$ rpki-client -vvf repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft File: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft (raw, json) Hash identifier: Npi1K8KEF3P2TKJVQsBJjvhCNTaAKQAFRPVxEFITlhQ= Subject key identifier: 9F:BA:15:BF:69:E8:2E:44:B0:66:F2:78:F7:D9:CA:1A:CA:3E:43:BB Authority key identifier: 8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 Certificate issuer: /CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Certificate serial: 3C212C78CB0BEE8A5EC88864FB9EF8B571F237EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft Manifest number: 037C Signing time: Thu 21 Aug 2025 10:50:42 +0000 Manifest this update: Thu 21 Aug 2025 10:45:42 +0000 Manifest next update: Sun 24 Aug 2025 19:08:42 +0000 Files and hashes: 1: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl (hash: PYY4u9KtBBYu/DqEMqCWKDxpo+kvi5gEMn4EL/Z/SL4=) 2: 3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa (hash: glmRxvHF4g4HTvz1muaudxYOmNWHdjodUPYRc5xhUvY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:21:2c:78:cb:0b:ee:8a:5e:c8:88:64:fb:9e:f8:b5:71:f2:37:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Validity Not Before: Aug 21 10:45:42 2025 GMT Not After : Aug 24 19:08:42 2025 GMT Subject: CN=9FBA15BF69E82E44B066F278F7D9CA1ACA3E43BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:23:11:90:13:b8:86:1b:ed:9d:28:2c:87:d0: 48:ec:f0:6b:d1:1c:d9:b5:8f:93:df:e6:1b:15:35: 07:a4:54:55:79:fc:58:fe:fe:2e:7d:32:6f:41:c3: 00:dc:92:53:54:21:97:f3:47:36:21:68:a2:b2:dd: 27:3d:39:ae:8c:36:77:a5:bd:af:88:0f:28:22:25: 85:cd:31:df:59:df:f9:8f:59:3e:bd:74:29:4e:95: e0:44:85:12:aa:af:f1:ce:6d:54:26:5a:ab:c7:6b: 47:39:41:9d:14:d7:b5:4b:92:a0:41:dc:c0:49:81: 2c:b7:19:3b:66:eb:29:f4:09:f9:2c:c9:a8:e4:74: 24:1d:40:c4:be:6a:84:b8:f4:9e:54:ff:12:03:52: 8f:47:2e:26:31:b3:85:87:0c:20:08:f3:04:1f:c0: 9f:0e:27:12:8f:70:25:91:88:ec:4d:a0:3f:7e:82: c0:04:79:b1:e6:ef:d4:40:17:ca:24:54:98:de:ea: 4e:0c:99:fc:0f:64:0b:d6:15:30:31:db:c6:1e:86: d3:ad:f0:f1:09:b8:41:5b:b5:c2:a7:26:15:3b:6b: 6c:e8:71:f5:ad:58:7d:da:b7:4b:1d:8d:c0:4a:6d: ea:cd:e1:ce:df:c7:1b:b5:79:80:7c:19:21:1d:e9: 59:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:BA:15:BF:69:E8:2E:44:B0:66:F2:78:F7:D9:CA:1A:CA:3E:43:BB X509v3 Authority Key Identifier: keyid:8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:fd:d3:28:1b:73:d3:48:17:c6:b0:3f:bd:af:0b:da:f1:42: a5:bd:72:7f:d5:55:2c:92:ac:cf:3f:74:cd:93:99:10:8c:3b: 3b:5a:0e:3a:3b:55:b5:ff:1b:09:25:2d:f6:9c:00:9c:11:e2: da:4c:a1:20:11:15:a5:63:80:86:a1:d1:20:bb:5c:56:0b:54: 99:d6:5c:e1:53:10:ef:a8:b0:e2:d2:cf:98:50:4e:72:25:11: 19:ce:04:ee:13:13:b5:dc:cb:e4:10:d8:96:8d:38:b3:eb:8a: 97:ff:05:0f:94:18:f6:98:be:fa:f2:1d:f7:eb:94:69:30:54: 18:70:95:bd:a7:7b:f4:c4:1c:7c:3a:13:43:54:72:ec:e3:81: 3c:1d:a8:5a:27:a2:b9:de:fd:65:ac:43:aa:31:91:5f:1a:69: c4:c6:42:b4:e4:4b:8d:a6:79:20:7d:95:76:39:76:f0:7a:04: 0e:ab:32:b7:fb:77:09:66:55:10:a6:88:77:00:ed:c5:af:38: c8:38:c6:da:b2:73:69:87:7c:23:79:09:5f:e5:e6:ae:6d:db: 27:ca:9a:db:a1:79:69:11:fb:62:35:2e:cd:84:c0:a5:8d:07: 0a:5c:3f:06:27:6e:d0:60:31:68:93:47:f8:a5:ad:90:8e:0c: ed:dd:6f:7d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPCEseMsL7opeyIhk+574tXHyN+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRD REUxRTVEMDAeFw0yNTA4MjExMDQ1NDJaFw0yNTA4MjQxOTA4NDJaMDMxMTAvBgNV BAMTKDlGQkExNUJGNjlFODJFNDRCMDY2RjI3OEY3RDlDQTFBQ0EzRTQzQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSIxGQE7iGG+2dKCyH0Ejs8GvR HNm1j5Pf5hsVNQekVFV5/Fj+/i59Mm9BwwDcklNUIZfzRzYhaKKy3Sc9Oa6MNnel va+IDygiJYXNMd9Z3/mPWT69dClOleBEhRKqr/HObVQmWqvHa0c5QZ0U17VLkqBB 3MBJgSy3GTtm6yn0CfksyajkdCQdQMS+aoS49J5U/xIDUo9HLiYxs4WHDCAI8wQf wJ8OJxKPcCWRiOxNoD9+gsAEebHm79RAF8okVJje6k4MmfwPZAvWFTAx28YehtOt 8PEJuEFbtcKnJhU7a2zocfWtWH3at0sdjcBKberN4c7fxxu1eYB8GSEd6VnFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUn7oVv2noLkSwZvJ499nKGso+Q7swHwYDVR0j BBgwFoAUjN9xbyXWTes+EDbmo223JM3h5dAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDUyMGI1NC0zYmE3LTQ2MzEtYWYwYi01NTk4NGIwYmE3ZjIvMC84Q0RGNzE2RjI1 RDY0REVCM0UxMDM2RTZBMzZEQjcyNENERTFFNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRDREUx RTVEMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjA1MjBiNTQtM2JhNy00NjMxLWFm MGItNTU5ODRiMGJhN2YyLzAvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3 MjRDREUxRTVEMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABD90ygbc9NIF8awP72vC9rxQqW9cn/VVSyS rM8/dM2TmRCMOztaDjo7VbX/GwklLfacAJwR4tpMoSARFaVjgIah0SC7XFYLVJnW XOFTEO+osOLSz5hQTnIlERnOBO4TE7Xcy+QQ2JaNOLPripf/BQ+UGPaYvvryHffr lGkwVBhwlb2ne/TEHHw6E0NUcuzjgTwdqFonorne/WWsQ6oxkV8aacTGQrTkS42m eSB9lXY5dvB6BA6rMrf7dwlmVRCmiHcA7cWvOMg4xtqyc2mHfCN5CV/l5q5t2yfK mtuheWkR+2I1Ls2EwKWNBwpcPwYnbtBgMWiTR/ilrZCODO3db30= -----END CERTIFICATE-----Generated at Sat Aug 23 15:24:15 2025 by rpki-client