$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft (raw, json) Hash identifier: xu/SSHX8HJvgrIGliCs8mbMi92PNEe3ysEIqR4HBnLs= Subject key identifier: F7:BF:BD:95:71:40:8F:5D:EB:57:66:3E:FD:DF:9C:19:7D:8B:B0:5C Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 10194E670F234B1A18EE3CEB51D1D3906E729E19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft Manifest number: 0141 Signing time: Sun 19 Oct 2025 14:42:09 +0000 Manifest this update: Sun 19 Oct 2025 14:37:09 +0000 Manifest next update: Wed 22 Oct 2025 23:00:09 +0000 Files and hashes: 1: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (hash: WtVfPZfCZ+ZExAyfqDCdWvXE48LKmIllvsd8uUvXohQ=) 2: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl (hash: xfnjoKljWk57lHRtNRnRzyeK48d08qo50G4VYmUl+0o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 23:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:19:4e:67:0f:23:4b:1a:18:ee:3c:eb:51:d1:d3:90:6e:72:9e:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Oct 19 14:37:09 2025 GMT Not After : Oct 22 23:00:09 2025 GMT Subject: CN=F7BFBD9571408F5DEB57663EFDDF9C197D8BB05C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4d:1f:0b:0b:06:6d:ce:27:27:db:f9:3e:01: 65:30:43:45:b5:e6:60:7b:32:8a:0a:d3:7f:ed:5f: 75:0d:83:7b:a0:f4:e4:a8:98:6f:2e:30:b3:e0:e4: d4:10:f1:0e:f8:8c:ad:8f:bf:62:40:39:3c:d5:88: 1b:7d:c2:ed:93:5b:d4:7d:1b:e1:52:b7:93:e1:bf: 97:bf:8a:de:1f:91:65:29:0e:89:e2:47:fe:c7:85: 48:dc:68:5a:f4:56:48:d8:34:51:ff:53:98:58:94: e6:76:c9:2a:d0:e7:aa:c0:71:77:26:80:b6:34:0f: 3a:e7:62:00:19:08:1a:42:f6:43:22:68:64:64:62: 8b:4b:51:96:cf:49:7d:75:5f:a9:30:30:65:dd:02: bf:65:04:7c:b1:1b:9a:fb:a0:44:a5:b5:77:a4:28: 3d:a7:99:9d:33:05:cc:3e:fe:a8:65:3f:63:9d:3a: 25:dd:8f:cb:b0:20:e8:20:65:31:fe:66:bc:d2:ae: 17:53:c6:3d:33:22:ec:b0:4c:c6:06:73:c2:21:c7: d4:b5:81:83:84:73:c6:1a:82:01:bc:88:cd:6d:3a: 56:d4:1d:60:a8:bc:d3:bc:a0:ec:86:de:05:86:29: ba:ca:72:0c:05:b7:e8:39:90:27:99:5f:4e:9b:4b: 43:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BF:BD:95:71:40:8F:5D:EB:57:66:3E:FD:DF:9C:19:7D:8B:B0:5C X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ba:8f:23:80:0e:28:14:b6:a6:98:59:91:8b:e5:93:47:59: 01:6c:f0:3d:f9:c8:d4:0d:96:24:37:78:c9:4a:f9:73:9f:87: f4:71:c8:f8:af:72:a4:cc:90:b1:b9:ae:e2:27:a8:99:48:0c: 1a:92:92:0c:d9:cc:c3:6b:f7:d3:33:61:f9:78:78:41:73:e4: d6:8b:40:10:7e:89:c4:0e:cd:4e:a8:59:ee:b6:cf:c5:2b:38: 29:18:20:b7:c6:58:1b:af:82:83:9a:5e:9e:c3:11:3f:80:20: 29:88:93:a8:7d:a4:8a:74:cf:0f:f7:fc:27:ab:9d:79:92:02: 6b:ab:60:3e:5b:49:e9:7b:df:6c:4c:9d:ed:53:ac:87:0d:b5: 34:8e:12:30:cc:c1:9d:f5:3e:6d:e6:22:d2:69:3b:bc:5f:f4: 72:12:2f:ab:b4:30:67:2d:d1:c3:ea:a3:07:a0:e2:73:c6:92: 3d:a9:fa:17:03:6c:ab:7d:df:ff:9e:e8:5f:8a:37:27:bf:84: 5f:91:b2:41:41:a8:4b:71:0d:05:bc:4e:98:c6:15:15:b1:c5: 20:87:79:78:2d:8a:90:5f:d0:be:e5:63:22:e1:c7:9a:74:f2: 27:53:b0:ab:0b:9b:ac:a9:b2:d7:6c:0e:6d:5a:ff:76:40:aa: 9e:b9:d8:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEBlOZw8jSxoY7jzrUdHTkG5ynhkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNTEwMTkxNDM3MDlaFw0yNTEwMjIyMzAwMDlaMDMxMTAvBgNV BAMTKEY3QkZCRDk1NzE0MDhGNURFQjU3NjYzRUZEREY5QzE5N0Q4QkIwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhTR8LCwZtzicn2/k+AWUwQ0W1 5mB7MooK03/tX3UNg3ug9OSomG8uMLPg5NQQ8Q74jK2Pv2JAOTzViBt9wu2TW9R9 G+FSt5Phv5e/it4fkWUpDoniR/7HhUjcaFr0VkjYNFH/U5hYlOZ2ySrQ56rAcXcm gLY0DzrnYgAZCBpC9kMiaGRkYotLUZbPSX11X6kwMGXdAr9lBHyxG5r7oESltXek KD2nmZ0zBcw+/qhlP2OdOiXdj8uwIOggZTH+ZrzSrhdTxj0zIuywTMYGc8Ihx9S1 gYOEc8YaggG8iM1tOlbUHWCovNO8oOyG3gWGKbrKcgwFt+g5kCeZX06bS0N5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU97+9lXFAj13rV2Y+/d+cGX2LsFwwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODExZDlhYmMtNDk4Ny00ZGJjLTk3 NmQtM2YzMmIyOTE3MTVkLzAvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQy NEZENDBGQjhDMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA66jyOADigUtqaYWZGL5ZNHWQFs8D35yNQN liQ3eMlK+XOfh/RxyPivcqTMkLG5ruInqJlIDBqSkgzZzMNr99MzYfl4eEFz5NaL QBB+icQOzU6oWe62z8UrOCkYILfGWBuvgoOaXp7DET+AICmIk6h9pIp0zw/3/Cer nXmSAmurYD5bSel732xMne1TrIcNtTSOEjDMwZ31Pm3mItJpO7xf9HISL6u0MGct 0cPqoweg4nPGkj2p+hcDbKt93/+e6F+KNye/hF+RskFBqEtxDQW8TpjGFRWxxSCH eXgtipBf0L7lYyLhx5p08idTsKsLm6ypstdsDm1a/3ZAqp652EY= -----END CERTIFICATE-----Generated at Mon Oct 20 20:28:25 2025 by rpki-client