$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft File: D1E28E396E82778793018513BD084854BE663886.mft (raw, json) Hash identifier: vNHd8PsNpUVcokd3470+Q21dIShDOhnEGIQ0xUp0J3A= Subject key identifier: 2D:4B:28:05:D5:7B:1C:3A:46:94:AF:11:3F:FA:CF:88:97:5D:D9:3E Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 5A3F2A0A00C28796EA636EC1AB55E1C629FB290D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft Manifest number: 0274 Signing time: Sun 19 Oct 2025 14:50:46 +0000 Manifest this update: Sun 19 Oct 2025 14:45:46 +0000 Manifest next update: Wed 22 Oct 2025 17:28:46 +0000 Files and hashes: 1: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (hash: dbeooOEymowfTHu7nnG695fAge4T8FaVO8HgIWjN8ng=) 2: D1E28E396E82778793018513BD084854BE663886.crl (hash: gktPSmRNh7e5y9f4ErNX5sux7tSUMF85MyvQDW4p9I4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:3f:2a:0a:00:c2:87:96:ea:63:6e:c1:ab:55:e1:c6:29:fb:29:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: Oct 19 14:45:46 2025 GMT Not After : Oct 22 17:28:46 2025 GMT Subject: CN=2D4B2805D57B1C3A4694AF113FFACF88975DD93E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dd:1e:0e:63:12:7d:b5:31:d3:ec:13:a5:9d: 89:6a:ec:3c:fd:5f:a6:c1:26:d6:d5:ee:3b:27:4e: 1c:60:e7:2c:e0:9f:b8:dc:74:02:7e:08:bd:2d:5a: 89:8e:18:c6:ac:e5:7d:a7:1c:14:ba:a0:1d:ea:27: 1d:16:fd:02:df:26:da:72:c1:a2:53:fa:c9:50:10: b9:fa:f3:1d:52:b3:57:b3:b4:80:39:03:8c:6f:04: 24:2e:a6:73:81:5b:9d:7c:49:55:3f:65:ba:bf:fa: a5:b4:51:7c:58:7f:e3:60:00:16:19:cc:ba:bb:7f: 7f:bc:00:1d:aa:4c:6e:92:dc:24:5b:be:84:03:c3: 41:4c:73:72:dc:e1:8e:28:78:43:d9:cf:9f:6d:60: 03:93:0e:77:d1:f0:52:99:01:79:b6:32:02:e1:33: f3:0e:a9:a7:05:a5:33:e6:d4:97:84:61:15:6d:35: eb:a4:bc:b4:70:40:a7:90:1d:13:d5:7a:fd:c7:b6: 6a:8b:c8:f9:1d:0b:93:17:64:f3:dc:90:f3:e9:3c: 83:2e:fb:c4:8b:21:60:52:0f:e8:82:43:4b:fd:02: 95:92:30:96:90:b3:3d:13:8d:8f:dc:4f:9c:b0:3b: 43:f8:49:49:5a:57:5f:dd:ba:9f:7f:b4:c8:4a:b1: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4B:28:05:D5:7B:1C:3A:46:94:AF:11:3F:FA:CF:88:97:5D:D9:3E X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:49:d2:56:ed:01:c7:f3:a7:3f:e2:5f:4e:9f:8c:16:7d:db: 3d:58:1a:0f:71:d2:6c:2a:02:f3:63:74:2b:06:af:2e:d8:03: db:76:33:0e:dc:96:52:0b:20:78:86:f8:ba:0d:af:ca:90:74: f1:a1:bd:6f:80:dc:14:7a:01:46:a2:63:ef:1b:f1:2c:ab:6e: e7:60:2b:68:b2:8e:60:7f:62:d4:db:7f:78:c9:af:21:10:3e: ac:22:66:a4:3c:36:20:cc:c7:ee:71:cf:a9:ee:5f:18:42:09: 2e:a5:12:cc:b3:6f:2b:df:48:a5:3f:23:89:95:07:3e:98:64: 4a:02:35:fc:95:f4:dc:e1:0d:ba:00:35:b7:02:67:e0:39:45: da:bf:d5:6f:bd:5d:25:d1:5b:2b:94:36:f6:13:c1:e1:90:fa: 58:6e:e9:55:c4:98:44:5c:ca:e5:3b:08:3d:8b:26:fc:9e:ca: ad:92:87:22:93:92:4b:67:0a:9a:18:8a:c0:18:b7:68:d4:70: c7:63:d3:76:2d:0b:d2:b7:66:cb:bd:20:0c:e4:46:36:24:d4: 75:5e:9f:ae:3b:18:eb:fe:4b:77:0f:f1:b9:e7:b4:6d:37:27: f7:cd:40:fa:e4:8a:50:55:92:51:be:b0:dd:49:df:7a:55:99: 87:3f:33:fa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWj8qCgDCh5bqY27Bq1Xhxin7KQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNTEwMTkxNDQ1NDZaFw0yNTEwMjIxNzI4NDZaMDMxMTAvBgNV BAMTKDJENEIyODA1RDU3QjFDM0E0Njk0QUYxMTNGRkFDRjg4OTc1REQ5M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC53R4OYxJ9tTHT7BOlnYlq7Dz9 X6bBJtbV7jsnThxg5yzgn7jcdAJ+CL0tWomOGMas5X2nHBS6oB3qJx0W/QLfJtpy waJT+slQELn68x1Ss1eztIA5A4xvBCQupnOBW518SVU/Zbq/+qW0UXxYf+NgABYZ zLq7f3+8AB2qTG6S3CRbvoQDw0FMc3Lc4Y4oeEPZz59tYAOTDnfR8FKZAXm2MgLh M/MOqacFpTPm1JeEYRVtNeukvLRwQKeQHRPVev3HtmqLyPkdC5MXZPPckPPpPIMu +8SLIWBSD+iCQ0v9ApWSMJaQsz0TjY/cT5ywO0P4SUlaV1/dup9/tMhKseZTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULUsoBdV7HDpGlK8RP/rPiJdd2T4wHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTZkNjExMzUtNzVlNC00NmM2LWJk ZGQtZmJhNjgzNGRjZTQxLzAvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4 NTRCRTY2Mzg4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD1J0lbtAcfzpz/iX06fjBZ92z1YGg9x0mwq AvNjdCsGry7YA9t2Mw7cllILIHiG+LoNr8qQdPGhvW+A3BR6AUaiY+8b8Syrbudg K2iyjmB/YtTbf3jJryEQPqwiZqQ8NiDMx+5xz6nuXxhCCS6lEsyzbyvfSKU/I4mV Bz6YZEoCNfyV9NzhDboANbcCZ+A5Rdq/1W+9XSXRWyuUNvYTweGQ+lhu6VXEmERc yuU7CD2LJvyeyq2ShyKTkktnCpoYisAYt2jUcMdj03YtC9K3Zsu9IAzkRjYk1HVe n647GOv+S3cP8bnntG03J/fNQPrkilBVklG+sN1J33pVmYc/M/o= -----END CERTIFICATE-----Generated at Mon Oct 20 07:55:41 2025 by rpki-client