$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: IiPrA9WYXcRTz5EU4oUATopZAo2DGqnoqQpsecJtS/Q= Subject key identifier: C0:7C:A6:47:E6:04:20:6C:2E:9E:EE:2D:74:CE:39:66:8E:C8:B8:57 Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 357E2132A919B995AD20E34CF3122C2B63EA3CB1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 01E0 Signing time: Sat 18 Oct 2025 11:11:03 +0000 Manifest this update: Sat 18 Oct 2025 11:06:03 +0000 Manifest next update: Tue 21 Oct 2025 22:56:03 +0000 Files and hashes: 1: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: EQbr12ySqIrNTM9njp7Wb0XN8yJtB1BDEx2u9gpZun8=) 2: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: OjD7igAi8uIoux+rVxGtZEh2dpv8xELOea0gwWs5+6I=) 3: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: sm8jeStS9mRgsrGl5CeRQ6sBSscm5f2rHE/KQpXoWj8=) 4: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: cbFtWHQHRFEJZ2e/IxLig+kffOserRlRB0a1nYR6XOc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 22:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:7e:21:32:a9:19:b9:95:ad:20:e3:4c:f3:12:2c:2b:63:ea:3c:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Oct 18 11:06:03 2025 GMT Not After : Oct 21 22:56:03 2025 GMT Subject: CN=C07CA647E604206C2E9EEE2D74CE39668EC8B857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4f:e9:29:b7:a4:ce:fe:12:ef:a2:ac:4b:bc: 23:d7:4d:81:8b:04:40:f1:a4:a8:7b:04:55:9d:0d: 4b:6f:fc:41:d9:a1:f2:ab:41:f0:23:00:58:91:59: 35:97:c1:c6:99:90:9e:c6:52:f5:01:bf:df:17:20: ab:bb:c0:69:bb:ba:80:ae:9b:e7:75:64:92:a5:40: 53:0c:8b:7e:2e:15:4b:42:83:95:5d:01:0b:da:3d: 9f:0f:fa:c7:d6:6a:8d:55:76:d7:a6:6c:2c:3d:4e: 2c:57:f4:82:0f:dc:42:59:72:21:1b:9f:c2:e9:08: f3:93:9d:17:d6:41:d5:76:9c:45:70:d0:ac:8d:94: af:5a:d7:55:8a:cc:83:f0:dc:52:1e:c3:f9:3f:cc: 68:4b:82:7f:88:19:5e:a6:0c:17:87:88:5b:af:d2: 2f:6f:d7:e8:bb:f9:9c:80:3e:b4:bd:71:02:42:7d: 77:e1:53:cb:cf:a5:2b:be:ed:9a:bf:9b:0a:f7:56: 0e:df:d7:22:f0:19:b9:d6:d0:b4:bc:46:0b:57:48: c2:0c:6c:54:dc:45:f7:67:03:fc:8b:b4:cb:3e:04: 68:9c:03:89:46:5c:c8:b5:07:d8:bf:19:8c:3d:92: ad:24:ce:de:c4:b8:8b:87:88:14:71:8a:31:67:cf: ab:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:7C:A6:47:E6:04:20:6C:2E:9E:EE:2D:74:CE:39:66:8E:C8:B8:57 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:f8:ad:2f:23:04:77:8d:b0:51:67:53:5d:38:b7:9f:4c:ca: 37:c7:96:15:31:9a:f5:bb:fd:3b:dd:74:11:23:a3:15:17:40: ad:5a:29:2c:30:0f:08:0d:68:44:09:51:08:91:da:4e:33:c4: 83:9f:0c:83:ab:bf:32:28:59:2e:a8:c9:3d:18:a5:07:c8:26: 95:ce:e1:9d:74:4c:6c:2c:31:fe:52:0b:7d:16:35:5a:56:0a: 04:6b:e9:24:69:e7:fc:4e:84:56:3b:f3:b2:a8:0a:37:d8:28: 8c:6b:d0:ac:98:50:84:64:cf:75:a0:05:e8:2e:45:55:aa:e0: 56:98:67:48:a3:44:22:4f:b5:80:d2:22:e8:ce:1f:8d:07:e3: e5:96:e1:ce:9a:a2:f6:6a:06:03:00:b6:52:1e:5a:1f:33:f5: 14:44:8d:6b:7d:ae:5d:6f:9b:ee:71:cb:dc:29:db:99:1d:9a: 79:86:30:e4:70:08:2a:73:b3:34:32:47:be:46:46:4d:dd:4a: 6a:e1:f4:b7:d5:e7:46:dd:57:f8:ea:58:ed:4f:82:d0:59:bc: 81:8c:07:75:40:7c:f5:9e:4a:da:7a:f2:d3:2d:89:c8:95:55: 1c:d4:ec:2d:a5:35:bf:3c:e8:af:b4:69:a0:e7:ae:18:0b:a4: cc:62:8f:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNX4hMqkZuZWtIONM8xIsK2PqPLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNTEwMTgxMTA2MDNaFw0yNTEwMjEyMjU2MDNaMDMxMTAvBgNV BAMTKEMwN0NBNjQ3RTYwNDIwNkMyRTlFRUUyRDc0Q0UzOTY2OEVDOEI4NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQT+kpt6TO/hLvoqxLvCPXTYGL BEDxpKh7BFWdDUtv/EHZofKrQfAjAFiRWTWXwcaZkJ7GUvUBv98XIKu7wGm7uoCu m+d1ZJKlQFMMi34uFUtCg5VdAQvaPZ8P+sfWao1VdtembCw9TixX9IIP3EJZciEb n8LpCPOTnRfWQdV2nEVw0KyNlK9a11WKzIPw3FIew/k/zGhLgn+IGV6mDBeHiFuv 0i9v1+i7+ZyAPrS9cQJCfXfhU8vPpSu+7Zq/mwr3Vg7f1yLwGbnW0LS8RgtXSMIM bFTcRfdnA/yLtMs+BGicA4lGXMi1B9i/GYw9kq0kzt7EuIuHiBRxijFnz6t9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwHymR+YEIGwunu4tdM45Zo7IuFcwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFb4rS8jBHeNsFFnU104t59MyjfHlhUxmvW7 /TvddBEjoxUXQK1aKSwwDwgNaEQJUQiR2k4zxIOfDIOrvzIoWS6oyT0YpQfIJpXO 4Z10TGwsMf5SC30WNVpWCgRr6SRp5/xOhFY787KoCjfYKIxr0KyYUIRkz3WgBegu RVWq4FaYZ0ijRCJPtYDSIujOH40H4+WW4c6aovZqBgMAtlIeWh8z9RREjWt9rl1v m+5xy9wp25kdmnmGMORwCCpzszQyR75GRk3dSmrh9LfV50bdV/jqWO1PgtBZvIGM B3VAfPWeStp68tMticiVVRzU7C2lNb886K+0aaDnrhgLpMxij/c= -----END CERTIFICATE-----Generated at Mon Oct 20 09:45:21 2025 by rpki-client