$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: PrhPVqoG5zTrUYns+X0tRE0beViYvG9kaUeJqfqyGZE= Subject key identifier: A5:FF:C8:D4:A4:23:1C:8E:42:63:C7:97:E1:5E:AC:8E:48:EF:66:A6 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 7FB0ADC79549FE08073C2FF1164D977F2A1078ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 04BB Signing time: Fri 22 Aug 2025 17:51:00 +0000 Manifest this update: Fri 22 Aug 2025 17:46:00 +0000 Manifest next update: Mon 25 Aug 2025 18:48:00 +0000 Files and hashes: 1: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=) 2: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: p7znIjGrzIeqiJgSyw1Go9JzIhUPDTiZx2kzEBcMX+M=) 3: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: FqumLAE5ExkmaatbD11ff744L2iTMEhUHWhZUQWOtLU=) 4: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: ZxYCmVerMnP5m0Vxk78tSj+zj6JzlqVo5vsgWo/o4Sc=) 5: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b0:ad:c7:95:49:fe:08:07:3c:2f:f1:16:4d:97:7f:2a:10:78:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Aug 22 17:46:00 2025 GMT Not After : Aug 25 18:48:00 2025 GMT Subject: CN=A5FFC8D4A4231C8E4263C797E15EAC8E48EF66A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:52:0a:fc:0d:86:ab:e7:f6:f0:98:d4:f2: c2:5d:ee:26:2c:b1:18:15:e0:cf:25:8e:03:0f:fa: ca:0c:08:29:db:16:34:0e:91:71:c2:92:b0:8f:87: a1:bf:2e:b0:4f:cd:56:f6:cb:29:74:14:12:7e:2c: e3:15:c5:33:83:66:b5:5d:25:13:05:0c:19:39:33: 3f:d0:2a:7f:ec:99:3b:db:c9:2d:7a:76:26:12:0b: 87:ff:54:4f:86:e9:ae:3e:49:f0:2f:06:48:be:11: 99:e7:31:ff:a4:01:d6:72:ff:3b:b2:3d:85:8e:76: 30:89:f1:ae:28:7d:97:da:6a:ed:ee:3e:15:ed:f7: 9c:e3:31:a2:e1:3b:9f:7b:26:eb:4c:b6:ee:6a:5e: 70:04:ee:9f:4e:55:a6:da:8b:68:b9:26:93:41:4e: 95:83:10:a0:ef:e7:ab:85:b5:fe:b8:ca:85:b2:2a: c0:b8:fb:8e:d4:c5:6e:56:f8:41:3a:59:64:44:8c: 80:f7:0e:5c:af:dc:53:58:b9:ea:68:fb:11:28:54: 80:63:8d:d2:8d:77:bc:a1:b4:62:d9:b9:9b:e0:a4: 20:70:6d:8d:3d:21:05:55:16:e7:7c:00:95:e4:ac: 37:fe:5e:31:b8:02:c6:b3:be:37:65:29:34:10:d9: 37:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FF:C8:D4:A4:23:1C:8E:42:63:C7:97:E1:5E:AC:8E:48:EF:66:A6 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:c0:4c:0a:e8:12:ce:e4:95:fe:cf:ad:5e:dc:e2:c9:bf:ae: d7:2e:10:02:bf:52:75:fb:e1:31:1f:a8:12:fa:2b:aa:bf:ff: ca:07:77:59:7c:14:0c:53:07:43:91:e3:08:a5:59:7e:b9:0a: f8:45:48:4d:4e:ec:76:56:77:39:f5:41:33:5e:4b:4a:57:bc: 6e:64:0c:08:9d:f3:83:17:82:16:a1:66:42:a4:ab:6f:04:27: 3a:a0:80:d2:39:4c:b4:30:b3:00:cc:bf:b7:db:92:e8:28:26: d6:f4:10:2d:0e:5e:6b:6a:40:86:7e:d3:ff:8d:4a:5e:3a:1a: d5:0c:5c:2e:41:05:67:0b:e7:4c:fc:51:3c:4f:00:d8:07:03: 6f:ce:df:62:45:a7:e6:dc:71:b4:3a:ff:00:27:75:34:26:4e: f1:3b:30:df:97:32:14:6c:15:07:0e:c2:6f:d6:9c:15:f6:5a: 21:0a:1b:eb:f7:58:4c:6f:f8:ca:66:fe:66:39:fe:eb:ff:7f: a4:01:96:48:23:ea:c8:b5:ca:d9:5f:84:84:9b:86:71:00:9f: 58:8e:80:53:12:15:b0:dc:cc:34:3f:1e:c7:ad:d3:d1:55:1d: f7:38:d2:24:bd:15:33:31:94:d1:a6:80:d5:82:2e:a5:b0:b6: 65:b9:8d:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf7Ctx5VJ/ggHPC/xFk2XfyoQeO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA4MjIxNzQ2MDBaFw0yNTA4MjUxODQ4MDBaMDMxMTAvBgNV BAMTKEE1RkZDOEQ0QTQyMzFDOEU0MjYzQzc5N0UxNUVBQzhFNDhFRjY2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvq1IK/A2Gq+f28JjU8sJd7iYs sRgV4M8ljgMP+soMCCnbFjQOkXHCkrCPh6G/LrBPzVb2yyl0FBJ+LOMVxTODZrVd JRMFDBk5Mz/QKn/smTvbyS16diYSC4f/VE+G6a4+SfAvBki+EZnnMf+kAdZy/zuy PYWOdjCJ8a4ofZfaau3uPhXt95zjMaLhO597JutMtu5qXnAE7p9OVabai2i5JpNB TpWDEKDv56uFtf64yoWyKsC4+47UxW5W+EE6WWREjID3Dlyv3FNYuepo+xEoVIBj jdKNd7yhtGLZuZvgpCBwbY09IQVVFud8AJXkrDf+XjG4AsazvjdlKTQQ2TdrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpf/I1KQjHI5CY8eX4V6sjkjvZqYwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAALATAroEs7klf7PrV7c4sm/rtcuEAK/UnX7 4TEfqBL6K6q//8oHd1l8FAxTB0OR4wilWX65CvhFSE1O7HZWdzn1QTNeS0pXvG5k DAid84MXghahZkKkq28EJzqggNI5TLQwswDMv7fbkugoJtb0EC0OXmtqQIZ+0/+N Sl46GtUMXC5BBWcL50z8UTxPANgHA2/O32JFp+bccbQ6/wAndTQmTvE7MN+XMhRs FQcOwm/WnBX2WiEKG+v3WExv+Mpm/mY5/uv/f6QBlkgj6si1ytlfhISbhnEAn1iO gFMSFbDczDQ/Hset09FVHfc40iS9FTMxlNGmgNWCLqWwtmW5jd8= -----END CERTIFICATE-----Generated at Sat Aug 23 12:26:24 2025 by rpki-client