$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: zTUoFM4099jJjW6Zwj1xUNWKDmR3p72KR8DlSC9Oit8= Subject key identifier: DD:22:CA:EA:48:20:C8:85:98:6A:43:07:30:C7:5E:FD:7D:68:B3:C1 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 71E18EA6377C8DB40F1C4F25A7BD7180D8BA8449 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 02D7 Signing time: Mon 20 Oct 2025 01:41:14 +0000 Manifest this update: Mon 20 Oct 2025 01:36:14 +0000 Manifest next update: Thu 23 Oct 2025 07:55:14 +0000 Files and hashes: 1: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: new5KvchoGrRwM0sO02auLZjGK8xwWmtxI6KqBQtN5Q=) 2: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) 3: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) 4: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e1:8e:a6:37:7c:8d:b4:0f:1c:4f:25:a7:bd:71:80:d8:ba:84:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Oct 20 01:36:14 2025 GMT Not After : Oct 23 07:55:14 2025 GMT Subject: CN=DD22CAEA4820C885986A430730C75EFD7D68B3C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:a6:60:51:f9:ff:a9:bd:ed:04:56:6e:45: 6c:b0:3a:6f:2d:46:c8:e8:66:df:23:77:79:fd:c9: ca:cb:ae:ec:13:c6:93:f8:b7:82:d7:dd:69:59:7d: ab:3d:80:39:02:5d:4a:a7:52:55:7b:d9:8d:d8:aa: fe:24:fd:be:79:82:a7:f9:d6:89:fe:32:67:03:b1: d4:ed:b0:45:f0:d9:6a:9c:0e:cb:65:e4:da:8a:86: 4f:b2:06:93:8c:55:3a:c9:b9:80:fa:c9:5c:3b:d0: ac:fb:fe:42:7f:73:67:fc:13:71:ef:80:d4:aa:af: c8:75:7d:1b:8c:8f:59:16:85:72:18:20:82:f0:f4: d3:32:18:39:73:1c:e6:9e:cf:99:95:20:55:10:db: c6:81:7c:02:66:54:05:c4:39:3f:4e:82:84:e2:b1: 38:24:3f:bc:2c:72:e8:f4:06:e4:89:ea:3b:b3:a7: 29:57:3b:16:1b:3a:c2:3a:8f:5e:21:f2:f0:fd:ff: d8:a5:48:1a:ab:35:bb:ef:cd:19:8d:b0:c2:0a:18: f9:75:57:69:c2:28:67:16:d6:58:c2:35:b8:07:1e: 7e:09:4f:45:43:97:3d:d3:b4:a3:d5:39:7e:7d:59: b7:9a:c4:c1:06:bc:af:42:db:d3:8c:cf:28:4f:fd: 59:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:22:CA:EA:48:20:C8:85:98:6A:43:07:30:C7:5E:FD:7D:68:B3:C1 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:71:eb:55:e2:9d:79:a9:8a:e1:99:87:6f:2f:6d:a5:16:c1: 3e:78:7a:48:9a:48:42:d3:01:7d:b4:60:5e:92:90:9c:12:81: ba:ba:ff:9d:df:ad:9f:ae:31:60:74:d8:d1:60:29:9a:e2:cc: 75:8e:37:b5:d9:b0:51:97:c8:cf:0d:44:70:89:86:b4:0d:6e: b0:de:4e:0a:d1:e7:eb:23:c6:6f:34:c5:00:26:e5:95:1b:2e: e2:54:01:cc:87:97:48:16:70:f6:f4:bc:ec:f2:7b:d8:75:ff: 1b:e6:4d:8b:62:04:d9:14:be:5c:ff:b3:5b:93:02:46:4c:1c: ab:95:e2:b8:8e:19:55:13:26:7e:24:5a:c9:57:f7:4c:ec:ff: eb:b9:9d:12:ad:2f:3a:13:76:a1:74:6e:8e:2a:4e:4d:00:86: 70:3b:fb:6c:86:67:72:23:d4:0d:76:8a:93:8c:50:58:59:1c: fa:0a:2a:85:a7:f5:67:72:29:2c:40:64:1b:d5:6f:d5:fa:50: c2:cf:92:6d:24:51:84:d9:2b:e3:d7:8d:8e:7c:c7:34:e9:7a: 08:e1:16:f3:6c:34:75:84:f3:55:01:9b:3f:9f:06:fe:45:41: cf:01:b1:2b:5c:eb:5c:1b:26:20:62:fb:7c:97:24:cd:45:75: 56:89:04:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUceGOpjd8jbQPHE8lp71xgNi6hEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTEwMjAwMTM2MTRaFw0yNTEwMjMwNzU1MTRaMDMxMTAvBgNV BAMTKEREMjJDQUVBNDgyMEM4ODU5ODZBNDMwNzMwQzc1RUZEN0Q2OEIzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGE6ZgUfn/qb3tBFZuRWywOm8t RsjoZt8jd3n9ycrLruwTxpP4t4LX3WlZfas9gDkCXUqnUlV72Y3Yqv4k/b55gqf5 1on+MmcDsdTtsEXw2WqcDstl5NqKhk+yBpOMVTrJuYD6yVw70Kz7/kJ/c2f8E3Hv gNSqr8h1fRuMj1kWhXIYIILw9NMyGDlzHOaez5mVIFUQ28aBfAJmVAXEOT9OgoTi sTgkP7wscuj0BuSJ6juzpylXOxYbOsI6j14h8vD9/9ilSBqrNbvvzRmNsMIKGPl1 V2nCKGcW1ljCNbgHHn4JT0VDlz3TtKPVOX59WbeaxMEGvK9C29OMzyhP/VnjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3SLK6kggyIWYakMHMMde/X1os8EwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE9x61XinXmpiuGZh28vbaUWwT54ekiaSELT AX20YF6SkJwSgbq6/53frZ+uMWB02NFgKZrizHWON7XZsFGXyM8NRHCJhrQNbrDe TgrR5+sjxm80xQAm5ZUbLuJUAcyHl0gWcPb0vOzye9h1/xvmTYtiBNkUvlz/s1uT AkZMHKuV4riOGVUTJn4kWslX90zs/+u5nRKtLzoTdqF0bo4qTk0AhnA7+2yGZ3Ij 1A12ipOMUFhZHPoKKoWn9WdyKSxAZBvVb9X6UMLPkm0kUYTZK+PXjY58xzTpegjh FvNsNHWE81UBmz+fBv5FQc8BsStc61wbJiBi+3yXJM1FdVaJBFE= -----END CERTIFICATE-----Generated at Mon Oct 20 09:44:23 2025 by rpki-client