$ rpki-client -vvf repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft File: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft (raw, json) Hash identifier: d/AnEff5kLJwktgl9A6txTtmP6yt/slpBdM8WcfQfvo= Subject key identifier: 86:83:07:D6:A2:16:D5:20:2F:58:3E:F7:F7:1D:BC:EF:76:99:5B:57 Authority key identifier: 8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 Certificate issuer: /CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Certificate serial: 7AD7ABD796DE984ACC7FA6C0CC6D9F00E21DD121 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft Manifest number: 0364 Signing time: Fri 27 Jun 2025 19:30:43 +0000 Manifest this update: Fri 27 Jun 2025 19:25:43 +0000 Manifest next update: Tue 01 Jul 2025 01:02:43 +0000 Files and hashes: 1: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl (hash: oAaFO9hMBk8Mq8i8jzxVmX7JMPcy0QJEeU4jgGRI9V0=) 2: 3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa (hash: 6CpN8aBw/RZzk7vZX82p71fUs1ZsrBjhdxlC+CO80+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d7:ab:d7:96:de:98:4a:cc:7f:a6:c0:cc:6d:9f:00:e2:1d:d1:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Validity Not Before: Jun 27 19:25:43 2025 GMT Not After : Jul 1 01:02:43 2025 GMT Subject: CN=868307D6A216D5202F583EF7F71DBCEF76995B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:b0:eb:03:ec:9f:e4:fb:50:06:e3:d0:76: 84:6c:2c:6f:81:cd:90:8f:57:3b:bf:74:15:34:ad: b7:f0:50:03:df:6e:8c:2e:1d:f6:e8:30:8d:57:59: 48:cc:3e:85:4e:21:5e:31:6d:49:cb:f3:ca:f0:c4: 75:b9:ea:a5:b6:a3:3f:25:fc:5e:07:00:a1:df:b4: 17:79:bf:17:90:c0:95:d6:1d:65:4c:ea:d0:1b:00: b2:16:e1:df:97:a7:04:c0:d7:3f:56:f6:f6:87:7e: 4c:64:18:e2:aa:ec:50:b7:2f:2d:ea:9f:76:53:99: 0e:96:c7:68:64:6c:d1:26:79:11:1c:a9:df:77:fd: 26:64:9d:b0:d4:6f:f4:64:9d:aa:fa:94:f5:04:ed: 18:dc:f7:e2:a8:b8:74:36:3f:ea:f8:67:ec:17:6a: e9:b7:cf:fa:5c:93:a8:91:cd:08:7c:43:36:b7:b8: e3:4e:27:3b:e8:e7:7b:df:cc:7e:87:49:56:38:86: d1:72:20:7e:d0:e6:f9:54:05:6b:8f:93:99:e1:af: 84:5e:46:b1:c2:42:70:4b:70:15:16:12:80:27:05: e5:88:f3:ec:8f:bc:d3:b6:0e:a4:ef:15:9d:ef:e9: a3:de:4e:ec:29:e4:e7:cb:03:e4:2c:a6:e3:a9:f7: 9a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:83:07:D6:A2:16:D5:20:2F:58:3E:F7:F7:1D:BC:EF:76:99:5B:57 X509v3 Authority Key Identifier: keyid:8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:72:ae:fd:61:b5:97:3c:d2:a9:48:d3:e8:cc:d1:10:95:f2: a2:17:15:b6:1b:d7:f1:23:ab:ac:bc:86:d5:02:e5:87:63:7d: f7:fb:3c:e2:0c:c9:66:44:43:55:a2:b2:b4:27:bd:1f:01:14: f8:a9:e6:c1:45:e7:14:8d:86:fd:2e:66:94:0e:df:d2:00:a0: fe:4b:b0:87:87:23:51:a0:32:c9:bb:fa:ab:aa:6d:69:00:1e: c7:8e:34:1d:61:5b:9e:e8:da:72:26:80:c0:8d:c3:67:82:b6: cd:8f:f1:f1:ac:6f:41:3e:cc:6f:79:1d:81:41:5b:fb:9c:aa: d4:30:5d:5b:e0:42:cf:c5:dd:3b:6f:2a:4b:af:83:ec:63:b2: e6:8a:90:3c:8a:48:72:ed:80:51:07:d2:1e:b9:81:18:76:1a: 8f:76:14:0d:ed:29:0a:32:75:1b:c2:65:37:5e:ee:25:d1:cb: 08:e4:3a:42:c1:46:fe:17:f9:86:c1:44:39:f6:5b:fa:0f:f1: 59:30:a8:08:db:95:c4:ad:88:c9:38:1b:a1:60:6c:bf:2e:f5: 02:54:ac:01:b5:b3:ed:b5:83:9e:ce:8e:da:c4:97:8d:f9:c5: 25:11:32:1d:94:84:71:9e:d9:5b:13:b8:ce:ac:30:1d:2f:0a: 73:39:df:3d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeter15bemErMf6bAzG2fAOId0SEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRD REUxRTVEMDAeFw0yNTA2MjcxOTI1NDNaFw0yNTA3MDEwMTAyNDNaMDMxMTAvBgNV BAMTKDg2ODMwN0Q2QTIxNkQ1MjAyRjU4M0VGN0Y3MURCQ0VGNzY5OTVCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DLDrA+yf5PtQBuPQdoRsLG+B zZCPVzu/dBU0rbfwUAPfbowuHfboMI1XWUjMPoVOIV4xbUnL88rwxHW56qW2oz8l /F4HAKHftBd5vxeQwJXWHWVM6tAbALIW4d+XpwTA1z9W9vaHfkxkGOKq7FC3Ly3q n3ZTmQ6Wx2hkbNEmeREcqd93/SZknbDUb/Rknar6lPUE7Rjc9+KouHQ2P+r4Z+wX aum3z/pck6iRzQh8Qza3uONOJzvo53vfzH6HSVY4htFyIH7Q5vlUBWuPk5nhr4Re RrHCQnBLcBUWEoAnBeWI8+yPvNO2DqTvFZ3v6aPeTuwp5OfLA+QspuOp95qbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhoMH1qIW1SAvWD739x2873aZW1cwHwYDVR0j BBgwFoAUjN9xbyXWTes+EDbmo223JM3h5dAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDUyMGI1NC0zYmE3LTQ2MzEtYWYwYi01NTk4NGIwYmE3ZjIvMC84Q0RGNzE2RjI1 RDY0REVCM0UxMDM2RTZBMzZEQjcyNENERTFFNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRDREUx RTVEMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjA1MjBiNTQtM2JhNy00NjMxLWFm MGItNTU5ODRiMGJhN2YyLzAvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3 MjRDREUxRTVEMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABdyrv1htZc80qlI0+jM0RCV8qIXFbYb1/Ej q6y8htUC5Ydjfff7POIMyWZEQ1WisrQnvR8BFPip5sFF5xSNhv0uZpQO39IAoP5L sIeHI1GgMsm7+quqbWkAHseONB1hW57o2nImgMCNw2eCts2P8fGsb0E+zG95HYFB W/ucqtQwXVvgQs/F3TtvKkuvg+xjsuaKkDyKSHLtgFEH0h65gRh2Go92FA3tKQoy dRvCZTde7iXRywjkOkLBRv4X+YbBRDn2W/oP8VkwqAjblcStiMk4G6FgbL8u9QJU rAG1s+21g57OjtrEl435xSURMh2UhHGe2VsTuM6sMB0vCnM53z0= -----END CERTIFICATE-----Generated at Sun Jun 29 21:21:56 2025 by rpki-client