$ rpki-client -vvf repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft File: 656A72A6F38230D6A0DB097480D736B5C2FBA683.mft (raw, json) Hash identifier: zNHEEUvlZHbtavp9YmqgLDNn+H6VcUafADF7l5r+7Rk= Subject key identifier: A9:42:32:E0:F6:54:F0:AC:C4:E1:A0:DA:30:7B:1F:5D:47:82:F2:BB Authority key identifier: 65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 Certificate issuer: /CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Certificate serial: 70B28E21C2B3AFB03BF6FFE8C4E822B3E6487AE2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft Manifest number: 024C Signing time: Sat 18 Oct 2025 07:52:20 +0000 Manifest this update: Sat 18 Oct 2025 07:47:20 +0000 Manifest next update: Tue 21 Oct 2025 08:26:20 +0000 Files and hashes: 1: 3130332e3138322e37322e302f32342d3234203d3e20313439343038.roa (hash: vPnPfMFVMwFeTvRaeceb22yqey+t7BHBklK6ecujm+A=) 2: 656A72A6F38230D6A0DB097480D736B5C2FBA683.crl (hash: bMb0uCL1IXPw7yKjzO4QUlTvuGxLWs4w5b5Opmu/oTU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 08:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b2:8e:21:c2:b3:af:b0:3b:f6:ff:e8:c4:e8:22:b3:e6:48:7a:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Validity Not Before: Oct 18 07:47:20 2025 GMT Not After : Oct 21 08:26:20 2025 GMT Subject: CN=A94232E0F654F0ACC4E1A0DA307B1F5D4782F2BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:39:74:19:c3:73:14:df:c9:16:c6:ee:6c:67: eb:f9:6c:51:04:6d:c6:14:06:7d:9d:e8:a1:9d:b6: 36:ec:a5:5a:78:31:6d:62:dd:b4:b1:15:23:7f:b2: 22:3b:9d:53:55:db:d8:f2:03:69:fe:9e:38:b2:f5: bc:03:ba:a5:f4:05:ba:d8:25:51:c8:b6:be:82:81: 68:09:cf:f7:67:c4:ad:29:ba:d7:04:1b:06:c8:cc: e8:d7:c4:65:b5:9f:11:30:dd:66:9b:13:98:73:97: 04:40:df:c3:02:d6:56:3d:aa:32:dc:6e:ee:16:bd: 49:c6:89:a1:39:97:b6:0a:9d:d8:a6:1a:d0:57:88: b3:88:a1:6d:ea:ee:e4:5f:05:ca:f1:ad:49:77:ae: f2:6a:e9:42:1e:1c:61:5e:3e:31:bb:96:de:cd:b0: 27:d0:2f:af:62:12:62:49:47:95:87:32:dc:b1:fd: 39:4b:09:d6:23:b5:d0:ce:ea:19:45:61:a5:50:98: b1:d3:e0:af:72:30:52:cd:82:82:e6:5a:69:6f:83: ca:95:bc:ad:5c:3b:ca:70:b5:5e:9f:24:ea:1b:f9: f6:ee:77:95:cf:be:20:03:98:33:12:b9:65:56:26: 2e:b0:46:bc:52:49:d7:b8:5f:18:0e:5b:fe:86:e2: 87:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:42:32:E0:F6:54:F0:AC:C4:E1:A0:DA:30:7B:1F:5D:47:82:F2:BB X509v3 Authority Key Identifier: keyid:65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:19:09:3a:3c:2d:7e:48:11:71:2c:16:2f:c9:4f:9f:f4:ed: 8b:9b:b6:5f:3b:1a:bf:04:e6:84:bf:df:13:67:16:ff:bc:7c: 84:0f:27:c6:76:a2:b8:ab:09:f2:c2:63:b7:87:bd:b0:bc:ea: c5:5d:cd:b2:5e:8f:44:8e:5e:e3:d6:08:22:d5:30:d5:d1:bb: 0e:8b:9d:d3:76:77:db:51:2c:eb:b5:3f:e3:79:0c:ef:67:ed: 95:ce:5a:7f:c3:42:6d:ba:ad:d6:e2:d4:ae:9d:34:a5:1b:5e: a4:e1:8a:27:f8:ec:56:51:e2:c8:0b:92:5a:a3:d0:57:9a:be: bd:2d:92:9a:ab:3d:3e:30:88:50:c6:ce:e5:93:3e:47:e7:6c: 12:0f:f2:3c:2e:f2:bd:10:31:5b:2b:56:43:0f:e5:ea:bd:5c: 35:d8:f9:d5:50:f0:62:38:06:b9:65:eb:9b:e9:4b:15:cb:a4: 8c:22:c2:e7:38:25:b4:fe:ec:31:76:80:ec:81:10:a6:81:5c: f8:09:ba:be:32:12:92:92:9b:81:4a:3e:ac:4e:00:c4:6f:42: 04:9e:a1:11:16:46:26:d1:3e:98:2b:7a:7b:c0:15:ed:0d:bb: af:34:16:2b:31:f9:79:d7:fd:30:b3:90:cc:f2:ce:1f:b6:25: 31:d0:ab:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcLKOIcKzr7A79v/oxOgis+ZIeuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVD MkZCQTY4MzAeFw0yNTEwMTgwNzQ3MjBaFw0yNTEwMjEwODI2MjBaMDMxMTAvBgNV BAMTKEE5NDIzMkUwRjY1NEYwQUNDNEUxQTBEQTMwN0IxRjVENDc4MkYyQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNOXQZw3MU38kWxu5sZ+v5bFEE bcYUBn2d6KGdtjbspVp4MW1i3bSxFSN/siI7nVNV29jyA2n+njiy9bwDuqX0BbrY JVHItr6CgWgJz/dnxK0putcEGwbIzOjXxGW1nxEw3WabE5hzlwRA38MC1lY9qjLc bu4WvUnGiaE5l7YKndimGtBXiLOIoW3q7uRfBcrxrUl3rvJq6UIeHGFePjG7lt7N sCfQL69iEmJJR5WHMtyx/TlLCdYjtdDO6hlFYaVQmLHT4K9yMFLNgoLmWmlvg8qV vK1cO8pwtV6fJOob+fbud5XPviADmDMSuWVWJi6wRrxSSde4XxgOW/6G4odDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqUIy4PZU8KzE4aDaMHsfXUeC8rswHwYDVR0j BBgwFoAUZWpypvOCMNag2wl0gNc2tcL7poMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjczNzVmOS1lOGI1LTRkOTQtODBhOC0zNWUwMmRkMGY2ZjIvMC82NTZBNzJBNkYz ODIzMEQ2QTBEQjA5NzQ4MEQ3MzZCNUMyRkJBNjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVDMkZC QTY4My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY3Mzc1ZjktZThiNS00ZDk0LTgw YTgtMzVlMDJkZDBmNmYyLzAvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2 QjVDMkZCQTY4My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJAZCTo8LX5IEXEsFi/JT5/07Yubtl87Gr8E 5oS/3xNnFv+8fIQPJ8Z2orirCfLCY7eHvbC86sVdzbJej0SOXuPWCCLVMNXRuw6L ndN2d9tRLOu1P+N5DO9n7ZXOWn/DQm26rdbi1K6dNKUbXqThiif47FZR4sgLklqj 0Feavr0tkpqrPT4wiFDGzuWTPkfnbBIP8jwu8r0QMVsrVkMP5eq9XDXY+dVQ8GI4 Brll65vpSxXLpIwiwuc4JbT+7DF2gOyBEKaBXPgJur4yEpKSm4FKPqxOAMRvQgSe oREWRibRPpgrenvAFe0Nu680Fisx+XnX/TCzkMzyzh+2JTHQqzU= -----END CERTIFICATE-----Generated at Mon Oct 20 09:29:15 2025 by rpki-client