$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft File: 645C9D445B2796662EE98A03E50C124F3E962CAB.mft (raw, json) Hash identifier: KZW5hGVbzvFLbmsD83baB9ETDYALFAivBDw8pJZyEQ4= Subject key identifier: 2A:49:59:C2:2F:FE:86:52:3F:13:1A:05:A3:CD:88:FE:DD:91:6A:21 Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 58CCA4122099326F71C361082AF60335889FDDB1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft Manifest number: 03BA Signing time: Sun 19 Oct 2025 18:21:07 +0000 Manifest this update: Sun 19 Oct 2025 18:16:07 +0000 Manifest next update: Wed 22 Oct 2025 23:13:07 +0000 Files and hashes: 1: 323430313a626534303a3a2f33322d3332203d3e20313336383431.roa (hash: UnpWLg0+2SsmnDXBrwzCKp1VDUDBelXMewYvLJ0BJ+c=) 2: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: pfMM3/ygiEY34vdGoVOYeg8tWN4ZaCnJmX0NJOGEX00=) 3: 645C9D445B2796662EE98A03E50C124F3E962CAB.crl (hash: LWgvi7yAwOkjsM164Zz3+0U36FCzttiBZK3wI+IW/T8=) 4: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: ehP408+CXUe13X4F5TvwPj6ddCoH7T+4InUUhWjVyGw=) 5: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: qbkH1qedbuL2nkb9oW2AlysgwJB8XaNgGrzurioAZP0=) 6: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: Yo/r10NdHpCyWdp4iTpRbnPv2TKKyCyVTnBiO8AmbDc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:cc:a4:12:20:99:32:6f:71:c3:61:08:2a:f6:03:35:88:9f:dd:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Oct 19 18:16:07 2025 GMT Not After : Oct 22 23:13:07 2025 GMT Subject: CN=2A4959C22FFE86523F131A05A3CD88FEDD916A21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:66:87:68:99:b4:cf:69:64:57:69:3c:e3:f7: b2:52:95:ab:28:68:18:76:c8:68:7a:1e:ea:b5:2d: f1:99:37:8a:1f:0f:03:99:db:cc:43:a5:37:3c:63: 8a:6f:13:7b:18:fe:67:4c:7c:94:1f:fb:c1:c0:e9: f1:c1:5b:d3:22:8f:f9:89:59:20:0f:31:96:e9:cd: 45:34:12:41:47:16:00:1d:4c:3e:cd:7e:1c:f0:ae: 55:aa:e0:3d:44:ef:82:a8:64:28:e1:aa:77:a5:97: 8f:84:39:ac:38:26:45:1f:34:1b:18:33:6f:af:ab: f6:09:a5:9c:90:7d:b9:85:a0:94:49:4a:ae:5d:c4: 61:13:e2:e4:a0:1e:ea:09:1f:48:19:bf:16:ec:6d: 27:5f:50:27:50:bd:f9:af:7d:0f:80:07:08:8e:33: 75:fe:0b:44:c8:10:30:42:01:ef:2f:36:4b:48:8e: c6:71:cc:56:e0:77:44:18:e8:65:4f:28:29:c3:c5: 70:55:0f:0e:59:41:4e:a8:51:bd:d4:f0:e6:01:b5: 0e:c6:ba:19:be:a9:d6:ec:24:41:ca:41:39:a9:6e: 45:1f:05:67:72:af:c2:44:5a:39:0f:1a:2c:12:fd: a7:c2:56:db:82:9d:86:0e:c5:9f:bc:3a:e0:1f:8a: 31:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:49:59:C2:2F:FE:86:52:3F:13:1A:05:A3:CD:88:FE:DD:91:6A:21 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:1a:d6:83:cb:11:0d:88:50:82:03:0b:9d:3c:2b:3c:66:fa: 2c:33:a1:d9:9f:ab:4f:97:8f:38:42:f9:83:31:13:87:15:09: 9b:22:90:e1:da:d0:52:60:df:eb:e9:10:30:ab:87:00:08:00: 5e:95:12:63:66:65:03:62:d4:e1:15:56:80:e6:e3:af:ff:7d: 38:2b:6f:06:1a:37:7f:e9:e9:c8:82:5f:64:ce:e0:9f:f6:94: 09:87:4d:d1:16:62:9c:ef:ce:22:ec:f7:99:13:27:21:6e:0c: 98:77:59:67:e0:50:f9:b7:5f:08:2a:77:6f:ab:cb:98:94:e7: 06:52:cb:b9:86:34:ed:57:40:08:d3:5b:bd:a3:b9:83:fe:c0: 70:43:27:35:59:4e:07:13:fa:08:c8:ea:2f:cc:43:a1:08:78: 53:bc:4f:81:ba:cf:ff:b4:22:78:f9:6c:87:c7:61:78:96:a9: 55:0d:d2:79:0d:2c:65:3c:9a:17:2d:cc:1a:ad:4f:19:2f:64: 19:65:85:3a:d0:66:b3:2f:00:25:5e:7f:81:6e:87:33:95:7b: 5c:60:bc:89:e6:3b:cb:13:f9:89:d8:83:f5:58:c5:71:cf:7b: 31:ce:25:80:23:f5:7c:79:05:5c:86:22:c5:f3:b8:18:48:37: 3c:f7:ce:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWMykEiCZMm9xw2EIKvYDNYif3bEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNTEwMTkxODE2MDdaFw0yNTEwMjIyMzEzMDdaMDMxMTAvBgNV BAMTKDJBNDk1OUMyMkZGRTg2NTIzRjEzMUEwNUEzQ0Q4OEZFREQ5MTZBMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtZodombTPaWRXaTzj97JSlaso aBh2yGh6Huq1LfGZN4ofDwOZ28xDpTc8Y4pvE3sY/mdMfJQf+8HA6fHBW9Mij/mJ WSAPMZbpzUU0EkFHFgAdTD7NfhzwrlWq4D1E74KoZCjhqnell4+EOaw4JkUfNBsY M2+vq/YJpZyQfbmFoJRJSq5dxGET4uSgHuoJH0gZvxbsbSdfUCdQvfmvfQ+ABwiO M3X+C0TIEDBCAe8vNktIjsZxzFbgd0QY6GVPKCnDxXBVDw5ZQU6oUb3U8OYBtQ7G uhm+qdbsJEHKQTmpbkUfBWdyr8JEWjkPGiwS/afCVtuCnYYOxZ+8OuAfijERAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKklZwi/+hlI/ExoFo82I/t2RaiEwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEy NEYzRTk2MkNBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKIa1oPLEQ2IUIIDC508Kzxm+iwzodmfq0+X jzhC+YMxE4cVCZsikOHa0FJg3+vpEDCrhwAIAF6VEmNmZQNi1OEVVoDm46//fTgr bwYaN3/p6ciCX2TO4J/2lAmHTdEWYpzvziLs95kTJyFuDJh3WWfgUPm3Xwgqd2+r y5iU5wZSy7mGNO1XQAjTW72juYP+wHBDJzVZTgcT+gjI6i/MQ6EIeFO8T4G6z/+0 Inj5bIfHYXiWqVUN0nkNLGU8mhctzBqtTxkvZBllhTrQZrMvACVef4FuhzOVe1xg vInmO8sT+YnYg/VYxXHPezHOJYAj9Xx5BVyGIsXzuBhINzz3zk4= -----END CERTIFICATE-----Generated at Tue Oct 21 01:41:59 2025 by rpki-client