$ rpki-client -vvf repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft File: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft (raw, json) Hash identifier: +lGdnEXBqkSLUhvObnzQy530AXifPVOfeuj5g45Y+l8= Subject key identifier: CE:67:B0:73:57:D0:A5:42:42:9A:E5:00:BA:BD:29:F7:17:B1:6E:C6 Authority key identifier: 85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 Certificate issuer: /CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Certificate serial: 541079461EA8944BE246CE223AF10826B58CADE0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft Manifest number: 01FC Signing time: Fri 22 Aug 2025 02:20:03 +0000 Manifest this update: Fri 22 Aug 2025 02:15:03 +0000 Manifest next update: Mon 25 Aug 2025 07:18:03 +0000 Files and hashes: 1: 3130332e3137342e37392e302f32342d3234203d3e203338333230.roa (hash: AGvpCXR8gQBspf5FohNx3ipHrwnlCs57tuOOE5KVIPk=) 2: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl (hash: ieVo1KmvNHimppXNbMjPsdFLwW3vQpMrxS7WqZ9wMOs=) 3: 3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa (hash: lKFSHdHF3wWJIcTGvyjieSUWfDWF+TAqKVs638owOUk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:10:79:46:1e:a8:94:4b:e2:46:ce:22:3a:f1:08:26:b5:8c:ad:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Validity Not Before: Aug 22 02:15:03 2025 GMT Not After : Aug 25 07:18:03 2025 GMT Subject: CN=CE67B07357D0A542429AE500BABD29F717B16EC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:07:63:18:15:6b:be:50:d8:e4:14:44:52:86: 16:92:83:09:00:df:73:ee:af:7f:31:e8:8c:f7:3e: b3:71:8a:ac:41:67:a9:34:53:5f:21:3c:b0:fc:8f: 0c:29:0d:a4:bb:8d:1b:6d:b0:68:e5:73:5d:25:c0: e0:ce:30:8c:3c:3c:54:87:f4:2e:74:17:25:75:5b: d7:d5:4f:7e:2b:ba:ee:5f:9c:7e:bc:32:7d:35:22: 83:8d:5f:7b:6f:a5:ec:37:e1:09:bf:fe:bd:d6:cb: 34:4d:4a:da:38:4c:50:c0:57:bb:6d:f1:88:a5:dc: cd:a3:bb:55:89:cf:0c:59:2e:47:23:d7:aa:cb:85: 19:82:bc:61:3f:b4:10:57:87:98:51:e0:a3:af:6f: 9c:2e:88:44:cb:0b:a5:58:7d:ae:85:e9:7c:41:e0: f2:c9:15:50:8e:70:9d:c8:e9:c8:f8:04:8b:45:a6: 13:16:09:b5:44:ba:d4:a7:e6:a2:c7:50:6a:79:79: ce:62:42:d7:c2:4d:75:98:c9:16:2f:7c:63:ef:5f: c8:1b:71:26:23:34:75:44:ae:9a:d8:98:73:51:d3: 9a:06:56:7c:aa:90:11:82:24:4f:81:87:af:58:c8: 1f:31:d6:4f:3f:61:cb:f3:e2:43:bf:48:c2:71:07: 18:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:67:B0:73:57:D0:A5:42:42:9A:E5:00:BA:BD:29:F7:17:B1:6E:C6 X509v3 Authority Key Identifier: keyid:85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:da:61:15:45:db:52:fa:48:f4:e8:b7:cd:87:08:9a:f9:04: ac:d9:27:6e:26:33:cf:25:8b:7a:c7:ec:f1:37:89:04:68:78: ab:00:f2:fe:a7:b5:9d:8f:34:ea:eb:f5:77:01:da:0c:fc:3c: b7:7a:a8:81:27:29:7d:12:0f:f5:a8:fd:7a:bc:4f:60:e1:d6: 97:fd:44:16:7f:90:98:ca:e3:80:bc:b7:90:73:3d:21:f4:4c: d9:2d:c3:83:4b:c6:e4:98:9b:3a:cd:a6:cc:85:da:e1:a7:3b: af:7b:ea:15:06:97:4d:4d:09:85:58:dd:7b:80:13:d1:ba:43: bd:a0:a2:2e:98:bf:d0:ec:25:bc:21:04:9d:5c:54:08:8d:64: 92:7c:28:f7:db:ff:10:25:7d:24:d9:33:4c:5c:38:fb:68:38: 02:38:21:00:c3:af:cd:a9:4d:0d:2f:76:44:d9:0a:a6:3c:0e: 08:e4:ec:06:8a:11:1f:9d:c2:83:92:c4:8b:62:d9:b1:0b:c7: 85:e0:e8:9f:e2:68:39:c7:1b:81:2a:1a:e5:9e:77:01:58:18: 69:03:6d:bd:b9:da:d4:71:54:94:5f:99:be:e3:c5:e5:d6:a7: 01:1f:2d:5a:69:a0:e1:75:96:2d:7c:36:82:f0:1d:dc:1e:48: b6:c1:59:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVBB5Rh6olEviRs4iOvEIJrWMreAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4 MTZBQ0RCOTAeFw0yNTA4MjIwMjE1MDNaFw0yNTA4MjUwNzE4MDNaMDMxMTAvBgNV BAMTKENFNjdCMDczNTdEMEE1NDI0MjlBRTUwMEJBQkQyOUY3MTdCMTZFQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+B2MYFWu+UNjkFERShhaSgwkA 33Pur38x6Iz3PrNxiqxBZ6k0U18hPLD8jwwpDaS7jRttsGjlc10lwODOMIw8PFSH 9C50FyV1W9fVT34ruu5fnH68Mn01IoONX3tvpew34Qm//r3WyzRNSto4TFDAV7tt 8Yil3M2ju1WJzwxZLkcj16rLhRmCvGE/tBBXh5hR4KOvb5wuiETLC6VYfa6F6XxB 4PLJFVCOcJ3I6cj4BItFphMWCbVEutSn5qLHUGp5ec5iQtfCTXWYyRYvfGPvX8gb cSYjNHVErprYmHNR05oGVnyqkBGCJE+Bh69YyB8x1k8/Ycvz4kO/SMJxBxh/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzmewc1fQpUJCmuUAur0p9xexbsYwHwYDVR0j BBgwFoAUheqGdWNxuom7GuhGtcMN24FqzbkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmM2ZGExOS04NGJlLTRhNTAtYjQ2Ni0xZTg2ZGRiY2MzNWYvMC84NUVBODY3NTYz NzFCQTg5QkIxQUU4NDZCNUMzMEREQjgxNkFDREI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4MTZB Q0RCOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGJjNmRhMTktODRiZS00YTUwLWI0 NjYtMWU4NmRkYmNjMzVmLzAvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBE REI4MTZBQ0RCOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFTaYRVF21L6SPTot82HCJr5BKzZJ24mM88l i3rH7PE3iQRoeKsA8v6ntZ2PNOrr9XcB2gz8PLd6qIEnKX0SD/Wo/Xq8T2Dh1pf9 RBZ/kJjK44C8t5BzPSH0TNktw4NLxuSYmzrNpsyF2uGnO6976hUGl01NCYVY3XuA E9G6Q72goi6Yv9DsJbwhBJ1cVAiNZJJ8KPfb/xAlfSTZM0xcOPtoOAI4IQDDr82p TQ0vdkTZCqY8Dgjk7AaKER+dwoOSxIti2bELx4Xg6J/iaDnHG4EqGuWedwFYGGkD bb252tRxVJRfmb7jxeXWpwEfLVppoOF1li18NoLwHdweSLbBWWo= -----END CERTIFICATE-----Generated at Sat Aug 23 18:48:20 2025 by rpki-client