$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft (raw, json) Hash identifier: I+clGIBHgRDOr1k4WuEq/ySlyWX2sWVEw4GDJ4CFDr0= Subject key identifier: B3:F6:64:84:98:1D:BB:3C:E9:62:99:32:77:5B:E2:57:01:35:A5:39 Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 1C66E1D2EFA6D3B6FA4C1063CEE089462E6EFA11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft Manifest number: BC Signing time: Sat 18 Oct 2025 19:20:47 +0000 Manifest this update: Sat 18 Oct 2025 19:15:47 +0000 Manifest next update: Wed 22 Oct 2025 05:33:47 +0000 Files and hashes: 1: 3136302e32322e3235312e302f32342d3234203d3e20313430343536.roa (hash: 9NuukBIDDZ7f6DuKuIwjkGDhtnMzcPyVVkUYuDF3dPM=) 2: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl (hash: bj93bS/ttsTDOrnrGSsLQIiQe7YvIo+PgREQou4sCsk=) 3: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (hash: NLnyyxEhnshl8M0vZmmh6y422VBLzdBQzG682UNLOQc=) 4: 3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa (hash: OJeztSNPa6Ny2Jrl9pv1yxSSkQT/t6rbcjh/ieoX/VA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 05:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:66:e1:d2:ef:a6:d3:b6:fa:4c:10:63:ce:e0:89:46:2e:6e:fa:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: Oct 18 19:15:47 2025 GMT Not After : Oct 22 05:33:47 2025 GMT Subject: CN=B3F66484981DBB3CE9629932775BE2570135A539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c0:d0:c6:a7:3e:54:10:8a:22:a6:94:9c:2b: e2:c3:47:5b:d0:c1:5b:76:3e:e5:42:1b:a6:bd:d8: fc:ed:e5:45:ae:dd:32:2c:76:74:b2:eb:e1:68:69: 11:b1:17:dc:b5:f4:03:61:3c:cc:a8:da:9d:64:c3: 3f:1e:84:a6:a9:e7:0d:cc:6d:53:1a:71:77:da:5c: 56:7f:0d:81:17:38:ac:e5:b6:c7:13:e8:f0:42:7c: cc:a9:56:43:5a:2c:9e:5e:c5:be:2e:85:b8:db:31: 5a:36:05:0c:1e:66:7c:92:7b:71:c5:35:15:af:83: b9:d2:d4:52:c8:6f:00:d0:b7:a6:03:e3:64:ab:99: 45:9f:10:6d:98:ae:ef:da:69:ed:85:e0:b1:ee:0f: a9:24:01:d1:40:6b:75:37:cf:b3:c4:87:e6:d5:21: 89:99:61:4a:38:7f:de:96:7f:d1:18:0b:8a:e0:28: 63:be:59:6b:84:17:b7:f7:97:cc:02:08:51:dd:39: 31:aa:39:75:e8:00:0a:fc:e0:62:eb:a8:ec:c9:77: 31:2c:c7:bf:21:38:f0:28:6e:24:a5:59:d2:3e:5f: 5e:86:09:a0:63:e1:a0:ce:63:71:2c:8a:b0:1d:ea: 67:8d:24:c2:c5:b0:cf:76:17:60:39:a5:db:26:87: ca:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F6:64:84:98:1D:BB:3C:E9:62:99:32:77:5B:E2:57:01:35:A5:39 X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:bb:73:b4:31:9d:bc:fc:b5:b2:54:a2:4a:0e:83:79:23:9f: 3a:f9:61:78:90:41:a5:8f:79:c3:15:bc:0a:d5:e3:c6:14:6d: 04:5a:08:29:2d:09:48:10:cf:c4:cf:40:c9:76:44:0b:4f:ef: 4d:bb:84:fa:54:6f:f3:f0:08:bb:e9:ed:57:b0:12:5c:16:43: 97:4f:07:78:b1:5e:bd:35:5a:95:59:9b:34:70:e7:2b:a7:00: 71:00:ef:72:cb:a2:f9:84:ec:b7:b9:84:46:9b:4e:69:96:9c: 08:90:a4:bb:8f:18:22:2b:75:14:db:f1:20:d0:79:e8:ff:36: 16:72:29:a8:66:f8:68:a3:aa:f8:18:24:c3:5c:a9:f7:d1:7c: f7:18:ed:bd:30:f3:2d:00:07:1b:f5:0b:9a:3f:39:28:5b:0b: 90:32:c4:ea:39:d9:ac:36:72:90:b4:d8:f1:40:18:d2:11:8e: d0:89:3b:91:58:33:15:25:9f:61:c3:da:63:29:b9:34:25:cc: ee:20:a1:8c:0b:2e:e3:34:fd:6e:3b:c3:d4:cb:5f:7e:ef:6f: 09:ed:6c:24:97:bd:3a:e7:77:6a:7f:ca:96:19:1e:7d:9f:63: b4:a9:4e:1c:98:1d:b4:63:c0:dd:c6:d3:99:bf:7a:77:2f:f2: 25:3d:7c:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHGbh0u+m07b6TBBjzuCJRi5u+hEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNTEwMTgxOTE1NDdaFw0yNTEwMjIwNTMzNDdaMDMxMTAvBgNV BAMTKEIzRjY2NDg0OTgxREJCM0NFOTYyOTkzMjc3NUJFMjU3MDEzNUE1MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWwNDGpz5UEIoippScK+LDR1vQ wVt2PuVCG6a92Pzt5UWu3TIsdnSy6+FoaRGxF9y19ANhPMyo2p1kwz8ehKap5w3M bVMacXfaXFZ/DYEXOKzltscT6PBCfMypVkNaLJ5exb4uhbjbMVo2BQweZnySe3HF NRWvg7nS1FLIbwDQt6YD42SrmUWfEG2Yru/aae2F4LHuD6kkAdFAa3U3z7PEh+bV IYmZYUo4f96Wf9EYC4rgKGO+WWuEF7f3l8wCCFHdOTGqOXXoAAr84GLrqOzJdzEs x78hOPAobiSlWdI+X16GCaBj4aDOY3EsirAd6meNJMLFsM92F2A5pdsmh8pjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs/ZkhJgduzzpYpkyd1viVwE1pTkwHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA4YWIxNTctZDgyNy00OWE4LWJi ODYtMjhiZTEzMWMzZDI2LzAvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVG QzBFOUIyREEzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK67c7Qxnbz8tbJUokoOg3kjnzr5YXiQQaWP ecMVvArV48YUbQRaCCktCUgQz8TPQMl2RAtP7027hPpUb/PwCLvp7VewElwWQ5dP B3ixXr01WpVZmzRw5yunAHEA73LLovmE7Le5hEabTmmWnAiQpLuPGCIrdRTb8SDQ eej/NhZyKahm+GijqvgYJMNcqffRfPcY7b0w8y0ABxv1C5o/OShbC5AyxOo52aw2 cpC02PFAGNIRjtCJO5FYMxUln2HD2mMpuTQlzO4goYwLLuM0/W47w9TLX37vbwnt bCSXvTrnd2p/ypYZHn2fY7SpThyYHbRjwN3G05m/encv8iU9fCo= -----END CERTIFICATE-----Generated at Mon Oct 20 08:45:41 2025 by rpki-client