$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft (raw, json) Hash identifier: A7AuwWVnQOkDyR7GpQ0cdrX3mRsBlRz2fUcFXtHFjWE= Subject key identifier: 09:E5:BD:6C:31:13:A5:CC:F7:4E:E6:AC:A1:00:25:CE:A6:E0:12:A2 Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 2EDE407960E911EA7FA2BBBED998DE0B0B976CE7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft Manifest number: 051A Signing time: Sun 19 Oct 2025 22:21:34 +0000 Manifest this update: Sun 19 Oct 2025 22:16:34 +0000 Manifest next update: Wed 22 Oct 2025 23:23:34 +0000 Files and hashes: 1: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl (hash: 6uE9iai1ix0hf2lSIpsCUTOc5mqIqeClvW4cKhPKLqk=) 2: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (hash: N2YGkCBG++ItZbATxx+8Wnv+w5mJADtnDrbFxCasjwk=) 3: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (hash: gI7OgYv6GfwsEVRaXvd5tRlYtRW/gCZ+OwdOGTRV5w8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:de:40:79:60:e9:11:ea:7f:a2:bb:be:d9:98:de:0b:0b:97:6c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: Oct 19 22:16:34 2025 GMT Not After : Oct 22 23:23:34 2025 GMT Subject: CN=09E5BD6C3113A5CCF74EE6ACA10025CEA6E012A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3c:59:7f:e8:76:55:12:d5:80:aa:a1:9e:a1: 2c:12:f1:52:91:2e:4a:8b:34:bc:03:ac:57:d9:8b: 3e:68:00:d1:51:db:ca:6e:36:9e:5c:0f:e3:83:17: 0f:f1:a9:52:6c:f9:30:ee:8f:aa:25:16:02:1e:ad: d5:13:46:06:94:c1:07:03:bc:e2:fb:f9:b5:fa:43: 3e:54:c0:e0:7d:15:e1:1b:c2:06:18:aa:ae:1c:83: 1e:24:e7:20:5a:f6:e4:34:91:34:e1:13:eb:d2:0e: a8:46:24:a7:79:db:aa:e6:e5:65:a3:88:9e:05:f5: 86:7e:c0:dd:90:ac:f1:3d:e3:a4:51:f8:98:63:fe: a9:62:45:80:2d:c4:86:ed:8d:ff:bd:e3:f6:a1:40: 68:02:66:a5:bd:77:e0:ee:df:e9:51:e5:64:05:08: 83:73:0b:57:6c:49:a6:04:03:db:ce:7b:1e:f9:17: 7d:21:d4:24:7a:d3:e6:c7:90:25:a7:e2:4c:24:60: 81:92:28:9a:80:11:48:a4:d1:cb:4c:43:ef:f6:e0: 42:43:5e:46:a6:b4:12:fa:bb:af:97:8d:bd:6c:2a: 16:ed:63:a9:7c:c6:d5:75:a0:c1:0f:92:a4:30:91: 57:34:d7:76:84:6f:98:1f:89:fb:24:c4:1a:34:8f: ac:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E5:BD:6C:31:13:A5:CC:F7:4E:E6:AC:A1:00:25:CE:A6:E0:12:A2 X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:e3:15:25:cd:e9:ef:85:70:8a:54:15:4b:87:e2:ea:78:8f: 42:cd:82:0e:09:a4:e0:53:d5:eb:26:46:95:75:bf:b2:c2:ad: b9:89:a9:f4:25:50:95:a7:b8:33:83:c7:62:59:8b:b8:35:8c: 65:9b:04:16:06:01:64:c8:00:76:ac:a2:99:ac:e5:67:d5:f2: 09:af:30:c7:e2:1f:0b:fd:68:71:d2:c7:7e:58:db:e1:f2:ac: 32:23:d8:ac:fb:16:7f:b9:5b:53:e8:25:4d:9d:22:a5:a2:23: 15:82:25:da:9f:57:76:fe:92:3a:bc:69:9c:20:67:c3:b0:9d: 39:56:b8:49:d5:c3:d8:f3:19:ad:d5:63:66:1b:2b:5e:23:6a: 58:d1:51:e1:24:bb:1d:17:db:01:26:05:29:f0:7b:59:04:04: a0:8a:23:87:5b:3a:41:cc:d6:05:6c:b0:f5:21:34:88:63:06: 47:96:08:48:92:f1:5a:c5:b4:b2:03:92:59:14:24:19:6e:3b: ee:03:fe:25:27:d6:52:6e:97:b3:b5:e2:dd:c6:56:f0:00:4b: bf:7d:0d:af:9b:83:53:0c:47:ec:24:13:0b:35:4b:3b:84:2d: a5:1d:d4:f2:71:1c:22:d8:02:e8:7e:ea:54:17:6b:6b:d8:ea: 71:59:b3:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULt5AeWDpEep/oru+2ZjeCwuXbOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yNTEwMTkyMjE2MzRaFw0yNTEwMjIyMzIzMzRaMDMxMTAvBgNV BAMTKDA5RTVCRDZDMzExM0E1Q0NGNzRFRTZBQ0ExMDAyNUNFQTZFMDEyQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNPFl/6HZVEtWAqqGeoSwS8VKR LkqLNLwDrFfZiz5oANFR28puNp5cD+ODFw/xqVJs+TDuj6olFgIerdUTRgaUwQcD vOL7+bX6Qz5UwOB9FeEbwgYYqq4cgx4k5yBa9uQ0kTThE+vSDqhGJKd526rm5WWj iJ4F9YZ+wN2QrPE946RR+Jhj/qliRYAtxIbtjf+94/ahQGgCZqW9d+Du3+lR5WQF CINzC1dsSaYEA9vOex75F30h1CR60+bHkCWn4kwkYIGSKJqAEUik0ctMQ+/24EJD XkamtBL6u6+Xjb1sKhbtY6l8xtV1oMEPkqQwkVc013aEb5gfifskxBo0j6wPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCeW9bDETpcz3TuasoQAlzqbgEqIwHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNkNzUzNmQtOWUxMC00ZDQ5LWI2 Y2EtMDQxY2M5YTU5MTRlLzAvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUz QkQwNThEQTEwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHXjFSXN6e+FcIpUFUuH4up4j0LNgg4JpOBT 1esmRpV1v7LCrbmJqfQlUJWnuDODx2JZi7g1jGWbBBYGAWTIAHasopms5WfV8gmv MMfiHwv9aHHSx35Y2+HyrDIj2Kz7Fn+5W1PoJU2dIqWiIxWCJdqfV3b+kjq8aZwg Z8OwnTlWuEnVw9jzGa3VY2YbK14jaljRUeEkux0X2wEmBSnwe1kEBKCKI4dbOkHM 1gVssPUhNIhjBkeWCEiS8VrFtLIDklkUJBluO+4D/iUn1lJul7O14t3GVvAAS799 Da+bg1MMR+wkEws1SzuELaUd1PJxHCLYAuh+6lQXa2vY6nFZszA= -----END CERTIFICATE-----Generated at Mon Oct 20 09:38:45 2025 by rpki-client