$ rpki-client -vvf repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft File: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft (raw, json) Hash identifier: iTTFSpdsJwQ9VDOXXiC7N6CzZAdkehsENgG0TpnOTfo= Subject key identifier: 63:13:8A:43:A2:67:E5:01:8C:0A:CB:C6:06:5D:5E:AD:BA:74:BB:6B Authority key identifier: 9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B Certificate issuer: /CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Certificate serial: 33A4FF8D62081A547A681D4DC170C38C3A427F97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft Manifest number: 01D3 Signing time: Sat 18 Oct 2025 22:22:08 +0000 Manifest this update: Sat 18 Oct 2025 22:17:08 +0000 Manifest next update: Wed 22 Oct 2025 01:44:08 +0000 Files and hashes: 1: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl (hash: kkIW/BTK/a/lhO8mbhTrGjotzZVW0byhoBpXWZkp+N8=) 2: 3130332e33392e37312e302f32342d3234203d3e20313530323734.roa (hash: vX/A9y9l7mDzRfDBjuCxoiwVgHmV7OjNWsTWxTukflI=) 3: 3130332e33392e37302e302f32332d3233203d3e20313530323734.roa (hash: Na4r9r8nnow4eud4P32zyb2HwE34kjIncW5/HOVTmbY=) 4: 3130332e33392e37302e302f32342d3234203d3e20313530323734.roa (hash: n9HiNkJ52DbLxZISXERFZtFdqx3265M08OZ/zKtOVYU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a4:ff:8d:62:08:1a:54:7a:68:1d:4d:c1:70:c3:8c:3a:42:7f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Validity Not Before: Oct 18 22:17:08 2025 GMT Not After : Oct 22 01:44:08 2025 GMT Subject: CN=63138A43A267E5018C0ACBC6065D5EADBA74BB6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:59:08:3b:82:cb:54:79:97:05:d3:e3:0c: 55:a6:e4:59:90:c9:ca:0c:94:8b:a5:c1:71:42:e9: 94:27:57:fc:75:5c:7e:ec:68:a7:b8:92:80:42:2e: 94:b1:b7:5d:72:72:09:23:5c:8a:22:94:0f:77:b5: 85:0e:bb:0b:da:58:13:15:7a:e4:b9:75:36:f8:ec: c7:1a:84:d7:17:01:79:26:bc:0c:20:db:13:47:34: 65:6b:73:f5:fc:01:3c:22:e0:0b:9c:28:05:a9:f0: c4:44:1b:58:98:a1:6c:b0:02:7c:0c:55:7c:bb:ca: 1e:2e:ea:b4:f8:ea:ac:a2:c7:78:33:23:50:6c:bf: fe:5a:2b:4f:02:86:64:25:1c:7f:b4:15:db:4f:ff: 21:95:57:28:a9:33:6d:5f:ae:60:a4:2a:9c:2d:dc: eb:d8:34:ee:67:c4:82:a0:31:6b:5d:7c:f9:42:92: 92:10:59:b5:e0:3a:89:30:10:01:97:54:0b:62:c8: cc:9c:3f:20:64:57:0d:37:a6:c9:98:ce:ce:b3:63: 83:64:cf:56:36:a8:2f:21:90:25:54:39:ac:ed:1b: a2:55:1b:41:1f:c1:d3:54:40:5c:1c:a1:70:3c:96: 66:c9:a3:9f:22:f1:a9:f4:6d:0c:bd:2e:9c:2f:1f: 14:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:13:8A:43:A2:67:E5:01:8C:0A:CB:C6:06:5D:5E:AD:BA:74:BB:6B X509v3 Authority Key Identifier: keyid:9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:76:19:b8:95:0e:12:b5:8d:06:3f:0c:8a:22:5b:e9:54:af: ad:22:7e:91:b9:5e:75:a1:71:f3:98:da:02:7b:2f:d0:55:0c: 34:0d:7d:06:02:1a:64:42:01:43:7e:86:94:c8:79:3e:60:cf: 76:44:ca:e9:7e:80:c4:86:cc:1c:a8:37:3c:62:86:d2:6a:47: 3b:43:ce:3f:0d:d9:27:5e:9e:85:bf:4f:2d:e1:0d:90:2e:53: 5b:57:b2:ab:aa:9c:47:1d:d1:15:bc:98:02:2b:f2:f6:e4:a8: 92:a7:32:c6:d1:8c:85:9d:2c:78:7b:56:f4:fe:43:57:0b:6d: 53:ec:62:f3:b4:0d:41:38:97:df:8e:11:1f:be:db:12:f6:1d: 05:92:56:2d:bb:7a:b0:36:a2:9b:6c:4b:c3:c8:bc:3b:cd:c8: b3:1e:47:ac:13:9f:aa:74:6d:c5:6f:79:f6:29:ee:96:9a:76: 6f:b3:8d:fa:3f:d7:11:3c:ed:46:7d:65:66:3b:92:0f:68:fb: 53:29:0e:5f:ab:c8:b3:e4:20:7d:93:b2:ce:84:e8:36:2e:8d: cb:dc:01:06:02:bd:23:cc:31:61:24:11:dc:31:96:6f:35:5d: 4d:8e:31:4a:94:dd:03:22:63:ae:9a:79:c0:59:d9:61:1e:3b: 16:04:65:24 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM6T/jWIIGlR6aB1NwXDDjDpCf5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5 NEY1QUI3QjAeFw0yNTEwMTgyMjE3MDhaFw0yNTEwMjIwMTQ0MDhaMDMxMTAvBgNV BAMTKDYzMTM4QTQzQTI2N0U1MDE4QzBBQ0JDNjA2NUQ1RUFEQkE3NEJCNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyzVkIO4LLVHmXBdPjDFWm5FmQ ycoMlIulwXFC6ZQnV/x1XH7saKe4koBCLpSxt11ycgkjXIoilA93tYUOuwvaWBMV euS5dTb47McahNcXAXkmvAwg2xNHNGVrc/X8ATwi4AucKAWp8MREG1iYoWywAnwM VXy7yh4u6rT46qyix3gzI1Bsv/5aK08ChmQlHH+0FdtP/yGVVyipM21frmCkKpwt 3OvYNO5nxIKgMWtdfPlCkpIQWbXgOokwEAGXVAtiyMycPyBkVw03psmYzs6zY4Nk z1Y2qC8hkCVUOaztG6JVG0EfwdNUQFwcoXA8lmbJo58i8an0bQy9LpwvHxR1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYxOKQ6Jn5QGMCsvGBl1erbp0u2swHwYDVR0j BBgwFoAUn/xGuqPxlSKvW91g333pLpT1q3swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTU3ZDU0My1iYWYwLTQzNDgtODg1Ny0zZDI2MDFjM2E4MDMvMC85RkZDNDZCQUEz RjE5NTIyQUY1QkRENjBERjdERTkyRTk0RjVBQjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5NEY1 QUI3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2U1N2Q1NDMtYmFmMC00MzQ4LTg4 NTctM2QyNjAxYzNhODAzLzAvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5 MkU5NEY1QUI3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAN2GbiVDhK1jQY/DIoiW+lUr60ifpG5XnWh cfOY2gJ7L9BVDDQNfQYCGmRCAUN+hpTIeT5gz3ZEyul+gMSGzByoNzxihtJqRztD zj8N2SdenoW/Ty3hDZAuU1tXsquqnEcd0RW8mAIr8vbkqJKnMsbRjIWdLHh7VvT+ Q1cLbVPsYvO0DUE4l9+OER++2xL2HQWSVi27erA2optsS8PIvDvNyLMeR6wTn6p0 bcVvefYp7paadm+zjfo/1xE87UZ9ZWY7kg9o+1MpDl+ryLPkIH2Tss6E6DYujcvc AQYCvSPMMWEkEdwxlm81XU2OMUqU3QMiY66aecBZ2WEeOxYEZSQ= -----END CERTIFICATE-----Generated at Mon Oct 20 11:59:48 2025 by rpki-client