$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft File: 157E8817E413B3A8B2866190AD82151E868B1FA7.mft (raw, json) Hash identifier: kJ/3OPNAcKEm7qBKstGDf2VxLfBNiS+zz/H+KXL5a1g= Subject key identifier: 67:7B:3F:26:A6:F2:D6:81:C5:80:A0:08:D6:95:3A:2E:DE:4A:0A:14 Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 60C9BE7C2BA574D1963E226444B208DF5562F735 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft Manifest number: 0206 Signing time: Sun 19 Oct 2025 19:02:19 +0000 Manifest this update: Sun 19 Oct 2025 18:57:19 +0000 Manifest next update: Thu 23 Oct 2025 05:23:19 +0000 Files and hashes: 1: 157E8817E413B3A8B2866190AD82151E868B1FA7.crl (hash: R7eUnJ6HJVerPJX9XwEssb5KKtth6iL9KJvQ8plRbr4=) 2: 3130332e3132312e3139362e302f32342d3234203d3e20313439373130.roa (hash: lpSwfmAmKL23RbErKtEZj4srMqeOQng2UqSoQbv0+GE=) 3: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (hash: 2eKYMh+o40ipOAi8hjr+a/aFZYlLyRfS6uvyieWq8yI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:c9:be:7c:2b:a5:74:d1:96:3e:22:64:44:b2:08:df:55:62:f7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: Oct 19 18:57:19 2025 GMT Not After : Oct 23 05:23:19 2025 GMT Subject: CN=677B3F26A6F2D681C580A008D6953A2EDE4A0A14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fb:03:2b:00:74:57:bd:14:9e:04:80:1e:46: 3b:01:0b:15:9a:29:33:b0:22:39:8f:ed:ad:b6:1a: 25:06:ff:49:6d:71:58:b6:e6:15:0f:f6:7b:43:d6: 36:20:12:a5:c0:60:cd:9a:3e:24:01:e1:52:38:25: 2a:88:c1:1a:ec:50:1c:09:e1:04:b1:94:ff:f3:7a: f9:86:d9:2a:f5:86:ac:d1:03:03:04:b7:fd:a4:db: 9c:78:dd:6b:80:75:62:c5:e4:af:64:46:bc:56:1e: fb:af:8b:64:3d:76:ed:25:91:62:b7:9f:0a:43:16: 56:51:12:5e:96:93:c8:dd:79:43:47:10:0b:61:2b: eb:89:e4:ca:19:a0:1b:25:bb:59:2d:a0:b4:e4:1e: e7:5d:ad:5d:99:fc:32:b3:5a:b2:2d:eb:d7:40:75: de:91:0f:74:85:45:7a:96:d9:b1:e2:1f:80:10:0c: 43:98:7d:f3:b9:61:4d:94:28:fe:dc:f6:76:d4:08: a0:b2:b6:49:2c:b3:b3:3f:35:49:c0:2c:b0:16:7f: 5b:02:c0:ba:26:70:b8:80:cf:bf:90:7c:99:2b:0c: 15:5c:79:90:d3:1d:38:79:f8:25:95:17:a8:7e:03: 4e:25:92:e1:c5:35:3d:f8:4a:ec:a1:92:22:f5:a2: 94:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:7B:3F:26:A6:F2:D6:81:C5:80:A0:08:D6:95:3A:2E:DE:4A:0A:14 X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a3:94:d8:b4:34:4d:c1:f1:21:5b:3a:d1:d1:4d:5d:5d:0a: f4:45:e2:f9:35:3f:9c:97:3c:3c:c7:a4:70:71:79:b3:67:da: 50:77:ab:1a:2f:62:e1:4c:83:5f:a4:d0:ea:30:5b:86:58:db: 55:01:0b:33:f8:e8:9a:d1:2c:96:47:37:1d:0c:48:91:e8:32: 76:bc:28:fc:9f:29:ee:15:aa:48:e6:7c:41:cf:0d:fe:6a:b9: f5:e9:1f:0f:67:db:cf:19:aa:5d:c9:81:52:5b:38:86:7b:a7: c5:4b:e9:2a:e0:eb:a2:e2:d4:72:30:e9:70:e5:65:1f:5f:17: 41:5a:f0:8f:97:ab:4c:cf:59:ed:b6:35:af:80:eb:ed:25:c4: 34:15:93:27:b1:0a:18:33:41:95:45:1b:af:42:b4:eb:40:e1: b3:7e:99:47:df:4d:1a:95:4e:1e:ce:e5:90:53:6c:4e:67:4f: a2:42:db:41:d9:84:08:7a:7d:6d:5b:12:a2:e2:f7:26:32:63: 2a:10:b8:12:b4:be:6b:d1:07:0d:81:16:96:6c:d3:e1:cb:bd: 66:29:b1:09:91:fd:63:42:dc:85:3b:78:13:33:d2:7e:64:ed: 66:48:4e:39:96:36:8b:c2:a8:01:e9:91:75:68:e5:84:11:ef: 2f:74:a3:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYMm+fCuldNGWPiJkRLII31Vi9zUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNTEwMTkxODU3MTlaFw0yNTEwMjMwNTIzMTlaMDMxMTAvBgNV BAMTKDY3N0IzRjI2QTZGMkQ2ODFDNTgwQTAwOEQ2OTUzQTJFREU0QTBBMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ+wMrAHRXvRSeBIAeRjsBCxWa KTOwIjmP7a22GiUG/0ltcVi25hUP9ntD1jYgEqXAYM2aPiQB4VI4JSqIwRrsUBwJ 4QSxlP/zevmG2Sr1hqzRAwMEt/2k25x43WuAdWLF5K9kRrxWHvuvi2Q9du0lkWK3 nwpDFlZREl6Wk8jdeUNHEAthK+uJ5MoZoBslu1ktoLTkHuddrV2Z/DKzWrIt69dA dd6RD3SFRXqW2bHiH4AQDEOYffO5YU2UKP7c9nbUCKCytkkss7M/NUnALLAWf1sC wLomcLiAz7+QfJkrDBVceZDTHTh5+CWVF6h+A04lkuHFNT34SuyhkiL1opT3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZ3s/Jqby1oHFgKAI1pU6Lt5KChQwHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODNjZDYwYjItMGY1Ny00ZmM1LWJj NjItMWQ5YjZjNDhmY2YwLzAvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1 MUU4NjhCMUZBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE6jlNi0NE3B8SFbOtHRTV1dCvRF4vk1P5yX PDzHpHBxebNn2lB3qxovYuFMg1+k0OowW4ZY21UBCzP46JrRLJZHNx0MSJHoMna8 KPyfKe4VqkjmfEHPDf5qufXpHw9n288Zql3JgVJbOIZ7p8VL6Srg66Li1HIw6XDl ZR9fF0Fa8I+Xq0zPWe22Na+A6+0lxDQVkyexChgzQZVFG69CtOtA4bN+mUffTRqV Th7O5ZBTbE5nT6JC20HZhAh6fW1bEqLi9yYyYyoQuBK0vmvRBw2BFpZs0+HLvWYp sQmR/WNC3IU7eBMz0n5k7WZITjmWNovCqAHpkXVo5YQR7y90ox4= -----END CERTIFICATE-----Generated at Mon Oct 20 12:34:22 2025 by rpki-client