$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft File: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json) Hash identifier: JLmYHJSQoCVFl6qnbweoBdwIlcwfpkU2+uNdZl2NOPE= Subject key identifier: E2:58:B2:96:82:1B:02:94:D9:64:7B:94:4A:93:1D:8D:6F:FC:A3:D5 Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 13D8C5CDB0ACD1E09BA66C580B84CCC7306A9D1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft Manifest number: 047F Signing time: Sun 19 Oct 2025 09:10:59 +0000 Manifest this update: Sun 19 Oct 2025 09:05:59 +0000 Manifest next update: Wed 22 Oct 2025 16:10:59 +0000 Files and hashes: 1: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: 6cKdkkd8yyxod3T1V9qHL0u2ZY2WDHtzS6KchBTtgME=) 2: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: LmeqzYeHbwqjRvKuIbroVaXCpVEz8bLJBtycTcCFJu4=) 3: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: g4MCHQFO3MQThoyM2TjwQb6nRcwAjTBYmahYDBr6bho=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 16:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d8:c5:cd:b0:ac:d1:e0:9b:a6:6c:58:0b:84:cc:c7:30:6a:9d:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Oct 19 09:05:59 2025 GMT Not After : Oct 22 16:10:59 2025 GMT Subject: CN=E258B296821B0294D9647B944A931D8D6FFCA3D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:05:3a:4e:1a:2c:19:66:9b:bb:24:ab:54:2e: aa:a1:70:44:7c:51:1e:2a:84:bf:4c:62:f3:08:4b: d1:ab:cc:7c:54:1e:14:9b:2c:85:bc:8f:18:8a:c3: 74:1a:f5:82:e6:a1:09:f9:95:40:4c:8a:bc:58:6a: 08:21:6c:64:d8:df:ba:d8:ed:61:99:f6:53:11:0c: ec:02:2a:34:e2:12:46:b7:ff:83:81:fb:0b:20:14: 3b:3c:15:de:ca:1e:8e:76:e5:93:da:60:1e:d8:53: 99:d9:8f:29:d4:3c:b8:24:20:f9:46:b1:67:66:bc: 9a:37:e4:5e:29:6b:b9:de:ef:5e:b6:74:ee:d7:4a: 10:69:42:1e:87:49:78:d4:15:02:4d:a6:b7:2e:63: 59:2b:60:2b:de:fd:b8:e3:4a:50:30:cd:15:8c:2c: 13:a3:b7:70:0b:94:95:27:74:cc:3f:9e:d3:2d:42: 71:e3:52:ea:b6:6c:1e:d5:75:4a:d8:5e:b8:16:15: 2d:9c:98:02:3c:9c:b0:e4:f9:fc:b0:e5:c0:db:1d: 68:eb:2a:46:1e:a1:df:30:92:e1:ca:47:4c:65:b9: c5:2f:36:03:62:81:ec:7a:cf:c3:4f:b0:78:4d:b5: a8:8e:51:e3:61:7b:9e:09:d4:92:b8:ff:a9:08:b4: 32:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:58:B2:96:82:1B:02:94:D9:64:7B:94:4A:93:1D:8D:6F:FC:A3:D5 X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:1c:29:eb:8d:c9:3c:77:df:e9:f1:6a:ab:4f:90:b8:65:45: 58:e0:29:95:ae:7d:81:1a:e6:af:a4:71:56:8b:56:38:6b:d2: ce:3b:1c:4b:98:c5:87:ca:8e:75:d2:0f:d2:ea:4a:60:45:bb: 5a:23:cc:2c:9e:00:2a:50:bc:89:60:8f:28:93:7c:85:fa:f4: 73:08:89:0d:f2:19:4b:47:04:c6:09:a0:1a:fa:58:b1:d4:23: ad:ee:d7:46:79:3b:ab:c2:d1:b2:62:2d:03:43:8a:c7:7b:d1: 48:e6:5b:f9:61:b9:86:8e:9a:d9:bd:e9:e2:b1:12:1b:55:c4: da:b4:ab:4d:6b:33:dd:7a:9d:cd:35:86:6f:71:ce:9e:01:de: 37:38:70:50:5b:ff:3a:dc:6f:fe:99:0a:07:d5:bd:d6:e7:8e: 17:39:38:a4:d5:5c:46:d8:67:60:f6:8e:04:11:e4:f2:5e:b4: a1:62:ea:6f:7f:e5:76:91:a7:6b:a3:ed:f5:a5:ac:0e:da:58: 9a:17:3e:b2:32:d6:29:e3:52:92:64:5f:37:44:66:f2:b4:60: 80:49:b9:c4:ef:4b:e9:de:1c:a5:67:5a:1d:c0:9c:9c:f1:bd: be:fd:bb:fb:01:6a:d8:11:c8:da:ab:66:17:ad:d5:d4:1f:83: ce:fc:c8:1d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE9jFzbCs0eCbpmxYC4TMxzBqnR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTEwMTkwOTA1NTlaFw0yNTEwMjIxNjEwNTlaMDMxMTAvBgNV BAMTKEUyNThCMjk2ODIxQjAyOTREOTY0N0I5NDRBOTMxRDhENkZGQ0EzRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJBTpOGiwZZpu7JKtULqqhcER8 UR4qhL9MYvMIS9GrzHxUHhSbLIW8jxiKw3Qa9YLmoQn5lUBMirxYagghbGTY37rY 7WGZ9lMRDOwCKjTiEka3/4OB+wsgFDs8Fd7KHo525ZPaYB7YU5nZjynUPLgkIPlG sWdmvJo35F4pa7ne7162dO7XShBpQh6HSXjUFQJNprcuY1krYCve/bjjSlAwzRWM LBOjt3ALlJUndMw/ntMtQnHjUuq2bB7VdUrYXrgWFS2cmAI8nLDk+fyw5cDbHWjr KkYeod8wkuHKR0xlucUvNgNigex6z8NPsHhNtaiOUeNhe54J1JK4/6kItDKpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4liyloIbApTZZHuUSpMdjW/8o9UwHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2Y0MDhlNDQtM2U5Yy00NWU1LWJj YTQtNWRmYmQ0YjI3MTMwLzAvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4 NEE1QUFFQUFGOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHQcKeuNyTx33+nxaqtPkLhlRVjgKZWufYEa 5q+kcVaLVjhr0s47HEuYxYfKjnXSD9LqSmBFu1ojzCyeACpQvIlgjyiTfIX69HMI iQ3yGUtHBMYJoBr6WLHUI63u10Z5O6vC0bJiLQNDisd70UjmW/lhuYaOmtm96eKx EhtVxNq0q01rM916nc01hm9xzp4B3jc4cFBb/zrcb/6ZCgfVvdbnjhc5OKTVXEbY Z2D2jgQR5PJetKFi6m9/5XaRp2uj7fWlrA7aWJoXPrIy1injUpJkXzdEZvK0YIBJ ucTvS+neHKVnWh3AnJzxvb79u/sBatgRyNqrZhet1dQfg878yB0= -----END CERTIFICATE-----Generated at Mon Oct 20 18:19:36 2025 by rpki-client