$ rpki-client -vvf repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft File: 41071AAF0C0E6BD84877680334B4F604B4B4E786.mft (raw, json) Hash identifier: abriLAtEl5Yv8euzja8ualTWGVwpH8tq256zY/ZazUM= Subject key identifier: 21:9D:C9:F7:72:F2:2A:31:CC:23:17:9D:5E:6D:EC:FE:12:25:18:6D Authority key identifier: 41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 Certificate issuer: /CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Certificate serial: 0A4C0E623B15580F619738970CBD3A70EC123CAE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft Manifest number: 0210 Signing time: Tue 21 Oct 2025 10:02:12 +0000 Manifest this update: Tue 21 Oct 2025 09:57:12 +0000 Manifest next update: Fri 24 Oct 2025 17:20:12 +0000 Files and hashes: 1: 3130332e3136372e322e302f32342d3234203d3e20313431393637.roa (hash: S3FgE0+gcaLyx6nH2zsRG+Hi0BgVRkLf/ndGC4F7z/0=) 2: 41071AAF0C0E6BD84877680334B4F604B4B4E786.crl (hash: O9suzBDYz5hx0De9L5mUKuvkNUH5DOyLQTFXVTJs1MQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4c:0e:62:3b:15:58:0f:61:97:38:97:0c:bd:3a:70:ec:12:3c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Validity Not Before: Oct 21 09:57:12 2025 GMT Not After : Oct 24 17:20:12 2025 GMT Subject: CN=219DC9F772F22A31CC23179D5E6DECFE1225186D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:56:5e:eb:36:91:06:f4:ae:a4:d4:4a:a6:92: a8:fa:77:c3:64:77:7d:c7:96:2e:b0:a4:41:59:d2: 4e:28:b3:37:c6:c6:89:5c:d2:ea:31:d9:74:ab:17: 3d:d8:34:9e:13:57:e3:ef:5e:bd:10:32:74:5c:78: 7f:a4:39:e8:6f:35:5c:cf:ce:65:c9:54:91:c3:4e: b9:61:bc:72:59:03:47:a9:17:e8:67:36:0e:be:34: 82:a8:01:50:b4:66:8b:c0:80:7d:a3:28:a8:60:0d: 83:f4:db:ed:8a:6a:12:c2:a9:74:e1:a0:98:0b:67: 48:7c:53:28:76:63:3c:76:e2:f9:ef:97:36:a8:ad: 90:f5:2a:8b:50:e8:95:62:77:81:8f:6a:91:06:73: 5f:60:3e:2d:e1:96:09:f8:17:ce:aa:c8:6a:92:36: ea:b0:30:1e:c5:76:e3:c0:e3:05:7d:d2:bf:60:76: c4:24:79:02:68:89:e7:c3:cf:06:39:ef:ff:e8:c1: 61:a8:31:57:92:65:07:7e:70:81:12:ec:cc:0b:26: eb:fb:01:14:70:f5:9e:46:50:d1:09:c7:ba:06:aa: 84:40:49:a5:46:47:74:14:25:6b:34:aa:f8:e6:df: 63:7b:a8:bf:0c:d9:42:f2:ba:8f:fa:9b:1b:66:1d: 7f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9D:C9:F7:72:F2:2A:31:CC:23:17:9D:5E:6D:EC:FE:12:25:18:6D X509v3 Authority Key Identifier: keyid:41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:b5:24:18:16:c2:0e:c9:ef:da:cb:28:16:e5:12:c6:26:7e: ee:8e:03:6d:c1:c4:6a:33:5c:0a:91:1d:79:dd:1c:73:46:ba: 3f:b3:11:da:0b:86:68:fb:f6:4e:b6:3f:bc:1e:a2:0d:67:f6: 6c:0b:48:8e:0c:0e:af:9f:bc:9f:fd:b5:9c:ca:b6:b9:47:fe: d3:3e:48:b8:d3:83:27:a0:a8:a4:9c:ef:ab:6b:e4:7a:2a:6e: d0:39:31:d3:c1:48:96:ba:e6:9d:f5:d8:3c:0e:45:f7:93:63: fe:7e:0c:db:9b:99:b3:b8:8d:66:7e:b0:0f:2d:7b:15:8f:da: 10:0a:05:0d:c8:df:10:82:03:65:5e:c8:9d:21:18:72:62:0a: 67:23:bc:fa:10:c5:ad:0f:99:8c:d6:48:c9:22:c6:9e:e1:7c: 16:c5:e9:a8:5d:31:2c:9e:92:6f:3b:ee:5a:5b:f0:9c:60:7c: 68:e9:64:57:96:46:72:ec:4d:ab:15:2c:0f:b0:30:bb:53:45: a7:25:ee:d3:53:b6:84:3f:fb:73:57:9b:bd:8a:28:82:0e:53: 51:70:c8:7e:4b:2b:55:a6:24:8c:de:8b:fe:e0:9f:2b:85:8d: ef:c5:6d:9c:77:e8:0b:a0:42:ec:22:00:1d:b9:c3:92:c4:5c: 9e:41:97:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCkwOYjsVWA9hlziXDL06cOwSPK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRC NEI0RTc4NjAeFw0yNTEwMjEwOTU3MTJaFw0yNTEwMjQxNzIwMTJaMDMxMTAvBgNV BAMTKDIxOURDOUY3NzJGMjJBMzFDQzIzMTc5RDVFNkRFQ0ZFMTIyNTE4NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Vl7rNpEG9K6k1Eqmkqj6d8Nk d33Hli6wpEFZ0k4oszfGxolc0uox2XSrFz3YNJ4TV+PvXr0QMnRceH+kOehvNVzP zmXJVJHDTrlhvHJZA0epF+hnNg6+NIKoAVC0ZovAgH2jKKhgDYP02+2KahLCqXTh oJgLZ0h8Uyh2Yzx24vnvlzaorZD1KotQ6JVid4GPapEGc19gPi3hlgn4F86qyGqS NuqwMB7FduPA4wV90r9gdsQkeQJoiefDzwY57//owWGoMVeSZQd+cIES7MwLJuv7 ARRw9Z5GUNEJx7oGqoRASaVGR3QUJWs0qvjm32N7qL8M2ULyuo/6mxtmHX/JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIZ3J93LyKjHMIxedXm3s/hIlGG0wHwYDVR0j BBgwFoAUQQcarwwOa9hId2gDNLT2BLS054YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTI3YjNlMS1mNjExLTRhZmUtOWE0OS01ZmE0ZmQ1NTc2NTMvMC80MTA3MUFBRjBD MEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0QjRFNzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRCNEI0 RTc4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2UyN2IzZTEtZjYxMS00YWZlLTlh NDktNWZhNGZkNTU3NjUzLzAvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2 MDRCNEI0RTc4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGq1JBgWwg7J79rLKBblEsYmfu6OA23BxGoz XAqRHXndHHNGuj+zEdoLhmj79k62P7weog1n9mwLSI4MDq+fvJ/9tZzKtrlH/tM+ SLjTgyegqKSc76tr5HoqbtA5MdPBSJa65p312DwORfeTY/5+DNubmbO4jWZ+sA8t exWP2hAKBQ3I3xCCA2VeyJ0hGHJiCmcjvPoQxa0PmYzWSMkixp7hfBbF6ahdMSye km877lpb8JxgfGjpZFeWRnLsTasVLA+wMLtTRacl7tNTtoQ/+3NXm72KKIIOU1Fw yH5LK1WmJIzei/7gnyuFje/FbZx36AugQuwiAB25w5LEXJ5Bl6A= -----END CERTIFICATE-----Generated at Tue Oct 21 16:09:21 2025 by rpki-client