$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft File: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft (raw, json) Hash identifier: 2aGfQ23juTyakOehFTTPxSlcwRGEMZEvdtQtbyq9r0Q= Subject key identifier: D1:33:7B:30:02:BB:05:77:65:27:46:BD:47:85:76:E5:6A:66:9C:C4 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 07D5CF000CE020EE7BA85135B3FCCC4B5804A253 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft Manifest number: 0522 Signing time: Sun 19 Oct 2025 19:51:39 +0000 Manifest this update: Sun 19 Oct 2025 19:46:39 +0000 Manifest next update: Thu 23 Oct 2025 02:32:39 +0000 Files and hashes: 1: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (hash: I3OA1TXXrn7Ho4Bbdaoik2HHmIJMRdT3vdvqOadCgWc=) 2: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (hash: SVVnOcpEzNW3GyvGQSrBzvX2ix4zPecYqTfJmTpW5Ek=) 3: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (hash: lJiN/1jPk6sVzBu+b+dWtXwNwMFWgXWbUliAdUar1AU=) 4: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl (hash: 3FCq+97JNbkYigj62QLUQemiPN9+mxYhTudpq3uc5tA=) 5: 34332e3234382e3231342e302f32342d3234203d3e203538343734.roa (hash: KABMcwwuj0PcVg0DF+2S7mT8pkOrI1Q8USpOkuuxMXI=) 6: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (hash: 2rfcy4tUpo7HgU2cGwZC6pQYZQAR7WSsi/1k28TkJlU=) 7: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (hash: GggD4UAIQuJ2Ici9kI1FCxhBRH2erQ0+Zgb75d0bwAQ=) 8: 323430343a666230303a3a2f33322d3332203d3e203538343734.roa (hash: T0GxcffUorQqKvKWvoQBmwT56g/pt1WC0GNCeIbnIXI=) 9: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (hash: RKuA2CS77/iBc1MhX2FD3Oj8MLTo/sw4r4vfbH4WpPI=) 10: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (hash: lS8odvouHADOZvGcEIZX6cESZX3v05ZwGGbLJRnmmPg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d5:cf:00:0c:e0:20:ee:7b:a8:51:35:b3:fc:cc:4b:58:04:a2:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Oct 19 19:46:39 2025 GMT Not After : Oct 23 02:32:39 2025 GMT Subject: CN=D1337B3002BB0577652746BD478576E56A669CC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:01:f0:e8:83:04:16:a2:70:7f:6b:9f:82:90: a5:25:7c:57:4d:45:93:d0:b8:00:3b:3b:74:c6:17: b1:63:9e:73:18:32:2b:1a:d5:fa:99:ad:57:51:00: cb:3e:0d:1f:5e:5e:f2:6e:ca:0c:44:70:6b:78:5c: 67:60:4e:d3:a9:47:cf:f1:23:ea:b5:e6:96:e2:46: 30:9c:55:ab:83:70:f2:b7:84:58:56:a4:b2:cd:c2: eb:43:dd:6f:94:13:fc:57:f2:39:44:b1:46:47:37: 67:c7:01:2e:31:1e:00:ce:e3:d0:34:ca:9b:2d:5a: ae:6a:52:15:1d:a0:eb:61:c2:0a:0a:35:be:51:7c: 8c:d7:ff:47:4a:fa:02:65:d0:2a:fc:80:91:cb:6b: e3:80:b5:89:ce:48:90:63:aa:38:b9:9e:d9:c1:3e: 96:ac:f1:c4:07:fa:df:a1:c8:6f:b7:7f:5d:ff:b7: ee:60:6d:32:df:a8:86:ed:c5:73:d4:c2:04:d2:87: e7:c9:da:65:92:6c:e7:47:45:74:ef:ef:d2:ec:86: 5d:bc:36:17:b0:9f:80:62:7a:70:f8:cb:b3:d6:56: a9:3d:70:39:bd:af:96:7d:9f:ef:06:7a:0a:7f:4a: 2b:f8:bc:c3:fc:5b:03:78:09:02:cd:09:9f:64:ae: 5a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:33:7B:30:02:BB:05:77:65:27:46:BD:47:85:76:E5:6A:66:9C:C4 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:fe:0a:dd:da:c4:87:44:5d:e5:55:72:c4:81:ef:20:7a:c8: 0f:99:bc:f5:b6:cf:2c:72:58:3a:17:d9:b3:c7:04:4b:65:40: a0:89:80:1f:eb:64:70:4e:e3:87:7a:85:02:35:78:13:69:1f: b3:2e:65:86:1c:33:c5:a5:52:85:54:03:5c:30:40:08:97:d8: dd:eb:75:94:70:84:7c:d0:91:26:e9:ac:c0:89:00:42:ef:a5: e5:2c:13:b1:33:20:ac:ab:86:c0:13:2f:8c:c9:f1:16:a2:8c: 10:8f:85:96:e0:53:34:b6:75:a9:63:67:d9:d5:ec:50:67:e0: f7:0a:e0:23:5c:6a:ff:79:7a:47:d6:27:6a:8e:85:40:9a:12: 47:17:e8:61:b2:05:78:67:70:75:04:b3:23:88:40:d4:d8:1a: f8:2c:ba:f0:9f:88:04:e3:3d:b5:5d:05:70:ed:42:e7:6e:1c: eb:25:ff:8d:02:b6:6e:34:7f:78:0b:80:c9:c8:1c:f9:de:bf: 42:c3:c7:c4:9d:c5:7b:99:23:80:a3:fc:72:60:98:6c:ca:93: db:e6:51:01:3d:aa:d0:9f:60:2b:da:0c:74:7a:29:25:3a:84: cd:40:ec:ff:24:6b:25:2c:db:ab:f1:54:de:18:d9:41:ef:71: ab:b0:64:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB9XPAAzgIO57qFE1s/zMS1gEolMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTEwMTkxOTQ2MzlaFw0yNTEwMjMwMjMyMzlaMDMxMTAvBgNV BAMTKEQxMzM3QjMwMDJCQjA1Nzc2NTI3NDZCRDQ3ODU3NkU1NkE2NjlDQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBAfDogwQWonB/a5+CkKUlfFdN RZPQuAA7O3TGF7FjnnMYMisa1fqZrVdRAMs+DR9eXvJuygxEcGt4XGdgTtOpR8/x I+q15pbiRjCcVauDcPK3hFhWpLLNwutD3W+UE/xX8jlEsUZHN2fHAS4xHgDO49A0 ypstWq5qUhUdoOthwgoKNb5RfIzX/0dK+gJl0Cr8gJHLa+OAtYnOSJBjqji5ntnB Ppas8cQH+t+hyG+3f13/t+5gbTLfqIbtxXPUwgTSh+fJ2mWSbOdHRXTv79Lshl28 Nhewn4BienD4y7PWVqk9cDm9r5Z9n+8Gegp/Siv4vMP8WwN4CQLNCZ9krlpfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0TN7MAK7BXdlJ0a9R4V25WpmnMQwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzMwNTE3N2EtYTUwMC00OTk2LWIz ZmYtNzBjMTQ0ZWRmZWNlLzAvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgy QjQzREEyRjA5OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABz+Ct3axIdEXeVVcsSB7yB6yA+ZvPW2zyxy WDoX2bPHBEtlQKCJgB/rZHBO44d6hQI1eBNpH7MuZYYcM8WlUoVUA1wwQAiX2N3r dZRwhHzQkSbprMCJAELvpeUsE7EzIKyrhsATL4zJ8RaijBCPhZbgUzS2daljZ9nV 7FBn4PcK4CNcav95ekfWJ2qOhUCaEkcX6GGyBXhncHUEsyOIQNTYGvgsuvCfiATj PbVdBXDtQuduHOsl/40Ctm40f3gLgMnIHPnev0LDx8SdxXuZI4Cj/HJgmGzKk9vm UQE9qtCfYCvaDHR6KSU6hM1A7P8kayUs26vxVN4Y2UHvcauwZG8= -----END CERTIFICATE-----Generated at Mon Oct 20 10:13:46 2025 by rpki-client