$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: uiRknoZlVa2uEBxGtbyRud9XTIxW+uIARDfVlH8C4cg= Subject key identifier: 92:90:99:D1:93:8D:29:B8:1A:42:88:69:5C:5B:06:39:51:71:D6:EC Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 54B7D09A7127C57CF75DF857D9376EDBB4B90F30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 01EB Signing time: Sun 19 Oct 2025 19:30:51 +0000 Manifest this update: Sun 19 Oct 2025 19:25:51 +0000 Manifest next update: Wed 22 Oct 2025 20:44:51 +0000 Files and hashes: 1: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: mcMH30MAK2uUFd1T2OgzNYO3B2Eu0rURdBRPc3S9fkM=) 2: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) 3: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b7:d0:9a:71:27:c5:7c:f7:5d:f8:57:d9:37:6e:db:b4:b9:0f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Oct 19 19:25:51 2025 GMT Not After : Oct 22 20:44:51 2025 GMT Subject: CN=929099D1938D29B81A4288695C5B06395171D6EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a0:86:7b:8d:75:12:0a:2e:fc:04:46:fe:dd: 5c:c9:7e:b9:0f:d7:86:95:30:da:a0:2d:ea:17:5e: 70:5c:b4:21:72:5d:da:67:f6:d3:48:09:c6:4d:24: 54:bf:7f:59:6a:ff:90:5d:ab:5b:1f:af:d9:d4:45: e0:a3:3d:2d:3c:d8:2f:e2:19:54:78:06:e5:44:cc: 2d:3b:38:d0:c0:8c:dc:5f:41:79:b4:11:36:e6:62: 35:0b:b0:ff:e7:96:cf:1f:5e:81:92:0c:30:d1:ec: d8:42:4b:af:16:6b:49:ab:4f:dd:c2:5c:8a:af:4d: b7:a7:e4:6d:44:a0:f4:bc:93:76:f5:0c:5b:00:2d: 12:5f:39:a0:05:80:24:ae:de:1b:e6:9d:7a:0e:62: 3e:be:9d:3a:2f:4c:65:ba:50:bd:c5:68:bd:6b:21: e6:dc:1f:a8:d3:1c:f2:fe:15:c6:c1:90:97:15:d3: 4e:e3:81:67:fa:00:09:ec:98:0a:c0:af:af:21:c6: f8:b9:4b:d1:d3:bd:5b:69:7a:ab:10:94:3d:dd:ba: 71:2b:c3:4c:97:bd:73:b6:be:13:97:5c:da:a0:8e: a0:5e:8a:41:61:00:fc:35:e9:0d:12:ce:96:15:af: 87:32:f9:bf:49:96:c3:5b:38:63:f2:0a:9d:73:13: fd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:90:99:D1:93:8D:29:B8:1A:42:88:69:5C:5B:06:39:51:71:D6:EC X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d6:ef:8b:85:85:01:1c:fd:81:0b:51:13:06:eb:01:a0:2b: e1:fd:50:14:13:42:d8:59:a7:a1:28:69:c8:f5:65:77:54:db: bf:ed:99:24:17:2e:20:ba:5f:19:8f:37:44:6b:48:9a:44:ca: 3f:a7:98:f0:16:0a:d2:a7:40:0f:55:69:dd:9f:39:f7:07:94: fd:f5:00:d5:d2:be:90:db:e2:6a:b1:ee:5b:c1:87:05:66:56: 41:9c:07:e7:b9:84:47:7c:49:3c:9b:59:7b:16:a6:60:a1:52: 5f:ea:ee:68:59:58:42:3a:aa:d0:7e:61:a7:f5:64:af:8d:81: 03:a7:b4:11:94:88:a3:ac:49:cb:f4:fc:08:cb:d0:53:1c:d7: 94:e1:27:bb:6b:19:47:e4:5e:f3:ec:19:b4:93:8b:3e:44:90: 5d:4f:63:24:46:2e:a8:5d:e8:b0:8b:77:e5:cf:d4:c5:7c:62: 4b:64:e8:a7:4e:22:6a:bf:8c:bc:de:8e:94:c3:c4:fd:d4:09: 87:c0:75:95:61:d0:a7:e3:95:a0:18:fc:d8:12:a3:9f:21:50: c6:0d:9f:a7:dd:5a:32:81:37:16:76:f1:41:c2:2c:be:14:0a: de:45:7a:87:e3:0a:9c:29:7d:cb:37:b8:d5:46:5b:13:d7:71: 3b:25:ef:9a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVLfQmnEnxXz3XfhX2Tdu27S5DzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTEwMTkxOTI1NTFaFw0yNTEwMjIyMDQ0NTFaMDMxMTAvBgNV BAMTKDkyOTA5OUQxOTM4RDI5QjgxQTQyODg2OTVDNUIwNjM5NTE3MUQ2RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYoIZ7jXUSCi78BEb+3VzJfrkP 14aVMNqgLeoXXnBctCFyXdpn9tNICcZNJFS/f1lq/5Bdq1sfr9nUReCjPS082C/i GVR4BuVEzC07ONDAjNxfQXm0ETbmYjULsP/nls8fXoGSDDDR7NhCS68Wa0mrT93C XIqvTben5G1EoPS8k3b1DFsALRJfOaAFgCSu3hvmnXoOYj6+nTovTGW6UL3FaL1r IebcH6jTHPL+FcbBkJcV007jgWf6AAnsmArAr68hxvi5S9HTvVtpeqsQlD3dunEr w0yXvXO2vhOXXNqgjqBeikFhAPw16Q0SzpYVr4cy+b9JlsNbOGPyCp1zE/29AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkpCZ0ZONKbgaQohpXFsGOVFx1uwwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH/W74uFhQEc/YELURMG6wGgK+H9UBQTQthZ p6Eoacj1ZXdU27/tmSQXLiC6XxmPN0RrSJpEyj+nmPAWCtKnQA9Vad2fOfcHlP31 ANXSvpDb4mqx7lvBhwVmVkGcB+e5hEd8STybWXsWpmChUl/q7mhZWEI6qtB+Yaf1 ZK+NgQOntBGUiKOsScv0/AjL0FMc15ThJ7trGUfkXvPsGbSTiz5EkF1PYyRGLqhd 6LCLd+XP1MV8Yktk6KdOImq/jLzejpTDxP3UCYfAdZVh0KfjlaAY/NgSo58hUMYN n6fdWjKBNxZ28UHCLL4UCt5FeofjCpwpfcs3uNVGWxPXcTsl75o= -----END CERTIFICATE-----Generated at Mon Oct 20 03:12:44 2025 by rpki-client