$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: 2yicHPSLxzVp/URIzkhqs/zBHng1tM3W/FGtqc2BjLQ= Subject key identifier: 12:01:2D:36:40:81:CE:5A:89:82:70:55:60:A2:F5:1E:28:E4:34:93 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 3F3B3A3B43DBEC3EADA213A227CC39ABF6CBC438 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 051B Signing time: Sun 19 Oct 2025 22:30:44 +0000 Manifest this update: Sun 19 Oct 2025 22:25:44 +0000 Manifest next update: Thu 23 Oct 2025 09:31:44 +0000 Files and hashes: 1: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 2: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 3: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: MiXLfsugObA2v4vp2yWWUorynh4BdDoezPSrAWYlFYk=) 4: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) 5: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=) 6: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) 7: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=) 8: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 9: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:3b:3a:3b:43:db:ec:3e:ad:a2:13:a2:27:cc:39:ab:f6:cb:c4:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Oct 19 22:25:44 2025 GMT Not After : Oct 23 09:31:44 2025 GMT Subject: CN=12012D364081CE5A8982705560A2F51E28E43493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:46:3e:3a:f5:ab:ff:f4:a0:11:c4:e4:86:f7: 43:be:6c:83:c4:8c:f6:9f:a7:5c:35:7f:29:51:2c: 1a:f3:8e:3b:5b:83:a7:1d:47:4b:ad:49:1e:d0:7a: 31:f8:7f:26:b6:37:32:24:a6:ee:61:a2:ec:f0:db: 20:63:b2:f5:67:4e:5e:c0:31:7f:e3:92:a7:9b:ce: 43:46:e5:ba:ec:3d:d7:88:48:94:8f:88:7b:e3:aa: f4:1f:a9:72:3d:31:19:ec:e7:6c:cd:64:57:99:e8: cf:8f:95:11:05:a6:de:d7:07:7a:74:06:dc:7d:cb: f0:e2:98:ee:49:4b:99:ca:84:cd:3d:ed:9b:ce:76: 4b:51:b2:f1:ee:ea:c7:e2:e4:ff:a3:d3:e4:48:d3: 4d:03:16:d3:a3:35:81:1b:03:a6:b6:9c:f7:8b:6f: 1c:60:7d:9b:68:10:3d:d9:1f:b9:f3:5d:80:b0:c3: 7f:74:bd:71:ae:51:5d:0b:31:64:13:67:e6:1c:72: 40:f5:c0:1d:d4:1c:97:2d:4c:ed:7e:34:4f:5b:f9: ec:8b:66:dd:c8:6e:9e:1e:ff:09:ee:fa:ad:0e:0d: c5:8a:b7:41:2d:ae:9e:b2:09:62:93:0b:e1:76:35: e9:45:c7:ca:ca:38:11:1d:63:a5:f1:75:48:77:c6: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:01:2D:36:40:81:CE:5A:89:82:70:55:60:A2:F5:1E:28:E4:34:93 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a4:6d:0a:0b:89:7e:dc:29:9f:c3:69:4a:fb:47:5b:59:ca: fe:83:8e:1e:92:45:58:60:b2:f0:32:6c:e8:1f:d9:1a:8b:76: 2f:18:39:bf:cb:05:10:53:f1:fc:56:68:5a:1c:72:f9:8f:1f: 3e:d9:db:f0:4a:dd:c3:4c:86:0b:02:ef:ad:6a:ef:f3:c2:99: c0:ab:f8:c3:4c:c0:cf:45:78:69:7b:fb:34:88:7c:f0:46:5a: 81:a5:1e:51:15:f6:79:62:a1:d2:10:47:73:ed:db:97:9c:2e: 43:c7:9c:8b:ec:74:68:ac:b8:30:96:c9:3e:96:88:4b:a5:c4: e5:fa:a1:83:c8:ad:a8:31:38:04:c8:8d:3e:de:f6:73:8e:0b: db:47:5e:94:65:99:86:82:1c:e2:28:63:3d:0d:dc:56:83:dd: 47:2d:1c:2b:6c:ff:fc:09:a2:34:7c:52:40:a8:8f:c0:ef:b5: a6:4c:76:54:82:31:fa:67:5a:2f:d3:bd:8a:e1:6c:24:37:1a: 39:2c:6a:8a:2c:eb:f6:e1:59:c4:0d:25:27:8d:d4:1a:0a:4b: fa:9e:00:6e:14:88:88:77:59:a7:6e:c2:30:1e:38:f9:60:d5: c3:e4:d7:f9:1b:6f:f9:1a:c7:cc:30:2a:41:f4:22:a6:90:b7: 3f:e2:f3:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPzs6O0Pb7D6tohOiJ8w5q/bLxDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTEwMTkyMjI1NDRaFw0yNTEwMjMwOTMxNDRaMDMxMTAvBgNV BAMTKDEyMDEyRDM2NDA4MUNFNUE4OTgyNzA1NTYwQTJGNTFFMjhFNDM0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiRj469av/9KARxOSG90O+bIPE jPafp1w1fylRLBrzjjtbg6cdR0utSR7QejH4fya2NzIkpu5houzw2yBjsvVnTl7A MX/jkqebzkNG5brsPdeISJSPiHvjqvQfqXI9MRns52zNZFeZ6M+PlREFpt7XB3p0 Btx9y/DimO5JS5nKhM097ZvOdktRsvHu6sfi5P+j0+RI000DFtOjNYEbA6a2nPeL bxxgfZtoED3ZH7nzXYCww390vXGuUV0LMWQTZ+YcckD1wB3UHJctTO1+NE9b+eyL Zt3Ibp4e/wnu+q0ODcWKt0Etrp6yCWKTC+F2NelFx8rKOBEdY6XxdUh3xuZ1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEgEtNkCBzlqJgnBVYKL1HijkNJMwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB+kbQoLiX7cKZ/DaUr7R1tZyv6Djh6SRVhg svAybOgf2RqLdi8YOb/LBRBT8fxWaFoccvmPHz7Z2/BK3cNMhgsC761q7/PCmcCr +MNMwM9FeGl7+zSIfPBGWoGlHlEV9nliodIQR3Pt25ecLkPHnIvsdGisuDCWyT6W iEulxOX6oYPIragxOATIjT7e9nOOC9tHXpRlmYaCHOIoYz0N3FaD3UctHCts//wJ ojR8UkCoj8DvtaZMdlSCMfpnWi/TvYrhbCQ3Gjksaoos6/bhWcQNJSeN1BoKS/qe AG4UiIh3WaduwjAeOPlg1cPk1/kbb/kax8wwKkH0IqaQtz/i84s= -----END CERTIFICATE-----Generated at Mon Oct 20 20:29:14 2025 by rpki-client