$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft File: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft (raw, json) Hash identifier: rbPlSmf5Iv5cLI+soC/rEzHy+yO8xt8FKTwWXxZ4pR0= Subject key identifier: 9B:E9:9D:D9:B7:8C:B8:58:F6:E4:57:AC:C2:F9:1A:F9:2E:C8:AC:A7 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 5118B831DABEAFCAF2EA5F0F3DF235FDAB975D07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft Manifest number: 0513 Signing time: Sun 19 Oct 2025 18:11:16 +0000 Manifest this update: Sun 19 Oct 2025 18:06:16 +0000 Manifest next update: Thu 23 Oct 2025 02:39:16 +0000 Files and hashes: 1: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (hash: BlXsQ1QjfVoT6J0SDJFst3KLhMp6LiWyqHWFZlBXj2o=) 2: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (hash: u7MPei7+iN4f1OLKumfeRBmfOe2wgHqRvP7yaGUByuA=) 3: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl (hash: 8YzVT1Eaic1/Eeo63u9b10JKlm013CqW9HbrkDO90ZQ=) 4: 3130332e31342e3131302e302f32332d3234203d3e203536323333.roa (hash: tDRK/Vdz8u2hhC9LdyJ4AT+BwDcg/REr12fUhDIA9Bo=) 5: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (hash: dkwLIgjutNqyS1fEiwY5jB8EjSSH9/0tY66Lo4b2moY=) 6: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (hash: 7Q0dwA0Rc1pnpyLnXxos7sM1Wj4t+yMR55gSNZ0dsoU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:18:b8:31:da:be:af:ca:f2:ea:5f:0f:3d:f2:35:fd:ab:97:5d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Oct 19 18:06:16 2025 GMT Not After : Oct 23 02:39:16 2025 GMT Subject: CN=9BE99DD9B78CB858F6E457ACC2F91AF92EC8ACA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c3:d7:74:0f:60:ab:dc:42:b6:cd:98:5c:13: 47:11:4f:8f:d7:84:22:80:75:23:65:43:9e:8c:88: 83:32:b3:95:f8:68:f9:a6:d5:fd:67:69:5c:45:cc: ee:48:be:2b:c7:1f:9b:f5:3a:c3:76:09:22:b5:7f: e6:31:fe:e9:24:08:5d:dd:76:a4:6a:7d:0c:da:72: d0:04:d9:2b:33:e9:88:f2:76:b7:96:c3:ad:d1:25: 99:6b:b2:14:5d:70:d8:41:25:38:01:69:40:d2:cb: 60:91:fb:09:67:ae:b7:8d:9a:ac:40:19:87:69:b7: 42:ff:7c:cf:91:b5:6c:53:e6:8a:f7:ff:2d:64:22: ef:14:7a:4f:cd:1b:c1:33:6f:47:13:8b:13:77:75: e1:d3:0c:37:9d:d4:24:da:23:92:84:2b:9b:52:82: 71:20:ac:ba:ec:85:08:f0:2c:0b:b4:9a:a0:03:92: 23:36:1c:fa:f7:6c:59:5e:97:9e:30:95:6a:61:e6: 77:32:f5:6c:13:b7:58:b7:59:73:91:a5:39:86:cc: 6d:83:01:e0:b7:27:ea:00:5b:d3:53:d5:b9:61:cd: 08:48:bf:bc:bb:39:32:90:bd:8a:68:ae:78:a3:b2: 33:ca:ff:f3:63:72:42:5d:ae:48:41:76:a5:9f:ee: 69:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E9:9D:D9:B7:8C:B8:58:F6:E4:57:AC:C2:F9:1A:F9:2E:C8:AC:A7 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:27:47:e0:b9:fd:cd:ab:44:2d:b3:fd:47:fd:ef:b8:b6:29: b2:d6:2a:76:e4:68:79:56:6f:ee:c2:4d:08:90:90:16:ed:d7: de:40:2a:22:93:8a:cb:c8:f3:49:f2:18:d7:20:c0:43:15:56: 4a:7d:8a:c9:16:f0:56:de:d1:a7:32:cb:4e:4d:54:c7:ae:95: c6:ee:d9:fa:b4:ef:7a:a9:ce:ed:71:0b:ef:36:a1:5a:da:8e: b0:f8:66:15:ac:96:91:e4:ab:09:40:07:6f:7e:09:ab:12:cc: 11:f3:6a:b5:82:31:74:62:0f:4f:2a:ca:c1:89:a7:58:a4:48: 23:04:d0:27:9b:a5:f4:b0:13:55:7d:76:f4:c6:1e:44:9c:06: de:50:23:39:8b:1e:93:f5:52:6d:cf:e2:ba:90:4b:42:5e:9e: cd:0c:1b:f5:89:7e:89:95:d1:11:bc:e2:70:b0:3f:41:da:c5: 48:46:17:dd:73:5a:31:84:28:80:30:b9:dc:28:3a:cd:3c:1c: 1d:6d:e1:3b:94:e9:4c:66:e3:98:d8:74:cf:44:68:03:4a:b2: ac:74:e0:8d:8b:32:f0:b9:e0:c4:ca:7c:88:be:7c:34:82:c4: 3d:a8:6f:c5:36:cc:72:8b:6f:47:4a:4f:be:5e:3b:bc:50:63: f0:95:75:c9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUURi4Mdq+r8ry6l8PPfI1/auXXQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTEwMTkxODA2MTZaFw0yNTEwMjMwMjM5MTZaMDMxMTAvBgNV BAMTKDlCRTk5REQ5Qjc4Q0I4NThGNkU0NTdBQ0MyRjkxQUY5MkVDOEFDQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrw9d0D2Cr3EK2zZhcE0cRT4/X hCKAdSNlQ56MiIMys5X4aPmm1f1naVxFzO5IvivHH5v1OsN2CSK1f+Yx/ukkCF3d dqRqfQzactAE2Ssz6YjydreWw63RJZlrshRdcNhBJTgBaUDSy2CR+wlnrreNmqxA GYdpt0L/fM+RtWxT5or3/y1kIu8Uek/NG8Ezb0cTixN3deHTDDed1CTaI5KEK5tS gnEgrLrshQjwLAu0mqADkiM2HPr3bFlel54wlWph5ncy9WwTt1i3WXORpTmGzG2D AeC3J+oAW9NT1blhzQhIv7y7OTKQvYpornijsjPK//NjckJdrkhBdqWf7mnTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUm+md2beMuFj25Feswvka+S7IrKcwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDRmZDRiYzItNDFkNC00MmU2LWE3 ZmYtNTk0OTM4ODUxMjZhLzAvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRC QkVFNTRDQTg1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABonR+C5/c2rRC2z/Uf977i2KbLWKnbkaHlW b+7CTQiQkBbt195AKiKTisvI80nyGNcgwEMVVkp9iskW8Fbe0acyy05NVMeulcbu 2fq073qpzu1xC+82oVrajrD4ZhWslpHkqwlAB29+CasSzBHzarWCMXRiD08qysGJ p1ikSCME0CebpfSwE1V9dvTGHkScBt5QIzmLHpP1Um3P4rqQS0Jens0MG/WJfomV 0RG84nCwP0HaxUhGF91zWjGEKIAwudwoOs08HB1t4TuU6Uxm45jYdM9EaANKsqx0 4I2LMvC54MTKfIi+fDSCxD2ob8U2zHKLb0dKT75eO7xQY/CVdck= -----END CERTIFICATE-----Generated at Mon Oct 20 06:55:53 2025 by rpki-client