$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft File: 9D21366ED4E3738A5F50E524109806C98D710BD3.mft (raw, json) Hash identifier: A0PuN3oRPHz0Tx+4pfzHWd3IbZQxYMkMBrm5cZVxZwo= Subject key identifier: 80:84:7F:C2:3A:31:61:63:EA:9B:4B:43:76:06:DB:2A:B2:60:FE:8F Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 7F05F0AE9A5EF29FE86F2EDC6FA3B913D10DF909 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft Manifest number: C3 Signing time: Sat 18 Oct 2025 13:20:00 +0000 Manifest this update: Sat 18 Oct 2025 13:15:00 +0000 Manifest next update: Tue 21 Oct 2025 21:38:00 +0000 Files and hashes: 1: 9D21366ED4E3738A5F50E524109806C98D710BD3.crl (hash: vB0nyUZnxXQp7p3K0R6xAs8cMWVKLamQ2b0Kf5iZZts=) 2: 3136302e32352e3131392e302f32342d3234203d3e20313533303936.roa (hash: l9ERQS2lY9vY7cqdtac+IvPm2s0vxFEvQIVHJEks1Zc=) 3: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (hash: TUzFMsEIFjmnDLri6vPKTFWHWFqmADC1pDUr5mNeK+o=) 4: 3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa (hash: Nzl8vY9SfxTMTS+PrIiEnPNs8vGKrloce/myFfDThWk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 21:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:05:f0:ae:9a:5e:f2:9f:e8:6f:2e:dc:6f:a3:b9:13:d1:0d:f9:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Oct 18 13:15:00 2025 GMT Not After : Oct 21 21:38:00 2025 GMT Subject: CN=80847FC23A316163EA9B4B437606DB2AB260FE8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:a3:77:a6:e0:c2:4d:44:86:49:e9:33:96: 15:25:39:9d:93:6d:46:fb:5d:35:ad:23:75:ff:58: 21:90:d4:66:ee:4a:29:11:a4:a3:97:31:ab:6a:3a: b2:56:02:9e:0e:0a:f4:7c:4f:af:48:67:a7:0b:dd: b4:f5:ee:0a:d5:ab:09:60:46:c6:8e:dc:2d:62:8b: 82:e9:5e:56:59:f5:4a:f6:91:da:8d:c6:af:a4:b0: 9e:3d:5c:89:80:1d:d7:03:e6:58:06:cb:c1:c3:ff: ec:67:df:31:02:21:99:c7:b0:ff:7b:7c:c0:39:3d: b9:9c:12:6f:42:90:60:c5:93:35:0b:e6:88:6a:31: c0:c6:93:8b:4a:46:f3:71:b7:9f:1f:99:1a:f4:f4: d8:27:39:dd:60:e3:b8:6b:39:86:56:bd:5b:f6:da: 86:7d:bf:f4:6b:a7:b8:14:af:14:81:ad:ad:ed:92: c6:d4:43:75:8d:e9:49:dc:55:7a:1b:96:a6:9f:b2: 31:90:09:bc:f9:f6:5d:02:a5:42:bc:42:02:a6:a8: 15:14:36:64:2a:fc:62:b7:58:b1:2c:ca:7a:d5:28: a4:72:52:96:e5:9b:14:78:06:85:5d:5c:a5:4a:0e: 13:8a:53:c2:71:ee:ad:d5:51:91:b1:45:ba:47:d6: 21:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:84:7F:C2:3A:31:61:63:EA:9B:4B:43:76:06:DB:2A:B2:60:FE:8F X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:8e:cd:e8:b8:ba:8a:e2:a6:e3:3f:1c:c0:ec:85:44:7d:0c: 4a:2e:2d:bb:a6:e0:5f:97:eb:6a:2a:0a:61:1f:33:56:00:a4: 73:c4:55:15:d2:3b:bc:47:e6:02:ba:49:1a:c8:e8:9e:5b:cb: ec:56:b0:38:0a:dc:a1:6c:c2:b4:3e:59:de:af:82:bb:08:d7: e9:10:44:a2:5b:3b:16:de:ab:0a:ab:48:65:61:12:de:83:39: 08:b9:46:46:d8:1f:42:fb:5c:92:12:c6:32:40:ef:11:2a:9b: c7:e8:c8:53:4b:47:05:03:9c:f1:87:40:98:79:21:d6:f5:22: f4:6e:15:c2:fe:ff:ec:23:28:6a:3a:c3:7e:0c:08:62:12:a3: 4e:ad:2a:6b:86:a9:00:7c:d0:9f:69:b4:b4:db:2e:e3:f7:e1: 24:62:ed:03:43:6f:47:30:44:99:f9:03:cc:ad:2b:77:8d:aa: 5b:6d:3b:56:8e:29:2e:2c:92:0d:f4:f0:a3:70:54:70:22:e9: 51:0e:04:10:a4:56:54:5c:91:52:59:03:12:fd:a8:a6:f4:60: 72:3a:0e:74:36:ad:49:81:d4:3c:05:15:14:c2:ef:8a:0c:cb: 7f:f2:00:f9:c3:21:77:33:3a:e9:df:3c:68:47:3f:c8:bf:95: e9:b2:8d:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfwXwrppe8p/oby7cb6O5E9EN+QkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNTEwMTgxMzE1MDBaFw0yNTEwMjEyMTM4MDBaMDMxMTAvBgNV BAMTKDgwODQ3RkMyM0EzMTYxNjNFQTlCNEI0Mzc2MDZEQjJBQjI2MEZFOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyLaN3puDCTUSGSekzlhUlOZ2T bUb7XTWtI3X/WCGQ1GbuSikRpKOXMatqOrJWAp4OCvR8T69IZ6cL3bT17grVqwlg RsaO3C1ii4LpXlZZ9Ur2kdqNxq+ksJ49XImAHdcD5lgGy8HD/+xn3zECIZnHsP97 fMA5PbmcEm9CkGDFkzUL5ohqMcDGk4tKRvNxt58fmRr09NgnOd1g47hrOYZWvVv2 2oZ9v/Rrp7gUrxSBra3tksbUQ3WN6UncVXoblqafsjGQCbz59l0CpUK8QgKmqBUU NmQq/GK3WLEsynrVKKRyUpblmxR4BoVdXKVKDhOKU8Jx7q3VUZGxRbpH1iG3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgIR/wjoxYWPqm0tDdgbbKrJg/o8wHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjFlNDQ2NjUtZTg0Ni00NTViLWFh MWEtZDVhYjA3ZGVlZGYzLzAvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2 Qzk4RDcxMEJEMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADCOzei4uoripuM/HMDshUR9DEouLbum4F+X 62oqCmEfM1YApHPEVRXSO7xH5gK6SRrI6J5by+xWsDgK3KFswrQ+Wd6vgrsI1+kQ RKJbOxbeqwqrSGVhEt6DOQi5RkbYH0L7XJISxjJA7xEqm8foyFNLRwUDnPGHQJh5 Idb1IvRuFcL+/+wjKGo6w34MCGISo06tKmuGqQB80J9ptLTbLuP34SRi7QNDb0cw RJn5A8ytK3eNqlttO1aOKS4skg308KNwVHAi6VEOBBCkVlRckVJZAxL9qKb0YHI6 DnQ2rUmB1DwFFRTC74oMy3/yAPnDIXczOunfPGhHP8i/lemyjac= -----END CERTIFICATE-----Generated at Mon Oct 20 19:44:37 2025 by rpki-client