$ rpki-client -vvf repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft File: B891A45840F824B9F116CBEAA3574A68343F5538.mft (raw, json) Hash identifier: eB/Fw90jvP3pl7aYNN22BlH4yW7wQPQXl9L9tl8sofI= Subject key identifier: 56:D5:05:C3:25:55:12:BE:03:65:82:95:8F:82:08:22:36:A0:90:BE Authority key identifier: B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 Certificate issuer: /CN=B891A45840F824B9F116CBEAA3574A68343F5538 Certificate serial: 797AB8265E560BB7EC98E8C976262AA2A557E67B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft Manifest number: 71 Signing time: Thu 21 Aug 2025 09:02:10 +0000 Manifest this update: Thu 21 Aug 2025 08:57:10 +0000 Manifest next update: Sun 24 Aug 2025 15:52:10 +0000 Files and hashes: 1: B891A45840F824B9F116CBEAA3574A68343F5538.crl (hash: IHJII0P84vX/4AOqm1SlLFpTcSJh0qmVTg/DGQoS7Ww=) 2: 3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa (hash: 8meh4qssPriL64kBvXs5YtBumf6ArWnflJaVktjo3Fo=) 3: 3130332e32332e3131362e302f32332d3234203d3e203538333835.roa (hash: 5UewkM1pAbLnP65YZLTVxzSYU/L1g1J84e5HTrwnd3M=) 4: 3131302e39322e37342e302f32332d3234203d3e203538333835.roa (hash: XgxFmfrvLr/HS422k6dRWPfIUiiCoQbGouQtaJJQX4Y=) 5: 3130332e32382e3231382e302f32342d3234203d3e203538333835.roa (hash: cMJACG+wJYTKnGt0rpeqO/b7Kbn+Qvg12TrUivh9cCk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 15:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7a:b8:26:5e:56:0b:b7:ec:98:e8:c9:76:26:2a:a2:a5:57:e6:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B891A45840F824B9F116CBEAA3574A68343F5538 Validity Not Before: Aug 21 08:57:10 2025 GMT Not After : Aug 24 15:52:10 2025 GMT Subject: CN=56D505C3255512BE036582958F82082236A090BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b0:6e:7d:c6:80:f4:60:99:3b:e1:f1:33:48: 69:77:64:e4:25:0d:5e:7a:eb:5d:98:93:c7:f0:80: 86:c6:fc:31:54:f9:12:80:4c:3e:8e:a9:b9:4f:0a: 92:c2:10:ee:d6:fb:6e:70:ab:80:e2:19:9a:a9:d2: e1:2c:46:4f:78:f8:96:6b:13:c1:61:df:d5:ee:88: 00:00:48:d9:7d:cb:9b:79:e8:62:64:41:2a:28:de: 07:0f:f2:e5:b0:95:5f:4b:71:bd:62:b1:af:a1:ca: b2:e2:5c:50:75:81:8c:96:6f:1a:27:09:62:ba:b4: 21:19:ba:51:8f:43:7f:2b:0a:ff:a7:1a:be:24:9e: ae:56:3b:92:d5:69:91:48:57:cc:0e:56:67:a4:13: de:7d:cb:ae:5e:48:5f:75:e6:18:ab:11:d8:51:4d: 9e:c7:28:b8:15:54:07:38:8a:c1:29:37:f9:dd:83: f5:20:78:c9:a0:92:d3:e1:59:06:6f:e3:1c:ad:17: f4:9c:f6:4a:2e:a7:cc:cb:a0:c6:77:5f:87:ba:b7: 5a:55:13:7c:21:e8:0c:59:21:97:48:bf:68:b9:08: 5f:95:47:a8:ed:87:69:d2:de:ec:74:6a:45:3e:3c: 16:49:be:97:80:c1:48:e5:64:fb:88:d4:bb:8d:f9: 05:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D5:05:C3:25:55:12:BE:03:65:82:95:8F:82:08:22:36:A0:90:BE X509v3 Authority Key Identifier: keyid:B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:a3:e6:76:18:f2:6f:5a:50:ce:69:7a:58:f4:0d:20:84:0e: f9:ab:22:4a:a5:de:d7:cb:54:79:13:3f:e0:ee:af:22:e9:f1: 20:14:e6:d6:8e:f5:3d:21:04:02:dd:b5:dc:a9:b2:fb:65:50: 02:ba:71:92:04:33:63:a9:50:06:c0:89:e1:76:1f:47:ae:11: b0:9e:64:03:1d:b0:40:38:06:34:71:23:ef:6a:fe:67:dc:3a: ff:b9:64:d0:08:8c:2e:7a:00:d5:e1:b8:6f:9a:4f:77:76:f1: f3:0e:e3:b4:75:b3:15:9b:44:a9:29:e6:9c:8b:54:cf:ff:f2: cb:68:a4:4d:a7:68:28:1a:ec:7f:9e:63:95:57:1c:db:b0:c2: 65:6c:5e:e8:26:81:3b:5f:4f:18:43:82:7e:c2:1f:b4:4d:2a: 70:ee:0f:45:34:91:51:9a:5d:39:1f:84:dc:c2:13:e0:07:bd: a5:88:ae:a8:17:a9:fe:49:4d:05:a0:8f:c9:bb:4f:28:6f:9e: 61:4b:1a:26:fe:b4:c2:c4:65:34:23:fd:59:bf:b3:f0:42:64: ca:5b:3a:e3:94:d3:bc:df:c5:4e:30:f7:6f:85:e4:26:80:8d: 97:9e:60:d0:96:23:c4:04:c9:d2:0d:94:7a:03:85:83:25:b7: f2:e5:c5:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeXq4Jl5WC7fsmOjJdiYqoqVX5nswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgz NDNGNTUzODAeFw0yNTA4MjEwODU3MTBaFw0yNTA4MjQxNTUyMTBaMDMxMTAvBgNV BAMTKDU2RDUwNUMzMjU1NTEyQkUwMzY1ODI5NThGODIwODIyMzZBMDkwQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChsG59xoD0YJk74fEzSGl3ZOQl DV56612Yk8fwgIbG/DFU+RKATD6OqblPCpLCEO7W+25wq4DiGZqp0uEsRk94+JZr E8Fh39XuiAAASNl9y5t56GJkQSoo3gcP8uWwlV9Lcb1isa+hyrLiXFB1gYyWbxon CWK6tCEZulGPQ38rCv+nGr4knq5WO5LVaZFIV8wOVmekE959y65eSF915hirEdhR TZ7HKLgVVAc4isEpN/ndg/UgeMmgktPhWQZv4xytF/Sc9koup8zLoMZ3X4e6t1pV E3wh6AxZIZdIv2i5CF+VR6jth2nS3ux0akU+PBZJvpeAwUjlZPuI1LuN+QWvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVtUFwyVVEr4DZYKVj4IIIjagkL4wHwYDVR0j BBgwFoAUuJGkWED4JLnxFsvqo1dKaDQ/VTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzkyNTM4OC0zNWM2LTQxZDctOWRjNC1kYjRkMTE4ZDEzNWEvMC9CODkxQTQ1ODQw RjgyNEI5RjExNkNCRUFBMzU3NEE2ODM0M0Y1NTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgzNDNG NTUzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDM5MjUzODgtMzVjNi00MWQ3LTlk YzQtZGI0ZDExOGQxMzVhLzAvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRB NjgzNDNGNTUzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACSj5nYY8m9aUM5pelj0DSCEDvmrIkql3tfL VHkTP+DuryLp8SAU5taO9T0hBALdtdypsvtlUAK6cZIEM2OpUAbAieF2H0euEbCe ZAMdsEA4BjRxI+9q/mfcOv+5ZNAIjC56ANXhuG+aT3d28fMO47R1sxWbRKkp5pyL VM//8stopE2naCga7H+eY5VXHNuwwmVsXugmgTtfTxhDgn7CH7RNKnDuD0U0kVGa XTkfhNzCE+AHvaWIrqgXqf5JTQWgj8m7TyhvnmFLGib+tMLEZTQj/Vm/s/BCZMpb OuOU07zfxU4w92+F5CaAjZeeYNCWI8QEydINlHoDhYMlt/LlxQA= -----END CERTIFICATE-----Generated at Sat Aug 23 12:06:32 2025 by rpki-client