$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft File: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft (raw, json) Hash identifier: eS7Lb227A68yjvpXQemuBNA7BuAjGB4DtwlK1ndb7Uc= Subject key identifier: D5:54:CC:31:EC:08:DA:65:83:DA:72:B9:7B:62:34:F1:4D:38:50:8A Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 40800F23F662E8C2BC68400DF87677F0CAB6CE52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft Manifest number: 01ED Signing time: Sat 18 Oct 2025 18:41:20 +0000 Manifest this update: Sat 18 Oct 2025 18:36:20 +0000 Manifest next update: Tue 21 Oct 2025 19:01:20 +0000 Files and hashes: 1: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl (hash: DqP8J8ub5mugMnxj4fsD/wtSkkCSHFewCDkodFmM3WU=) 2: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (hash: Hm8P4hacYfkZNd8sZfNbLj4+ngt9DzF5s+/x8t3BFqA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:80:0f:23:f6:62:e8:c2:bc:68:40:0d:f8:76:77:f0:ca:b6:ce:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: Oct 18 18:36:20 2025 GMT Not After : Oct 21 19:01:20 2025 GMT Subject: CN=D554CC31EC08DA6583DA72B97B6234F14D38508A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:1d:3a:85:24:d4:43:24:41:27:6e:f8:01: 0f:dd:fc:fd:c8:d4:ac:65:e5:46:6e:5d:1a:e0:2a: 58:0b:37:91:13:32:9e:7d:48:fb:79:c9:c4:a3:0a: 16:a4:e4:08:46:28:c1:ce:23:40:c9:22:f3:ec:95: 5f:c6:cb:70:7b:c4:66:1b:6e:d1:ef:25:39:e9:00: b5:8e:97:35:70:34:62:1a:b4:cb:7b:24:2f:1d:53: 56:3d:8d:af:e5:40:be:51:8f:a1:69:9b:23:79:9c: e3:82:58:79:a6:44:0d:a3:73:df:a2:a3:1d:d5:33: 08:0a:08:30:b6:ce:14:0a:dc:d4:bc:54:64:8f:c0: a4:01:3a:8a:c9:c1:4f:6f:1b:79:87:69:25:a8:a7: 45:cc:45:b6:e5:45:77:85:32:53:6b:26:16:ae:e4: 2d:65:a4:30:ab:41:06:87:df:c0:b0:a0:bf:f7:23: 42:3f:3b:88:5b:dc:57:35:c6:e4:de:e1:24:c4:c2: df:be:b4:fa:a2:2e:31:b8:70:83:05:c0:ce:69:f5: 5f:82:9b:1d:4b:f2:c3:cd:b3:c4:b9:ef:27:76:94: 6f:c7:3b:8b:66:a9:d9:ec:0e:0e:1a:b2:65:fb:36: 2a:12:86:2f:0f:b0:8c:45:e5:f5:26:c8:11:41:94: c3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:54:CC:31:EC:08:DA:65:83:DA:72:B9:7B:62:34:F1:4D:38:50:8A X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:8c:ce:53:c4:41:14:bb:ce:99:c3:b9:ad:69:85:20:68:bc: 5d:00:de:7e:de:c6:4c:e3:99:25:30:4a:d9:fe:98:48:86:a3: dd:36:3e:ba:2c:74:8e:81:4e:3d:7c:72:56:02:60:87:3a:5e: 05:ac:9a:89:29:37:b7:4d:45:a7:86:73:f7:f3:c6:09:25:4d: 3a:06:18:a2:76:19:15:76:ab:44:5b:c0:4a:34:ec:15:73:eb: 94:80:f5:78:cd:de:37:68:25:c8:09:dc:b4:78:53:a7:b0:70: e6:5d:7b:f1:7c:b4:d8:44:5d:3b:26:cc:55:37:81:3a:3a:02: 71:dc:60:54:86:13:bd:5d:14:29:ba:c7:34:68:40:10:b9:47: 33:81:a6:8c:31:f7:fa:71:0e:90:1b:0d:dc:24:de:8c:b7:06: ce:76:7a:6c:b3:d5:35:ee:b6:42:33:2d:32:7e:34:f4:7a:9e: 39:5b:ab:ad:08:c3:51:a9:08:6c:df:47:1d:3c:d2:e1:9d:64: 57:a6:90:94:6f:44:a6:3a:c4:a9:2a:63:49:6d:1f:73:52:43: 10:f9:fe:56:b8:63:99:07:28:7c:1d:3e:2a:4a:44:91:64:ad: de:2f:59:bb:b7:43:5a:55:74:81:d8:95:e9:c6:75:f3:51:ab: fa:a9:11:d5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQIAPI/Zi6MK8aEAN+HZ38Mq2zlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNTEwMTgxODM2MjBaFw0yNTEwMjExOTAxMjBaMDMxMTAvBgNV BAMTKEQ1NTRDQzMxRUMwOERBNjU4M0RBNzJCOTdCNjIzNEYxNEQzODUwOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRXx06hSTUQyRBJ274AQ/d/P3I 1Kxl5UZuXRrgKlgLN5ETMp59SPt5ycSjChak5AhGKMHOI0DJIvPslV/Gy3B7xGYb btHvJTnpALWOlzVwNGIatMt7JC8dU1Y9ja/lQL5Rj6FpmyN5nOOCWHmmRA2jc9+i ox3VMwgKCDC2zhQK3NS8VGSPwKQBOorJwU9vG3mHaSWop0XMRbblRXeFMlNrJhau 5C1lpDCrQQaH38CwoL/3I0I/O4hb3Fc1xuTe4STEwt++tPqiLjG4cIMFwM5p9V+C mx1L8sPNs8S57yd2lG/HO4tmqdnsDg4asmX7NioShi8PsIxF5fUmyBFBlMO3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1VTMMewI2mWD2nK5e2I08U04UIowHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVmODQyNzgtZTA2ZC00MTE5LWJh NDQtNWMzMjk2OGE4YmJkLzAvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2 MDE3RkIwQ0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGyMzlPEQRS7zpnDua1phSBovF0A3n7exkzj mSUwStn+mEiGo902ProsdI6BTj18clYCYIc6XgWsmokpN7dNRaeGc/fzxgklTToG GKJ2GRV2q0RbwEo07BVz65SA9XjN3jdoJcgJ3LR4U6ewcOZde/F8tNhEXTsmzFU3 gTo6AnHcYFSGE71dFCm6xzRoQBC5RzOBpowx9/pxDpAbDdwk3oy3Bs52emyz1TXu tkIzLTJ+NPR6njlbq60Iw1GpCGzfRx080uGdZFemkJRvRKY6xKkqY0ltH3NSQxD5 /la4Y5kHKHwdPipKRJFkrd4vWbu3Q1pVdIHYlenGdfNRq/qpEdU= -----END CERTIFICATE-----Generated at Mon Oct 20 16:19:28 2025 by rpki-client