$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft (raw, json) Hash identifier: +ZxrzWvVV8KwEF2179RXVtihPVrKPlFZTq3NfGHoXec= Subject key identifier: 91:E9:49:BA:CA:D2:9F:D1:E0:EE:E8:7F:91:DE:40:31:FE:51:4B:5D Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 7200625E8A31C2D856DDA159C6393BD4C81539F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft Manifest number: 0500 Signing time: Thu 21 Aug 2025 18:51:15 +0000 Manifest this update: Thu 21 Aug 2025 18:46:15 +0000 Manifest next update: Mon 25 Aug 2025 00:20:15 +0000 Files and hashes: 1: 3130332e35322e31392e302f32342d3234203d3e20313333383131.roa (hash: frS3InbJAyXvfYFJ9oqdkhlt6S7xP80lfV9ZpnmpcMc=) 2: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (hash: hHPw+Xqwsov7fA4EH++xE5Fe/5zBy6SOylLmX+aVZlE=) 3: 3130332e35322e31362e302f32342d3234203d3e20313333383131.roa (hash: KMXBXh+Hz9t8Vs+CANui3lrLwoDdVGoivVhKoGTM+n0=) 4: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl (hash: OVNTk1myViuienDlohl2ITq+/VTsFEdSqxEVATqDRHg=) 5: 3130332e35322e31382e302f32342d3234203d3e20313333383131.roa (hash: MpDUQT8A3dZvwWRQtlzD2B+hHv7+ces35KG+DCb4lSw=) 6: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (hash: E70nlSvwN/YRzt3ipt5eUpiof5ZiDppc9oAiJGHFIb4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 00:20:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:00:62:5e:8a:31:c2:d8:56:dd:a1:59:c6:39:3b:d4:c8:15:39:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Aug 21 18:46:15 2025 GMT Not After : Aug 25 00:20:15 2025 GMT Subject: CN=91E949BACAD29FD1E0EEE87F91DE4031FE514B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:19:b1:14:c5:44:ca:c6:bf:9a:22:40:df:31: 0f:50:78:aa:ee:e8:7a:ad:7b:b2:78:b6:ef:84:18: b9:38:40:f4:2f:07:a4:39:25:6d:29:1c:04:1b:26: 3a:50:71:e6:d8:3f:7f:94:db:f0:5d:21:13:5a:a4: 66:e6:ee:2e:d2:96:a0:d7:15:78:9d:1f:5a:63:a2: 1c:58:23:10:7d:01:52:7d:0b:73:a7:80:7d:db:0c: b5:9f:c1:3f:9f:e2:99:0e:3e:6a:02:a3:c7:63:94: 47:2e:4e:c2:6d:84:c2:6d:ba:e5:ae:7a:cb:78:5d: 12:08:37:18:fb:65:30:7d:85:12:24:cc:42:e1:03: d7:61:00:45:31:0b:b6:11:f2:8c:73:87:ba:dd:49: 29:af:63:53:40:32:01:fb:13:53:41:e9:10:3c:d3: ae:64:e7:28:ed:6d:b1:92:43:61:65:26:ef:07:29: d1:57:b7:a6:fa:69:93:d3:5d:d1:0e:63:6f:22:98: cb:5e:11:de:90:27:37:3d:8c:e1:eb:b3:1b:22:06: 31:bd:e9:46:12:64:45:84:9b:9f:ef:72:26:61:8a: 6f:df:7e:4c:76:7e:92:0c:ac:09:78:4c:d6:ff:25: e3:78:e3:21:6b:0b:1c:59:a6:66:a8:35:dd:71:0f: e0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E9:49:BA:CA:D2:9F:D1:E0:EE:E8:7F:91:DE:40:31:FE:51:4B:5D X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:9a:cf:b3:ba:fd:ff:ce:0c:79:57:45:60:c1:86:92:da:66: 51:06:47:0c:69:c8:d1:62:42:40:38:de:4c:cb:5c:3d:db:e9: e1:a4:d6:a8:73:cb:a6:94:11:ac:17:69:0a:09:d2:cc:ec:99: 8d:b2:3c:60:35:37:21:4b:25:7e:fb:3a:c7:44:64:3d:e6:ec: d8:34:4b:ab:e0:a0:ef:33:fa:21:77:15:85:e7:fd:f1:94:a7: 4d:fd:a9:74:9c:12:6b:0c:33:3f:c0:d9:b8:4a:17:df:7f:84: 99:9b:2f:23:04:57:3f:70:f2:33:6d:b4:2b:87:22:2b:6f:fd: d2:3c:24:f1:58:78:08:0c:13:43:c9:59:11:59:1b:88:d1:85: 42:fb:17:35:db:ab:c0:d5:7d:62:a7:17:4f:43:99:5c:66:9f: 86:b3:51:3a:ea:2c:32:66:a3:39:da:c6:08:fe:3b:d9:79:1e: 21:e4:ed:32:d0:58:6b:cc:13:ac:2f:a5:4a:7b:70:61:d4:7a: 6d:12:08:65:ca:6a:ec:14:18:81:c0:1e:7d:92:4c:61:50:84: b2:b6:ae:84:70:14:4f:76:51:27:b2:f1:18:fa:45:cf:84:99: dc:1d:fe:5d:b1:3b:25:4e:1f:49:57:71:46:87:56:e3:40:bb: 1b:eb:68:a9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcgBiXooxwthW3aFZxjk71MgVOfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTA4MjExODQ2MTVaFw0yNTA4MjUwMDIwMTVaMDMxMTAvBgNV BAMTKDkxRTk0OUJBQ0FEMjlGRDFFMEVFRTg3RjkxREU0MDMxRkU1MTRCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzGbEUxUTKxr+aIkDfMQ9QeKru 6Hqte7J4tu+EGLk4QPQvB6Q5JW0pHAQbJjpQcebYP3+U2/BdIRNapGbm7i7SlqDX FXidH1pjohxYIxB9AVJ9C3OngH3bDLWfwT+f4pkOPmoCo8djlEcuTsJthMJtuuWu est4XRIINxj7ZTB9hRIkzELhA9dhAEUxC7YR8oxzh7rdSSmvY1NAMgH7E1NB6RA8 065k5yjtbbGSQ2FlJu8HKdFXt6b6aZPTXdEOY28imMteEd6QJzc9jOHrsxsiBjG9 6UYSZEWEm5/vciZhim/ffkx2fpIMrAl4TNb/JeN44yFrCxxZpmaoNd1xD+AfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkelJusrSn9Hg7uh/kd5AMf5RS10wHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFkZDdjMGYtMDJkMy00MjE3LTlm YzMtMDA0N2FlMTgzNmRjLzAvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIw NTNBOUMwQjZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJeaz7O6/f/ODHlXRWDBhpLaZlEGRwxpyNFi QkA43kzLXD3b6eGk1qhzy6aUEawXaQoJ0szsmY2yPGA1NyFLJX77OsdEZD3m7Ng0 S6vgoO8z+iF3FYXn/fGUp039qXScEmsMMz/A2bhKF99/hJmbLyMEVz9w8jNttCuH Iitv/dI8JPFYeAgME0PJWRFZG4jRhUL7FzXbq8DVfWKnF09DmVxmn4azUTrqLDJm oznaxgj+O9l5HiHk7TLQWGvME6wvpUp7cGHUem0SCGXKauwUGIHAHn2STGFQhLK2 roRwFE92USey8Rj6Rc+Emdwd/l2xOyVOH0lXcUaHVuNAuxvraKk= -----END CERTIFICATE-----Generated at Sat Aug 23 10:11:36 2025 by rpki-client