$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft File: FA86E23853549D2EF1D9F9C9222147A550E36A38.mft (raw, json) Hash identifier: e3+DX15E+yhlsjOtu/ttyvyh/T/sCdPAZQyVrro5dMg= Subject key identifier: 48:14:D5:05:D0:B1:C8:98:25:B6:0C:FF:82:27:35:85:2A:F6:1E:28 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 4F899394B223F252D550FD1C19E611D96321B489 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft Manifest number: 01C6 Signing time: Sat 23 Aug 2025 08:00:43 +0000 Manifest this update: Sat 23 Aug 2025 07:55:43 +0000 Manifest next update: Tue 26 Aug 2025 11:35:43 +0000 Files and hashes: 1: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (hash: RjVxvxxbyDiQSv718+JovDu9zNSEKhSMEBDdXzJXwvE=) 2: 3130332e35352e32382e302f32332d3234203d3e20313530343837.roa (hash: 8iSBjCuogDhcUBYZIPXuvYllDkYyp+uiEvzE8S7/ER4=) 3: 3130332e35352e32392e302f32342d3234203d3e20313530343837.roa (hash: Zcui17ZIB7y9MI9lypagYjRYe4mnYqSwkXUNcZtsFwo=) 4: FA86E23853549D2EF1D9F9C9222147A550E36A38.crl (hash: pgwljpI1MVlFu2nhBoiZoPW7FHNGR3Z/gKCEkPoXED8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:89:93:94:b2:23:f2:52:d5:50:fd:1c:19:e6:11:d9:63:21:b4:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Aug 23 07:55:43 2025 GMT Not After : Aug 26 11:35:43 2025 GMT Subject: CN=4814D505D0B1C89825B60CFF822735852AF61E28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:f5:b1:33:da:1a:8f:fa:ea:44:f0:20:44: 2c:1f:ff:cb:0a:59:0a:a7:25:96:f2:65:de:54:27: 8b:33:34:6c:40:96:e1:68:8f:cf:c9:84:6c:2d:77: bf:4b:20:84:9e:3c:69:17:7e:49:9f:3a:ba:3e:b4: c7:1c:cd:51:48:2e:37:3a:9a:05:3b:8a:ba:9b:ff: b1:fe:50:4a:fd:c4:41:20:19:0e:35:f2:ac:ff:c5: d9:f4:5f:c1:22:86:19:1e:8d:22:13:21:0c:c8:6b: a0:a2:7c:7f:58:1f:e0:c9:43:92:8b:36:43:d8:55: 77:bd:1a:56:5f:13:be:6c:7c:e3:45:c7:5a:14:5e: 2a:cb:9f:fb:19:db:71:c1:59:cd:7e:08:b0:0d:39: da:6b:24:5f:2d:88:f0:c3:90:ec:04:a8:bb:d4:b4: ff:05:4d:02:12:e8:5d:89:34:4d:fd:aa:66:36:80: 51:75:3b:82:f1:c2:88:7d:3a:ca:4b:bb:a5:1c:b1: 79:cd:84:ab:04:30:b5:33:24:70:e2:8f:b5:24:f5: 92:5b:da:d4:f2:b1:d6:ce:4d:8a:9c:e3:f3:50:d4: 04:01:1d:3c:6d:28:26:73:70:ec:da:b0:e1:09:a4: 83:47:90:0f:d7:7f:fe:5a:ac:bd:e0:a4:04:70:ac: 06:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:14:D5:05:D0:B1:C8:98:25:B6:0C:FF:82:27:35:85:2A:F6:1E:28 X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:a9:3a:9c:17:7e:a4:80:69:8f:94:7b:51:30:b7:6c:63:71: d9:24:5b:6b:47:6b:7e:f5:d7:62:6b:73:b0:6c:2d:2c:be:e6: 95:9f:a2:a8:57:3c:a9:13:74:fa:09:e3:6d:ec:43:a9:ce:f9: 18:39:a8:76:39:cf:ec:69:8d:27:c0:7d:b0:ea:b0:53:80:b5: cd:87:33:51:74:1b:ba:ba:e2:73:f4:cf:98:36:1b:8e:49:8f: 05:fe:65:f4:00:13:12:37:37:04:e7:37:08:87:df:52:09:ee: 71:eb:39:f6:6f:12:c9:46:32:d4:fe:a0:85:ff:09:77:23:0a: de:b6:80:83:92:ad:43:62:8a:c9:1e:6a:da:5a:8e:e4:ec:6e: 74:9d:27:31:b7:78:4f:c4:c2:72:76:84:ea:5f:ee:8a:c1:fd: 30:6e:c3:67:76:a4:87:bc:20:ff:00:96:b7:ec:8a:09:27:9d: 4a:c4:ff:4d:5d:75:9d:8e:6c:c4:af:0d:5f:c6:42:f1:12:6d: dd:7b:cf:67:34:14:20:d7:80:4e:d3:64:1a:54:a3:4d:63:93: 1c:c6:c0:93:f6:8d:82:f7:c9:ac:e6:aa:74:16:71:6d:e2:3e: bd:56:64:23:56:ce:56:c7:a5:6e:b4:8a:db:98:2d:67:c3:ac: 85:b5:c7:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT4mTlLIj8lLVUP0cGeYR2WMhtIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNTA4MjMwNzU1NDNaFw0yNTA4MjYxMTM1NDNaMDMxMTAvBgNV BAMTKDQ4MTRENTA1RDBCMUM4OTgyNUI2MENGRjgyMjczNTg1MkFGNjFFMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXPWxM9oaj/rqRPAgRCwf/8sK WQqnJZbyZd5UJ4szNGxAluFoj8/JhGwtd79LIISePGkXfkmfOro+tMcczVFILjc6 mgU7irqb/7H+UEr9xEEgGQ418qz/xdn0X8EihhkejSITIQzIa6CifH9YH+DJQ5KL NkPYVXe9GlZfE75sfONFx1oUXirLn/sZ23HBWc1+CLANOdprJF8tiPDDkOwEqLvU tP8FTQIS6F2JNE39qmY2gFF1O4Lxwoh9OspLu6UcsXnNhKsEMLUzJHDij7Uk9ZJb 2tTysdbOTYqc4/NQ1AQBHTxtKCZzcOzasOEJpINHkA/Xf/5arL3gpARwrAYnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSBTVBdCxyJgltgz/gic1hSr2HigwHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwNDc5M2MtYzIwOS00NjlhLThl M2MtZWIzZjVhODM4NjNmLzAvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3 QTU1MEUzNkEzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK2pOpwXfqSAaY+Ue1Ewt2xjcdkkW2tHa371 12Jrc7BsLSy+5pWfoqhXPKkTdPoJ423sQ6nO+Rg5qHY5z+xpjSfAfbDqsFOAtc2H M1F0G7q64nP0z5g2G45JjwX+ZfQAExI3NwTnNwiH31IJ7nHrOfZvEslGMtT+oIX/ CXcjCt62gIOSrUNiiskeatpajuTsbnSdJzG3eE/EwnJ2hOpf7orB/TBuw2d2pIe8 IP8AlrfsigknnUrE/01ddZ2ObMSvDV/GQvESbd17z2c0FCDXgE7TZBpUo01jkxzG wJP2jYL3yazmqnQWcW3iPr1WZCNWzlbHpW60ituYLWfDrIW1x3o= -----END CERTIFICATE-----Generated at Sat Aug 23 12:10:45 2025 by rpki-client