$ rpki-client -vvf repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft File: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft (raw, json) Hash identifier: z5Pz1McaC3xC46wGDK08GlSuMA4cp0sfBLssg4QAExA= Subject key identifier: 56:9A:13:97:62:84:20:08:C3:8B:55:6D:A5:BE:85:FD:CF:4C:26:3F Authority key identifier: A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC Certificate issuer: /CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Certificate serial: 1B50EDDC5569F763F674602D30EFF91B00160CD3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft Manifest number: 8D Signing time: Sat 18 Oct 2025 08:11:20 +0000 Manifest this update: Sat 18 Oct 2025 08:06:20 +0000 Manifest next update: Tue 21 Oct 2025 13:15:20 +0000 Files and hashes: 1: 3136302e3139312e36342e302f32342d3234203d3e20313533313438.roa (hash: UdR2VsrcQEJLqL8yqAOv5eiXRwXBi0l4fctRzRTejQo=) 2: 3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa (hash: 66g0GBTdSeAme2H37nLc01yyifW6eVqeoyuhCfgsCgA=) 3: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl (hash: OyaBbrKPZSnGTeyiDIkD4uIu9vYQaa4opjqdZ77TCWI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:50:ed:dc:55:69:f7:63:f6:74:60:2d:30:ef:f9:1b:00:16:0c:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Validity Not Before: Oct 18 08:06:20 2025 GMT Not After : Oct 21 13:15:20 2025 GMT Subject: CN=569A139762842008C38B556DA5BE85FDCF4C263F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:20:78:72:03:a3:5a:2f:e3:d3:b1:7e:93: b2:2e:c3:ce:5d:89:01:c0:45:e9:08:78:3a:ce:4d: a0:b1:c4:8f:c6:61:6b:78:10:8a:e8:9c:36:5f:55: 30:23:9c:5a:2c:aa:1f:70:fe:25:a1:83:0f:ee:2c: bf:9f:da:25:0e:8b:7d:5a:a9:80:d9:2e:5e:f2:f9: 8d:a4:30:fd:1a:5a:48:d3:1b:22:3e:55:82:e2:2f: 3b:e4:48:ae:bf:09:bf:ef:9d:3c:04:0e:fb:d7:b7: bc:42:17:ec:a7:03:fd:2f:0b:8f:0b:f5:c6:dc:3b: 0f:cc:34:1f:d4:4d:4e:ad:f8:32:62:c4:4d:80:4d: 97:d6:1f:d0:17:df:c2:d3:76:57:50:6a:71:11:7a: 39:7b:99:92:90:8c:66:bc:fb:cf:5b:a7:ac:0a:cc: 08:7a:54:91:da:67:26:4c:68:52:6f:69:5d:46:10: 92:b7:f3:61:e7:18:5d:e6:38:b8:b3:69:f8:73:51: f1:8a:bb:19:7b:04:bd:2a:58:14:c2:6a:f5:77:28: 29:13:65:25:84:49:af:e8:5d:48:e2:bc:d3:1b:7f: 32:4e:8d:70:9a:19:22:24:13:34:26:f7:6d:9d:20: 9e:9b:fc:11:ee:20:94:ac:25:cb:ee:75:d8:ad:ab: f4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9A:13:97:62:84:20:08:C3:8B:55:6D:A5:BE:85:FD:CF:4C:26:3F X509v3 Authority Key Identifier: keyid:A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:5c:0f:64:03:35:6d:25:e1:b0:4d:10:4c:a2:7a:b1:d9:a6: d3:77:2f:7f:41:e1:df:71:01:f2:2f:35:0b:a2:ef:d4:e5:e4: e1:bd:c8:5a:df:7b:e0:a8:34:38:e2:8a:cb:6f:63:ef:d2:96: 41:99:a5:8b:1a:84:52:d5:d3:ea:10:7d:c2:fd:ae:7e:2a:30: c3:c7:5f:e1:1a:75:70:ac:f2:74:6a:2f:41:8d:d7:d0:00:2b: 8e:dc:e7:2b:f7:4f:20:83:8c:5c:55:6c:5c:96:06:f4:38:9d: 12:88:2f:19:17:25:5b:c9:62:55:8d:ac:d5:e2:29:c8:ff:1c: f1:24:45:d6:c1:f3:2f:62:cb:d4:f4:38:2e:3f:a6:1d:e6:e5: 45:f2:54:06:71:c9:5a:08:3b:8d:9b:d2:23:5c:09:e7:35:9c: e7:d2:bf:13:6b:a8:6f:7a:3d:ea:99:84:60:d8:62:1b:a4:5e: 24:70:f7:f0:e8:32:98:c9:f7:8a:f2:60:aa:a2:a4:fe:b8:53: ad:0a:34:f9:67:f2:ac:0b:f8:df:16:80:b2:5a:ed:4a:56:70: a8:58:7b:af:a0:85:27:c4:99:ce:bf:53:9b:c5:c5:7a:79:a4: 8f:cf:1e:67:4c:49:a4:48:7e:07:6e:e9:6f:13:6e:8f:79:de: 3b:db:74:d5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG1Dt3FVp92P2dGAtMO/5GwAWDNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQx NURFRTdGQzAeFw0yNTEwMTgwODA2MjBaFw0yNTEwMjExMzE1MjBaMDMxMTAvBgNV BAMTKDU2OUExMzk3NjI4NDIwMDhDMzhCNTU2REE1QkU4NUZEQ0Y0QzI2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCvyB4cgOjWi/j07F+k7Iuw85d iQHARekIeDrOTaCxxI/GYWt4EIronDZfVTAjnFosqh9w/iWhgw/uLL+f2iUOi31a qYDZLl7y+Y2kMP0aWkjTGyI+VYLiLzvkSK6/Cb/vnTwEDvvXt7xCF+ynA/0vC48L 9cbcOw/MNB/UTU6t+DJixE2ATZfWH9AX38LTdldQanERejl7mZKQjGa8+89bp6wK zAh6VJHaZyZMaFJvaV1GEJK382HnGF3mOLizafhzUfGKuxl7BL0qWBTCavV3KCkT ZSWESa/oXUjivNMbfzJOjXCaGSIkEzQm922dIJ6b/BHuIJSsJcvudditq/R5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVpoTl2KEIAjDi1Vtpb6F/c9MJj8wHwYDVR0j BBgwFoAUqdZjxuvNJQqokn6glGJ8lBXe5/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODJhOWJkOS0xNjZmLTQ1M2UtYjNjMC1lNmIzZWY5MmE1NDAvMC9BOUQ2NjNDNkVC Q0QyNTBBQTg5MjdFQTA5NDYyN0M5NDE1REVFN0ZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQxNURF RTdGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjgyYTliZDktMTY2Zi00NTNlLWIz YzAtZTZiM2VmOTJhNTQwLzAvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdD OTQxNURFRTdGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpcD2QDNW0l4bBNEEyierHZptN3L39B4d9x AfIvNQui79Tl5OG9yFrfe+CoNDjiistvY+/SlkGZpYsahFLV0+oQfcL9rn4qMMPH X+EadXCs8nRqL0GN19AAK47c5yv3TyCDjFxVbFyWBvQ4nRKILxkXJVvJYlWNrNXi Kcj/HPEkRdbB8y9iy9T0OC4/ph3m5UXyVAZxyVoIO42b0iNcCec1nOfSvxNrqG96 PeqZhGDYYhukXiRw9/DoMpjJ94ryYKqipP64U60KNPln8qwL+N8WgLJa7UpWcKhY e6+ghSfEmc6/U5vFxXp5pI/PHmdMSaRIfgdu6W8Tbo953jvbdNU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:55:07 2025 by rpki-client