$ rpki-client -vvf repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft File: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft (raw, json) Hash identifier: O2xAi3VQRG5FPqtNxvNcqU/BOlWdY2p5ltjOvkhm1To= Subject key identifier: 97:5F:EB:2F:80:32:3B:87:AE:9D:2D:34:31:91:16:E7:63:59:78:03 Authority key identifier: 86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E Certificate issuer: /CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Certificate serial: 6813A4563E698EECDF850FF5BEEBB16EC39FC7E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft Manifest number: 020F Signing time: Fri 27 Jun 2025 23:41:49 +0000 Manifest this update: Fri 27 Jun 2025 23:36:48 +0000 Manifest next update: Tue 01 Jul 2025 05:23:48 +0000 Files and hashes: 1: 3130332e3138362e39322e302f32342d3234203d3e20313439363937.roa (hash: scqosPwH5BL2/2imBhyJZEPHHItlqeTByFILkve6Gxg=) 2: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl (hash: uZhFyDi9plY/+VivEH23WDH3jEq0Pe/c3WqU9Uu1EE4=) 3: 3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa (hash: pI4Ee2HOCQgHXKn0phpNZPvS39KAXUpqkjdsByhi1e8=) 4: 3130332e3138362e39322e302f32332d3234203d3e20313439363937.roa (hash: yvcS+4k20Y8iRZaWxf96+9kxISErdYY6WtdAGoUwpMc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 05:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:13:a4:56:3e:69:8e:ec:df:85:0f:f5:be:eb:b1:6e:c3:9f:c7:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Validity Not Before: Jun 27 23:36:48 2025 GMT Not After : Jul 1 05:23:48 2025 GMT Subject: CN=975FEB2F80323B87AE9D2D34319116E763597803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:1d:c5:f9:43:97:5d:d8:ff:d7:af:60:32: 1e:e6:f9:78:5d:25:1e:ad:e1:c0:af:32:74:d3:ec: 4e:5e:4a:3d:33:83:88:f6:f5:aa:a6:ee:27:35:b5: ec:3d:96:56:c4:8b:54:0f:38:7b:e9:6a:68:c4:ea: da:5e:c1:d3:c1:31:8f:65:31:64:f8:ec:a7:eb:f6: 49:50:3c:12:21:09:6b:47:86:ed:06:f5:ba:59:74: 15:19:aa:d6:11:9c:93:6f:05:61:d2:28:c7:34:f3: 1a:7e:2b:24:4e:ce:64:b9:b6:14:cd:9b:28:41:ed: d7:a1:f9:a1:ce:63:1f:e3:94:17:55:24:d1:e4:68: e8:99:95:59:f4:ae:7b:b9:3f:e4:a7:a7:82:36:cd: f7:02:dc:63:f6:b2:53:f1:b6:eb:c7:c3:ba:2f:bf: ca:42:7a:97:7f:13:2d:26:51:92:d5:1c:2c:3f:55: 96:ba:4e:9c:52:95:1d:79:db:ad:e6:42:12:51:a0: 03:45:9c:e7:d4:7b:ff:8a:d5:28:0d:63:a7:c2:94: f9:3b:c7:0b:3c:21:f4:e9:c0:31:7f:09:fb:b9:17: 0e:94:f0:a2:da:82:03:47:fb:09:8c:28:08:33:1e: 17:41:04:25:3d:67:66:86:a3:97:65:1d:64:bc:19: 7c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:5F:EB:2F:80:32:3B:87:AE:9D:2D:34:31:91:16:E7:63:59:78:03 X509v3 Authority Key Identifier: keyid:86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:c1:2e:c6:01:83:fe:4f:26:6a:c2:1b:46:6d:b9:f1:18:65: 43:e7:b7:49:69:f1:e9:f3:94:a8:1e:ad:d6:84:4d:46:68:54: 85:7f:38:2b:3b:64:86:13:3a:60:8c:34:03:db:09:ec:52:34: 02:75:38:29:a5:76:c3:29:9a:1a:61:d9:96:dd:fc:6d:b1:6c: c2:e6:86:02:ea:be:9e:70:b1:59:40:f4:b1:94:f2:68:b1:01: 86:0f:23:20:66:4c:84:ac:dd:fb:fe:d2:ec:16:06:35:2d:09: 43:98:e6:d8:4c:60:e2:87:01:f1:a3:dc:e7:ad:6d:26:b7:0d: 9e:c9:5b:c5:ac:41:96:ec:42:e5:66:5f:71:47:85:b2:52:61: 2f:52:3a:db:fe:3a:31:39:9d:09:68:e2:80:d0:40:f1:e2:36: f3:34:82:fd:f1:e5:49:1c:4d:69:f9:b0:47:96:7d:6b:46:96: c2:d3:46:28:d1:1a:94:1b:85:81:93:c4:2a:a6:bc:45:95:2c: 46:25:bd:da:a3:8f:a9:fa:a6:f7:d2:77:90:04:d8:c2:16:51: a3:22:b7:c5:af:9b:3b:b4:5e:6c:2f:e2:f6:64:22:b1:05:f5: 65:8f:a4:84:23:08:84:96:55:06:44:8e:21:c2:9c:79:51:89: 73:dd:3e:bd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaBOkVj5pjuzfhQ/1vuuxbsOfx+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdF MkZGMjYzRTAeFw0yNTA2MjcyMzM2NDhaFw0yNTA3MDEwNTIzNDhaMDMxMTAvBgNV BAMTKDk3NUZFQjJGODAzMjNCODdBRTlEMkQzNDMxOTExNkU3NjM1OTc4MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGaB3F+UOXXdj/169gMh7m+Xhd JR6t4cCvMnTT7E5eSj0zg4j29aqm7ic1tew9llbEi1QPOHvpamjE6tpewdPBMY9l MWT47Kfr9klQPBIhCWtHhu0G9bpZdBUZqtYRnJNvBWHSKMc08xp+KyROzmS5thTN myhB7deh+aHOYx/jlBdVJNHkaOiZlVn0rnu5P+Snp4I2zfcC3GP2slPxtuvHw7ov v8pCepd/Ey0mUZLVHCw/VZa6TpxSlR15263mQhJRoANFnOfUe/+K1SgNY6fClPk7 xws8IfTpwDF/Cfu5Fw6U8KLaggNH+wmMKAgzHhdBBCU9Z2aGo5dlHWS8GXyPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUl1/rL4AyO4eunS00MZEW52NZeAMwHwYDVR0j BBgwFoAUhuZ5Wsq5nPKc58fhDX/M5+L/Jj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGUxYWM3Yy05MDRkLTQ5M2YtYmE1ZS01ZTA4MzdkY2JkMjkvMC84NkU2Nzk1QUNB Qjk5Q0YyOUNFN0M3RTEwRDdGQ0NFN0UyRkYyNjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdFMkZG MjYzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTRlMWFjN2MtOTA0ZC00OTNmLWJh NWUtNWUwODM3ZGNiZDI5LzAvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkND RTdFMkZGMjYzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANLBLsYBg/5PJmrCG0ZtufEYZUPnt0lp8enz lKgerdaETUZoVIV/OCs7ZIYTOmCMNAPbCexSNAJ1OCmldsMpmhph2Zbd/G2xbMLm hgLqvp5wsVlA9LGU8mixAYYPIyBmTISs3fv+0uwWBjUtCUOY5thMYOKHAfGj3Oet bSa3DZ7JW8WsQZbsQuVmX3FHhbJSYS9SOtv+OjE5nQlo4oDQQPHiNvM0gv3x5Ukc TWn5sEeWfWtGlsLTRijRGpQbhYGTxCqmvEWVLEYlvdqjj6n6pvfSd5AE2MIWUaMi t8Wvmzu0Xmwv4vZkIrEF9WWPpIQjCISWVQZEjiHCnHlRiXPdPr0= -----END CERTIFICATE-----Generated at Sun Jun 29 18:08:05 2025 by rpki-client