$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: jHbGsogY8s5MyA/DEjqTKdrOs2jj6ocHnY+6D1cSA4Y= Subject key identifier: 82:CE:08:AB:ED:F1:11:56:BE:C9:52:F6:FF:EE:6B:6E:97:E5:4C:48 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 141F589EECB8AF9A0AAC81828DA578DE3CC96378 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0269 Signing time: Sat 18 Oct 2025 11:30:59 +0000 Manifest this update: Sat 18 Oct 2025 11:25:59 +0000 Manifest next update: Tue 21 Oct 2025 22:17:59 +0000 Files and hashes: 1: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=) 2: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) 3: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: rlZNRe9QwPDxRgCp5O054ihVTvOafRmbaG0Hj+9kO5Q=) 4: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: 4JKYwvf9zvfV/GFbYAo9P9yiWrcvnpgxGxzA/f/aMas=) 5: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: 4O8b726/lpcYZIzCbq+BOqW7rrh6L+bwyN5I34NP9Oc=) 6: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: PxQIpqbQq2jLhpu3Xowhx5fys0b4IY/JPo7Tka0HdFo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 22:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1f:58:9e:ec:b8:af:9a:0a:ac:81:82:8d:a5:78:de:3c:c9:63:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Oct 18 11:25:59 2025 GMT Not After : Oct 21 22:17:59 2025 GMT Subject: CN=82CE08ABEDF11156BEC952F6FFEE6B6E97E54C48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8b:de:08:56:b4:c3:6b:54:0f:e9:8c:9d:6a: c4:46:04:d3:88:2d:38:be:63:66:19:19:82:4c:fc: e8:f8:7d:22:41:5c:46:8d:e8:0b:14:26:8e:74:65: a4:39:4b:fd:c3:2e:a6:3c:d4:0f:50:84:f6:5f:64: 34:66:dc:79:9f:5a:f9:0f:fe:9b:5d:a1:e2:85:e2: 7b:ed:7d:bd:ad:6e:f3:2b:1b:cd:ed:ec:64:f8:b5: a3:8c:64:a2:c3:59:d6:e9:4c:f0:2b:db:48:4e:cc: 79:34:fc:b5:dc:9b:c1:ad:a7:0d:b6:d5:cc:57:83: 1d:9d:32:aa:9d:58:b4:e0:5e:04:c0:fa:42:27:35: 5d:29:91:7e:d2:1e:96:b7:08:c2:42:1f:35:1c:b7: 77:6c:cd:60:fa:20:41:b8:d5:d2:13:d5:b9:74:5a: 24:55:ea:41:9b:29:dc:da:bd:c2:f2:b2:c5:21:83: aa:0a:5d:1b:5d:7a:cb:11:67:df:7e:e4:76:97:f4: 34:16:65:e1:d5:ea:6e:34:91:13:71:35:d7:6e:2f: 49:5f:91:d6:59:18:6b:1a:39:dc:78:15:3c:ad:68: ab:60:05:d6:45:1c:03:ed:af:d1:6e:a4:13:fd:31: 3f:7b:8d:69:75:6d:e3:82:04:4b:96:1f:55:a3:1e: 2f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CE:08:AB:ED:F1:11:56:BE:C9:52:F6:FF:EE:6B:6E:97:E5:4C:48 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:2e:78:80:e7:bb:39:b8:b7:5d:aa:2c:d1:a4:43:4b:37:b1: 28:12:f5:6e:b8:4b:21:ea:d0:ff:69:21:ad:39:0f:af:cc:18: bc:f5:de:fc:ac:01:62:2a:23:4c:03:70:92:6f:81:b4:23:5e: 91:0d:c7:f4:c8:c2:d9:a7:c8:89:cf:6b:ca:8e:09:44:95:08: 35:67:b5:c7:15:a5:15:ab:89:ae:30:29:f8:42:06:6b:30:e1: 72:ad:61:6e:74:4f:a5:ef:68:2e:f2:50:e0:1c:5a:8d:1c:9a: 41:87:65:e0:f7:6d:64:6d:1d:99:93:01:60:f2:48:19:be:f4: 75:55:67:b3:65:2b:d2:36:b1:7e:9f:13:25:fc:68:43:5d:ba: 77:b4:49:39:fb:55:86:86:f1:2a:cf:f7:39:87:59:2e:b5:37: f8:54:71:2a:fd:04:1f:99:4b:4d:28:9d:66:5e:b9:b2:02:d8: a6:99:ad:f6:4a:c8:33:a1:f4:53:6a:d5:62:de:35:a9:b9:1d: 1f:e3:55:ff:ac:d9:f1:a6:7f:c7:ad:35:87:d0:12:36:f7:94: 74:c0:2b:ef:62:67:33:da:bf:ed:63:33:dd:f2:4a:bd:d6:1f: fe:bd:57:67:a6:93:31:35:01:3f:b0:f3:c6:08:68:af:70:00: 7d:d0:ae:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFB9Ynuy4r5oKrIGCjaV43jzJY3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTEwMTgxMTI1NTlaFw0yNTEwMjEyMjE3NTlaMDMxMTAvBgNV BAMTKDgyQ0UwOEFCRURGMTExNTZCRUM5NTJGNkZGRUU2QjZFOTdFNTRDNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDii94IVrTDa1QP6YydasRGBNOI LTi+Y2YZGYJM/Oj4fSJBXEaN6AsUJo50ZaQ5S/3DLqY81A9QhPZfZDRm3HmfWvkP /ptdoeKF4nvtfb2tbvMrG83t7GT4taOMZKLDWdbpTPAr20hOzHk0/LXcm8Gtpw22 1cxXgx2dMqqdWLTgXgTA+kInNV0pkX7SHpa3CMJCHzUct3dszWD6IEG41dIT1bl0 WiRV6kGbKdzavcLyssUhg6oKXRtdessRZ99+5HaX9DQWZeHV6m40kRNxNdduL0lf kdZZGGsaOdx4FTytaKtgBdZFHAPtr9FupBP9MT97jWl1beOCBEuWH1WjHi/5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgs4Iq+3xEVa+yVL2/+5rbpflTEgwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAAueIDnuzm4t12qLNGkQ0s3sSgS9W64SyHq 0P9pIa05D6/MGLz13vysAWIqI0wDcJJvgbQjXpENx/TIwtmnyInPa8qOCUSVCDVn tccVpRWria4wKfhCBmsw4XKtYW50T6XvaC7yUOAcWo0cmkGHZeD3bWRtHZmTAWDy SBm+9HVVZ7NlK9I2sX6fEyX8aENdune0STn7VYaG8SrP9zmHWS61N/hUcSr9BB+Z S00onWZeubIC2KaZrfZKyDOh9FNq1WLeNam5HR/jVf+s2fGmf8etNYfQEjb3lHTA K+9iZzPav+1jM93ySr3WH/69V2emkzE1AT+w88YIaK9wAH3Qrnk= -----END CERTIFICATE-----Generated at Mon Oct 20 15:00:38 2025 by rpki-client