$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: OZh1dJ8q9YsyIHGNVXwX2PFTAHEiCmbDmPeFvExIWRs= Subject key identifier: 50:E9:7F:43:B0:3B:6F:97:72:85:2B:E0:2D:69:8E:1E:EB:FF:9A:D7 Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 469644C31BC9C5AFCFA306856FA463D71129EBC5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 024E Signing time: Sat 18 Oct 2025 22:31:45 +0000 Manifest this update: Sat 18 Oct 2025 22:26:45 +0000 Manifest next update: Wed 22 Oct 2025 05:50:45 +0000 Files and hashes: 1: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: omQCe9i6UAQabn658NY546AFhSlSDQxwejMwWzEAolo=) 2: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: yZpmftLVkyGhRVDrvz/LCBgWlOkPhS8jr+ZifUxfRqI=) 3: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: 132Kizc+R6ps/hT6AogJkCilm9HX7+ORPphZ8hVhLQ8=) 4: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 05:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:96:44:c3:1b:c9:c5:af:cf:a3:06:85:6f:a4:63:d7:11:29:eb:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Oct 18 22:26:45 2025 GMT Not After : Oct 22 05:50:45 2025 GMT Subject: CN=50E97F43B03B6F9772852BE02D698E1EEBFF9AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4f:fc:a4:30:e9:7b:09:32:61:53:8e:40:93: 67:7d:ee:bd:50:e4:d6:af:ce:47:6e:94:f3:b8:26: ec:0b:6d:1f:2f:54:11:fb:40:b0:6a:39:bb:7a:37: b2:cd:4f:67:5b:13:23:fe:53:d4:46:22:56:19:0e: 14:d7:15:dc:17:9c:94:a1:9d:12:63:3f:f2:4c:72: 33:d1:0d:a2:5d:9e:e6:03:f3:fe:7e:de:65:04:44: 18:c6:82:36:73:1f:69:2e:52:9e:fb:9c:3e:18:f2: 12:40:c2:86:e8:05:dd:a6:b9:6a:48:72:d4:fd:b4: ee:ec:63:90:11:b5:c4:8b:83:83:12:0e:ea:c8:7f: 0e:31:b1:5c:c7:10:ff:dc:79:b7:dc:8c:c4:0b:7a: 3f:e8:c2:b9:ca:d4:f2:6c:8a:c7:2a:1f:07:f4:c5: 5c:d2:49:f1:c0:25:9f:9d:b7:ac:7b:2c:0f:81:f8: 2c:b1:c1:0c:65:40:66:34:c5:67:65:97:3e:eb:39: 47:4e:74:47:d8:c6:e4:83:12:36:6b:c5:25:70:2f: 35:17:ec:c5:d8:c4:40:c7:a7:64:5a:85:15:b7:36: 1b:a3:e1:62:e6:1d:da:6c:88:44:65:da:1b:a4:21: bb:ac:43:76:f6:db:95:3f:72:6a:31:bf:c5:d0:d5: c4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E9:7F:43:B0:3B:6F:97:72:85:2B:E0:2D:69:8E:1E:EB:FF:9A:D7 X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:d7:86:40:1f:a4:4b:21:46:56:1e:62:01:7e:67:d1:00:58: 7b:1d:72:49:c6:3c:46:0b:c1:50:f0:fd:96:6d:46:12:8a:90: 40:18:6e:90:8d:cc:df:87:52:bd:2f:b4:09:92:9b:73:98:f0: b9:c4:9d:cb:40:0d:e4:26:eb:90:1f:df:dc:87:12:87:a6:5b: ca:d3:ba:39:6a:b4:28:fc:2c:ea:59:e5:24:ef:c7:7f:32:48: 92:99:db:66:7d:2f:7d:ae:2b:63:27:e0:73:48:e8:00:96:4c: 74:89:f6:7a:43:84:1e:5a:0d:70:8f:e1:b9:cf:5b:5a:97:68: 43:59:50:f4:cb:6e:ab:d5:6d:35:a8:10:d0:c9:7e:4a:ee:42: f4:33:41:07:86:ed:7d:be:47:be:7f:78:46:49:84:d1:02:66: 9c:eb:51:97:cc:33:81:41:9d:46:d4:4a:48:74:a5:01:90:2b: 4e:ac:f6:b6:28:c1:f5:2c:54:e8:a1:0e:c4:e4:42:0b:5b:bc: 7a:78:31:f4:3a:0f:bb:95:ca:03:fa:87:27:c5:e3:86:4b:66: 91:b2:8e:1c:d8:b2:02:af:15:60:25:19:24:20:1f:6a:41:76: 74:65:60:4c:01:2b:7f:00:71:2a:de:58:01:34:ae:e8:5b:05: 56:3c:66:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURpZEwxvJxa/PowaFb6Rj1xEp68UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNTEwMTgyMjI2NDVaFw0yNTEwMjIwNTUwNDVaMDMxMTAvBgNV BAMTKDUwRTk3RjQzQjAzQjZGOTc3Mjg1MkJFMDJENjk4RTFFRUJGRjlBRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtT/ykMOl7CTJhU45Ak2d97r1Q 5NavzkdulPO4JuwLbR8vVBH7QLBqObt6N7LNT2dbEyP+U9RGIlYZDhTXFdwXnJSh nRJjP/JMcjPRDaJdnuYD8/5+3mUERBjGgjZzH2kuUp77nD4Y8hJAwoboBd2muWpI ctT9tO7sY5ARtcSLg4MSDurIfw4xsVzHEP/cebfcjMQLej/owrnK1PJsiscqHwf0 xVzSSfHAJZ+dt6x7LA+B+CyxwQxlQGY0xWdllz7rOUdOdEfYxuSDEjZrxSVwLzUX 7MXYxEDHp2RahRW3Nhuj4WLmHdpsiERl2hukIbusQ3b225U/cmoxv8XQ1cTjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUOl/Q7A7b5dyhSvgLWmOHuv/mtcwHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEnXhkAfpEshRlYeYgF+Z9EAWHsdcknGPEYL wVDw/ZZtRhKKkEAYbpCNzN+HUr0vtAmSm3OY8LnEnctADeQm65Af39yHEoemW8rT ujlqtCj8LOpZ5STvx38ySJKZ22Z9L32uK2Mn4HNI6ACWTHSJ9npDhB5aDXCP4bnP W1qXaENZUPTLbqvVbTWoENDJfkruQvQzQQeG7X2+R75/eEZJhNECZpzrUZfMM4FB nUbUSkh0pQGQK06s9rYowfUsVOihDsTkQgtbvHp4MfQ6D7uVygP6hyfF44ZLZpGy jhzYsgKvFWAlGSQgH2pBdnRlYEwBK38AcSreWAE0ruhbBVY8Zt8= -----END CERTIFICATE-----Generated at Mon Oct 20 07:55:25 2025 by rpki-client