$ rpki-client -vvf repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft File: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft (raw, json) Hash identifier: lhF/5dd6XAXcL1ObJt+1F9MthS1oZBCY/TyDpapC3Qc= Subject key identifier: 7A:96:A2:B9:ED:6A:BF:EB:B0:C5:58:5C:55:CA:F5:5B:B7:CC:1D:38 Authority key identifier: D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 Certificate issuer: /CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Certificate serial: 751F556F14FB5C333138B80DC32DBBBD39401B74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft Manifest number: 82 Signing time: Sun 19 Oct 2025 03:11:58 +0000 Manifest this update: Sun 19 Oct 2025 03:06:58 +0000 Manifest next update: Wed 22 Oct 2025 12:31:58 +0000 Files and hashes: 1: 3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa (hash: mtxUuoBWjsUwdIjXZpNi9bHZl2ZJW5TeiOYPZBEVbaM=) 2: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl (hash: 9WFP+DF8OW4f3aSt+Uf7LHmmhzZzYiBU8XVhXKs/Cyo=) 3: 3135372e32302e3132312e302f32342d3234203d3e20313532343133.roa (hash: J+HA2voObMJkLTe14IHtv1+pBD6tmTWcTW3nQp6DPrc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 12:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:1f:55:6f:14:fb:5c:33:31:38:b8:0d:c3:2d:bb:bd:39:40:1b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Validity Not Before: Oct 19 03:06:58 2025 GMT Not After : Oct 22 12:31:58 2025 GMT Subject: CN=7A96A2B9ED6ABFEBB0C5585C55CAF55BB7CC1D38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:5b:4d:d0:5f:81:da:a7:95:a4:ff:25:73: 5e:f7:bd:24:85:25:6c:c7:92:38:e2:03:9e:b7:11: c7:ed:b0:9d:52:45:bb:3c:f6:f3:19:96:ab:ba:1b: 4f:7f:80:61:a1:f6:dc:6b:90:cc:bf:de:72:6f:e4: 78:ce:f6:cd:2a:f4:37:17:f0:d2:48:03:0a:59:37: 09:1d:c6:6e:ea:09:c5:7e:58:1e:36:a1:49:93:f0: f3:99:2b:55:17:3a:26:49:31:06:8a:4a:b4:78:7e: 1a:52:07:0b:76:17:11:35:b2:9d:8f:e9:fd:2b:94: 09:5b:eb:dd:0a:92:b3:5c:1d:67:72:55:64:99:84: 61:5d:b7:7d:61:f3:07:61:29:fd:f8:e0:c8:46:df: 8f:00:d6:03:67:22:ca:71:c0:be:c7:2f:fb:86:b4: 3c:27:63:3d:37:42:0d:6a:09:21:d1:43:3e:54:27: a5:71:f9:d7:d3:c6:bf:41:59:b5:68:ea:c4:32:0f: 02:09:9b:e2:7f:55:9e:04:d4:c4:d0:68:53:3f:6c: 23:2c:b7:90:d9:01:95:b9:ac:6b:1f:33:ae:05:a7: 58:11:a4:39:f1:7f:2d:23:bb:c7:da:0f:47:b2:51: af:d1:61:f1:61:93:03:e8:c1:62:c2:14:c8:9d:e3: ad:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:96:A2:B9:ED:6A:BF:EB:B0:C5:58:5C:55:CA:F5:5B:B7:CC:1D:38 X509v3 Authority Key Identifier: keyid:D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a0:91:7e:15:d1:63:f3:aa:f3:16:dd:f4:18:58:b1:81:31: 3f:2f:8f:da:b1:0c:cc:6d:38:61:c2:12:2b:82:87:a5:9e:84: 8d:b5:35:61:f9:53:f7:30:29:59:7b:7f:29:30:6a:1f:bc:08: da:4a:20:c9:01:78:14:c7:f0:1a:32:2a:fe:db:ef:4a:c7:e6: 00:3d:90:58:30:2f:e0:66:80:da:80:0a:05:d2:91:63:70:3e: 46:37:a0:79:31:71:ed:ac:f0:1b:f0:65:ce:62:75:3f:2f:18: 75:09:aa:be:0e:75:46:6d:9d:2b:98:e5:8c:e4:81:60:56:30: 95:13:aa:4b:8c:9e:08:7a:b0:cc:10:a7:2c:38:e4:ec:01:3e: 2e:e3:1e:fa:6f:33:3a:39:41:d2:c0:46:1e:a9:9b:59:37:67: dc:f8:df:69:03:27:de:58:84:fa:d8:34:45:8e:42:7f:7c:1a: 78:0e:cf:ea:65:76:0b:b4:6a:09:bf:26:df:a5:29:1e:cf:71: 0b:5f:63:17:cf:28:c2:24:e5:88:1b:dc:5a:0f:af:9f:f5:78: 78:70:56:b2:dc:f1:26:56:9e:91:ce:49:50:d6:42:aa:0b:b8: d7:8d:7a:54:51:c3:3e:07:8b:11:26:36:94:1d:c6:ba:f6:a3: 82:65:6b:47 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdR9VbxT7XDMxOLgNwy27vTlAG3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVB Q0YzMjM2ODAeFw0yNTEwMTkwMzA2NThaFw0yNTEwMjIxMjMxNThaMDMxMTAvBgNV BAMTKDdBOTZBMkI5RUQ2QUJGRUJCMEM1NTg1QzU1Q0FGNTVCQjdDQzFEMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH3VtN0F+B2qeVpP8lc173vSSF JWzHkjjiA563EcftsJ1SRbs89vMZlqu6G09/gGGh9txrkMy/3nJv5HjO9s0q9DcX 8NJIAwpZNwkdxm7qCcV+WB42oUmT8POZK1UXOiZJMQaKSrR4fhpSBwt2FxE1sp2P 6f0rlAlb690KkrNcHWdyVWSZhGFdt31h8wdhKf344MhG348A1gNnIspxwL7HL/uG tDwnYz03Qg1qCSHRQz5UJ6Vx+dfTxr9BWbVo6sQyDwIJm+J/VZ4E1MTQaFM/bCMs t5DZAZW5rGsfM64Fp1gRpDnxfy0ju8faD0eyUa/RYfFhkwPowWLCFMid460vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUepaiue1qv+uwxVhcVcr1W7fMHTgwHwYDVR0j BBgwFoAU14/lrocO8iH9lXdc/q/q1azzI2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjQ0MjYzYS04ZWUyLTRlZWMtYTgxMC01NzMzY2NhZjUxZTMvMC9ENzhGRTVBRTg3 MEVGMjIxRkQ5NTc3NUNGRUFGRUFENUFDRjMyMzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVBQ0Yz MjM2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDY0NDI2M2EtOGVlMi00ZWVjLWE4 MTAtNTczM2NjYWY1MWUzLzAvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVB RDVBQ0YzMjM2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG2gkX4V0WPzqvMW3fQYWLGBMT8vj9qxDMxt OGHCEiuCh6WehI21NWH5U/cwKVl7fykwah+8CNpKIMkBeBTH8BoyKv7b70rH5gA9 kFgwL+BmgNqACgXSkWNwPkY3oHkxce2s8BvwZc5idT8vGHUJqr4OdUZtnSuY5Yzk gWBWMJUTqkuMngh6sMwQpyw45OwBPi7jHvpvMzo5QdLARh6pm1k3Z9z432kDJ95Y hPrYNEWOQn98GngOz+pldgu0agm/Jt+lKR7PcQtfYxfPKMIk5Ygb3FoPr5/1eHhw VrLc8SZWnpHOSVDWQqoLuNeNelRRwz4HixEmNpQdxrr2o4Jla0c= -----END CERTIFICATE-----Generated at Mon Oct 20 19:07:00 2025 by rpki-client