$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: mfOeszHQYJ8yK7ylS5B2wKSKj2pvtsCSul/SulumVJQ= Subject key identifier: 32:F9:7F:0A:3B:A8:D0:CF:C0:14:A5:A1:E9:BE:F7:40:37:F5:52:8E Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 77A8351C1E68251BEFC69DC9A908BA5FA00A1F3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: EF Signing time: Sat 18 Oct 2025 17:11:03 +0000 Manifest this update: Sat 18 Oct 2025 17:06:03 +0000 Manifest next update: Wed 22 Oct 2025 01:40:03 +0000 Files and hashes: 1: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 2: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (hash: ZnwJrprp+EWEvGE1P1jRPfHAxXSS9SoLdcp+7RA0tEE=) 3: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: 9AtxLeZUIixs0xmcy203G3+JoPRLQax6qGR+36eElb0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a8:35:1c:1e:68:25:1b:ef:c6:9d:c9:a9:08:ba:5f:a0:0a:1f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Oct 18 17:06:03 2025 GMT Not After : Oct 22 01:40:03 2025 GMT Subject: CN=32F97F0A3BA8D0CFC014A5A1E9BEF74037F5528E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:40:f0:f6:17:22:1c:2e:1c:fc:37:06:c5: b3:14:92:0d:f5:7d:6c:d3:9a:09:ae:25:c2:04:50: aa:4e:be:37:6d:89:f9:82:2a:1d:4e:69:52:23:e3: 11:b2:7b:19:0d:c7:92:c6:18:27:1d:54:af:88:3c: 28:00:41:33:9f:63:56:0e:a7:88:6a:4e:03:3e:9b: f8:c5:f8:43:61:12:7e:62:79:46:c7:9b:9f:05:93: 86:54:3f:7f:11:52:1c:3e:80:0f:de:43:ad:59:87: a6:f5:8a:3c:6c:be:3d:ee:b9:17:a6:df:1b:5b:c2: ac:2a:51:9d:71:5b:5e:93:37:d5:d8:0a:ab:61:01: 1a:43:6e:5b:15:90:ba:6a:b1:f7:21:58:de:04:1e: 4f:45:9c:7d:2c:aa:d1:20:8a:e5:34:1f:b2:7c:97: be:59:0d:0d:c8:82:1a:c8:e0:17:ee:65:82:30:a7: a7:75:fb:b5:91:7d:2c:51:f4:28:32:4c:87:b7:e6: e5:3c:fa:d7:fe:17:d2:0e:56:0b:ce:08:c5:3c:47: 1d:56:f4:3d:3e:bd:35:2d:9f:c0:49:ae:bc:34:59: 52:4a:c7:06:10:83:12:4b:01:8e:4c:a8:0b:b7:ce: 68:e0:b1:1e:26:d0:e4:65:71:3a:d2:0b:d4:9f:2c: 3c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F9:7F:0A:3B:A8:D0:CF:C0:14:A5:A1:E9:BE:F7:40:37:F5:52:8E X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:dc:43:96:73:42:e5:83:fd:cf:b4:cd:ce:66:bc:c5:4d:c7: 45:5b:d4:b8:e1:6b:ba:86:2b:0c:7b:7b:06:d6:c1:0a:14:53: 0e:47:32:74:1d:2b:33:93:41:d6:b0:a2:39:fa:a9:f2:2c:be: a0:b5:98:dd:67:4c:b4:f4:fc:85:d9:57:5b:89:d8:83:28:80: c0:2f:ad:8a:e2:ab:86:b8:db:79:91:e3:47:13:b2:2a:1b:76: 56:f2:8f:ed:66:8c:60:30:d6:e1:8e:5f:61:7c:9f:b9:d7:d7: e6:41:0a:8f:04:d3:2b:3f:9a:b7:d7:81:dd:59:50:c8:f5:4b: ff:89:b6:aa:1f:36:78:cb:da:3a:a0:41:1c:b4:f3:f3:b5:93: 7e:f6:19:40:42:19:d0:0f:0c:91:74:63:b0:3d:96:cb:5e:25: 9f:87:7f:2c:e8:1e:39:a4:04:8a:1c:f2:50:bf:a6:a2:5e:ac: 1c:57:31:d4:4e:f5:3b:08:c6:8a:be:e7:84:fb:e6:e3:01:d5: ef:61:b1:97:30:bb:bc:0b:2d:35:ee:d6:6e:ef:e3:15:4a:38: 00:a5:3e:f0:5c:f5:ad:a7:4e:65:d9:03:94:be:12:52:6c:ee: e0:51:8b:4d:48:09:9d:e2:3a:80:d7:9c:4a:f7:86:9b:57:18: 59:be:cb:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd6g1HB5oJRvvxp3JqQi6X6AKHzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTEwMTgxNzA2MDNaFw0yNTEwMjIwMTQwMDNaMDMxMTAvBgNV BAMTKDMyRjk3RjBBM0JBOEQwQ0ZDMDE0QTVBMUU5QkVGNzQwMzdGNTUyOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC18kDw9hciHC4c/DcGxbMUkg31 fWzTmgmuJcIEUKpOvjdtifmCKh1OaVIj4xGyexkNx5LGGCcdVK+IPCgAQTOfY1YO p4hqTgM+m/jF+ENhEn5ieUbHm58Fk4ZUP38RUhw+gA/eQ61Zh6b1ijxsvj3uuRem 3xtbwqwqUZ1xW16TN9XYCqthARpDblsVkLpqsfchWN4EHk9FnH0sqtEgiuU0H7J8 l75ZDQ3IghrI4BfuZYIwp6d1+7WRfSxR9CgyTIe35uU8+tf+F9IOVgvOCMU8Rx1W 9D0+vTUtn8BJrrw0WVJKxwYQgxJLAY5MqAu3zmjgsR4m0ORlcTrSC9SfLDz5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMvl/Cjuo0M/AFKWh6b73QDf1Uo4wHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACDcQ5ZzQuWD/c+0zc5mvMVNx0Vb1Ljha7qG Kwx7ewbWwQoUUw5HMnQdKzOTQdawojn6qfIsvqC1mN1nTLT0/IXZV1uJ2IMogMAv rYriq4a423mR40cTsiobdlbyj+1mjGAw1uGOX2F8n7nX1+ZBCo8E0ys/mrfXgd1Z UMj1S/+JtqofNnjL2jqgQRy08/O1k372GUBCGdAPDJF0Y7A9lsteJZ+HfyzoHjmk BIoc8lC/pqJerBxXMdRO9TsIxoq+54T75uMB1e9hsZcwu7wLLTXu1m7v4xVKOACl PvBc9a2nTmXZA5S+ElJs7uBRi01ICZ3iOoDXnEr3hptXGFm+y8A= -----END CERTIFICATE-----Generated at Tue Oct 21 00:14:25 2025 by rpki-client