$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: aKCOE1CD1M1wSyiOe7kPiJNokDQURk5nfYopcfcDkuI= Subject key identifier: 22:1B:C1:F3:EB:C3:2D:59:7A:1B:9F:35:4E:8F:89:7C:FB:0D:A7:80 Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 2E1524F641BA50A103CE13A87964ED771C61DBFF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 0216 Signing time: Sat 18 Oct 2025 20:51:21 +0000 Manifest this update: Sat 18 Oct 2025 20:46:21 +0000 Manifest next update: Wed 22 Oct 2025 01:58:21 +0000 Files and hashes: 1: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY=) 2: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s=) 3: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: oO8FICmo2tJyfvuHI43n0T6xmqp8EhbC/8hTxM+XE80=) 4: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: FK++k16W5o1G1ymHbgbWCr22LclnvM/8CkDyIWrtSXU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:15:24:f6:41:ba:50:a1:03:ce:13:a8:79:64:ed:77:1c:61:db:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Oct 18 20:46:21 2025 GMT Not After : Oct 22 01:58:21 2025 GMT Subject: CN=221BC1F3EBC32D597A1B9F354E8F897CFB0DA780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:43:37:b7:bd:44:88:1f:d5:c0:d1:54:36:98: 4e:2a:f0:37:68:be:e6:0c:24:e6:b8:4b:48:cb:a4: ee:cc:87:21:97:b7:e3:c3:86:bb:f3:4c:42:4d:7a: a5:6c:9a:91:93:6a:c0:cf:5e:8e:0a:85:56:ba:b6: 94:1c:e2:3a:8f:da:2c:64:d0:90:8a:a3:70:47:71: c3:f4:42:c9:85:29:29:f2:39:00:5e:e4:f6:29:67: 46:d7:a0:90:ce:5d:4d:2f:f8:38:b4:d2:67:6a:60: fc:2e:12:e7:ab:6e:57:68:14:c2:51:af:fb:69:2c: 52:1e:5a:e9:2a:e8:d7:3f:44:8e:08:ab:fc:9f:a6: 0f:b9:ac:47:b5:4d:a1:05:cb:05:27:ff:cd:bd:d0: 2f:91:53:11:88:cd:f3:aa:2e:f4:fa:07:71:e7:7d: 92:b0:b3:b8:4c:a5:09:48:a0:75:f4:7a:e7:4c:1e: c0:58:8d:25:ff:78:89:94:33:01:58:4a:f3:6e:ba: 65:a6:eb:83:7a:11:23:81:9c:eb:c6:de:a9:cd:27: 36:16:ef:0a:2b:3d:b5:16:9e:63:fc:09:90:f2:fb: 09:9e:9d:c4:c0:1e:90:ca:93:0e:25:9c:b9:bc:d1: e5:85:b8:5f:95:8f:2a:51:a1:89:50:73:c4:54:d4: ed:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1B:C1:F3:EB:C3:2D:59:7A:1B:9F:35:4E:8F:89:7C:FB:0D:A7:80 X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:5a:a1:e8:6b:ba:80:d4:7c:a8:fd:95:b3:f6:eb:14:01:a1: 0a:70:5e:ed:ac:88:90:71:1a:f5:86:96:48:06:9d:97:32:fa: 3b:bb:96:a7:2e:6a:57:9d:5c:bd:05:a9:ff:e4:4e:4d:d8:d2: cd:1d:98:7e:63:6a:68:7d:80:6c:0d:2d:e9:aa:ca:f1:4a:7c: 49:02:f2:2c:6c:d9:0c:c1:b6:44:e3:f0:d1:4f:eb:3a:36:c5: 79:89:3e:bf:a0:ee:10:5e:e9:da:8c:c2:5d:43:f6:aa:1b:e9: a7:ad:3a:8a:3d:d0:50:04:7f:aa:67:e6:45:58:b1:79:30:e2: 7e:65:d1:5b:75:aa:63:8a:3c:25:60:63:55:62:45:b3:1d:c1: ef:f1:aa:a9:fb:4d:88:1e:0b:5f:c3:cf:67:39:7c:d3:41:88: 02:e3:58:5c:39:b8:a8:fe:25:a4:b2:a6:09:39:e0:26:67:2a: 78:e7:15:37:c4:d9:3a:81:02:c9:a5:e3:17:50:1c:a5:a4:71: 1f:3d:f3:16:4d:55:39:5c:65:f3:44:7b:b8:f4:7f:ae:6b:57: bd:cd:6d:dc:72:20:65:a5:4f:f8:64:a5:4c:e1:71:b9:44:bd: c0:e6:bc:5a:7e:2c:e8:74:36:50:b7:34:41:49:b0:cd:6e:7b: d6:a2:60:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULhUk9kG6UKEDzhOoeWTtdxxh2/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTEwMTgyMDQ2MjFaFw0yNTEwMjIwMTU4MjFaMDMxMTAvBgNV BAMTKDIyMUJDMUYzRUJDMzJENTk3QTFCOUYzNTRFOEY4OTdDRkIwREE3ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwQze3vUSIH9XA0VQ2mE4q8Ddo vuYMJOa4S0jLpO7MhyGXt+PDhrvzTEJNeqVsmpGTasDPXo4KhVa6tpQc4jqP2ixk 0JCKo3BHccP0QsmFKSnyOQBe5PYpZ0bXoJDOXU0v+Di00mdqYPwuEuerbldoFMJR r/tpLFIeWukq6Nc/RI4Iq/yfpg+5rEe1TaEFywUn/8290C+RUxGIzfOqLvT6B3Hn fZKws7hMpQlIoHX0eudMHsBYjSX/eImUMwFYSvNuumWm64N6ESOBnOvG3qnNJzYW 7worPbUWnmP8CZDy+wmencTAHpDKkw4lnLm80eWFuF+VjypRoYlQc8RU1O3bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIhvB8+vDLVl6G581To+JfPsNp4AwHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIBaoehruoDUfKj9lbP26xQBoQpwXu2siJBx GvWGlkgGnZcy+ju7lqcualedXL0Fqf/kTk3Y0s0dmH5jamh9gGwNLemqyvFKfEkC 8ixs2QzBtkTj8NFP6zo2xXmJPr+g7hBe6dqMwl1D9qob6aetOoo90FAEf6pn5kVY sXkw4n5l0Vt1qmOKPCVgY1ViRbMdwe/xqqn7TYgeC1/Dz2c5fNNBiALjWFw5uKj+ JaSypgk54CZnKnjnFTfE2TqBAsml4xdQHKWkcR898xZNVTlcZfNEe7j0f65rV73N bdxyIGWlT/hkpUzhcblEvcDmvFp+LOh0NlC3NEFJsM1ue9aiYOA= -----END CERTIFICATE-----Generated at Tue Oct 21 00:01:15 2025 by rpki-client