$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft File: FA86E23853549D2EF1D9F9C9222147A550E36A38.mft (raw, json) Hash identifier: 9GpxoVMXLmPyScpCA2Eyrhg34XUsTzwM7+ZdLQEtZqQ= Subject key identifier: F8:5C:DD:42:23:5C:06:D1:0E:97:43:97:05:7F:25:BB:EF:AB:CC:7B Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 2218E4A2BD4E67451CFD30B84D06BDFFD20484EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft Manifest number: 01AD Signing time: Sat 28 Jun 2025 14:50:42 +0000 Manifest this update: Sat 28 Jun 2025 14:45:42 +0000 Manifest next update: Tue 01 Jul 2025 16:36:42 +0000 Files and hashes: 1: FA86E23853549D2EF1D9F9C9222147A550E36A38.crl (hash: O4sm38/UlXkucQyTW7Gk0F+3SxLbKcmTdjQZfqvYb04=) 2: 3130332e35352e32382e302f32332d3234203d3e20313530343837.roa (hash: 8iSBjCuogDhcUBYZIPXuvYllDkYyp+uiEvzE8S7/ER4=) 3: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (hash: RjVxvxxbyDiQSv718+JovDu9zNSEKhSMEBDdXzJXwvE=) 4: 3130332e35352e32392e302f32342d3234203d3e20313530343837.roa (hash: Zcui17ZIB7y9MI9lypagYjRYe4mnYqSwkXUNcZtsFwo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 16:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:18:e4:a2:bd:4e:67:45:1c:fd:30:b8:4d:06:bd:ff:d2:04:84:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Jun 28 14:45:42 2025 GMT Not After : Jul 1 16:36:42 2025 GMT Subject: CN=F85CDD42235C06D10E974397057F25BBEFABCC7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b7:fa:02:e3:29:d3:87:20:d4:5f:36:7a:c0: b4:c2:e5:b2:cc:8b:8c:20:a9:8f:9f:f8:52:a4:d0: 6b:b3:11:eb:cb:db:14:d4:99:fc:02:87:4d:98:b0: b8:94:10:5b:85:b4:cf:69:1e:d4:22:67:52:40:c4: 4d:5a:45:7a:8c:67:a5:a3:b1:30:4f:4d:5c:64:92: 85:52:26:16:a5:f3:fe:cf:26:a4:57:69:4e:f3:6d: c3:50:8b:03:99:bf:48:45:a0:44:e3:ac:b4:fa:1f: 41:74:1e:fc:bf:6e:36:84:79:ac:0b:d8:1d:b4:12: cc:a1:cc:7a:87:a2:4b:3e:df:90:19:82:d5:55:e6: 93:b1:92:e3:37:d1:00:11:a9:14:5b:41:d3:66:f7: 68:8d:82:53:65:8b:99:d2:35:4a:c0:01:a9:cd:8f: b1:3c:27:2a:31:e5:1b:8b:f9:52:c0:aa:d4:d7:ec: 6c:71:b4:5b:a2:1e:1e:73:37:75:c8:8f:b1:3e:e9: 53:f8:e7:a9:04:53:9d:76:44:bd:5e:76:01:4c:44: 0b:9d:4f:c1:18:81:7b:2a:27:ac:4f:0d:83:bf:79: 30:e1:15:1e:f1:1a:05:04:18:97:ad:96:68:a9:c3: 06:41:85:4b:04:67:f1:21:25:22:4f:20:90:2f:5e: 45:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:5C:DD:42:23:5C:06:D1:0E:97:43:97:05:7F:25:BB:EF:AB:CC:7B X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:14:53:28:4d:a3:d2:e5:49:fb:5d:bf:02:48:6f:22:af:6e: 50:24:ba:7d:9e:b8:f2:c4:c6:13:57:e9:83:21:30:fa:33:88: 70:b3:6c:94:ef:8c:07:24:fc:27:ac:4b:1e:f5:d6:e0:d4:51: c5:0c:46:17:fb:a9:ea:fd:e6:34:b8:19:46:63:55:d2:04:86: e3:24:e0:f9:b5:55:53:56:59:ed:e2:f1:4b:db:da:43:b1:43: 02:3a:52:ab:5e:33:4d:2c:29:ea:21:01:07:70:e7:79:7a:97: 2d:b2:c5:7f:e3:3b:56:41:ae:fa:63:d0:86:7e:29:39:79:1b: 54:88:d0:e5:cb:a8:91:6c:da:d5:10:b8:4f:01:21:ab:e4:ca: 9b:e8:9c:cc:83:cb:25:96:84:9b:aa:cf:0c:32:76:a9:70:38: a0:ef:46:17:66:50:16:1a:6d:81:ef:89:d7:c5:90:48:77:86: dc:c7:e8:53:aa:ee:d5:4a:b9:08:c3:bb:ea:bb:b5:37:4c:e4: 45:07:7a:83:a1:92:5b:91:d6:af:02:38:28:05:f2:f0:e3:12: 58:24:d6:4c:c2:63:19:1a:fe:45:0b:04:e9:50:58:66:36:e9: 2b:f9:92:06:07:16:75:10:56:a3:b0:f2:e9:1c:b8:56:c2:c9: c2:74:96:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIhjkor1OZ0Uc/TC4TQa9/9IEhO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNTA2MjgxNDQ1NDJaFw0yNTA3MDExNjM2NDJaMDMxMTAvBgNV BAMTKEY4NUNERDQyMjM1QzA2RDEwRTk3NDM5NzA1N0YyNUJCRUZBQkNDN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7t/oC4ynThyDUXzZ6wLTC5bLM i4wgqY+f+FKk0GuzEevL2xTUmfwCh02YsLiUEFuFtM9pHtQiZ1JAxE1aRXqMZ6Wj sTBPTVxkkoVSJhal8/7PJqRXaU7zbcNQiwOZv0hFoETjrLT6H0F0Hvy/bjaEeawL 2B20EsyhzHqHoks+35AZgtVV5pOxkuM30QARqRRbQdNm92iNglNli5nSNUrAAanN j7E8Jyox5RuL+VLAqtTX7GxxtFuiHh5zN3XIj7E+6VP456kEU512RL1edgFMRAud T8EYgXsqJ6xPDYO/eTDhFR7xGgUEGJetlmipwwZBhUsEZ/EhJSJPIJAvXkUjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+FzdQiNcBtEOl0OXBX8lu++rzHswHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwNDc5M2MtYzIwOS00NjlhLThl M2MtZWIzZjVhODM4NjNmLzAvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3 QTU1MEUzNkEzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGkUUyhNo9LlSftdvwJIbyKvblAkun2euPLE xhNX6YMhMPoziHCzbJTvjAck/CesSx711uDUUcUMRhf7qer95jS4GUZjVdIEhuMk 4Pm1VVNWWe3i8Uvb2kOxQwI6UqteM00sKeohAQdw53l6ly2yxX/jO1ZBrvpj0IZ+ KTl5G1SI0OXLqJFs2tUQuE8BIavkypvonMyDyyWWhJuqzwwydqlwOKDvRhdmUBYa bYHvidfFkEh3htzH6FOq7tVKuQjDu+q7tTdM5EUHeoOhkluR1q8COCgF8vDjElgk 1kzCYxka/kULBOlQWGY26Sv5kgYHFnUQVqOw8ukcuFbCycJ0llU= -----END CERTIFICATE-----Generated at Mon Jun 30 07:48:09 2025 by rpki-client