$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: kLNbz+Zj9HKu9YzVLfuigTwh4M//Bmae6mrhHeYZplo= Subject key identifier: 92:BA:F2:E3:D0:80:06:85:27:84:B5:37:F3:8B:FB:2B:A1:BB:7F:0A Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 509CC8A349660B2E7CEED24CD1002619F8747822 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 024F Signing time: Sun 19 Oct 2025 13:11:09 +0000 Manifest this update: Sun 19 Oct 2025 13:06:09 +0000 Manifest next update: Thu 23 Oct 2025 00:35:09 +0000 Files and hashes: 1: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) 2: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 3: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: sl4WmJBKLq8mG/fRQiKiQJlW1/iULkXNUVPgzm4asRM=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9c:c8:a3:49:66:0b:2e:7c:ee:d2:4c:d1:00:26:19:f8:74:78:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Oct 19 13:06:09 2025 GMT Not After : Oct 23 00:35:09 2025 GMT Subject: CN=92BAF2E3D08006852784B537F38BFB2BA1BB7F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b0:4d:84:91:1a:02:55:80:76:78:02:6a:0a: db:ac:ec:a6:d3:40:3b:ce:65:cc:36:c3:1e:eb:00: eb:6f:5b:1b:4f:00:38:ef:31:12:8b:7b:1a:b5:30: b6:86:8c:02:7c:71:54:90:5a:ea:9b:8e:ff:d3:b3: 2d:07:1c:14:d2:5d:c2:81:b2:d3:8e:cb:79:f7:c6: c8:45:99:89:32:fd:f6:25:8c:87:b3:02:aa:e5:8b: 8b:cd:01:64:d9:62:e0:0e:c5:ce:ce:3d:b4:79:76: a2:ca:3f:9f:fe:bd:79:ce:ae:cf:18:84:c8:16:7a: cc:37:aa:ef:b9:a3:c4:4f:fa:05:04:fc:18:00:25: 77:18:33:14:6f:90:26:78:a5:06:f5:4a:b0:bf:56: 9d:fc:af:f1:d0:c9:00:c3:1e:e4:4e:10:5d:5f:c9: 3b:fe:6d:67:ca:fb:d1:82:47:30:0d:e7:2f:ec:9f: 84:a2:42:4f:ec:13:3d:80:65:21:18:8e:89:21:98: 54:7a:57:37:42:05:d4:27:82:39:ed:3b:69:a4:84: b1:ea:56:4a:36:ba:8f:ad:ff:4a:42:92:94:85:fc: 03:3f:8b:e0:1c:d6:88:e8:c8:db:c3:72:2f:69:c6: 45:a0:8f:16:fc:9f:40:72:98:ac:b2:6b:5c:d4:13: 0b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:BA:F2:E3:D0:80:06:85:27:84:B5:37:F3:8B:FB:2B:A1:BB:7F:0A X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:b7:30:52:2f:45:cf:0a:80:9c:51:81:69:6c:e9:12:9c:09: 2d:d7:6b:c4:b0:58:c4:80:53:fc:73:15:26:db:c3:6b:49:5d: d9:05:b7:ef:05:8b:26:8e:04:e4:f4:c2:f0:5f:aa:ed:68:45: d0:db:75:d0:b5:d5:0a:a6:9a:f7:02:20:b3:8d:33:80:27:9e: 84:7e:58:f2:8f:11:8d:b2:40:28:d9:51:b5:64:0e:6d:a0:9e: 89:2f:13:5d:8f:ff:e7:4c:4d:07:9d:6c:66:2b:84:b2:2f:5d: bb:b1:bd:d7:19:39:d9:7d:f9:dd:f3:3c:0a:7d:e4:12:19:50: 50:f7:4e:ff:5b:d0:f9:cd:29:2a:5d:37:1a:39:2f:11:0c:0d: 57:c4:89:b2:a5:ed:56:87:62:db:cc:33:b5:00:49:e1:e9:e8: ff:9c:64:f0:d9:8e:08:53:7a:95:7f:f6:7d:fd:60:07:1b:7a: 4f:e5:9c:bd:3e:03:70:8f:cb:cd:6c:fa:56:b1:7a:a7:cd:b8: 18:7e:ff:0d:90:f7:ab:6d:e8:f1:13:af:fe:53:da:98:76:10: e1:be:a5:ee:c3:ba:75:a7:92:16:32:eb:57:9c:7e:7c:cc:87: 48:8d:60:98:4f:61:e8:98:68:70:53:24:70:7d:7e:9f:40:c5: fb:2e:3e:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUJzIo0lmCy587tJM0QAmGfh0eCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTEwMTkxMzA2MDlaFw0yNTEwMjMwMDM1MDlaMDMxMTAvBgNV BAMTKDkyQkFGMkUzRDA4MDA2ODUyNzg0QjUzN0YzOEJGQjJCQTFCQjdGMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjsE2EkRoCVYB2eAJqCtus7KbT QDvOZcw2wx7rAOtvWxtPADjvMRKLexq1MLaGjAJ8cVSQWuqbjv/Tsy0HHBTSXcKB stOOy3n3xshFmYky/fYljIezAqrli4vNAWTZYuAOxc7OPbR5dqLKP5/+vXnOrs8Y hMgWesw3qu+5o8RP+gUE/BgAJXcYMxRvkCZ4pQb1SrC/Vp38r/HQyQDDHuROEF1f yTv+bWfK+9GCRzAN5y/sn4SiQk/sEz2AZSEYjokhmFR6VzdCBdQngjntO2mkhLHq Vko2uo+t/0pCkpSF/AM/i+Ac1ojoyNvDci9pxkWgjxb8n0BymKyya1zUEwtHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkrry49CABoUnhLU384v7K6G7fwowHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFe3MFIvRc8KgJxRgWls6RKcCS3Xa8SwWMSA U/xzFSbbw2tJXdkFt+8FiyaOBOT0wvBfqu1oRdDbddC11QqmmvcCILONM4AnnoR+ WPKPEY2yQCjZUbVkDm2gnokvE12P/+dMTQedbGYrhLIvXbuxvdcZOdl9+d3zPAp9 5BIZUFD3Tv9b0PnNKSpdNxo5LxEMDVfEibKl7VaHYtvMM7UASeHp6P+cZPDZjghT epV/9n39YAcbek/lnL0+A3CPy81s+laxeqfNuBh+/w2Q96tt6PETr/5T2ph2EOG+ pe7DunWnkhYy61ecfnzMh0iNYJhPYeiYaHBTJHB9fp9AxfsuPh4= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:11 2025 by rpki-client