$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft (raw, json) Hash identifier: SKWaCUT0fuK+Z733DhPWd2kvz6i49A8CKMK+UtESNiA= Subject key identifier: FD:22:8C:A0:63:E2:26:EB:CC:C0:6A:1A:B8:D2:3A:A5:70:14:83:A1 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 3D3B65F1604C7918E8E24CF6A3FC7A209626421C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft Manifest number: 04E8 Signing time: Sat 28 Jun 2025 18:21:14 +0000 Manifest this update: Sat 28 Jun 2025 18:16:14 +0000 Manifest next update: Tue 01 Jul 2025 22:01:14 +0000 Files and hashes: 1: 3130332e35322e31362e302f32342d3234203d3e20313333383131.roa (hash: KMXBXh+Hz9t8Vs+CANui3lrLwoDdVGoivVhKoGTM+n0=) 2: 3130332e35322e31392e302f32342d3234203d3e20313333383131.roa (hash: frS3InbJAyXvfYFJ9oqdkhlt6S7xP80lfV9ZpnmpcMc=) 3: 3130332e35322e31382e302f32342d3234203d3e20313333383131.roa (hash: MpDUQT8A3dZvwWRQtlzD2B+hHv7+ces35KG+DCb4lSw=) 4: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (hash: hHPw+Xqwsov7fA4EH++xE5Fe/5zBy6SOylLmX+aVZlE=) 5: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (hash: E70nlSvwN/YRzt3ipt5eUpiof5ZiDppc9oAiJGHFIb4=) 6: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl (hash: KmZASrN2k4cbO/z+1AGdyT9ymohpDwyDzu1maallL6U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 22:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3b:65:f1:60:4c:79:18:e8:e2:4c:f6:a3:fc:7a:20:96:26:42:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Jun 28 18:16:14 2025 GMT Not After : Jul 1 22:01:14 2025 GMT Subject: CN=FD228CA063E226EBCCC06A1AB8D23AA5701483A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:60:3a:06:8b:e1:46:7d:cf:45:87:e0:44: 33:df:7f:8d:6f:fe:1e:07:5c:2e:4a:e9:00:8e:af: 44:fe:6e:f5:e0:a2:75:45:6e:9d:de:47:ab:58:56: fa:57:e0:88:ff:b4:dd:f7:e4:2a:13:ff:f3:bd:7e: 29:18:cb:0c:28:d5:ab:de:04:91:61:f6:cd:2f:28: 2c:5f:b4:79:91:9c:f2:f5:05:c7:05:ef:37:0d:88: bf:47:d4:61:1d:10:7e:be:79:41:18:3f:47:8d:11: e3:81:7d:bc:f7:02:58:9f:e4:17:cd:fb:46:d4:a2: a3:e8:fd:98:8f:9e:7f:4f:48:61:d9:c9:66:2c:3f: 91:d1:6b:14:92:e1:c9:78:ae:67:f5:f6:ec:40:56: 18:d9:48:bc:a8:38:7f:6a:27:f3:7a:18:e1:34:7f: f2:8a:0c:e3:c1:0a:30:71:77:35:7e:8a:bf:00:db: 36:e1:1a:b5:ae:ee:f3:ed:c6:f5:af:1d:18:84:fe: 8e:f6:c5:4a:06:84:9d:41:7a:83:85:8e:b2:7d:18: 60:a2:9d:06:53:6f:99:d6:d3:c6:43:8b:a0:dc:83: 99:af:cf:fb:93:f6:ff:b0:da:fc:c7:1f:37:ec:c4: dc:5e:e4:a2:04:f6:dc:6e:60:ff:b0:e2:17:b9:f9: fe:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:22:8C:A0:63:E2:26:EB:CC:C0:6A:1A:B8:D2:3A:A5:70:14:83:A1 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:bf:da:17:44:2c:bd:be:d0:51:82:18:b3:ec:3e:f6:0b:16: b4:e1:f5:c0:0f:57:de:60:5a:7d:14:db:d9:77:ad:13:db:8e: dc:de:6d:58:72:d9:05:1a:ff:78:c0:8b:e7:e7:0d:6e:49:2c: 12:6c:6b:67:69:54:10:75:21:c0:8d:ff:4f:5d:f2:70:bf:06: 75:85:6f:5d:35:9a:f9:f3:67:62:0f:f2:36:db:d8:ba:cd:d2: e6:37:d3:5a:20:37:e6:d9:d2:32:5e:b1:0f:95:df:fe:9f:56: ad:9e:2c:22:de:ba:2b:28:4e:bd:b2:5c:7e:b2:82:7a:c8:9b: 13:45:6e:aa:3a:ae:48:42:ba:f6:dd:a1:de:27:16:0b:f2:5e: d8:e7:8c:5e:e5:8b:cd:b5:be:7f:ba:60:87:72:0c:8c:f9:0d: 44:b2:ac:1b:23:ba:7c:a6:35:d9:4c:1b:c2:59:55:5f:fe:52: ea:e7:2d:37:1c:84:6b:1e:00:87:04:7b:25:7c:0f:e4:95:56: 84:eb:d0:84:21:8d:b3:9d:e5:1a:57:b3:f6:fd:aa:20:aa:6a: 91:24:b0:c6:46:1e:f9:9b:61:eb:57:50:6a:bf:1c:32:45:2b: fa:42:af:bc:71:ef:18:fa:96:fa:e5:80:d4:61:81:4e:ba:83: f5:c6:8a:90 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPTtl8WBMeRjo4kz2o/x6IJYmQhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTA2MjgxODE2MTRaFw0yNTA3MDEyMjAxMTRaMDMxMTAvBgNV BAMTKEZEMjI4Q0EwNjNFMjI2RUJDQ0MwNkExQUI4RDIzQUE1NzAxNDgzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPAGA6BovhRn3PRYfgRDPff41v /h4HXC5K6QCOr0T+bvXgonVFbp3eR6tYVvpX4Ij/tN335CoT//O9fikYywwo1ave BJFh9s0vKCxftHmRnPL1BccF7zcNiL9H1GEdEH6+eUEYP0eNEeOBfbz3Alif5BfN +0bUoqPo/ZiPnn9PSGHZyWYsP5HRaxSS4cl4rmf19uxAVhjZSLyoOH9qJ/N6GOE0 f/KKDOPBCjBxdzV+ir8A2zbhGrWu7vPtxvWvHRiE/o72xUoGhJ1BeoOFjrJ9GGCi nQZTb5nW08ZDi6Dcg5mvz/uT9v+w2vzHHzfsxNxe5KIE9txuYP+w4he5+f4JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/SKMoGPiJuvMwGoauNI6pXAUg6EwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFkZDdjMGYtMDJkMy00MjE3LTlm YzMtMDA0N2FlMTgzNmRjLzAvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIw NTNBOUMwQjZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGy/2hdELL2+0FGCGLPsPvYLFrTh9cAPV95g Wn0U29l3rRPbjtzebVhy2QUa/3jAi+fnDW5JLBJsa2dpVBB1IcCN/09d8nC/BnWF b101mvnzZ2IP8jbb2LrN0uY301ogN+bZ0jJesQ+V3/6fVq2eLCLeuisoTr2yXH6y gnrImxNFbqo6rkhCuvbdod4nFgvyXtjnjF7li821vn+6YIdyDIz5DUSyrBsjunym NdlMG8JZVV/+UurnLTcchGseAIcEeyV8D+SVVoTr0IQhjbOd5RpXs/b9qiCqapEk sMZGHvmbYetXUGq/HDJFK/pCr7xx7xj6lvrlgNRhgU66g/XGipA= -----END CERTIFICATE-----Generated at Sun Jun 29 18:49:56 2025 by rpki-client