$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft File: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft (raw, json) Hash identifier: AmKl7f3I//JWXK3i/9r4cCgqC9CokXwIIuNvw9uXPYo= Subject key identifier: C4:25:49:1E:47:EC:3D:1D:2A:64:B4:FC:5D:B3:D6:36:17:14:28:8E Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 451387F9F136CDDCF06AEFDEEF0A5CBECE0E2FD7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft Manifest number: 01AC Signing time: Mon 20 Oct 2025 02:21:47 +0000 Manifest this update: Mon 20 Oct 2025 02:16:47 +0000 Manifest next update: Thu 23 Oct 2025 11:59:47 +0000 Files and hashes: 1: 3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa (hash: IlfpZnqN0u5jMQ+MMy/Uh2Q/ScrlgNhJWft3oBH8Ovo=) 2: 3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa (hash: s4bQxfKSzhThJnV2s35QtgCBE4otyhr6xeMzoqnFm8Y=) 3: 3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa (hash: zofQAGzRLVSbQfa8x1HxlEvAC2rTzuC4QEGkc7xHMvw=) 4: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (hash: cN4silcvuPV22OI3IsNy5UveikGt8GvqnC8R2u5vZmI=) 5: 3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa (hash: 9Eop7Wi9KDAgTJcnqm4m9VblRXdXAgnSYGkJE3U1uCo=) 6: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl (hash: 5ACLCXDiIFu/kO+qNtFrvHyb4MLqwx5sLFZ7S/FvuWQ=) 7: 3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa (hash: XubVHR1uW/U3u8JfLGlOr8aeDpjn5EspQIPSeyKbXv4=) 8: 3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa (hash: bk766NBayeqzl2TpClpr9IhYx+ApKL2x4uzDJCxWkIk=) 9: 3230322e3137392e3138372e302f32342d3234203d3e203338373530.roa (hash: B48tlPMvOf7K7HzDvvhN+csuCxhTxi2XsZzldYqsXqU=) 10: 3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa (hash: WKBxmJwVLzCYBVgxt4LMTfwAcTtnh7yu4VGARK2zxgY=) 11: 3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa (hash: L4h2Wp4fQdhUrMD0z3Ssoa6P+p1dDNjkEiybK+QQebs=) 12: 3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa (hash: DZYxEEoedEoh7hUvK00A3sjPaarHyHkFwFSubpvLa90=) 13: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (hash: Y4Wi8qAYZ81rv46ZtcXhKaHsjEBVaOJAYBhmKDi8JTE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:13:87:f9:f1:36:cd:dc:f0:6a:ef:de:ef:0a:5c:be:ce:0e:2f:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Oct 20 02:16:47 2025 GMT Not After : Oct 23 11:59:47 2025 GMT Subject: CN=C425491E47EC3D1D2A64B4FC5DB3D6361714288E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:54:c8:d2:77:f4:55:50:7c:93:c8:ca:f0:e8: 12:80:b8:20:b8:56:de:cf:86:7f:c9:4d:f9:48:11: f4:98:07:7d:06:6d:4b:31:61:d9:32:74:a6:5a:10: cc:c3:15:a6:a9:dc:fc:8b:e6:68:d9:02:6a:b0:b3: 32:3a:67:00:0f:eb:50:c8:12:3d:a6:c0:5a:5d:76: be:16:cc:7d:ca:69:71:0a:eb:e2:ee:57:97:7e:39: c7:d5:a5:57:c3:63:7f:b6:89:96:69:00:0f:11:1f: 70:65:d1:45:b0:0f:4e:52:19:e6:23:be:2d:3f:19: 8f:ca:a9:0e:3a:f2:5c:30:4e:0f:28:d0:d4:fa:97: 51:44:99:83:35:0d:68:e1:27:6e:63:e9:d1:0f:fd: fd:91:27:d8:8b:11:f5:2a:5e:35:ac:1b:43:47:9d: 43:2c:82:54:e4:fd:66:40:c5:3a:e0:42:e6:1d:df: 68:ba:37:95:9c:7e:1f:51:87:63:4f:14:cc:68:63: d3:42:79:2e:d0:d7:05:aa:7b:b3:9b:35:e2:85:79: 8e:bb:55:12:0c:c4:c9:ea:12:47:0f:33:f2:08:76: 14:4e:7f:f4:4d:e5:38:a0:37:f0:42:2a:2c:d8:fa: 05:06:df:74:14:e1:d9:46:23:6b:c5:f0:34:8e:03: c5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:25:49:1E:47:EC:3D:1D:2A:64:B4:FC:5D:B3:D6:36:17:14:28:8E X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:05:10:b0:9c:33:e4:b9:0c:7a:1a:34:b8:b5:34:f5:79:ae: b9:c4:38:54:c6:b6:c7:cc:0b:99:fe:ce:f8:70:c1:68:d4:ea: cb:a8:49:ff:61:94:6f:e9:6e:0f:ae:6b:d2:16:d1:19:d8:19: 16:4b:9d:59:5a:16:eb:59:eb:84:cf:79:19:54:53:6e:19:53: 10:1b:fc:2e:7a:fb:9f:51:77:22:ad:1c:02:d2:0f:28:7a:5c: 34:f8:a9:e9:17:93:fc:d3:bb:40:a1:f7:6a:c6:be:c2:da:ea: b0:dd:c6:65:0d:3b:a6:0e:fd:03:1b:56:3f:6d:b3:ae:c3:41: 5d:2b:e8:61:2b:01:dc:94:3c:8e:18:c9:a0:91:47:83:61:23: f5:9e:7e:8a:db:83:ff:b9:5e:0d:d6:1d:41:e6:37:5f:6b:cf: 0f:54:9e:a4:b3:40:55:2d:ff:4a:89:d9:e9:b3:21:55:3d:08: 90:f1:bb:d5:e4:38:e8:cd:90:3f:17:7a:1b:f8:a0:4a:62:3c: a8:fd:04:23:b0:7b:b7:a5:e2:42:e9:b3:68:54:ed:20:e0:c6: e4:56:c2:a5:9b:07:f2:bd:72:84:81:6f:1f:18:08:92:40:fc: 6c:de:eb:02:bb:03:45:47:13:a9:6d:14:c6:02:0d:5d:2d:52: b8:e2:5b:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURROH+fE2zdzwau/e7wpcvs4OL9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEwMjAwMjE2NDdaFw0yNTEwMjMxMTU5NDdaMDMxMTAvBgNV BAMTKEM0MjU0OTFFNDdFQzNEMUQyQTY0QjRGQzVEQjNENjM2MTcxNDI4OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXVMjSd/RVUHyTyMrw6BKAuCC4 Vt7Phn/JTflIEfSYB30GbUsxYdkydKZaEMzDFaap3PyL5mjZAmqwszI6ZwAP61DI Ej2mwFpddr4WzH3KaXEK6+LuV5d+OcfVpVfDY3+2iZZpAA8RH3Bl0UWwD05SGeYj vi0/GY/KqQ468lwwTg8o0NT6l1FEmYM1DWjhJ25j6dEP/f2RJ9iLEfUqXjWsG0NH nUMsglTk/WZAxTrgQuYd32i6N5Wcfh9Rh2NPFMxoY9NCeS7Q1wWqe7ObNeKFeY67 VRIMxMnqEkcPM/IIdhROf/RN5TigN/BCKizY+gUG33QU4dlGI2vF8DSOA8WZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxCVJHkfsPR0qZLT8XbPWNhcUKI4wHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzBmNWNmZGItNzk4Ny00MzUxLWJj MmUtNjZjMjRmNDlmNDQwLzAvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5 RUU5REUzMjAxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACkFELCcM+S5DHoaNLi1NPV5rrnEOFTGtsfM C5n+zvhwwWjU6suoSf9hlG/pbg+ua9IW0RnYGRZLnVlaFutZ64TPeRlUU24ZUxAb /C56+59RdyKtHALSDyh6XDT4qekXk/zTu0Ch92rGvsLa6rDdxmUNO6YO/QMbVj9t s67DQV0r6GErAdyUPI4YyaCRR4NhI/Weforbg/+5Xg3WHUHmN19rzw9UnqSzQFUt /0qJ2emzIVU9CJDxu9XkOOjNkD8Xehv4oEpiPKj9BCOwe7el4kLps2hU7SDgxuRW wqWbB/K9coSBbx8YCJJA/Gze6wK7A0VHE6ltFMYCDV0tUrjiW3c= -----END CERTIFICATE-----Generated at Tue Oct 21 07:02:09 2025 by rpki-client