$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft File: 957CC5B55223EC29F2E71324C678334C4348BE02.mft (raw, json) Hash identifier: C+MMRaWgMiS27Og+kjdhd4GFUvDlWCGn+uVns6xuC60= Subject key identifier: D6:F0:82:9A:44:4B:55:6C:81:DD:73:5C:94:FE:68:74:79:B4:9C:49 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 4DD8746827CF216C09492F78E253586071952369 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft Manifest number: 01D9 Signing time: Sun 19 Oct 2025 09:40:53 +0000 Manifest this update: Sun 19 Oct 2025 09:35:53 +0000 Manifest next update: Wed 22 Oct 2025 17:17:53 +0000 Files and hashes: 1: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (hash: sKfx76+Sncyrs9mYumqkFI6ie1K7xxqfJijMwgYJ3J8=) 2: 957CC5B55223EC29F2E71324C678334C4348BE02.crl (hash: ws0oGiDLjGk642ywlQ8gbi3Ik8y0QW0qkXqxA/YfgcU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d8:74:68:27:cf:21:6c:09:49:2f:78:e2:53:58:60:71:95:23:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Oct 19 09:35:53 2025 GMT Not After : Oct 22 17:17:53 2025 GMT Subject: CN=D6F0829A444B556C81DD735C94FE687479B49C49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d1:f4:97:14:cf:22:c9:98:75:39:0a:3c:c5: c6:ad:ac:28:e1:87:26:93:66:a3:bf:2b:e2:00:78: 5a:a4:79:2d:90:60:73:7d:9b:2a:0a:85:fd:38:68: e0:c2:dd:b1:50:56:ec:2d:16:3e:5b:a3:a0:57:75: bc:87:6d:5f:ec:c0:eb:c9:d9:06:9a:64:fa:e7:1e: f4:33:8f:d2:4a:e4:80:10:e9:8a:b7:99:ad:bf:84: 66:80:5b:e0:ea:98:f4:29:51:95:2d:fd:ce:ee:5f: ee:48:ad:fd:02:01:d4:b9:f4:16:4c:49:b2:00:06: 6c:ac:9e:ea:29:c6:d7:89:b3:52:42:92:83:40:76: 66:23:85:49:18:7a:b5:10:a9:d5:96:53:d1:8a:82: c9:92:be:71:c9:5b:3a:4c:ae:c7:7a:bd:9b:4f:a2: 90:17:a5:c8:30:56:05:91:50:b4:db:4a:a2:5e:a9: f8:f3:d2:d6:56:c5:48:f7:11:66:65:a6:4e:f5:92: e8:0a:65:b4:da:7b:a7:be:e3:35:28:b1:bd:1e:23: 9e:7c:4d:bf:04:d8:6a:70:12:c5:6d:e4:36:8d:06: 8a:56:9b:13:98:4d:b1:48:ca:2c:43:11:02:a4:68: 2d:5a:f3:a9:3c:6d:85:e7:c9:b6:56:ec:34:35:b0: 94:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F0:82:9A:44:4B:55:6C:81:DD:73:5C:94:FE:68:74:79:B4:9C:49 X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:0c:f6:d2:d6:6a:0d:ce:d9:ca:9f:97:c9:5a:d5:ec:d5:0b: 34:02:f5:bd:38:4b:9a:c8:19:25:6f:8c:4b:a7:58:2d:8c:6d: ae:39:d3:5f:11:10:f7:2f:89:3b:f6:6a:9a:d6:87:a5:6a:a7: 9b:55:c9:7d:39:f6:57:cc:1a:e4:bb:aa:77:49:4c:a5:06:65: c8:dd:52:73:a3:7d:ec:19:0c:77:23:53:7e:d9:40:d5:4f:72: c5:ee:af:bf:38:76:5c:20:c1:e1:d9:09:51:01:72:ce:20:8a: 5a:9a:a7:2a:7d:95:a1:f4:9e:fd:fa:07:8a:34:a9:ef:b8:a2: 09:5f:20:11:f7:b8:fb:5d:79:24:a0:b5:67:0a:55:f6:24:7f: 67:c1:27:c4:97:ab:71:20:3e:93:12:d6:12:a6:ba:32:92:5a: 30:53:5e:77:8c:cf:fc:76:84:66:24:7d:c2:88:50:44:fa:bb: 54:a6:69:d7:dd:31:6b:88:91:aa:ab:a3:c5:e5:f5:cb:34:0e: 0e:89:ab:ca:38:e1:0a:ca:74:71:af:0c:a5:64:a5:52:bd:02: c4:df:50:d3:9f:7f:48:ab:9c:62:41:74:dd:a0:a0:27:25:83: 05:59:12:ff:94:1d:46:cd:51:f7:41:3e:dd:96:7e:fa:ef:30: 7c:dc:92:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTdh0aCfPIWwJSS944lNYYHGVI2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNTEwMTkwOTM1NTNaFw0yNTEwMjIxNzE3NTNaMDMxMTAvBgNV BAMTKEQ2RjA4MjlBNDQ0QjU1NkM4MURENzM1Qzk0RkU2ODc0NzlCNDlDNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC10fSXFM8iyZh1OQo8xcatrCjh hyaTZqO/K+IAeFqkeS2QYHN9myoKhf04aODC3bFQVuwtFj5bo6BXdbyHbV/swOvJ 2QaaZPrnHvQzj9JK5IAQ6Yq3ma2/hGaAW+DqmPQpUZUt/c7uX+5Irf0CAdS59BZM SbIABmysnuopxteJs1JCkoNAdmYjhUkYerUQqdWWU9GKgsmSvnHJWzpMrsd6vZtP opAXpcgwVgWRULTbSqJeqfjz0tZWxUj3EWZlpk71kugKZbTae6e+4zUosb0eI558 Tb8E2GpwEsVt5DaNBopWmxOYTbFIyixDEQKkaC1a86k8bYXnybZW7DQ1sJSJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1vCCmkRLVWyB3XNclP5odHm0nEkwHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBhNzhjMDYtMWQ2ZS00M2I2LWJm MzAtODYwY2ViZGRmYjMyLzAvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMz NEM0MzQ4QkUwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACMM9tLWag3O2cqfl8la1ezVCzQC9b04S5rI GSVvjEunWC2Mba45018REPcviTv2aprWh6Vqp5tVyX059lfMGuS7qndJTKUGZcjd UnOjfewZDHcjU37ZQNVPcsXur784dlwgweHZCVEBcs4gilqapyp9laH0nv36B4o0 qe+4oglfIBH3uPtdeSSgtWcKVfYkf2fBJ8SXq3EgPpMS1hKmujKSWjBTXneMz/x2 hGYkfcKIUET6u1SmadfdMWuIkaqro8Xl9cs0Dg6Jq8o44QrKdHGvDKVkpVK9AsTf UNOff0irnGJBdN2goCclgwVZEv+UHUbNUfdBPt2WfvrvMHzckio= -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:33 2025 by rpki-client