$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft File: 43A0899A11D5A51202F1304338672AF19B201A74.mft (raw, json) Hash identifier: KQz3yCZnPVCRj4tIg26dX2iaB1Jghe8Y0msmejl/0IY= Subject key identifier: ED:AA:A6:FC:41:48:DB:1B:D2:1F:47:90:F4:35:11:7C:26:FC:2C:81 Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 110AA9624DD05B7A238E7CC051298549129D8D04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft Manifest number: 03EF Signing time: Sat 18 Oct 2025 13:52:01 +0000 Manifest this update: Sat 18 Oct 2025 13:47:01 +0000 Manifest next update: Wed 22 Oct 2025 01:16:01 +0000 Files and hashes: 1: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (hash: bEv5NJFvGjCqOM99MFNub18kUBXqluJLuz63DD7/xZ4=) 2: 43A0899A11D5A51202F1304338672AF19B201A74.crl (hash: tRpt7/5K2IIgVcb7v8fZrBrYeqpRkPO9IpUZVwQBz1Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0a:a9:62:4d:d0:5b:7a:23:8e:7c:c0:51:29:85:49:12:9d:8d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Oct 18 13:47:01 2025 GMT Not After : Oct 22 01:16:01 2025 GMT Subject: CN=EDAAA6FC4148DB1BD21F4790F435117C26FC2C81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d8:e9:0b:03:b4:e3:d7:bc:d3:b2:bb:6e:44: ae:a9:bd:b9:d7:07:25:f7:a0:e7:17:67:d1:3d:a0: 67:a9:24:ac:31:5f:4a:c6:56:8e:05:23:ec:c0:89: 19:d5:c6:d6:2d:58:5d:9f:23:ec:80:60:ff:9e:48: 8e:b2:92:24:89:43:a4:91:96:9f:88:90:1f:99:f5: 87:3b:ff:11:b4:25:0b:fe:e1:b6:98:c0:cd:1e:f2: 1e:40:3f:b4:9f:f9:f7:45:8e:ed:b6:03:3c:45:9c: ac:13:74:3b:df:8f:96:49:43:d1:03:ee:1a:e4:3b: ec:e2:79:7d:16:77:be:a6:27:b5:5a:5d:09:44:73: cc:73:30:99:50:2e:88:0a:9f:db:b5:4d:4a:d6:df: e8:ed:2b:33:ac:e0:b1:ba:4e:be:72:5c:f0:86:ea: a2:28:da:72:65:ed:bb:99:6e:c3:bc:f7:b1:21:fa: 9f:3c:77:98:4f:ad:dd:99:5a:0d:a1:2c:ea:a9:ff: 04:17:2d:86:40:a3:18:21:9b:e1:57:22:bc:b3:14: d4:58:75:01:ee:ca:fd:48:1d:ce:3c:8c:43:9c:41: fd:65:3a:36:0d:c8:f9:85:ce:9f:23:05:e2:a8:11: e7:89:40:90:97:5d:98:98:60:ce:b5:0f:eb:88:48: 31:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AA:A6:FC:41:48:DB:1B:D2:1F:47:90:F4:35:11:7C:26:FC:2C:81 X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:f4:79:c6:1e:e5:9e:8d:d4:26:d1:b4:cf:05:36:42:9b:03: e5:f9:5e:07:f6:b6:a2:1f:d2:94:1e:f2:87:c6:7d:e7:9b:6e: 76:f2:55:93:ae:1a:ea:5f:9a:02:de:2a:b5:fd:d0:60:67:67: bb:c3:62:39:67:79:60:27:5e:60:6d:11:29:50:35:24:75:cb: a1:5c:a5:36:e8:73:a8:d9:2c:5d:36:e4:3f:06:50:2c:9c:74: 45:b0:8d:fb:ed:8d:5e:b8:a6:bf:dd:72:50:6c:9b:88:73:1b: cc:a6:94:2d:7c:cb:ec:14:59:84:b8:b2:85:dc:b1:a7:08:32: d2:3a:a0:5b:ea:e7:3a:bd:7b:6d:55:95:ee:fa:b8:25:6f:5d: 8c:94:6e:f5:52:9b:d3:1e:88:1e:f3:5e:4e:ca:9d:f6:54:ef: 6a:17:bb:89:7b:cd:d7:26:ed:8f:e6:48:af:be:eb:06:2f:ab: 5a:d4:1b:2d:c7:d7:fa:be:2f:a8:7c:c1:3e:7c:88:a0:d7:d5: 97:63:06:6c:9a:42:9b:55:1c:24:85:79:46:a9:99:d8:6a:6d: e9:f1:32:84:60:bf:ed:84:ec:99:79:c6:b4:13:26:b4:3c:25: be:ff:d3:ab:04:34:79:04:6d:e0:b5:23:33:5c:e0:38:b1:39: ef:26:1c:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEQqpYk3QW3ojjnzAUSmFSRKdjQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNTEwMTgxMzQ3MDFaFw0yNTEwMjIwMTE2MDFaMDMxMTAvBgNV BAMTKEVEQUFBNkZDNDE0OERCMUJEMjFGNDc5MEY0MzUxMTdDMjZGQzJDODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo2OkLA7Tj17zTsrtuRK6pvbnX ByX3oOcXZ9E9oGepJKwxX0rGVo4FI+zAiRnVxtYtWF2fI+yAYP+eSI6ykiSJQ6SR lp+IkB+Z9Yc7/xG0JQv+4baYwM0e8h5AP7Sf+fdFju22AzxFnKwTdDvfj5ZJQ9ED 7hrkO+zieX0Wd76mJ7VaXQlEc8xzMJlQLogKn9u1TUrW3+jtKzOs4LG6Tr5yXPCG 6qIo2nJl7buZbsO897Eh+p88d5hPrd2ZWg2hLOqp/wQXLYZAoxghm+FXIryzFNRY dQHuyv1IHc48jEOcQf1lOjYNyPmFzp8jBeKoEeeJQJCXXZiYYM61D+uISDGNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7aqm/EFI2xvSH0eQ9DURfCb8LIEwHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQwMWIyZDEtMDFjYS00MGU4LWJm NzctOTg2MTU5ODY3YTA0LzAvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJB RjE5QjIwMUE3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFT0ecYe5Z6N1CbRtM8FNkKbA+X5Xgf2tqIf 0pQe8ofGfeebbnbyVZOuGupfmgLeKrX90GBnZ7vDYjlneWAnXmBtESlQNSR1y6Fc pTboc6jZLF025D8GUCycdEWwjfvtjV64pr/dclBsm4hzG8ymlC18y+wUWYS4soXc sacIMtI6oFvq5zq9e21Vle76uCVvXYyUbvVSm9MeiB7zXk7KnfZU72oXu4l7zdcm 7Y/mSK++6wYvq1rUGy3H1/q+L6h8wT58iKDX1ZdjBmyaQptVHCSFeUapmdhqbenx MoRgv+2E7Jl5xrQTJrQ8Jb7/06sENHkEbeC1IzNc4DixOe8mHKo= -----END CERTIFICATE-----Generated at Mon Oct 20 12:02:07 2025 by rpki-client