$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft (raw, json) Hash identifier: 5n3nE4pwTamPTCYNaBjv/ZoRNydQyElE8KAfg6V+RLg= Subject key identifier: B2:1A:82:DD:DB:32:28:C0:B3:94:CE:DD:89:B9:2D:9C:24:7A:B0:A8 Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 0FB642E1A81363A8FCB58A8E30281E93F4C7CCAA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft Manifest number: 8B Signing time: Mon 30 Jun 2025 19:40:49 +0000 Manifest this update: Mon 30 Jun 2025 19:35:49 +0000 Manifest next update: Fri 04 Jul 2025 00:35:49 +0000 Files and hashes: 1: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (hash: MO6/lQY/Nl8VnXin+gA+foQOLuvJOUz6SX7TNLs7MqE=) 2: 3136302e32322e3235312e302f32342d3234203d3e20313430343536.roa (hash: k9ZzAkFQGvt+xqoKJ82nD9k3QBtwiwB5qwFg/LMZg2I=) 3: 3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa (hash: oOhjxNchKYaSdtA4Y1DYNdIAblAIJ4R/DzgKf/zg2vo=) 4: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl (hash: 8SFfIBCPytp8ISCkELM0X2ApyYOPctVIQOQW1HhysIo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 00:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b6:42:e1:a8:13:63:a8:fc:b5:8a:8e:30:28:1e:93:f4:c7:cc:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: Jun 30 19:35:49 2025 GMT Not After : Jul 4 00:35:49 2025 GMT Subject: CN=B21A82DDDB3228C0B394CEDD89B92D9C247AB0A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2d:be:c6:9e:3c:de:93:4f:da:ac:f6:5a:d5: a7:51:fb:6d:7b:30:60:d9:af:9f:2c:8f:39:7c:23: 28:19:64:b9:19:07:12:93:c3:58:85:3a:3e:b1:b7: 99:73:11:49:f7:7b:03:f5:18:62:3f:fc:e5:71:54: 48:e6:ae:23:94:de:0f:6e:1b:23:c3:24:b9:da:25: f9:56:cc:6b:1d:37:5a:9b:81:41:e5:74:21:7c:a4: d5:80:9f:5f:8b:8d:a1:17:65:4a:87:e0:5c:4f:1b: e0:25:70:63:27:73:b2:16:0e:93:56:ef:29:33:c3: e4:c8:58:05:81:59:bd:c0:cf:08:0e:85:05:a2:b8: e9:7c:01:57:41:f2:2d:ae:82:3f:55:23:56:30:bb: d7:31:ca:ff:ce:d8:43:90:21:b7:b5:9a:45:7f:b7: 17:0f:53:0a:cb:ac:2c:e2:f6:cf:47:e7:61:f3:05: 41:03:db:23:8d:60:0c:23:4e:88:32:9a:bb:09:b0: 38:8a:74:be:d3:4f:af:3c:1f:3c:c8:bf:ac:7f:6e: 3b:57:90:65:a7:66:1c:2f:65:50:e0:52:95:12:59: 03:ad:9c:4e:e2:c6:05:3c:3f:ad:4d:79:7e:46:ec: 88:e3:45:4f:6d:e5:55:2a:be:20:9f:08:94:86:2b: fc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1A:82:DD:DB:32:28:C0:B3:94:CE:DD:89:B9:2D:9C:24:7A:B0:A8 X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:92:7a:d3:e0:f0:0e:98:70:5e:14:ed:32:b9:14:d1:b6:8a: ef:bf:c7:6a:99:0d:10:34:d1:7d:19:d3:03:19:da:7b:26:d8: 12:69:97:b0:75:5b:a1:a0:4e:67:92:fd:5f:47:f5:46:6f:58: d1:30:22:eb:c6:f3:bb:3d:cb:1f:1e:01:ea:81:c5:77:1b:4d: 92:28:f4:c9:20:f8:f6:e4:b9:51:b0:d8:42:1b:2b:d8:28:ec: 03:84:2f:c1:80:cf:34:ed:82:98:c8:37:83:a1:ca:aa:9c:35: 29:65:2f:1e:dc:8f:da:1f:ae:4d:97:c2:12:af:2c:93:2c:32: 03:b4:20:9d:f2:12:62:40:d9:a1:5d:48:a6:fd:b8:0a:e0:f4: 4d:f1:c7:d6:30:b3:31:9f:6a:cc:72:63:99:69:ab:5b:5c:2e: 7d:3c:82:32:9c:71:6b:b6:ad:af:f4:0f:e9:34:56:82:c8:4c: d5:c0:89:54:e1:18:15:db:fd:60:be:f0:51:e1:95:a6:7b:3d: 4a:eb:4e:d0:42:ad:61:89:a2:e6:da:2b:79:06:7b:44:30:f7: 28:b1:c6:d0:e7:e1:df:7f:35:0c:75:84:bf:b6:30:b8:d1:3e: 38:09:17:39:aa:94:14:58:7a:a4:32:87:c6:d4:3e:90:68:72: 34:8e:bf:3e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD7ZC4agTY6j8tYqOMCgek/THzKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNTA2MzAxOTM1NDlaFw0yNTA3MDQwMDM1NDlaMDMxMTAvBgNV BAMTKEIyMUE4MkREREIzMjI4QzBCMzk0Q0VERDg5QjkyRDlDMjQ3QUIwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYLb7Gnjzek0/arPZa1adR+217 MGDZr58sjzl8IygZZLkZBxKTw1iFOj6xt5lzEUn3ewP1GGI//OVxVEjmriOU3g9u GyPDJLnaJflWzGsdN1qbgUHldCF8pNWAn1+LjaEXZUqH4FxPG+AlcGMnc7IWDpNW 7ykzw+TIWAWBWb3AzwgOhQWiuOl8AVdB8i2ugj9VI1Ywu9cxyv/O2EOQIbe1mkV/ txcPUwrLrCzi9s9H52HzBUED2yONYAwjTogymrsJsDiKdL7TT688HzzIv6x/bjtX kGWnZhwvZVDgUpUSWQOtnE7ixgU8P61NeX5G7IjjRU9t5VUqviCfCJSGK/xLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUshqC3dsyKMCzlM7dibktnCR6sKgwHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA4YWIxNTctZDgyNy00OWE4LWJi ODYtMjhiZTEzMWMzZDI2LzAvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVG QzBFOUIyREEzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAySetPg8A6YcF4U7TK5FNG2iu+/x2qZDRA0 0X0Z0wMZ2nsm2BJpl7B1W6GgTmeS/V9H9UZvWNEwIuvG87s9yx8eAeqBxXcbTZIo 9Mkg+PbkuVGw2EIbK9go7AOEL8GAzzTtgpjIN4OhyqqcNSllLx7cj9ofrk2XwhKv LJMsMgO0IJ3yEmJA2aFdSKb9uArg9E3xx9YwszGfasxyY5lpq1tcLn08gjKccWu2 ra/0D+k0VoLITNXAiVThGBXb/WC+8FHhlaZ7PUrrTtBCrWGJoubaK3kGe0Qw9yix xtDn4d9/NQx1hL+2MLjRPjgJFzmqlBRYeqQyh8bUPpBocjSOvz4= -----END CERTIFICATE-----Generated at Tue Jul 1 19:50:25 2025 by rpki-client