$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft File: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft (raw, json) Hash identifier: J4x2UeFh6Ke6Qd8LMHKShELgKWNn+fieFqUxFdim16g= Subject key identifier: C6:2D:F3:49:4E:7A:15:94:AE:35:CF:64:DE:1A:99:48:9D:C9:57:40 Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Certificate serial: 2D5AA1013FACEAD520A241A601939E852C871D44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft Manifest number: 0122 Signing time: Mon 20 Oct 2025 14:41:17 +0000 Manifest this update: Mon 20 Oct 2025 14:36:17 +0000 Manifest next update: Thu 23 Oct 2025 23:50:17 +0000 Files and hashes: 1: 3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa (hash: YbG5Gw9xgbijBTbp7E/AZR+gn02wD0TeW2SCv/sSqKI=) 2: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl (hash: O9Di+EFvKZrs7e/QLS+evsPTAGXQvUavze2SSNRmogU=) 3: 3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa (hash: NjJcmD+G+kiFwmmP8zS7heQcwBVqq18Sis+HXMvM+ZY=) 4: 3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa (hash: SdfVlvgb41TvQfFCAAr6Hvu/iM3n38wFz7a+3vMqJi4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:5a:a1:01:3f:ac:ea:d5:20:a2:41:a6:01:93:9e:85:2c:87:1d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Validity Not Before: Oct 20 14:36:17 2025 GMT Not After : Oct 23 23:50:17 2025 GMT Subject: CN=C62DF3494E7A1594AE35CF64DE1A99489DC95740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1b:88:32:3d:32:aa:2c:8a:d8:05:b8:b2:26: 5f:7c:59:73:9d:ee:ce:3e:db:5c:97:e3:cf:ec:aa: 0d:f9:ee:45:fe:c9:04:ef:96:ba:83:ef:9e:06:8e: dd:6b:1c:92:48:4e:5c:b2:6f:ee:3c:7c:a4:53:de: ef:d3:c7:95:ee:11:15:64:f7:30:ca:b0:d2:c0:01: 03:5a:9f:2f:58:68:cd:a4:2a:36:00:5d:c8:1a:26: 17:fb:c2:b1:31:2f:cc:6e:74:74:66:90:9f:66:b7: 87:dc:6b:08:94:70:1f:02:a3:78:c8:17:e3:dc:da: e2:e7:f2:e5:30:7f:77:28:ac:57:66:dc:31:dc:13: c6:dc:8b:b2:73:7e:81:3b:d9:03:02:42:ff:c1:ea: 9b:74:7a:de:67:94:df:40:c7:15:e7:6b:4b:44:77: fe:0a:2e:69:b4:48:2d:50:84:b3:68:95:d6:d3:7c: c9:82:ef:97:45:aa:51:ec:f8:13:c9:1b:ce:29:fd: 51:69:b3:1b:a4:a7:72:75:ff:11:10:30:e1:ca:39: b9:2e:ca:5c:9e:53:17:2b:26:f1:d2:8e:60:1b:71: 4b:f1:c2:8b:13:37:24:41:26:13:9e:fd:6e:d6:d8: 31:2a:63:19:00:9a:33:6a:dc:35:bb:b6:c6:4b:50: c0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2D:F3:49:4E:7A:15:94:AE:35:CF:64:DE:1A:99:48:9D:C9:57:40 X509v3 Authority Key Identifier: keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:35:1f:2c:2f:eb:2e:03:ad:b9:ec:4c:ea:ef:b1:26:51:f7: 6e:8e:47:ce:c0:1e:70:df:c5:13:4a:ac:42:54:c3:ff:9e:b7: 8c:67:cb:70:89:91:2d:34:e4:8e:1b:9a:ed:2a:4b:c2:cc:0a: a4:6c:f0:4d:e5:39:fe:a0:fd:b6:20:bf:1f:7d:b9:5d:54:99: 3a:85:79:18:86:a9:a1:42:65:2c:49:37:e4:48:d6:72:ff:f9: 2e:a0:b9:6b:f9:ad:c4:97:51:96:2c:d9:28:8d:72:e9:7f:71: 52:2f:9a:87:2b:83:60:56:ac:a9:04:64:11:7f:35:9f:f1:61: 8f:ac:58:5c:7e:f8:9d:0e:bf:6a:91:81:e8:0e:6f:f1:e6:fb: 86:f9:73:4c:a5:ba:eb:02:c8:28:fb:85:f2:82:30:38:11:4b: 7b:60:e7:b8:61:6d:6d:a7:c2:b9:c2:4a:01:3a:d2:88:94:93: 90:46:04:27:97:f7:b9:47:0e:6f:08:e7:2b:98:b9:a6:c9:de: e7:04:fa:39:9b:18:f9:b2:01:b9:c4:12:fb:d0:f5:1d:79:40: 6b:ee:da:58:ca:6f:1d:87:a6:59:1b:0b:7b:ea:57:17:54:3d: 7d:07:c3:fe:10:c6:d1:8a:15:bc:6b:2d:fb:a9:1c:a0:a4:33: ec:91:b5:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULVqhAT+s6tUgokGmAZOehSyHHUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3 MjM3OEJGMzAeFw0yNTEwMjAxNDM2MTdaFw0yNTEwMjMyMzUwMTdaMDMxMTAvBgNV BAMTKEM2MkRGMzQ5NEU3QTE1OTRBRTM1Q0Y2NERFMUE5OTQ4OURDOTU3NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGG4gyPTKqLIrYBbiyJl98WXOd 7s4+21yX48/sqg357kX+yQTvlrqD754Gjt1rHJJITlyyb+48fKRT3u/Tx5XuERVk 9zDKsNLAAQNany9YaM2kKjYAXcgaJhf7wrExL8xudHRmkJ9mt4fcawiUcB8Co3jI F+Pc2uLn8uUwf3corFdm3DHcE8bci7JzfoE72QMCQv/B6pt0et5nlN9AxxXna0tE d/4KLmm0SC1QhLNoldbTfMmC75dFqlHs+BPJG84p/VFpsxukp3J1/xEQMOHKObku ylyeUxcrJvHSjmAbcUvxwosTNyRBJhOe/W7W2DEqYxkAmjNq3DW7tsZLUMBBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxi3zSU56FZSuNc9k3hqZSJ3JV0AwHwYDVR0j BBgwFoAUPguVe1gtiu+ZpJxkSPmZPHI3i/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMC8zRTBCOTU3QjU4 MkQ4QUVGOTlBNDlDNjQ0OEY5OTkzQzcyMzc4QkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3MjM3 OEJGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGVkYzllNGYtODE4MC00MWQ2LWIw OGQtOGVlNWE4YTcwYTA1LzAvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5 M0M3MjM3OEJGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGM1Hywv6y4DrbnsTOrvsSZR926OR87AHnDf xRNKrEJUw/+et4xny3CJkS005I4bmu0qS8LMCqRs8E3lOf6g/bYgvx99uV1UmTqF eRiGqaFCZSxJN+RI1nL/+S6guWv5rcSXUZYs2SiNcul/cVIvmocrg2BWrKkEZBF/ NZ/xYY+sWFx++J0Ov2qRgegOb/Hm+4b5c0yluusCyCj7hfKCMDgRS3tg57hhbW2n wrnCSgE60oiUk5BGBCeX97lHDm8I5yuYuabJ3ucE+jmbGPmyAbnEEvvQ9R15QGvu 2ljKbx2HplkbC3vqVxdUPX0Hw/4QxtGKFbxrLfupHKCkM+yRtWg= -----END CERTIFICATE-----Generated at Mon Oct 20 19:43:48 2025 by rpki-client