$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft File: 821049BBD22C335A50850F16AB159C0C6BCC28E5.mft (raw, json) Hash identifier: 72RcgCZb9F8q6c1j9A05SUG99yIrVmN5ErsUOr7GLlk= Subject key identifier: 3F:62:1A:67:D9:B7:E7:47:BB:55:04:8D:DC:2F:4B:D2:0B:13:1A:89 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 2676CCD01E6F90886573484935107DA98647032D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft Manifest number: 0233 Signing time: Sat 23 Aug 2025 06:01:42 +0000 Manifest this update: Sat 23 Aug 2025 05:56:42 +0000 Manifest next update: Tue 26 Aug 2025 12:07:42 +0000 Files and hashes: 1: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (hash: ncuNmuDMRCz7XEGjG+8p/qjKUpvp2YtlNc4JXvP3iGg=) 2: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (hash: O6mcNqFGUKoXPAXAaTNGJf2XpVfyBv0t3Gtn3V+6lKE=) 3: 3130332e32312e39332e302f32342d3234203d3e20313331373338.roa (hash: gJZ1sW5BxaKi4OlH0Ko1+AD9dXMVkojyx6OKsnKZ2JU=) 4: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (hash: YF6vJXMVtUVK6CmNTZeLfmthP1D0nB1ofgHbuXDKxvI=) 5: 821049BBD22C335A50850F16AB159C0C6BCC28E5.crl (hash: lygppRBt4vfwS/UhXY7qtoYafSHCMXFNzJRR2hkgMcg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 12:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:76:cc:d0:1e:6f:90:88:65:73:48:49:35:10:7d:a9:86:47:03:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Aug 23 05:56:42 2025 GMT Not After : Aug 26 12:07:42 2025 GMT Subject: CN=3F621A67D9B7E747BB55048DDC2F4BD20B131A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3f:3e:18:06:fa:ed:67:cd:82:92:ef:44:3f: 39:ef:7f:26:49:69:98:2a:85:f5:7d:04:2d:05:6a: 6f:1f:c1:07:41:16:a3:ff:bb:4d:06:69:67:1e:76: 3d:cc:46:16:f0:80:0a:95:5f:57:e4:7a:49:7c:d4: 7f:39:87:47:8c:68:4a:66:50:de:61:83:62:0b:0d: ee:6d:49:70:29:fa:a4:9f:4e:63:c9:1d:d0:4d:54: f3:45:75:76:2c:38:db:39:4e:a3:68:7c:57:d7:5b: f6:41:ba:97:df:30:65:d5:1d:46:8a:8b:8f:61:f7: bf:06:e3:73:f4:c6:c8:9d:42:6e:d3:04:cc:1b:53: b1:38:bc:83:d0:a8:88:13:5e:1a:40:9c:c0:5d:57: 23:ef:8a:8d:9d:26:30:56:a4:7a:4d:20:90:28:f5: 23:9c:21:bd:d2:23:ba:39:09:7c:25:82:43:b4:d8: 42:d4:68:78:4a:b4:81:79:a7:67:b0:19:bd:50:d1: a6:cd:36:70:4a:d1:e3:68:65:bd:cf:6d:b5:e4:cb: fd:ed:f5:ba:fa:52:97:6e:a6:31:ad:95:a5:7c:00: 48:39:ad:41:05:27:22:19:e8:1c:94:7e:3b:ef:38: 33:84:98:d8:62:2b:1f:8e:d1:db:2b:96:9b:8c:18: 8b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:62:1A:67:D9:B7:E7:47:BB:55:04:8D:DC:2F:4B:D2:0B:13:1A:89 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:1b:a5:e7:7f:39:e2:f9:38:58:2d:66:80:a0:67:a1:0e:e5: b5:7a:52:d7:3f:00:62:df:37:25:82:bf:4a:be:b1:9a:51:82: 01:37:f9:5a:55:d4:97:4b:2e:4a:ee:f5:df:fb:21:df:fe:2b: c4:36:a9:21:ed:b4:71:32:fb:dd:bf:44:b7:1a:8f:1f:3a:8d: f6:3a:3e:46:ff:29:03:8d:f6:f6:22:13:66:f6:85:98:49:70: 64:d5:c3:74:9b:be:db:d9:2f:53:48:74:a8:a1:f5:69:50:9b: c0:80:8c:9f:4c:eb:f6:5c:d9:71:74:d8:e6:45:73:4e:d5:72: b6:38:8c:c9:b8:f6:41:52:f3:dc:7b:0d:ab:c8:34:cb:52:60: 1b:25:f2:2d:04:78:d6:52:35:10:26:fa:8e:fa:a9:a5:09:57: f9:e0:1a:e9:96:a3:74:aa:53:43:ad:06:05:f0:5b:a9:c3:11: 5f:80:08:b7:57:88:80:61:d7:6a:6c:44:c0:ff:82:1d:66:cb: dc:47:44:40:e4:5e:df:30:3a:15:24:bc:e6:7a:ce:c2:be:28: 8b:fe:20:bf:71:3a:66:4e:15:09:1b:52:2e:7d:e4:97:5b:b8: 64:63:87:80:a9:e7:f2:13:82:e1:a1:41:62:5b:0f:b0:67:d2: 9f:e0:75:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJnbM0B5vkIhlc0hJNRB9qYZHAy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNTA4MjMwNTU2NDJaFw0yNTA4MjYxMjA3NDJaMDMxMTAvBgNV BAMTKDNGNjIxQTY3RDlCN0U3NDdCQjU1MDQ4RERDMkY0QkQyMEIxMzFBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEPz4YBvrtZ82Cku9EPznvfyZJ aZgqhfV9BC0Fam8fwQdBFqP/u00GaWcedj3MRhbwgAqVX1fkekl81H85h0eMaEpm UN5hg2ILDe5tSXAp+qSfTmPJHdBNVPNFdXYsONs5TqNofFfXW/ZBupffMGXVHUaK i49h978G43P0xsidQm7TBMwbU7E4vIPQqIgTXhpAnMBdVyPvio2dJjBWpHpNIJAo 9SOcIb3SI7o5CXwlgkO02ELUaHhKtIF5p2ewGb1Q0abNNnBK0eNoZb3PbbXky/3t 9br6UpdupjGtlaV8AEg5rUEFJyIZ6ByUfjvvODOEmNhiKx+O0dsrlpuMGIsvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUP2IaZ9m350e7VQSN3C9L0gsTGokwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGUxOGQtYTA0Ny00NTkwLTll NTYtNDY0YTczZTIzYzZjLzAvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlD MEM2QkNDMjhFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACYbped/OeL5OFgtZoCgZ6EO5bV6Utc/AGLf NyWCv0q+sZpRggE3+VpV1JdLLkru9d/7Id/+K8Q2qSHttHEy+92/RLcajx86jfY6 Pkb/KQON9vYiE2b2hZhJcGTVw3SbvtvZL1NIdKih9WlQm8CAjJ9M6/Zc2XF02OZF c07VcrY4jMm49kFS89x7DavINMtSYBsl8i0EeNZSNRAm+o76qaUJV/ngGumWo3Sq U0OtBgXwW6nDEV+ACLdXiIBh12psRMD/gh1my9xHREDkXt8wOhUkvOZ6zsK+KIv+ IL9xOmZOFQkbUi595JdbuGRjh4Cp5/ITguGhQWJbD7Bn0p/gdQ4= -----END CERTIFICATE-----Generated at Sat Aug 23 10:36:24 2025 by rpki-client