$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft File: 16889A9053AE7EB169CF822E9EE670A5C618F97E.mft (raw, json) Hash identifier: HoOAUDMzyiy7ca0Hq36S6qMNkVIhUxcB1UXez8QW6uo= Subject key identifier: A8:F0:97:09:E0:4C:09:0A:8F:35:0F:55:8A:07:5A:DC:5F:19:E4:D2 Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Certificate serial: 770FCA83F633BA016F40BD63BCE3EA16F243F01E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft Manifest number: 0122 Signing time: Fri 22 Aug 2025 05:01:11 +0000 Manifest this update: Fri 22 Aug 2025 04:56:11 +0000 Manifest next update: Mon 25 Aug 2025 07:48:11 +0000 Files and hashes: 1: 3130332e36372e38302e302f32332d3233203d3e20313532303031.roa (hash: dOd/WmcL1O2XqOSnpwsMSYP0+oN55Jz82rLt6CdY2eM=) 2: 16889A9053AE7EB169CF822E9EE670A5C618F97E.crl (hash: TzzIxbljJY8tKH3iIIioXYcgLg/W06RIyyvZdZzJSe4=) 3: 3130332e36372e38312e302f32342d3234203d3e20313532303031.roa (hash: VUXxXSjdw/tewePYso0nLi7PuBiFv1hIb0UmgFSc+fg=) 4: 3130332e36372e38302e302f32342d3234203d3e20313532303031.roa (hash: km/J3O6wA+/+giyqpUHqvd0x617eyhN+dq0ZwqMW8PA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:0f:ca:83:f6:33:ba:01:6f:40:bd:63:bc:e3:ea:16:f2:43:f0:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Validity Not Before: Aug 22 04:56:11 2025 GMT Not After : Aug 25 07:48:11 2025 GMT Subject: CN=A8F09709E04C090A8F350F558A075ADC5F19E4D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:20:67:0e:a7:7a:d1:c7:84:e8:76:d6:a5:f6: dc:69:ff:a5:1d:ea:eb:47:07:15:7e:db:84:6f:45: 96:ab:35:96:5d:26:74:b4:b7:20:07:91:0a:1f:48: 69:3b:bf:8d:5f:0a:62:25:b1:9a:fd:0f:a7:3e:25: 6a:68:92:1e:af:a9:1c:81:3d:42:57:d6:7b:ef:39: ce:3e:a6:9f:7e:e9:ba:c2:82:c3:96:e9:5b:b0:25: 68:74:ed:ac:39:ee:35:88:e7:88:a1:aa:f7:88:44: 26:0b:e8:da:8f:b0:66:f4:a4:9c:60:3c:6e:1c:aa: e9:93:ff:00:37:73:c6:83:79:72:b3:de:30:6a:05: 76:97:9b:ce:f6:88:83:ed:65:10:3a:55:95:41:51: 89:a4:01:85:aa:21:04:7c:a7:3f:16:dd:23:16:e2: ca:ce:be:fe:45:a6:71:89:75:de:13:ca:db:09:5f: 09:09:3f:31:c4:a9:35:04:44:28:c4:02:f7:87:b8: f7:72:50:cc:cc:23:de:de:34:5c:35:ab:1e:db:15: 71:4b:ba:62:cc:c5:be:68:a1:75:b1:7c:08:eb:92: 6b:f9:0f:dd:95:e9:6e:57:f5:ed:0c:b2:fa:f8:e0: 8f:f5:55:dc:4a:a5:c6:4a:47:48:b5:d2:3e:dd:ad: 03:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F0:97:09:E0:4C:09:0A:8F:35:0F:55:8A:07:5A:DC:5F:19:E4:D2 X509v3 Authority Key Identifier: keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:36:25:cb:e9:10:6d:bb:d5:aa:8e:3d:7e:d2:a0:29:31:b6: da:22:48:91:21:89:34:f3:f8:0f:ef:c7:da:bc:c7:68:79:ae: e3:21:78:2f:58:df:25:41:4c:80:aa:14:b9:76:77:71:bc:9f: 07:5d:bf:79:30:fb:53:9a:c3:f0:ec:73:76:02:4f:1c:80:51: 31:a8:df:9f:ec:41:20:bc:d3:3e:e3:a5:9d:91:82:8d:45:58: af:cc:ab:3a:9a:d8:8a:18:dd:9c:3f:1b:d5:1e:0a:a8:d1:09: a5:58:4d:6e:5b:b9:07:23:b7:e7:77:f8:2a:31:a4:67:b1:bc: ee:09:07:7f:3e:57:b3:e1:1e:5a:6c:c7:3e:a4:7b:a5:16:cc: c2:2c:df:aa:80:f1:18:c7:41:c9:f6:b8:67:76:a1:91:72:74: 17:7f:57:46:78:70:19:0c:e1:aa:8e:ef:79:38:7d:6a:62:0f: 39:4d:02:fd:5c:bb:75:ea:1e:34:60:8c:e3:27:47:02:f3:d6: c2:28:00:77:b1:54:18:21:c6:44:b7:4b:93:2b:81:2c:3a:c0: 58:36:e3:0c:7c:ec:41:1f:9a:d6:f5:01:a7:c7:98:1c:93:b8: 66:43:e4:b3:d8:7b:15:ba:1f:40:1e:fd:e3:3b:fc:1b:6c:ba: 3c:f0:99:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdw/Kg/YzugFvQL1jvOPqFvJD8B4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVD NjE4Rjk3RTAeFw0yNTA4MjIwNDU2MTFaFw0yNTA4MjUwNzQ4MTFaMDMxMTAvBgNV BAMTKEE4RjA5NzA5RTA0QzA5MEE4RjM1MEY1NThBMDc1QURDNUYxOUU0RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLIGcOp3rRx4Todtal9txp/6Ud 6utHBxV+24RvRZarNZZdJnS0tyAHkQofSGk7v41fCmIlsZr9D6c+JWpokh6vqRyB PUJX1nvvOc4+pp9+6brCgsOW6VuwJWh07aw57jWI54ihqveIRCYL6NqPsGb0pJxg PG4cqumT/wA3c8aDeXKz3jBqBXaXm872iIPtZRA6VZVBUYmkAYWqIQR8pz8W3SMW 4srOvv5FpnGJdd4TytsJXwkJPzHEqTUERCjEAveHuPdyUMzMI97eNFw1qx7bFXFL umLMxb5ooXWxfAjrkmv5D92V6W5X9e0Msvr44I/1VdxKpcZKR0i10j7drQP7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqPCXCeBMCQqPNQ9Vigda3F8Z5NIwHwYDVR0j BBgwFoAUFoiakFOufrFpz4IunuZwpcYY+X4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTNmMmU5Yi0xMDY4LTRmYTktYmExZC01OWQwNzFhNDEyYTIvMC8xNjg4OUE5MDUz QUU3RUIxNjlDRjgyMkU5RUU2NzBBNUM2MThGOTdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVDNjE4 Rjk3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGUzZjJlOWItMTA2OC00ZmE5LWJh MWQtNTlkMDcxYTQxMmEyLzAvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcw QTVDNjE4Rjk3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABo2JcvpEG271aqOPX7SoCkxttoiSJEhiTTz +A/vx9q8x2h5ruMheC9Y3yVBTICqFLl2d3G8nwddv3kw+1Oaw/Dsc3YCTxyAUTGo 35/sQSC80z7jpZ2Rgo1FWK/Mqzqa2IoY3Zw/G9UeCqjRCaVYTW5buQcjt+d3+Cox pGexvO4JB38+V7PhHlpsxz6ke6UWzMIs36qA8RjHQcn2uGd2oZFydBd/V0Z4cBkM 4aqO73k4fWpiDzlNAv1cu3XqHjRgjOMnRwLz1sIoAHexVBghxkS3S5MrgSw6wFg2 4wx87EEfmtb1AafHmByTuGZD5LPYexW6H0Ae/eM7/BtsujzwmbA= -----END CERTIFICATE-----Generated at Sat Aug 23 19:33:02 2025 by rpki-client