$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft File: 2858C74CC23A557C73F59051B7FE8638AA491C94.mft (raw, json) Hash identifier: xG7+Ec4jki1QEbSEH0ffN8QzSGhRIolgvUJakJu4S8A= Subject key identifier: E4:0C:6E:B4:57:44:B4:BE:0E:6A:31:E0:92:2D:D1:5D:64:7C:28:66 Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 2EB859D928D0F898976562C57E841C12EA8BD199 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft Manifest number: 2B Signing time: Sun 19 Oct 2025 16:41:23 +0000 Manifest this update: Sun 19 Oct 2025 16:36:23 +0000 Manifest next update: Thu 23 Oct 2025 02:23:23 +0000 Files and hashes: 1: 2858C74CC23A557C73F59051B7FE8638AA491C94.crl (hash: 358UnYKrvuGJdBeHg6KYmDHIHr30RjSRwYjYTp4fpas=) 2: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (hash: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg=) 3: 3130332e35302e3132382e302f32322d3234203d3e20313333383039.roa (hash: IB02l7aeS1Ctr7m+n8ymFsmUvTLgjo3obFTTz15X/C8=) 4: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (hash: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b8:59:d9:28:d0:f8:98:97:65:62:c5:7e:84:1c:12:ea:8b:d1:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Oct 19 16:36:23 2025 GMT Not After : Oct 23 02:23:23 2025 GMT Subject: CN=E40C6EB45744B4BE0E6A31E0922DD15D647C2866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:d2:0a:2b:c9:76:74:1c:66:a6:69:d3:a8: 10:77:37:68:1b:77:e5:26:69:55:da:76:e6:4b:4a: 5e:0f:31:94:18:1b:83:f7:f7:98:5b:55:1f:71:bd: 9c:46:1d:89:ca:0e:9a:84:c0:3c:49:df:9b:3d:0e: 71:4d:a2:b6:17:2c:24:20:9c:34:79:df:af:05:28: 83:aa:1f:85:34:a6:2a:55:6b:49:94:09:fc:1f:1c: e6:43:48:d6:c9:2c:cf:83:05:8d:37:30:14:70:f8: 8c:0a:01:08:e2:d8:80:30:e2:77:18:59:55:93:14: 40:60:04:25:90:9c:99:13:98:73:1c:fe:c0:e6:b2: f6:79:79:8f:0b:aa:5b:3d:23:1c:d7:d8:08:99:bb: d5:f9:20:c6:0a:71:e4:31:8e:9e:d7:7e:25:45:51: 76:4e:ff:00:00:8e:43:a1:64:9c:75:e2:1b:1e:02: 1c:89:74:bb:9d:e5:e6:3e:e7:d7:46:e1:37:92:7e: d0:b6:f8:9c:61:53:25:dd:79:22:4e:87:23:f4:c2: 3e:c2:02:5c:52:31:71:a4:ec:06:93:80:bf:9c:e5: cb:ae:36:1c:7e:6d:47:eb:a0:d7:5d:f9:36:5c:02: 5f:09:20:0a:1b:3c:c3:5b:2f:98:0c:5c:26:67:3d: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0C:6E:B4:57:44:B4:BE:0E:6A:31:E0:92:2D:D1:5D:64:7C:28:66 X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:71:fe:67:37:e2:d1:08:54:dc:e5:c0:34:69:49:e8:ca:b6: 9a:89:4d:d2:27:a2:ab:df:09:d2:2d:d1:99:b3:0b:58:fa:16: fe:fc:96:28:6b:c3:e0:d4:26:86:73:ab:20:a9:fd:0e:20:4c: 50:99:eb:a4:b2:67:80:38:de:1b:9b:1d:d7:77:23:52:ce:e3: 1c:0e:b1:f9:35:b5:fb:c1:5e:68:43:20:dc:e4:8b:79:3c:be: 0e:cc:18:ef:bd:51:0a:9d:f6:ac:4f:5b:8d:c5:b4:93:84:a6: dd:5c:a9:5c:8a:e2:f5:75:95:43:fa:e8:05:cd:be:13:4c:69: e0:07:f7:2c:4e:d2:cb:e3:08:aa:ae:ed:f0:d9:a2:24:ef:4e: 5d:9d:44:c5:33:c2:a4:62:7f:e3:0b:e2:5a:74:bf:a7:07:49: 3d:bb:b4:12:c9:6c:db:de:da:c3:83:81:0d:2f:db:bf:f4:ec: 4d:48:6d:ad:84:a3:61:52:11:03:72:bd:82:c2:98:e0:f5:d6: 95:7c:bc:49:a1:c4:df:27:98:65:7e:36:0c:30:30:85:62:36: 11:dc:cb:6d:1c:8a:28:2b:e7:3c:e6:eb:3d:79:7f:b5:51:be: 79:af:2c:20:bc:fa:05:89:44:83:75:da:59:c4:6b:07:4d:0f: 9e:fc:d1:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULrhZ2SjQ+JiXZWLFfoQcEuqL0ZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNTEwMTkxNjM2MjNaFw0yNTEwMjMwMjIzMjNaMDMxMTAvBgNV BAMTKEU0MEM2RUI0NTc0NEI0QkUwRTZBMzFFMDkyMkREMTVENjQ3QzI4NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtOdIKK8l2dBxmpmnTqBB3N2gb d+UmaVXaduZLSl4PMZQYG4P395hbVR9xvZxGHYnKDpqEwDxJ35s9DnFNorYXLCQg nDR5368FKIOqH4U0pipVa0mUCfwfHOZDSNbJLM+DBY03MBRw+IwKAQji2IAw4ncY WVWTFEBgBCWQnJkTmHMc/sDmsvZ5eY8Lqls9IxzX2AiZu9X5IMYKceQxjp7XfiVF UXZO/wAAjkOhZJx14hseAhyJdLud5eY+59dG4TeSftC2+JxhUyXdeSJOhyP0wj7C AlxSMXGk7AaTgL+c5cuuNhx+bUfroNdd+TZcAl8JIAobPMNbL5gMXCZnPX6rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5AxutFdEtL4OajHgki3RXWR8KGYwHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTljZWY4YjAtYmE2NC00YzBjLThk ZTgtMWY1MGE4NWQ1ZmRlLzAvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2 MzhBQTQ5MUM5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIVx/mc34tEIVNzlwDRpSejKtpqJTdInoqvf CdIt0ZmzC1j6Fv78lihrw+DUJoZzqyCp/Q4gTFCZ66SyZ4A43hubHdd3I1LO4xwO sfk1tfvBXmhDINzki3k8vg7MGO+9UQqd9qxPW43FtJOEpt1cqVyK4vV1lUP66AXN vhNMaeAH9yxO0svjCKqu7fDZoiTvTl2dRMUzwqRif+ML4lp0v6cHST27tBLJbNve 2sODgQ0v27/07E1Iba2Eo2FSEQNyvYLCmOD11pV8vEmhxN8nmGV+NgwwMIViNhHc y20ciigr5zzm6z15f7VRvnmvLCC8+gWJRIN12lnEawdND5780as= -----END CERTIFICATE-----Generated at Mon Oct 20 12:39:56 2025 by rpki-client