$ rpki-client -vvf repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft File: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft (raw, json) Hash identifier: Ua865Ij3AuXokpGCju0QMl9LoGlVIcDV3ztffuTqoO0= Subject key identifier: F0:92:6A:CB:B9:61:8D:2F:1A:16:D2:62:B1:F3:85:78:E5:3E:8E:71 Authority key identifier: 85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 Certificate issuer: /CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Certificate serial: 1AE8FDE64BCF65838F3D3A81949FDFB5A22A03CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft Manifest number: 01E4 Signing time: Sun 29 Jun 2025 09:10:03 +0000 Manifest this update: Sun 29 Jun 2025 09:05:03 +0000 Manifest next update: Wed 02 Jul 2025 12:02:03 +0000 Files and hashes: 1: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl (hash: I3D+3qYBEiAgQlWGtr1ODC3gUsaThrAstrdHF2nELiY=) 2: 3130332e3137342e37392e302f32342d3234203d3e203338333230.roa (hash: AGvpCXR8gQBspf5FohNx3ipHrwnlCs57tuOOE5KVIPk=) 3: 3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa (hash: lKFSHdHF3wWJIcTGvyjieSUWfDWF+TAqKVs638owOUk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:e8:fd:e6:4b:cf:65:83:8f:3d:3a:81:94:9f:df:b5:a2:2a:03:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Validity Not Before: Jun 29 09:05:03 2025 GMT Not After : Jul 2 12:02:03 2025 GMT Subject: CN=F0926ACBB9618D2F1A16D262B1F38578E53E8E71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5c:fe:56:76:a3:98:7c:c4:4e:36:2e:75:39: 01:92:80:a5:80:ee:5f:c3:6c:09:33:10:36:46:91: ea:ae:71:1a:14:d9:e9:79:c9:4d:e4:af:12:62:6d: 1d:c7:be:29:fe:96:ed:19:65:79:34:33:60:a0:9c: e9:56:0d:e7:cf:cb:0a:e0:f0:97:b5:88:5b:76:4d: 6f:89:40:79:d8:3f:8f:b0:b1:9d:dd:0d:01:6e:1d: 15:69:8a:e7:20:b5:e6:57:a2:49:98:68:e4:87:9b: 72:4f:ee:bf:9a:b8:41:5a:67:ad:b6:4e:e8:8f:04: 88:af:ee:1f:3a:3d:d1:7d:6c:80:5e:aa:57:2f:7f: f8:b3:6b:45:d1:bb:b5:a0:ba:d5:23:79:42:c6:c5: f4:09:fb:dc:d2:2d:2f:1b:72:66:eb:e2:c6:c3:2f: af:22:4b:b0:94:c1:b7:2e:c1:19:ca:96:64:7f:21: f3:58:bc:89:9d:9c:b9:8d:b7:0d:e8:1c:47:2c:42: 46:80:bf:4b:40:0d:0c:ea:77:1a:6c:fe:95:1c:60: 8e:4d:57:3d:ac:e4:22:85:63:87:e5:3a:fb:b8:58: bd:a5:d6:a4:1a:ab:55:d9:0d:04:6d:e9:ed:8e:ea: 9f:34:50:dc:e4:f7:18:c7:77:7b:e8:0d:f1:85:8a: cd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:92:6A:CB:B9:61:8D:2F:1A:16:D2:62:B1:F3:85:78:E5:3E:8E:71 X509v3 Authority Key Identifier: keyid:85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:7b:22:fa:b6:41:c1:32:71:72:67:56:2c:c1:bc:72:3b:f4: 43:9d:1f:64:15:d7:15:2d:a1:f6:9d:dc:60:9a:56:8a:e2:d5: c2:ca:30:db:a9:36:11:d8:51:a7:d4:5f:93:1a:75:c8:8a:5f: c4:ba:11:1b:ab:aa:d0:c1:9b:53:16:79:14:e6:46:a0:28:c7: b2:2e:bb:5b:28:ef:6a:97:05:c5:24:df:7d:5e:43:58:46:c3: 4a:c9:8e:c3:58:7e:bb:b3:29:9b:a5:19:6f:7c:59:45:a0:12: 80:68:26:6f:fe:3f:4c:18:5b:f9:8f:b1:a0:df:95:81:02:83: 01:a9:24:2a:68:14:ac:70:27:e9:5e:d6:7d:43:ab:a4:a6:17: 52:e0:ac:b8:26:18:87:31:6c:66:c2:0b:71:53:57:71:4b:e9: 3f:cb:05:f5:d9:61:a6:29:33:96:ee:22:35:4d:00:25:76:a9: cf:c6:c3:ea:b4:98:67:a1:8f:52:0a:d8:12:60:63:84:86:3f: 30:99:47:2d:29:80:4b:29:d3:33:0d:39:7b:22:8e:c3:52:41: 7c:36:ed:88:8b:9c:78:3b:e6:89:ba:5e:b6:0c:fa:82:81:6b: 23:7e:0a:86:92:92:05:a3:5e:37:06:02:52:73:8d:c9:5b:bf: ff:b6:5c:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGuj95kvPZYOPPTqBlJ/ftaIqA8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4 MTZBQ0RCOTAeFw0yNTA2MjkwOTA1MDNaFw0yNTA3MDIxMjAyMDNaMDMxMTAvBgNV BAMTKEYwOTI2QUNCQjk2MThEMkYxQTE2RDI2MkIxRjM4NTc4RTUzRThFNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+XP5WdqOYfMRONi51OQGSgKWA 7l/DbAkzEDZGkequcRoU2el5yU3krxJibR3Hvin+lu0ZZXk0M2CgnOlWDefPywrg 8Je1iFt2TW+JQHnYP4+wsZ3dDQFuHRVpiucgteZXokmYaOSHm3JP7r+auEFaZ622 TuiPBIiv7h86PdF9bIBeqlcvf/iza0XRu7WgutUjeULGxfQJ+9zSLS8bcmbr4sbD L68iS7CUwbcuwRnKlmR/IfNYvImdnLmNtw3oHEcsQkaAv0tADQzqdxps/pUcYI5N Vz2s5CKFY4flOvu4WL2l1qQaq1XZDQRt6e2O6p80UNzk9xjHd3voDfGFis0TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8JJqy7lhjS8aFtJisfOFeOU+jnEwHwYDVR0j BBgwFoAUheqGdWNxuom7GuhGtcMN24FqzbkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmM2ZGExOS04NGJlLTRhNTAtYjQ2Ni0xZTg2ZGRiY2MzNWYvMC84NUVBODY3NTYz NzFCQTg5QkIxQUU4NDZCNUMzMEREQjgxNkFDREI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4MTZB Q0RCOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGJjNmRhMTktODRiZS00YTUwLWI0 NjYtMWU4NmRkYmNjMzVmLzAvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBE REI4MTZBQ0RCOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADp7Ivq2QcEycXJnVizBvHI79EOdH2QV1xUt ofad3GCaVori1cLKMNupNhHYUafUX5MadciKX8S6ERurqtDBm1MWeRTmRqAox7Iu u1so72qXBcUk331eQ1hGw0rJjsNYfruzKZulGW98WUWgEoBoJm/+P0wYW/mPsaDf lYECgwGpJCpoFKxwJ+le1n1Dq6SmF1LgrLgmGIcxbGbCC3FTV3FL6T/LBfXZYaYp M5buIjVNACV2qc/Gw+q0mGehj1IK2BJgY4SGPzCZRy0pgEsp0zMNOXsijsNSQXw2 7YiLnHg75om6XrYM+oKBayN+CoaSkgWjXjcGAlJzjclbv/+2XLA= -----END CERTIFICATE-----Generated at Mon Jun 30 00:48:57 2025 by rpki-client