$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: 03vvadOqzP6hoUwToEEP+biREjKbAK+enYp1Yb6H7qQ= Subject key identifier: 30:28:7E:EB:35:54:00:B4:4F:46:60:54:99:62:25:B2:F4:7E:BD:76 Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 461D9B4C3BE1C06D12DA9346AC52EDB6CA6BF846 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 0247 Signing time: Mon 20 Oct 2025 01:21:58 +0000 Manifest this update: Mon 20 Oct 2025 01:16:58 +0000 Manifest next update: Thu 23 Oct 2025 08:28:58 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: X1PhQWpvbWM2Vk5DaadmmFyHChLInAXNPg4kwC+mCas=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: Ytn4J3L//ntkx3dIdir2Ut4ptmhaS3TkbsBspKupuTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 08:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:1d:9b:4c:3b:e1:c0:6d:12:da:93:46:ac:52:ed:b6:ca:6b:f8:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Oct 20 01:16:58 2025 GMT Not After : Oct 23 08:28:58 2025 GMT Subject: CN=30287EEB355400B44F466054996225B2F47EBD76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:de:4f:64:12:fd:10:9c:0e:65:a1:56:e4:fd: 49:99:70:0e:4c:5a:74:e9:34:a5:b7:43:62:9e:6a: 1e:f3:24:bb:27:02:bf:08:c4:1b:aa:f9:ee:1c:2c: 09:64:31:97:8d:99:45:b8:3b:87:74:13:fb:b3:4e: 63:68:b5:16:21:76:26:3c:3f:94:e4:1c:34:ac:47: a7:c7:79:1b:fb:98:d5:d9:c7:36:ab:0c:d7:87:ce: 29:40:f2:dd:8c:4a:c1:2b:09:aa:5d:e2:7e:c6:0d: 10:ff:34:32:29:38:49:82:7b:c1:19:42:42:eb:b7: fc:8c:28:9a:0f:70:f9:07:de:c5:db:df:8c:ea:b6: 69:19:29:f4:f3:6b:99:12:5f:4e:a6:ae:1b:9d:b3: 12:7b:18:0f:3d:26:7f:ab:54:6a:27:1d:d9:2a:df: b3:59:41:e4:ca:a1:fb:fe:a3:52:09:a7:91:28:90: 5c:5d:01:97:74:68:8b:da:10:f3:43:1f:4f:ac:1d: 80:f0:86:9e:fc:47:18:c3:bc:ad:96:45:d5:b4:e5: 21:c2:ec:e8:43:d4:de:b0:ae:fd:80:df:da:93:bf: 17:9b:89:34:e7:ce:18:6f:88:95:32:0b:e2:fb:0c: e2:b5:79:51:4c:b3:f1:88:ea:d3:3e:6b:c6:55:9f: 7a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:28:7E:EB:35:54:00:B4:4F:46:60:54:99:62:25:B2:F4:7E:BD:76 X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:25:bb:8e:7e:69:fe:7b:14:4e:d0:66:c5:70:fb:1e:ae:45: f5:93:0b:63:d4:e4:f3:42:c5:cc:2d:aa:90:d3:88:72:35:5f: a2:08:9f:1e:7e:5b:d8:6e:07:f3:81:e9:68:41:41:1b:7a:be: e5:a8:6c:bf:29:77:a0:df:20:a8:8a:4f:69:71:5e:3c:65:98: ce:bc:27:7a:bb:19:0f:1d:28:66:cf:6e:ce:23:8b:1e:9f:43: a4:a9:42:91:1f:4b:47:fb:9c:90:5c:8e:fe:40:d1:50:73:d8: 9a:d8:34:7b:ca:6a:d2:a1:0c:b2:5c:c0:70:d8:c4:3f:04:5a: ae:81:5d:99:55:3a:f1:d3:8f:80:57:0a:9a:0d:a2:3f:50:f7: 0b:c9:d0:6a:fd:56:42:df:70:64:2c:2e:5e:4f:31:5f:f9:16: 49:7f:af:01:ea:b6:31:00:88:37:79:37:2c:6a:9a:82:92:77: 4e:8e:1f:a1:6d:9e:6c:7e:b7:eb:f1:27:9a:f9:e1:ed:a9:63: b8:a2:0f:ec:b2:a8:52:96:4f:6b:7f:12:a3:4a:74:52:f6:be: 0f:de:43:e9:b1:e6:89:1b:fa:41:e3:50:d1:59:47:7a:5c:7e: ac:26:2a:f7:53:81:03:a2:2f:0c:ad:5c:66:42:e1:13:52:80: f5:65:16:13 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURh2bTDvhwG0S2pNGrFLttspr+EYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNTEwMjAwMTE2NThaFw0yNTEwMjMwODI4NThaMDMxMTAvBgNV BAMTKDMwMjg3RUVCMzU1NDAwQjQ0RjQ2NjA1NDk5NjIyNUIyRjQ3RUJENzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa3k9kEv0QnA5loVbk/UmZcA5M WnTpNKW3Q2Keah7zJLsnAr8IxBuq+e4cLAlkMZeNmUW4O4d0E/uzTmNotRYhdiY8 P5TkHDSsR6fHeRv7mNXZxzarDNeHzilA8t2MSsErCapd4n7GDRD/NDIpOEmCe8EZ QkLrt/yMKJoPcPkH3sXb34zqtmkZKfTza5kSX06mrhudsxJ7GA89Jn+rVGonHdkq 37NZQeTKofv+o1IJp5EokFxdAZd0aIvaEPNDH0+sHYDwhp78RxjDvK2WRdW05SHC 7OhD1N6wrv2A39qTvxebiTTnzhhviJUyC+L7DOK1eVFMs/GI6tM+a8ZVn3rxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMCh+6zVUALRPRmBUmWIlsvR+vXYwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF4lu45+af57FE7QZsVw+x6uRfWTC2PU5PNC xcwtqpDTiHI1X6IInx5+W9huB/OB6WhBQRt6vuWobL8pd6DfIKiKT2lxXjxlmM68 J3q7GQ8dKGbPbs4jix6fQ6SpQpEfS0f7nJBcjv5A0VBz2JrYNHvKatKhDLJcwHDY xD8EWq6BXZlVOvHTj4BXCpoNoj9Q9wvJ0Gr9VkLfcGQsLl5PMV/5Fkl/rwHqtjEA iDd5NyxqmoKSd06OH6Ftnmx+t+vxJ5r54e2pY7iiD+yyqFKWT2t/EqNKdFL2vg/e Q+mx5okb+kHjUNFZR3pcfqwmKvdTgQOiLwytXGZC4RNSgPVlFhM= -----END CERTIFICATE-----Generated at Mon Oct 20 15:03:56 2025 by rpki-client