$ rpki-client -vvf repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft File: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft (raw, json) Hash identifier: OMh8+rEFJJybByjg9gGQ7bJbEaTLxH+d1qv83e2MdKo= Subject key identifier: 08:F5:D6:31:30:6C:AC:40:18:24:5C:FB:1F:BC:80:23:20:22:76:6D Authority key identifier: 38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C Certificate issuer: /CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Certificate serial: 17CBDCDBC32EA08EA8909A007AABC134139F8CB3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft Manifest number: 051A Signing time: Sun 19 Oct 2025 02:22:08 +0000 Manifest this update: Sun 19 Oct 2025 02:17:08 +0000 Manifest next update: Wed 22 Oct 2025 11:23:08 +0000 Files and hashes: 1: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl (hash: JOgIzFqZNQEWXdPdcP6jVU5qBRn5J0wBHiCMJ4bqyIM=) 2: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: ShEOWvu/KCYTTrKo5vrKeCwlexfHyDbC4uTV8yZtzEM=) 3: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: wlegEJoNWqrWT2tySFrwLRqLsXDXFl0OFT0Nuvvp7LI=) 4: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: lX37Ym1HtH8/+BNNZ7vVVvmLTRPAVgTV6qXoJU01xNo=) 5: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: nLub1P+aFMPWReFe8FfiX+yqIND5D1X2l5ebLcrAixg=) 6: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: TuOuwC+HTY3+zsq30NoK3C4u4uR9Kt6tuzw+MAyTb4o=) 7: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: /yhg5qr+BfUwCEkWIHjx5Xurv6fbCx8q1w5UII3HZ8w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 11:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:cb:dc:db:c3:2e:a0:8e:a8:90:9a:00:7a:ab:c1:34:13:9f:8c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Validity Not Before: Oct 19 02:17:08 2025 GMT Not After : Oct 22 11:23:08 2025 GMT Subject: CN=08F5D631306CAC4018245CFB1FBC80232022766D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:b7:d9:03:f5:83:b2:a8:65:63:de:a6:86: 13:1a:5b:05:12:80:39:ad:db:07:a1:8a:5b:ba:08: cf:e5:fb:61:ad:46:96:39:3d:33:47:e0:8f:40:f0: 0e:9d:8d:bd:e5:96:f4:0d:83:80:97:a0:9a:17:66: 06:39:40:23:a2:eb:c7:0e:26:a1:ca:1a:69:50:fe: 99:f5:36:bb:4c:66:3c:e0:b0:88:f7:fb:3e:31:a9: c4:79:75:8f:ef:36:9c:09:a1:33:26:db:7d:9c:6b: ca:c9:32:ec:87:61:8a:7b:57:27:12:5d:9f:cd:98: d6:09:7d:0f:7f:8c:c4:95:44:98:4b:cb:07:5f:12: 0c:41:44:54:dc:d5:33:c0:49:6b:d5:e7:01:48:5b: 2d:1f:08:0f:17:35:19:0e:21:f0:c8:7d:b9:b0:96: d2:2e:f3:63:8f:74:2c:b6:d6:e7:89:2e:e6:f8:7b: 54:dd:73:94:34:dd:14:5e:1a:98:1a:e7:1e:83:b2: d5:d1:22:79:80:f9:d2:dc:60:db:0d:0b:b3:d9:46: 2f:78:2a:aa:ef:62:b9:1e:db:42:59:cb:d5:7b:50: 49:dd:95:6a:7e:c8:82:6c:a7:57:42:67:f7:9f:af: f0:da:e6:ad:07:08:21:dc:d0:b9:b7:ca:11:91:75: 33:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F5:D6:31:30:6C:AC:40:18:24:5C:FB:1F:BC:80:23:20:22:76:6D X509v3 Authority Key Identifier: keyid:38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:9d:13:27:c2:6e:83:50:12:f9:97:ea:13:9b:46:c6:67:72: 40:64:84:1b:7a:f1:9b:80:da:33:a5:0a:1a:e0:15:b4:3e:b6: c3:18:0a:fe:42:03:89:88:eb:c4:70:fa:e3:d8:64:cb:a7:89: b2:1d:29:1f:a0:ef:83:12:f4:79:2b:a2:84:fd:dd:60:02:81: 38:0d:a5:76:3e:65:68:2c:00:7e:ef:14:dc:64:2b:7a:78:6f: e4:ae:9a:38:1b:b7:0e:64:ff:7a:74:9f:be:da:3e:a4:68:27: 9a:c5:2e:d0:f2:86:c5:b9:22:54:45:db:aa:f6:61:0f:0d:1a: 1a:a4:0a:cd:a2:5c:4b:ab:88:b8:20:2b:35:59:39:79:67:6c: 43:58:1a:e4:4b:3b:24:d4:e5:d7:19:45:9c:b6:05:8b:ad:24: ac:c8:19:bf:ee:1c:38:e0:45:f2:c9:7b:43:46:a4:de:a3:e2: 80:e8:b8:94:2a:fc:ed:a4:08:59:60:ff:b8:99:37:3c:e8:2c: 1b:55:83:23:b8:82:95:0f:e3:08:59:58:e2:4d:6a:ac:2d:58: e7:76:a7:9f:d8:55:99:da:04:0a:86:3d:33:f4:9e:d4:78:6d: 23:1e:6b:51:09:5e:83:f7:e9:2b:31:8e:51:f6:93:8c:39:d2: 53:fc:d0:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF8vc28MuoI6okJoAeqvBNBOfjLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQw MTI1MkE1QzAeFw0yNTEwMTkwMjE3MDhaFw0yNTEwMjIxMTIzMDhaMDMxMTAvBgNV BAMTKDA4RjVENjMxMzA2Q0FDNDAxODI0NUNGQjFGQkM4MDIzMjAyMjc2NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9uLfZA/WDsqhlY96mhhMaWwUS gDmt2wehilu6CM/l+2GtRpY5PTNH4I9A8A6djb3llvQNg4CXoJoXZgY5QCOi68cO JqHKGmlQ/pn1NrtMZjzgsIj3+z4xqcR5dY/vNpwJoTMm232ca8rJMuyHYYp7VycS XZ/NmNYJfQ9/jMSVRJhLywdfEgxBRFTc1TPASWvV5wFIWy0fCA8XNRkOIfDIfbmw ltIu82OPdCy21ueJLub4e1Tdc5Q03RReGpga5x6DstXRInmA+dLcYNsNC7PZRi94 KqrvYrke20JZy9V7UEndlWp+yIJsp1dCZ/efr/Da5q0HCCHc0Lm3yhGRdTMTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCPXWMTBsrEAYJFz7H7yAIyAidm0wHwYDVR0j BBgwFoAUOJ58E89jRK65MAHNTFrHlAElKlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjAzMmJjOS02MDVhLTQyNTMtYTRjZC02MmYxMjQxMjZlYWMvMC8zODlFN0MxM0NG NjM0NEFFQjkzMDAxQ0Q0QzVBQzc5NDAxMjUyQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQwMTI1 MkE1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3 OTQwMTI1MkE1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADSdEyfCboNQEvmX6hObRsZnckBkhBt68ZuA 2jOlChrgFbQ+tsMYCv5CA4mI68Rw+uPYZMunibIdKR+g74MS9HkrooT93WACgTgN pXY+ZWgsAH7vFNxkK3p4b+Sumjgbtw5k/3p0n77aPqRoJ5rFLtDyhsW5IlRF26r2 YQ8NGhqkCs2iXEuriLggKzVZOXlnbENYGuRLOyTU5dcZRZy2BYutJKzIGb/uHDjg RfLJe0NGpN6j4oDouJQq/O2kCFlg/7iZNzzoLBtVgyO4gpUP4whZWOJNaqwtWOd2 p5/YVZnaBAqGPTP0ntR4bSMea1EJXoP36SsxjlH2k4w50lP80KU= -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:05 2025 by rpki-client