$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: 8TmIsazaUOaPnvQX/DIDSwg4CCUlVxr7oUvQU1/T868= Subject key identifier: C1:61:A2:43:D6:7A:F2:C8:AB:51:71:37:C0:CB:A9:08:2A:DD:1E:1B Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 08BE6C50D7B3A8964F267CBFE3DB9CA47B3DBE21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 017F Signing time: Sun 19 Oct 2025 21:52:16 +0000 Manifest this update: Sun 19 Oct 2025 21:47:16 +0000 Manifest next update: Thu 23 Oct 2025 05:11:16 +0000 Files and hashes: 1: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 2: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 3: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) 4: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: AgzB296p3kS7W/KMko02ZK9xeOPZgQBIFN87x0Flq98=) 5: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:be:6c:50:d7:b3:a8:96:4f:26:7c:bf:e3:db:9c:a4:7b:3d:be:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Oct 19 21:47:16 2025 GMT Not After : Oct 23 05:11:16 2025 GMT Subject: CN=C161A243D67AF2C8AB517137C0CBA9082ADD1E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ac:6f:fe:3f:ea:31:13:d4:ae:34:88:28:15: be:0e:67:63:5f:09:70:df:b8:f1:87:0a:4f:f7:06: b6:a4:cd:c7:d8:cb:61:de:f1:80:23:75:15:cd:4e: fc:3d:e8:d0:a5:2f:bd:f1:99:73:78:19:88:4c:42: cd:11:cf:91:38:44:bd:aa:ae:dc:d3:98:92:04:3e: d2:b0:72:9e:24:57:e5:55:ed:58:24:73:41:5b:e6: a6:a8:86:d9:dd:a0:1f:ce:b3:ec:bf:56:14:25:39: 26:8a:47:69:95:c5:da:20:1a:1b:c7:03:82:82:b9: 4d:28:c1:1e:e5:96:0c:ff:98:db:5f:96:fb:f6:87: 6d:d1:e2:84:47:48:a6:73:35:a3:8b:ca:94:1a:1d: 65:ad:18:c9:0c:89:67:88:df:f7:31:76:7f:90:7b: 9d:9f:15:c9:01:ed:1c:40:26:50:ed:69:3c:04:7c: 75:b8:b2:a7:8a:41:e4:20:60:ae:70:26:a8:dd:aa: 12:06:ad:f9:98:53:f3:2a:57:f5:15:65:1f:61:5c: 09:34:f5:8f:9c:19:b1:78:ed:f5:ac:0b:9b:68:fd: 6d:ee:c6:85:f7:8f:59:be:fd:6c:84:30:f4:59:d1: ac:15:66:6d:a1:59:ed:e4:49:f4:08:0d:5d:18:e8: 9f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:61:A2:43:D6:7A:F2:C8:AB:51:71:37:C0:CB:A9:08:2A:DD:1E:1B X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:8d:2c:26:37:95:26:7a:ce:6a:31:04:88:bc:6c:1f:9e:f1: bf:64:6f:84:b8:11:30:32:22:cc:1b:23:46:df:e1:f3:08:68: 17:ac:85:c0:9e:de:f4:2f:1f:51:57:62:35:01:1d:d1:a3:48: 7f:78:26:9f:c6:36:eb:43:d6:ca:a1:55:d0:18:5c:d9:40:36: ba:4b:e9:b5:6e:87:14:00:87:4b:f3:8c:f3:09:5c:29:d6:2e: 13:fb:14:d2:50:91:b4:e2:74:76:cf:14:3a:17:08:5e:12:23: 47:a6:8b:cd:28:6f:cb:27:79:4d:89:9c:fd:98:25:97:08:d7: 1a:09:90:45:ef:c7:29:ef:65:99:99:8a:75:bd:77:ef:0d:a6: 6f:ad:3e:4d:b2:75:9f:7f:12:ce:ff:62:1a:e6:0d:5c:f8:a6: 43:a5:32:31:35:fd:a9:31:04:b6:fa:46:e3:72:97:c4:c5:96: 9e:44:f6:37:6a:e4:c9:ca:b1:0c:65:bd:cc:0a:af:d1:b3:e5: e3:ae:5c:08:01:ff:12:ae:bb:30:8a:07:e3:ec:81:91:d8:a0: 98:a8:2f:b9:df:7f:0c:20:9a:bd:a9:b0:80:db:b5:b6:fb:31: 9d:69:4c:3a:41:79:87:3e:5f:07:a7:58:72:53:73:68:a1:bb: 96:99:80:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCL5sUNezqJZPJny/49ucpHs9viEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTEwMTkyMTQ3MTZaFw0yNTEwMjMwNTExMTZaMDMxMTAvBgNV BAMTKEMxNjFBMjQzRDY3QUYyQzhBQjUxNzEzN0MwQ0JBOTA4MkFERDFFMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErG/+P+oxE9SuNIgoFb4OZ2Nf CXDfuPGHCk/3BrakzcfYy2He8YAjdRXNTvw96NClL73xmXN4GYhMQs0Rz5E4RL2q rtzTmJIEPtKwcp4kV+VV7Vgkc0Fb5qaohtndoB/Os+y/VhQlOSaKR2mVxdogGhvH A4KCuU0owR7llgz/mNtflvv2h23R4oRHSKZzNaOLypQaHWWtGMkMiWeI3/cxdn+Q e52fFckB7RxAJlDtaTwEfHW4sqeKQeQgYK5wJqjdqhIGrfmYU/MqV/UVZR9hXAk0 9Y+cGbF47fWsC5to/W3uxoX3j1m+/WyEMPRZ0awVZm2hWe3kSfQIDV0Y6J8dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwWGiQ9Z68sirUXE3wMupCCrdHhswHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAmNLCY3lSZ6zmoxBIi8bB+e8b9kb4S4ETAy IswbI0bf4fMIaBeshcCe3vQvH1FXYjUBHdGjSH94Jp/GNutD1sqhVdAYXNlANrpL 6bVuhxQAh0vzjPMJXCnWLhP7FNJQkbTidHbPFDoXCF4SI0emi80ob8sneU2JnP2Y JZcI1xoJkEXvxynvZZmZinW9d+8Npm+tPk2ydZ9/Es7/YhrmDVz4pkOlMjE1/akx BLb6RuNyl8TFlp5E9jdq5MnKsQxlvcwKr9Gz5eOuXAgB/xKuuzCKB+PsgZHYoJio L7nffwwgmr2psIDbtbb7MZ1pTDpBeYc+XwenWHJTc2ihu5aZgOA= -----END CERTIFICATE-----Generated at Mon Oct 20 17:07:33 2025 by rpki-client