8d:b3:89:0e:d1:0a:e5:b3:f1:7c:2b:ab:43:11: 7c:25:5a:be:6f:6d:89:d9:e0:88:14:39:1b:b6:cd:07:05:e2: 29:5e:06:23:e2:4e:48:0a:d4:41:84:54:81:7b:29:10:95:cf: dd:84:70:67:a3:a1:a9:10:bc:61:83:08:df:9b:95:be:14:d3: 53:e1:71:90:21:78:d3:23:af:73:e7:83:08:a1:cf:05:a3:57: ff:fd:5a:2c:64:25:95:75:36:47:3d:c3:95:ff:fc:09:8e:27: cd:5f:89:ce:1f:9e:99:dd:17:6a:0e:01:a8:76:fb:fc:2f:10: e0:e9:a9:05:06:c6:e9:cc:71:07:d8:a5:70:3a:79:aa:04:e9: ff:3e:63:a8:2f:88:1a:73:f6:83:a2:54:ad:7b:fd:e8:c9:8c: b2:5d:d3:80:61:51:41:ed:13:76:9f:03:9a:b5:fa:fa:7f:8f: 74:38:0e:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPaO/aKTZcoPBtp5eL8H9+dBOSh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNTA4MjEyMjU1NTNaFw0yNTA4MjUxMDU4NTNaMDMxMTAvBgNV BAMTKDg0QTdFMjFBQjcxQjY5NEVFRUVBQ0E2MkUzM0M5NURGODE4NUExRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkM9wShMk3KCPNrZFaZ3977z1 Aj/72dsopP6B/HGjwxAE7GlZVx4AQUS+LOUjzku6RIOt7Rj46bckenBH2eV7BFwa T4rwUVywoXLMgoDrU1S7dm2UuDp2Xr9XdStUIA/Lkn9Sia660DbRhYp1/xy3e9U+ HdNGNnrHxHlsKfaiOMf1qrI6Lkr5RTVweedA2PL2T3DvIDJ5oQ2gpDPdbRI3b6Zb 4aB5mcfslF8dJv8Ia4E5v9u3tcVGvJBV2G3lnA+CFVje7hYbuV1lenGPpYLZ8ySB F8vFyTOmITPrYX4uuWN3aji0P0/iP+v9q7vS9QTiPo+JX8khas/hIWGvdx1xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhKfiGrcbaU7u6spi4zyV34GFoewwHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAApmvPTwcyxe3li3L5gy1YsbrI4vLP+5yx+n eTTdOOvr8Va4bYt298NMbMLz/Pgp+EymkzW7hIv70ISMbmH/FJLpaBZqDPNMo3fI TqqNs4kO0Qrls/F8K6tDEXwlWr5vbYnZ4IgUORu2zQcF4ileBiPiTkgK1EGEVIF7 KRCVz92EcGejoakQvGGDCN+blb4U01PhcZAheNMjr3PngwihzwWjV//9WixkJZV1 Nkc9w5X//AmOJ81fic4fnpndF2oOAah2+/wvEODpqQUGxunMcQfYpXA6eaoE6f8+ Y6gviBpz9oOiVK17/ejJjLJd04BhUUHtE3afA5q1+vp/j3Q4Dv0= -----END CERTIFICATE-----Generated at Sat Aug 23 13:36:33 2025 by rpki-client