$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft File: 29692979765B670997413579D7BF5663C05BBD1A.mft (raw, json) Hash identifier: HgBPsYiak9uLqN0Bgl/uixc+cbNFhoKMP5tFlvPXgqc= Subject key identifier: 5D:95:AD:EB:D2:C1:44:30:79:09:AD:E3:E9:C9:11:14:9C:D6:CD:B8 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 0E623B2E0ABE2FC83B46C5C2448C402FA4D107A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft Manifest number: 024E Signing time: Sat 18 Oct 2025 09:31:02 +0000 Manifest this update: Sat 18 Oct 2025 09:26:02 +0000 Manifest next update: Tue 21 Oct 2025 12:49:02 +0000 Files and hashes: 1: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (hash: wQ45tmfAW0vTrcP1CHqdkU4kV8VsIFLIOnBtD5fu+LU=) 2: 29692979765B670997413579D7BF5663C05BBD1A.crl (hash: oYz4a5SeXZDxtlVgpouQ6qESfl9BOuqwL78s5/OJC04=) 3: 3130332e392e3132342e302f32322d3234203d3e20313331373131.roa (hash: gJ4+RIzMU3sNK8zgeNrc/IFATPDJCmEd1aztpgZm3dA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 12:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:62:3b:2e:0a:be:2f:c8:3b:46:c5:c2:44:8c:40:2f:a4:d1:07:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Oct 18 09:26:02 2025 GMT Not After : Oct 21 12:49:02 2025 GMT Subject: CN=5D95ADEBD2C144307909ADE3E9C911149CD6CDB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dd:90:ff:63:53:72:13:fc:04:46:d6:82:6c: c8:3e:2a:b3:f7:47:5d:75:09:72:2f:b0:80:f2:f9: 15:55:51:1d:92:4f:82:c9:57:31:4d:90:b1:d7:7d: 47:5d:0a:6b:8b:dd:03:fd:12:62:7e:86:6a:46:52: 00:76:e2:13:38:1e:d7:a1:d1:78:af:b1:8d:59:09: 87:97:1e:97:27:3b:76:df:78:f4:ec:23:08:a3:d7: 44:6f:09:18:09:ff:75:64:8c:75:0b:9c:84:5e:be: 96:73:06:59:0f:ba:56:03:bf:5a:e5:32:8b:a4:50: f2:c9:ec:d5:1f:68:0a:63:b3:ca:6c:12:6d:73:f2: b4:0f:67:c7:3c:6d:3f:98:fb:64:e8:d7:6c:75:50: eb:2c:0f:53:fc:bf:ee:1a:2c:dd:d4:55:c4:af:6a: 8c:67:b5:f8:52:de:9a:7d:71:e8:2d:7a:66:c8:4e: 33:5a:f0:7c:71:8d:a8:15:0d:c8:4b:f8:36:3e:d8: b8:80:d9:d4:33:ca:a9:5e:15:66:39:76:90:2a:fc: 4d:d0:cb:cd:9d:be:ce:4e:b8:16:e0:c7:48:9e:74: 96:2a:14:98:62:de:d5:df:5b:11:08:8c:89:39:31: db:5e:2e:13:44:64:8d:bd:22:d6:54:22:19:09:15: 10:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:95:AD:EB:D2:C1:44:30:79:09:AD:E3:E9:C9:11:14:9C:D6:CD:B8 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:40:4e:cf:74:f7:91:03:00:80:fe:ee:68:09:72:a1:42:be: 13:b1:8c:e7:af:84:ac:f7:b8:eb:ec:52:72:2c:2d:90:dd:26: bd:85:53:de:ca:95:66:61:8d:1e:2c:a2:ae:23:bb:8c:de:92: 7c:c8:85:d4:f7:09:ac:1d:ba:02:51:2e:7d:9b:8e:22:83:16: 93:ae:0f:d5:f5:cb:68:10:00:84:ba:62:33:d5:5e:53:b2:c8: dc:1a:92:5a:f0:f9:c7:ca:7c:68:18:6a:60:ee:45:fd:02:b4: bd:e9:76:95:90:58:79:95:32:85:de:dd:45:1c:5d:2b:bf:b0: 92:cd:25:22:82:ae:d1:6c:27:ec:ad:44:42:29:f7:0a:ec:74: 90:ba:cc:8d:7d:4f:5f:7b:4f:31:e2:b6:3e:ed:ee:9d:90:94: a4:15:6e:f1:87:b8:00:19:1d:f3:73:bd:fe:34:74:8a:cd:e0: ff:89:93:d8:45:f2:a0:d2:41:17:f2:2a:c1:4a:37:02:e3:f8: 76:6f:95:a5:0c:a6:71:eb:8b:fa:c7:7e:8b:ca:22:86:ce:f3: 98:41:6c:44:51:56:dc:b3:40:eb:2d:84:e6:59:4c:16:c0:14: 43:43:5b:25:2c:5e:fd:18:eb:8d:35:b9:9f:ec:d1:b2:6a:f4: 7c:e5:df:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDmI7Lgq+L8g7RsXCRIxAL6TRB6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNTEwMTgwOTI2MDJaFw0yNTEwMjExMjQ5MDJaMDMxMTAvBgNV BAMTKDVEOTVBREVCRDJDMTQ0MzA3OTA5QURFM0U5QzkxMTE0OUNENkNEQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh3ZD/Y1NyE/wERtaCbMg+KrP3 R111CXIvsIDy+RVVUR2ST4LJVzFNkLHXfUddCmuL3QP9EmJ+hmpGUgB24hM4Hteh 0XivsY1ZCYeXHpcnO3bfePTsIwij10RvCRgJ/3VkjHULnIRevpZzBlkPulYDv1rl MoukUPLJ7NUfaApjs8psEm1z8rQPZ8c8bT+Y+2To12x1UOssD1P8v+4aLN3UVcSv aoxntfhS3pp9cegtembITjNa8HxxjagVDchL+DY+2LiA2dQzyqleFWY5dpAq/E3Q y82dvs5OuBbgx0iedJYqFJhi3tXfWxEIjIk5MdteLhNEZI29ItZUIhkJFRCBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXZWt69LBRDB5Ca3j6ckRFJzWzbgwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2IwYTExYjUtOTQ0MS00Y2M5LWE2 NzItYmU5Nzk5YjY1NTIwLzAvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2 NjNDMDVCQkQxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFpATs9095EDAID+7mgJcqFCvhOxjOevhKz3 uOvsUnIsLZDdJr2FU97KlWZhjR4soq4ju4zeknzIhdT3CawdugJRLn2bjiKDFpOu D9X1y2gQAIS6YjPVXlOyyNwaklrw+cfKfGgYamDuRf0CtL3pdpWQWHmVMoXe3UUc XSu/sJLNJSKCrtFsJ+ytREIp9wrsdJC6zI19T197TzHitj7t7p2QlKQVbvGHuAAZ HfNzvf40dIrN4P+Jk9hF8qDSQRfyKsFKNwLj+HZvlaUMpnHri/rHfovKIobO85hB bERRVtyzQOsthOZZTBbAFENDWyUsXv0Y6401uZ/s0bJq9Hzl3/I= -----END CERTIFICATE-----Generated at Mon Oct 20 10:18:00 2025 by rpki-client