$ rpki-client -vvf repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft File: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft (raw, json) Hash identifier: inG1j/DCrKWrlMAZIxFbqQaJzfbAQMdzsUHkPaVlHeg= Subject key identifier: 1B:7D:31:0E:01:8D:80:0A:17:3B:35:42:E3:11:AF:EE:85:6A:51:0A Authority key identifier: 2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC Certificate issuer: /CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Certificate serial: 0696B4441D5C15AA6BFF2F85294447D2CA2DDC4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft Manifest number: EA Signing time: Sun 19 Oct 2025 13:30:39 +0000 Manifest this update: Sun 19 Oct 2025 13:25:39 +0000 Manifest next update: Wed 22 Oct 2025 21:36:39 +0000 Files and hashes: 1: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl (hash: Y0yWP1oYgL+fxJmVnFFIGH7zbyeAx3CspLU97L23ja4=) 2: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (hash: teoM6MXntxfZebuRvj4HuDCmBJE7bmAYK9p8NliSwzQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 21:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:96:b4:44:1d:5c:15:aa:6b:ff:2f:85:29:44:47:d2:ca:2d:dc:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Validity Not Before: Oct 19 13:25:39 2025 GMT Not After : Oct 22 21:36:39 2025 GMT Subject: CN=1B7D310E018D800A173B3542E311AFEE856A510A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a2:6c:8c:71:71:68:96:5a:62:69:3b:90:1a: 9b:74:36:91:8d:4d:9a:22:37:03:8d:18:5b:b7:5b: 3d:cd:b0:8a:2c:b6:b1:31:85:a7:cc:35:e4:bc:09: de:9c:3c:b1:9c:fa:62:8e:86:d7:d7:f6:48:1c:e6: d8:d7:00:f8:a9:f1:5b:1b:fc:aa:53:2c:d6:f4:7b: 2d:f6:08:5c:2c:35:ba:88:47:79:b3:66:79:42:f2: ea:54:76:e3:4a:3a:32:67:b6:31:01:c3:12:0b:80: 76:51:d3:5c:20:d4:e3:59:49:19:b9:4f:7b:57:6c: 85:9d:40:82:41:6c:fa:1a:01:61:b4:96:85:e0:90: 39:f6:10:35:36:01:46:16:ec:d5:97:5e:ff:bb:80: 2c:a5:2c:a1:51:4d:a1:3e:2c:a2:3e:35:fd:20:6c: aa:f5:c9:38:ec:0e:f3:77:41:07:b0:ba:5b:69:96: 5c:12:ef:c8:c6:dc:13:96:1b:f2:6d:78:d2:71:59: 7c:29:0e:06:54:4d:c3:0a:1c:71:b7:b6:23:54:fe: 6f:13:07:3c:b2:3a:b4:61:57:a3:6c:cb:ee:90:f8: 9c:4d:20:16:a1:c8:5c:d4:86:0d:c6:f0:80:28:96: f7:fe:b6:fd:cc:33:0a:cc:5e:da:89:22:1d:ae:b1: 58:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7D:31:0E:01:8D:80:0A:17:3B:35:42:E3:11:AF:EE:85:6A:51:0A X509v3 Authority Key Identifier: keyid:2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f9:8e:55:24:fd:36:2e:ce:75:c7:34:4e:79:59:b4:23:ec: 41:7c:f6:f6:4a:bd:50:18:cf:db:7b:fd:90:41:8a:5a:4e:59: 14:77:67:11:d4:b3:a2:c5:78:4b:f1:6e:04:8c:92:28:d0:8d: 8d:bc:aa:6e:13:05:be:49:b2:df:67:a9:2a:32:a8:90:23:c9: 25:5e:93:95:95:c1:c9:a9:f7:db:5d:43:0f:f5:de:36:2d:4c: f9:4c:64:b4:07:e7:29:36:ad:09:30:ad:aa:1d:ce:43:ce:ea: 96:8a:17:53:81:73:d7:de:45:fc:55:8c:8c:ba:71:b0:8d:9e: 79:a9:7b:96:75:71:fd:bf:c1:61:ed:1e:a3:3a:4a:ce:74:3d: bf:7d:fb:de:60:be:9c:c9:52:66:17:2f:49:7f:34:ef:36:98: 02:69:83:e3:cf:4e:9c:04:f1:c0:29:f8:a6:68:65:70:f4:0e: 40:85:b4:e6:f3:a0:54:28:5c:d5:58:fd:44:82:01:dc:72:23: ef:78:b0:aa:a1:9c:f4:41:a0:fb:e1:78:cd:91:4d:38:e6:e9: d7:1a:c2:43:06:df:eb:ef:3f:bb:48:91:a9:83:da:7d:43:4f: 94:a3:9e:dc:dd:0d:96:1e:49:14:3d:49:56:a5:2d:18:10:46: eb:72:1f:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBpa0RB1cFapr/y+FKURH0sot3EowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1 Mzc5OEJGQzAeFw0yNTEwMTkxMzI1MzlaFw0yNTEwMjIyMTM2MzlaMDMxMTAvBgNV BAMTKDFCN0QzMTBFMDE4RDgwMEExNzNCMzU0MkUzMTFBRkVFODU2QTUxMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuomyMcXFollpiaTuQGpt0NpGN TZoiNwONGFu3Wz3NsIostrExhafMNeS8Cd6cPLGc+mKOhtfX9kgc5tjXAPip8Vsb /KpTLNb0ey32CFwsNbqIR3mzZnlC8upUduNKOjJntjEBwxILgHZR01wg1ONZSRm5 T3tXbIWdQIJBbPoaAWG0loXgkDn2EDU2AUYW7NWXXv+7gCylLKFRTaE+LKI+Nf0g bKr1yTjsDvN3QQewultpllwS78jG3BOWG/JteNJxWXwpDgZUTcMKHHG3tiNU/m8T BzyyOrRhV6Nsy+6Q+JxNIBahyFzUhg3G8IAolvf+tv3MMwrMXtqJIh2usVi5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG30xDgGNgAoXOzVC4xGv7oVqUQowHwYDVR0j BBgwFoAUKt3UA1Fz+sO7OUnLNszvJVN5i/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODY3YTJlZS1kNDExLTRmZjgtOWY1Yy0zNWQwMzQxMjNmODQvMC8yQURERDQwMzUx NzNGQUMzQkIzOTQ5Q0IzNkNDRUYyNTUzNzk4QkZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1Mzc5 OEJGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg2N2EyZWUtZDQxMS00ZmY4LTlm NWMtMzVkMDM0MTIzZjg0LzAvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VG MjU1Mzc5OEJGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHz5jlUk/TYuznXHNE55WbQj7EF89vZKvVAY z9t7/ZBBilpOWRR3ZxHUs6LFeEvxbgSMkijQjY28qm4TBb5Jst9nqSoyqJAjySVe k5WVwcmp99tdQw/13jYtTPlMZLQH5yk2rQkwraodzkPO6paKF1OBc9feRfxVjIy6 cbCNnnmpe5Z1cf2/wWHtHqM6Ss50Pb99+95gvpzJUmYXL0l/NO82mAJpg+PPTpwE 8cAp+KZoZXD0DkCFtObzoFQoXNVY/USCAdxyI+94sKqhnPRBoPvheM2RTTjm6dca wkMG3+vvP7tIkamD2n1DT5SjntzdDZYeSRQ9SValLRgQRutyH/0= -----END CERTIFICATE-----Generated at Mon Oct 20 21:32:27 2025 by rpki-client