$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft File: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft (raw, json) Hash identifier: gZui0zjyYWT/kTtxb9PzI8MiwHw7bKti+4iQVO+UD3Q= Subject key identifier: 45:A9:77:D1:D9:5D:C4:B0:E8:BC:D4:5B:63:41:CF:33:DB:D6:A5:64 Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 22DC22B3FDB9A65E72C30E35ECA011CCFBA4C9BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft Manifest number: 01FA Signing time: Sat 18 Oct 2025 02:51:44 +0000 Manifest this update: Sat 18 Oct 2025 02:46:44 +0000 Manifest next update: Tue 21 Oct 2025 12:45:44 +0000 Files and hashes: 1: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl (hash: boIncx1aSMviw+5/qHVuIFchdj2FKzVW4zOnonLZh7U=) 2: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (hash: en7yrsRqDUaal9vRU4LRRex8mQ3pcI0rlYghVnCEE78=) 3: 323430343a643863303a3a2f33322d3438203d3e20313338383630.roa (hash: iufPrZZScnO80QkyCPvSlgZqxsE8YzjDEGRWUUoEP4M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 12:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:dc:22:b3:fd:b9:a6:5e:72:c3:0e:35:ec:a0:11:cc:fb:a4:c9:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Oct 18 02:46:44 2025 GMT Not After : Oct 21 12:45:44 2025 GMT Subject: CN=45A977D1D95DC4B0E8BCD45B6341CF33DBD6A564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bc:95:3e:b3:49:45:b4:f7:b4:9b:58:20:a0: 48:a6:0e:c6:6f:65:2e:f5:8d:7f:3d:02:ab:21:db: 61:6b:04:8e:88:ef:80:19:8a:46:a8:56:29:ba:d5: 4e:96:ba:e0:aa:6f:8b:a4:d9:1a:40:17:31:eb:b4: be:33:5c:c3:bd:62:53:42:53:3c:ac:61:0a:60:4a: 3f:37:a7:8e:2e:8b:cb:4a:7f:f5:56:bf:63:3a:f4: fe:61:fa:a8:ee:5e:7e:3b:18:9c:b4:85:ca:12:5c: 74:22:e5:38:b7:1c:2a:84:41:1d:3b:18:ea:aa:6d: c9:09:4b:31:9b:e7:d6:7d:fa:3e:be:5a:5f:ca:a9: 48:0c:f9:25:f6:5d:c7:0b:7d:c3:14:4a:40:c1:e7: 7e:dd:ff:4b:d3:06:5d:58:36:11:57:14:c5:e0:8f: 15:e4:37:d3:c3:ed:37:8a:fa:70:85:c9:a3:2e:e7: e3:95:4f:9d:42:f2:d8:6b:12:a1:2a:b4:73:7f:b6: 04:63:d6:a2:5b:ff:ca:ee:c0:02:e8:27:19:28:f5: db:85:04:c8:25:d8:45:34:27:c1:fd:90:26:d6:53: e6:61:d5:18:aa:b0:e6:bb:62:37:52:ca:87:23:a4: 74:92:06:bc:fe:54:32:9e:3c:7a:bf:aa:3e:58:61: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A9:77:D1:D9:5D:C4:B0:E8:BC:D4:5B:63:41:CF:33:DB:D6:A5:64 X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:13:25:5a:f1:8d:83:ed:86:83:a0:8d:28:e9:fd:98:9e:50: b7:61:82:fc:66:62:d1:a0:70:a7:a3:16:c9:f7:61:eb:33:d4: af:c0:cb:01:71:69:7a:d1:e6:99:00:ac:ed:a6:3c:4d:f7:c5: 5d:85:5c:7e:87:7a:ee:f9:f8:c7:9c:2f:d3:2e:d6:f3:ca:a6: ea:58:5e:e8:7d:a0:da:a0:97:15:df:6f:1f:3f:b2:be:90:50: cb:d1:17:00:81:a4:a2:4f:e6:94:85:1b:85:3c:e3:b7:7a:85: 62:56:88:78:da:c9:36:22:36:1c:d4:a7:86:b5:7c:a5:9d:47: 12:58:4f:db:d5:cb:17:ca:b4:90:71:45:b9:30:f4:70:5c:88: 5d:0c:d5:38:91:89:95:72:62:24:38:7f:94:12:66:c6:17:bf: 38:4c:32:4f:98:68:ca:e2:d4:d6:e6:b1:c2:5e:18:56:69:7b: 07:8b:35:e4:c5:2a:52:e8:ce:69:5f:b5:d4:28:2b:cd:3e:05: e6:08:da:16:0e:f6:30:d1:55:f1:f9:6c:83:c9:ac:86:ed:97: 09:ac:bb:00:61:92:68:6b:d3:5f:3c:d6:ad:aa:5a:d9:f1:fa: 56:cd:5f:d9:9a:cf:b9:09:2c:b6:af:04:98:71:bd:82:70:6e: 44:ac:91:ee -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUItwis/25pl5yww417KARzPukybowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNTEwMTgwMjQ2NDRaFw0yNTEwMjExMjQ1NDRaMDMxMTAvBgNV BAMTKDQ1QTk3N0QxRDk1REM0QjBFOEJDRDQ1QjYzNDFDRjMzREJENkE1NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSvJU+s0lFtPe0m1ggoEimDsZv ZS71jX89Aqsh22FrBI6I74AZikaoVim61U6WuuCqb4uk2RpAFzHrtL4zXMO9YlNC UzysYQpgSj83p44ui8tKf/VWv2M69P5h+qjuXn47GJy0hcoSXHQi5Ti3HCqEQR07 GOqqbckJSzGb59Z9+j6+Wl/KqUgM+SX2XccLfcMUSkDB537d/0vTBl1YNhFXFMXg jxXkN9PD7TeK+nCFyaMu5+OVT51C8thrEqEqtHN/tgRj1qJb/8ruwALoJxko9duF BMgl2EU0J8H9kCbWU+Zh1RiqsOa7YjdSyocjpHSSBrz+VDKePHq/qj5YYXPFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURal30dldxLDovNRbY0HPM9vWpWQwHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY1ZDg4ZjEtYjljMC00ODVlLTkx NmUtNTliN2UzNjk4ZGExLzAvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJG REUxMkM5Q0I5Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFETJVrxjYPthoOgjSjp/ZieULdhgvxmYtGg cKejFsn3Yesz1K/AywFxaXrR5pkArO2mPE33xV2FXH6Heu75+MecL9Mu1vPKpupY Xuh9oNqglxXfbx8/sr6QUMvRFwCBpKJP5pSFG4U847d6hWJWiHjayTYiNhzUp4a1 fKWdRxJYT9vVyxfKtJBxRbkw9HBciF0M1TiRiZVyYiQ4f5QSZsYXvzhMMk+YaMri 1NbmscJeGFZpeweLNeTFKlLozmlftdQoK80+BeYI2hYO9jDRVfH5bIPJrIbtlwms uwBhkmhr01881q2qWtnx+lbNX9maz7kJLLavBJhxvYJwbkSske4= -----END CERTIFICATE-----Generated at Mon Oct 20 09:44:52 2025 by rpki-client