$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: hkV4wdWu5VGw6Z/HZPzKBAiu+iu/Gpe1o+/ntX/cvOc= Subject key identifier: 7C:66:60:1D:E9:62:D8:CD:85:02:4C:95:9F:B4:F7:33:FD:52:0E:31 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 3AD907673E98D8F24FCC086BE80387B432233D61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: 0113 Signing time: Sat 18 Oct 2025 04:10:00 +0000 Manifest this update: Sat 18 Oct 2025 04:05:00 +0000 Manifest next update: Tue 21 Oct 2025 15:38:00 +0000 Files and hashes: 1: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 2: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) 3: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 4: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: t2uz5p1Z5BRH+WICQV/3zu6ZLemtY7/prbt8Bx4g5Mc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d9:07:67:3e:98:d8:f2:4f:cc:08:6b:e8:03:87:b4:32:23:3d:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Oct 18 04:05:00 2025 GMT Not After : Oct 21 15:38:00 2025 GMT Subject: CN=7C66601DE962D8CD85024C959FB4F733FD520E31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ee:5b:43:5c:25:d4:e4:1e:6a:51:1a:b8:b6: 61:88:8f:39:f3:10:37:ff:27:15:8f:2e:d6:01:1c: 1d:b3:7c:bc:ef:c4:3e:d8:6c:b1:00:a7:b2:3f:94: 2a:90:8c:fc:e7:bd:3b:2f:8a:47:f1:32:ee:0f:92: da:43:0f:35:28:76:1c:52:02:29:43:e3:7d:0e:bd: 98:91:99:09:a7:4c:ce:b8:a7:76:c3:6c:5c:66:a6: a9:05:5b:ec:9b:3e:d1:a9:95:e7:82:1b:90:4e:d5: 47:4f:ea:66:57:c3:45:df:18:33:e7:d0:7c:58:32: 15:3a:41:3f:39:cc:2c:b5:24:5f:1e:16:de:d8:3a: 5c:14:71:5b:7a:fa:0c:90:c0:ba:ac:83:b9:65:15: ca:b4:b0:28:bd:6f:fc:38:b5:44:d2:42:a9:ee:42: 60:cb:44:6f:0e:fd:fb:bb:0a:a6:db:15:b4:a8:29: 2e:ef:41:ff:6f:ec:64:db:b5:a1:e9:d2:1b:c8:d3: b4:2f:0c:0b:2c:3b:61:32:86:f0:bc:55:d7:b2:5f: 6f:b3:3a:26:1f:23:a7:f5:c0:6c:c9:87:f7:53:a2: 16:12:fb:ca:df:1f:b7:fe:02:89:f6:96:23:00:76: 58:33:f4:a0:c3:9e:f7:b1:79:eb:a1:51:b8:4c:fb: 0a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:66:60:1D:E9:62:D8:CD:85:02:4C:95:9F:B4:F7:33:FD:52:0E:31 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:cc:ea:a3:11:f8:a7:13:d5:2d:ba:99:4b:b0:35:41:8f:be: 9d:d2:64:96:f7:f6:6d:10:ad:a3:5a:94:99:6d:10:47:20:e7: ff:9e:5c:dd:a2:b2:65:af:c1:b4:d6:d8:3f:a9:d5:a1:9e:c9: 48:c9:68:5d:8d:3b:5e:40:dd:73:7b:80:76:7d:54:1b:19:e4: bd:cf:13:94:5a:97:1c:7b:5f:58:16:5d:1c:dd:0b:8a:fd:37: 9d:b3:fc:63:86:f3:8f:21:9e:53:2d:5e:bc:9b:e3:87:d5:b7: 9b:ed:52:4d:5c:89:89:8a:71:1d:f3:bd:8c:e9:fa:85:cd:9e: f2:ab:2a:01:c3:9d:0f:32:7d:ce:bc:75:2a:80:b3:7f:97:cb: 00:06:dc:8a:96:66:19:c4:2e:35:1e:cb:7a:89:d7:0f:b2:5a: 68:73:e0:d2:21:14:bc:ef:25:6c:1a:1b:f4:7d:33:65:8c:02: 6b:8c:d8:36:9f:e8:44:65:c7:a4:73:11:2b:2d:08:87:4c:4b: 40:3a:81:4c:75:fe:7f:33:67:35:6c:69:a7:73:70:4c:78:90: 5a:5a:87:8d:8b:24:9a:51:37:8e:58:f9:5b:e3:95:8f:9e:1e: 62:99:5a:ff:5b:01:0c:33:2f:1c:d9:81:2c:4a:4d:c4:1e:5f: 2c:8c:3d:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOtkHZz6Y2PJPzAhr6AOHtDIjPWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTEwMTgwNDA1MDBaFw0yNTEwMjExNTM4MDBaMDMxMTAvBgNV BAMTKDdDNjY2MDFERTk2MkQ4Q0Q4NTAyNEM5NTlGQjRGNzMzRkQ1MjBFMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/7ltDXCXU5B5qURq4tmGIjznz EDf/JxWPLtYBHB2zfLzvxD7YbLEAp7I/lCqQjPznvTsvikfxMu4PktpDDzUodhxS AilD430OvZiRmQmnTM64p3bDbFxmpqkFW+ybPtGpleeCG5BO1UdP6mZXw0XfGDPn 0HxYMhU6QT85zCy1JF8eFt7YOlwUcVt6+gyQwLqsg7llFcq0sCi9b/w4tUTSQqnu QmDLRG8O/fu7CqbbFbSoKS7vQf9v7GTbtaHp0hvI07QvDAssO2EyhvC8VdeyX2+z OiYfI6f1wGzJh/dTohYS+8rfH7f+Aon2liMAdlgz9KDDnvexeeuhUbhM+wqpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfGZgHeli2M2FAkyVn7T3M/1SDjEwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGHM6qMR+KcT1S26mUuwNUGPvp3SZJb39m0Q raNalJltEEcg5/+eXN2ismWvwbTW2D+p1aGeyUjJaF2NO15A3XN7gHZ9VBsZ5L3P E5Ralxx7X1gWXRzdC4r9N52z/GOG848hnlMtXryb44fVt5vtUk1ciYmKcR3zvYzp +oXNnvKrKgHDnQ8yfc68dSqAs3+XywAG3IqWZhnELjUey3qJ1w+yWmhz4NIhFLzv JWwaG/R9M2WMAmuM2Daf6ERlx6RzESstCIdMS0A6gUx1/n8zZzVsaadzcEx4kFpa h42LJJpRN45Y+VvjlY+eHmKZWv9bAQwzLxzZgSxKTcQeXyyMPSE= -----END CERTIFICATE-----Generated at Mon Oct 20 08:39:49 2025 by rpki-client