$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft File: 3703AC4154F05B1E642F31DEF71A238407E82D59.mft (raw, json) Hash identifier: WnHLHb4YuLgTBcpL2Bt1wqD9OphYsmmOaq5axexz/Ro= Subject key identifier: 0E:B3:42:07:7D:FD:13:84:B6:44:C7:38:5D:33:2B:7F:2E:F8:D3:F1 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 32ECBB2A79381D455020B602B76685F0FC074161 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft Manifest number: 04C0 Signing time: Sun 19 Oct 2025 13:30:51 +0000 Manifest this update: Sun 19 Oct 2025 13:25:51 +0000 Manifest next update: Thu 23 Oct 2025 00:46:51 +0000 Files and hashes: 1: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (hash: RNQYxKN0Nubn/ygqO8rH37j/P4lI+9FQ1kXn5iYtC0w=) 2: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (hash: hTOnvJY78aaZJU0V/ewFlrDahpGLWlt1kXeTr26Q6jE=) 3: 3703AC4154F05B1E642F31DEF71A238407E82D59.crl (hash: jisBvnYbkmbTVYVtRbpn92pHYBZIdUHmWYHBx/wN4x0=) 4: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (hash: /26G7paj90BYpA/7obbRkQ0e5IpXJm+V8bRm2IMmu/M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ec:bb:2a:79:38:1d:45:50:20:b6:02:b7:66:85:f0:fc:07:41:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Oct 19 13:25:51 2025 GMT Not After : Oct 23 00:46:51 2025 GMT Subject: CN=0EB342077DFD1384B644C7385D332B7F2EF8D3F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8e:f7:e9:2e:ec:33:aa:31:71:ac:af:10:b3: b0:79:66:91:e2:f5:cc:e8:ca:6c:23:d4:a5:ba:f8: 85:20:32:be:62:9e:1a:4e:2d:40:be:13:5a:d9:c9: f1:f2:14:d1:0f:02:c8:4c:dd:cd:cd:4a:04:ab:af: cf:74:c7:6a:06:92:dd:7d:f4:f9:ab:3d:57:a6:14: 3f:25:fd:46:fb:2e:3a:34:be:e5:dc:92:71:1f:17: 50:95:51:2f:56:41:93:73:8d:59:b3:48:5c:44:5e: 89:d4:13:22:dc:c1:6f:a5:bc:51:a8:ab:0c:14:67: 0a:38:19:c3:8f:28:be:6f:14:90:c1:30:e3:92:45: da:60:5a:ab:2d:af:eb:de:4d:58:ea:b9:68:62:91: 8c:18:9f:6a:3d:07:b4:2c:07:03:ef:46:ab:f1:82: e5:be:4b:6e:39:90:ce:e8:6b:b9:19:9b:c8:93:f2: 71:8d:db:b1:96:a5:d6:90:63:5c:cd:dd:61:ea:81: 16:7a:70:55:34:30:dc:11:32:f0:65:c7:db:7a:9b: a0:77:7a:be:ec:a3:27:5b:b3:c4:f6:1e:65:84:97: 81:a4:ea:f3:4c:36:34:ce:77:0c:07:c5:35:c9:df: 00:1d:f1:ef:ab:06:32:b1:7d:63:5a:e7:5a:9f:e2: e0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B3:42:07:7D:FD:13:84:B6:44:C7:38:5D:33:2B:7F:2E:F8:D3:F1 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:f3:b9:e3:e0:a4:62:cb:8c:ab:c1:63:8e:ca:e3:be:46:71: 70:1b:9f:6a:25:36:15:08:78:7b:91:32:34:ec:36:ca:a0:39: 77:eb:6f:2a:da:b0:20:a1:5c:27:a4:33:23:9d:20:9c:78:70: 51:b8:f2:3d:b6:86:50:70:0f:3d:01:d0:3e:c5:2b:20:e2:1a: 97:6c:d0:93:c3:90:19:36:1f:70:cf:36:f1:8d:8a:bd:f7:c3: 6e:c5:02:ee:19:15:73:51:34:e8:19:59:3f:bc:e8:cb:a5:e2: cd:73:bb:2c:93:54:82:5e:8f:97:01:a0:8c:7d:5f:7f:ce:07: 3c:41:6b:26:f3:f3:f6:a4:a0:10:a1:a9:97:02:75:68:57:fb: d2:49:68:8d:5a:74:f9:88:d0:53:72:46:46:e5:35:29:f5:32: 66:f9:01:d5:9e:bb:81:22:cc:e6:5b:99:87:ea:5d:8f:1a:91: fe:37:4c:e5:dd:df:f7:d2:95:13:0d:c5:de:e0:97:10:d0:b1: ba:db:de:d0:e9:46:4a:9f:53:40:fd:3b:58:5e:ec:8d:24:ca: c8:8f:29:69:db:66:42:69:bf:22:d2:fd:f9:8a:66:7e:06:6a: 85:5d:61:59:03:31:6e:4c:c3:ec:2b:ae:e8:ca:f3:ca:c3:eb: d0:e4:5d:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMuy7Knk4HUVQILYCt2aF8PwHQWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTEwMTkxMzI1NTFaFw0yNTEwMjMwMDQ2NTFaMDMxMTAvBgNV BAMTKDBFQjM0MjA3N0RGRDEzODRCNjQ0QzczODVEMzMyQjdGMkVGOEQzRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCojvfpLuwzqjFxrK8Qs7B5ZpHi 9czoymwj1KW6+IUgMr5inhpOLUC+E1rZyfHyFNEPAshM3c3NSgSrr890x2oGkt19 9PmrPVemFD8l/Ub7Ljo0vuXcknEfF1CVUS9WQZNzjVmzSFxEXonUEyLcwW+lvFGo qwwUZwo4GcOPKL5vFJDBMOOSRdpgWqstr+veTVjquWhikYwYn2o9B7QsBwPvRqvx guW+S245kM7oa7kZm8iT8nGN27GWpdaQY1zN3WHqgRZ6cFU0MNwRMvBlx9t6m6B3 er7soydbs8T2HmWEl4Gk6vNMNjTOdwwHxTXJ3wAd8e+rBjKxfWNa51qf4uBBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDrNCB339E4S2RMc4XTMrfy740/EwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGEwOTlhZGYtN2UxMi00ZTgzLTk1 YzItZGQ3Zjc3NDk0Nzg4LzAvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIz ODQwN0U4MkQ1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAELzuePgpGLLjKvBY47K475GcXAbn2olNhUI eHuRMjTsNsqgOXfrbyrasCChXCekMyOdIJx4cFG48j22hlBwDz0B0D7FKyDiGpds 0JPDkBk2H3DPNvGNir33w27FAu4ZFXNRNOgZWT+86Mul4s1zuyyTVIJej5cBoIx9 X3/OBzxBaybz8/akoBChqZcCdWhX+9JJaI1adPmI0FNyRkblNSn1Mmb5AdWeu4Ei zOZbmYfqXY8akf43TOXd3/fSlRMNxd7glxDQsbrb3tDpRkqfU0D9O1he7I0kysiP KWnbZkJpvyLS/fmKZn4GaoVdYVkDMW5Mw+wrrujK88rD69DkXeU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:00 2025 by rpki-client