$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: 3bgWNLvShcGboK7cp6sjWrTey+sFfuzkGBpPA36Zits= Subject key identifier: E0:DE:BE:B4:8C:60:3A:C2:F2:C0:4C:62:4E:AA:B0:C8:E2:F8:3F:C9 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 2A2E5FA8F8CE96544683A169ED64E8A411ECFF87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 023C Signing time: Sat 18 Oct 2025 22:40:04 +0000 Manifest this update: Sat 18 Oct 2025 22:35:04 +0000 Manifest next update: Wed 22 Oct 2025 08:58:04 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: /hDlkypSqOYy1FSSPv6SzWPwCemyv2CEDREMDi9QavA=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:2e:5f:a8:f8:ce:96:54:46:83:a1:69:ed:64:e8:a4:11:ec:ff:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Oct 18 22:35:04 2025 GMT Not After : Oct 22 08:58:04 2025 GMT Subject: CN=E0DEBEB48C603AC2F2C04C624EAAB0C8E2F83FC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:c3:af:2a:58:62:72:f2:2e:90:db:3c:a3:8f: ac:fa:27:a1:82:8b:06:49:73:bc:ff:ab:e6:a0:51: 9c:af:69:c7:36:91:16:c9:06:3c:1e:9e:c1:00:82: ed:46:4d:fc:55:77:24:99:d8:7c:42:cd:ff:e7:7e: 60:e1:01:22:88:cc:7c:c4:a5:69:c2:3f:3d:6e:5b: ec:f0:eb:f8:d6:9e:dd:80:2d:44:dd:37:57:ec:0c: 78:f0:6a:a1:c4:04:21:a1:a5:7b:0d:6d:9e:c7:d8: 62:ac:e2:f8:26:eb:ba:56:cb:7c:95:bf:3e:71:ce: e4:30:5e:a4:77:ac:55:2e:f9:5b:86:ef:88:df:93: 34:7f:03:26:9a:ba:f8:61:87:09:15:b1:82:a3:10: 57:33:2b:9a:e2:a2:bd:c3:49:9b:d9:0c:42:af:19: ef:57:45:97:b0:0a:fd:05:20:0a:2b:67:46:cb:c3: f6:c1:dd:83:42:b2:0b:6d:78:81:5b:2b:56:d5:ad: d3:13:a9:ff:7c:00:15:b7:e2:47:1d:97:99:87:f0: 5f:8a:d1:dc:9a:90:af:2a:3f:23:32:19:2f:9e:ed: 3a:a5:db:85:48:18:f5:11:ec:85:a0:b0:a7:0d:5f: e0:5f:a7:47:71:ca:20:7f:29:3f:b0:81:15:82:e6: 77:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DE:BE:B4:8C:60:3A:C2:F2:C0:4C:62:4E:AA:B0:C8:E2:F8:3F:C9 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:d0:cb:2b:0f:05:0c:9c:ee:67:39:dd:20:82:aa:46:cd:57: 91:d4:6d:f3:73:5d:20:8e:aa:db:16:c7:31:3c:c7:af:be:4f: f2:e8:4a:34:fb:dc:6f:9d:c8:e3:be:7d:c6:93:c6:e6:f1:11: 29:e4:2a:b6:7d:9a:07:a2:f8:9d:39:63:64:bf:c9:83:2b:40: 65:52:b5:88:31:c6:34:c4:a2:f0:38:0f:ba:7e:6e:27:41:06: 8a:57:f7:7f:29:97:38:30:91:51:67:bc:b8:96:f6:74:1a:0a: 02:fc:75:79:95:dd:03:53:81:1a:56:c8:21:a2:47:91:21:41: a4:0e:40:f3:51:ce:e0:ad:35:73:01:8d:f6:b2:05:84:3d:82: 05:eb:b6:bf:74:ee:92:7a:b7:f7:d5:24:df:ab:fd:6d:0b:a8: c4:7a:09:06:8c:d6:57:cb:af:0c:36:b7:69:53:c1:be:99:89: 88:40:ee:96:3d:5a:0a:c5:52:10:cb:ec:27:4a:4d:86:cb:eb: ef:d7:07:de:41:e6:cc:8b:30:70:df:37:e4:d7:ac:cd:3b:d6: 90:9f:a8:ff:07:8e:f6:56:47:9e:bd:ef:22:91:95:2f:d4:69: be:30:77:50:d4:dd:e7:d0:4c:c9:89:ef:1e:75:d5:9d:73:d1: 03:a9:73:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKi5fqPjOllRGg6Fp7WTopBHs/4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTEwMTgyMjM1MDRaFw0yNTEwMjIwODU4MDRaMDMxMTAvBgNV BAMTKEUwREVCRUI0OEM2MDNBQzJGMkMwNEM2MjRFQUFCMEM4RTJGODNGQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9w68qWGJy8i6Q2zyjj6z6J6GC iwZJc7z/q+agUZyvacc2kRbJBjwensEAgu1GTfxVdySZ2HxCzf/nfmDhASKIzHzE pWnCPz1uW+zw6/jWnt2ALUTdN1fsDHjwaqHEBCGhpXsNbZ7H2GKs4vgm67pWy3yV vz5xzuQwXqR3rFUu+VuG74jfkzR/AyaauvhhhwkVsYKjEFczK5rior3DSZvZDEKv Ge9XRZewCv0FIAorZ0bLw/bB3YNCsgtteIFbK1bVrdMTqf98ABW34kcdl5mH8F+K 0dyakK8qPyMyGS+e7Tql24VIGPUR7IWgsKcNX+Bfp0dxyiB/KT+wgRWC5nezAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4N6+tIxgOsLywExiTqqwyOL4P8kwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADjQyysPBQyc7mc53SCCqkbNV5HUbfNzXSCO qtsWxzE8x6++T/LoSjT73G+dyOO+fcaTxubxESnkKrZ9mgei+J05Y2S/yYMrQGVS tYgxxjTEovA4D7p+bidBBopX938plzgwkVFnvLiW9nQaCgL8dXmV3QNTgRpWyCGi R5EhQaQOQPNRzuCtNXMBjfayBYQ9ggXrtr907pJ6t/fVJN+r/W0LqMR6CQaM1lfL rww2t2lTwb6ZiYhA7pY9WgrFUhDL7CdKTYbL6+/XB95B5syLMHDfN+TXrM071pCf qP8HjvZWR5697yKRlS/Uab4wd1DU3efQTMmJ7x511Z1z0QOpc6o= -----END CERTIFICATE-----Generated at Tue Oct 21 00:00:58 2025 by rpki-client