$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft (raw, json) Hash identifier: HEJpnKqcz/FT+zddedj6ZOkpTfcQaw+SpFCpoYNO670= Subject key identifier: 2C:0A:59:BB:48:8A:DD:D2:BF:BF:9B:28:DE:B0:A1:25:EF:FF:8C:CF Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 5B1FD11CF607F6CCE8F4A8057B00593716379759 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft Manifest number: 019E Signing time: Sun 19 Oct 2025 23:01:27 +0000 Manifest this update: Sun 19 Oct 2025 22:56:27 +0000 Manifest next update: Thu 23 Oct 2025 04:28:27 +0000 Files and hashes: 1: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl (hash: itr+Z02WjoOfcmA23JMvQWjuQUAcMaXLAP0EVXl7I7g=) 2: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (hash: wzb3XBaqsWwxrRVk4X/B9M9lBaxhMB40Ug9owyKd8Yw=) 3: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (hash: WdwAhrLb01WctAevsLo2E5F0+guZcHnuWIL6/QTKVQY=) 4: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (hash: MueUJKcGkwue3xJukPLYM+05PMMpQl2v+Pz0FDXtNcM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 04:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1f:d1:1c:f6:07:f6:cc:e8:f4:a8:05:7b:00:59:37:16:37:97:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Oct 19 22:56:27 2025 GMT Not After : Oct 23 04:28:27 2025 GMT Subject: CN=2C0A59BB488ADDD2BFBF9B28DEB0A125EFFF8CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:75:96:b1:e1:61:bf:31:ff:71:ce:ce:e3:4e: a8:34:79:11:14:37:58:69:19:b7:19:38:f1:a9:c5: 70:4a:54:97:8b:93:1c:90:59:1d:9d:35:13:47:5a: bb:2b:e9:ea:24:61:37:9b:f7:db:b8:8a:9f:57:37: b2:94:b8:df:ed:fc:be:0c:7f:c1:21:d7:0a:e3:ab: bd:43:2d:f8:a3:87:43:b7:8b:cf:c4:b8:03:81:c1: 40:a3:f8:3a:07:0f:51:1a:de:9f:3c:11:9a:c7:f2: 7c:a3:2b:f0:9d:cd:39:e9:74:40:34:ed:38:c4:64: 4f:a6:4e:60:c3:04:6a:ef:b8:24:be:0d:b1:4f:1b: bc:ad:bc:80:c1:30:27:bc:38:9d:4f:a2:6c:cc:dc: 05:25:cc:28:b8:e8:c4:9d:a3:ed:e5:96:16:9c:28: fb:43:1f:45:d0:83:c6:fd:3c:93:49:bb:38:ee:7f: 33:3a:38:fd:eb:9b:7f:d2:c7:fe:e9:fe:6e:5d:f4: cb:fe:6c:1c:a3:cc:99:17:e3:9f:de:aa:71:12:a5: 57:25:a7:9a:da:e2:ec:10:5a:a4:e4:d2:4b:ea:34: 40:33:d2:3d:7a:98:b0:87:eb:e8:af:b8:81:90:2a: d6:ad:9c:81:a3:29:c7:ad:98:d4:d3:d2:5f:91:75: 7c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0A:59:BB:48:8A:DD:D2:BF:BF:9B:28:DE:B0:A1:25:EF:FF:8C:CF X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:12:b4:5a:28:69:fa:1b:8a:2d:c7:24:8d:f7:dc:76:d1:ea: cb:7a:c5:d2:8f:84:47:3d:96:f4:81:c5:de:89:2e:0d:e3:13: ab:da:0b:dc:8d:89:ae:0e:ce:02:eb:99:43:41:ab:44:1e:ca: c0:14:2a:c1:75:c9:ae:37:7c:4a:c4:01:5a:fb:4f:32:7f:c2: 92:34:b0:9e:c7:ef:93:bf:68:46:7e:d8:be:c5:1f:17:7d:b5: 58:33:f4:60:12:5b:c4:3d:5e:b6:29:b2:fd:95:b8:f5:3d:98: ac:0d:86:04:30:87:56:a4:5e:e5:d5:9c:9c:ef:ff:f3:a5:86: 6c:51:b0:03:e9:aa:f2:57:e9:48:69:8c:17:f4:80:96:c0:ce: 9f:cc:79:9c:41:60:8c:ba:25:b0:2f:3f:3e:a8:09:ae:25:49: 99:33:78:ab:95:13:32:2f:5b:27:d8:13:f1:ad:c6:41:18:c8: 65:83:90:31:56:a8:d1:f5:6f:7b:24:6c:8a:b9:65:25:d6:45: 63:66:9d:04:6f:c2:4b:84:de:25:c0:c3:07:c9:f4:70:f6:a3: cd:75:4d:44:b2:11:75:47:77:c0:26:48:a2:d6:32:cf:78:fa: 7b:75:66:43:e8:e3:8c:4b:ef:18:b2:b9:30:96:26:b9:81:ee: 7c:ab:6a:d5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWx/RHPYH9szo9KgFewBZNxY3l1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTEwMTkyMjU2MjdaFw0yNTEwMjMwNDI4MjdaMDMxMTAvBgNV BAMTKDJDMEE1OUJCNDg4QURERDJCRkJGOUIyOERFQjBBMTI1RUZGRjhDQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOdZax4WG/Mf9xzs7jTqg0eREU N1hpGbcZOPGpxXBKVJeLkxyQWR2dNRNHWrsr6eokYTeb99u4ip9XN7KUuN/t/L4M f8Eh1wrjq71DLfijh0O3i8/EuAOBwUCj+DoHD1Ea3p88EZrH8nyjK/CdzTnpdEA0 7TjEZE+mTmDDBGrvuCS+DbFPG7ytvIDBMCe8OJ1PomzM3AUlzCi46MSdo+3llhac KPtDH0XQg8b9PJNJuzjufzM6OP3rm3/Sx/7p/m5d9Mv+bByjzJkX45/eqnESpVcl p5ra4uwQWqTk0kvqNEAz0j16mLCH6+ivuIGQKtatnIGjKcetmNTT0l+RdXyRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULApZu0iK3dK/v5so3rChJe//jM8wHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGE4NzA2NGItNWYyNy00MjcwLTkw ZTQtOTlmNDNhZTg0ZGI3LzAvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJC OUY0RTRBMkMyNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABwStFooafobii3HJI333HbR6st6xdKPhEc9 lvSBxd6JLg3jE6vaC9yNia4OzgLrmUNBq0QeysAUKsF1ya43fErEAVr7TzJ/wpI0 sJ7H75O/aEZ+2L7FHxd9tVgz9GASW8Q9XrYpsv2VuPU9mKwNhgQwh1akXuXVnJzv //OlhmxRsAPpqvJX6UhpjBf0gJbAzp/MeZxBYIy6JbAvPz6oCa4lSZkzeKuVEzIv WyfYE/GtxkEYyGWDkDFWqNH1b3skbIq5ZSXWRWNmnQRvwkuE3iXAwwfJ9HD2o811 TUSyEXVHd8AmSKLWMs94+nt1ZkPo44xL7xiyuTCWJrmB7nyratU= -----END CERTIFICATE-----Generated at Mon Oct 20 10:36:40 2025 by rpki-client