$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: nOiKOoxxENj5ZgqpoWKiMsBAG+mHgQcJu2hvtuwTa5w= Subject key identifier: A2:6D:05:A9:B1:85:C2:76:F8:F9:E0:B3:F0:B9:4A:0A:34:FB:6B:A7 Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 587625728648E38CFB98A85B1F2BC2B0DB5D5475 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 0366 Signing time: Sun 19 Oct 2025 14:00:52 +0000 Manifest this update: Sun 19 Oct 2025 13:55:52 +0000 Manifest next update: Wed 22 Oct 2025 19:30:52 +0000 Files and hashes: 1: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 2: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: h8WYZ+QjuR7NeYxRNefUzhBUK/R2oR5CSuhc/zHDLn0=) 3: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 4: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 5: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 6: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 7: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 8: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 9: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 10: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:76:25:72:86:48:e3:8c:fb:98:a8:5b:1f:2b:c2:b0:db:5d:54:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Oct 19 13:55:52 2025 GMT Not After : Oct 22 19:30:52 2025 GMT Subject: CN=A26D05A9B185C276F8F9E0B3F0B94A0A34FB6BA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b0:ee:49:fe:1a:8b:59:6d:d8:4b:c3:42:e0: 7a:59:dc:03:b5:ca:2f:cb:96:b2:dc:44:f1:7f:77: 4b:fa:ee:f4:65:b1:a3:31:de:10:83:f6:c0:46:c2: 45:94:26:96:8e:90:c0:4b:a8:b7:a4:cc:e9:b1:cf: ad:80:05:d8:29:07:a0:96:f2:da:22:67:42:33:d7: 83:e6:e3:9d:df:30:c0:4a:19:f4:0e:9e:bc:43:b4: 2b:c0:1f:3d:4b:9c:cf:5e:1c:e7:7f:b0:0b:22:fb: 5f:e7:2d:51:2d:22:15:c1:e8:47:53:b0:9b:af:dc: 17:5f:bb:e6:9d:45:35:10:08:f6:0d:71:58:d2:13: c3:9c:59:80:fc:f2:fa:69:23:67:f8:ca:21:f0:03: 5e:5f:d7:a9:17:0c:2e:a3:ed:e3:af:72:eb:aa:27: 1b:08:f0:d1:fe:4f:b0:55:0e:5a:8f:25:16:fb:22: 6f:53:5e:a2:7a:98:38:ab:65:3e:e3:a9:44:62:af: 69:13:e2:73:5b:40:52:98:50:29:a4:95:9f:a3:da: 2e:05:e3:20:70:19:ff:76:bb:a2:24:19:e2:14:74: 60:37:b3:04:51:83:d8:f0:f3:fd:08:a1:25:78:1a: 6c:fa:d2:5c:fb:03:74:10:8a:52:48:83:eb:16:3a: 64:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6D:05:A9:B1:85:C2:76:F8:F9:E0:B3:F0:B9:4A:0A:34:FB:6B:A7 X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:32:b3:c1:99:52:00:5b:09:25:54:a2:1e:fa:dd:7b:4b:6d: 50:9b:9f:06:ff:a1:dc:f3:0b:10:b9:97:29:45:02:86:4f:ed: 65:06:27:6d:e7:a7:43:24:b0:5c:fa:fe:da:4a:7f:11:db:dd: 49:ef:12:7f:5c:57:f5:e9:0a:e0:4b:69:9b:94:aa:41:95:00: 47:57:71:19:eb:41:6c:14:82:bb:e4:57:a3:62:66:b4:44:d8: 7d:1f:96:01:a7:16:9c:fe:53:1d:c0:89:39:19:1f:c9:81:50: c0:a3:52:35:9f:78:37:f0:15:74:7b:93:5e:52:e9:f6:ba:26: 72:31:96:f6:72:7c:e4:06:3b:36:d3:0b:30:8c:d4:c6:27:bd: c1:c4:c2:c8:bf:fd:60:f4:fa:da:da:4c:ec:df:f7:a3:93:83: 23:b3:b8:2c:36:c9:84:06:db:da:76:7d:ac:e0:35:96:d6:e1: 9a:40:07:f9:a6:db:25:7d:a2:3c:f0:37:7e:d8:cb:96:03:fb: 25:58:9e:07:67:2b:39:33:b8:1d:9f:5e:de:94:8e:7c:97:0c: 9a:8a:47:88:9d:9b:a0:66:fd:eb:0a:30:d4:51:09:1a:56:bd: eb:73:38:72:9f:8a:0e:9b:fc:76:b8:87:24:e6:f6:0b:a0:e9: 77:51:6d:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWHYlcoZI44z7mKhbHyvCsNtdVHUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTEwMTkxMzU1NTJaFw0yNTEwMjIxOTMwNTJaMDMxMTAvBgNV BAMTKEEyNkQwNUE5QjE4NUMyNzZGOEY5RTBCM0YwQjk0QTBBMzRGQjZCQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRsO5J/hqLWW3YS8NC4HpZ3AO1 yi/LlrLcRPF/d0v67vRlsaMx3hCD9sBGwkWUJpaOkMBLqLekzOmxz62ABdgpB6CW 8toiZ0Iz14Pm453fMMBKGfQOnrxDtCvAHz1LnM9eHOd/sAsi+1/nLVEtIhXB6EdT sJuv3Bdfu+adRTUQCPYNcVjSE8OcWYD88vppI2f4yiHwA15f16kXDC6j7eOvcuuq JxsI8NH+T7BVDlqPJRb7Im9TXqJ6mDirZT7jqURir2kT4nNbQFKYUCmklZ+j2i4F 4yBwGf92u6IkGeIUdGA3swRRg9jw8/0IoSV4Gmz60lz7A3QQilJIg+sWOmQBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUom0FqbGFwnb4+eCz8LlKCjT7a6cwHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEAys8GZUgBbCSVUoh763XtLbVCbnwb/odzz CxC5lylFAoZP7WUGJ23np0MksFz6/tpKfxHb3UnvEn9cV/XpCuBLaZuUqkGVAEdX cRnrQWwUgrvkV6NiZrRE2H0flgGnFpz+Ux3AiTkZH8mBUMCjUjWfeDfwFXR7k15S 6fa6JnIxlvZyfOQGOzbTCzCM1MYnvcHEwsi//WD0+traTOzf96OTgyOzuCw2yYQG 29p2fazgNZbW4ZpAB/mm2yV9ojzwN37Yy5YD+yVYngdnKzkzuB2fXt6UjnyXDJqK R4idm6Bm/esKMNRRCRpWvetzOHKfig6b/Ha4hyTm9gug6XdRbc0= -----END CERTIFICATE-----Generated at Mon Oct 20 09:24:26 2025 by rpki-client