$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: 5v/vJDxulzwlZYAcpf74N2Rt5eiBN4NtbjSNMiLiXB8= Subject key identifier: 90:DF:88:92:4D:F4:52:B2:DC:E7:AC:A9:C2:08:F0:36:DE:BC:EC:F0 Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 3FF105F917620E0C00ADA6A940ABB52C4C174B64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 0212 Signing time: Sun 19 Oct 2025 20:20:53 +0000 Manifest this update: Sun 19 Oct 2025 20:15:53 +0000 Manifest next update: Wed 22 Oct 2025 20:25:53 +0000 Files and hashes: 1: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: 4ByFeqb5FYNNP0bEHoJRJ2w7aQJ1JhQl8sfkaXUc3ac=) 2: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: NcRBqt1Wn/tuGvM1xfS0JFewwd6sRo22gfKxjNahc88=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 20:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f1:05:f9:17:62:0e:0c:00:ad:a6:a9:40:ab:b5:2c:4c:17:4b:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Oct 19 20:15:53 2025 GMT Not After : Oct 22 20:25:53 2025 GMT Subject: CN=90DF88924DF452B2DCE7ACA9C208F036DEBCECF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:30:b5:e7:93:8b:34:cc:02:59:13:14:a4:98: 58:45:0b:8c:fa:08:16:ac:98:5b:c2:90:85:29:47: ec:f8:0a:55:97:17:7d:6c:1d:5c:a6:50:1b:be:06: 66:68:9d:80:1d:e2:c1:a9:61:3b:cd:09:91:37:57: fc:fb:ed:3f:a6:66:96:db:1c:34:91:b8:66:2f:eb: 84:a7:03:12:bd:65:32:76:5e:0c:a9:77:d7:1a:53: c3:d3:3c:d8:85:83:29:13:2d:0b:4a:10:54:4c:47: f7:7b:9d:5b:1b:32:cb:cc:47:31:02:0c:ee:36:4c: 3c:08:75:39:40:56:b9:77:ff:b8:9e:70:8a:02:19: 4c:c3:4f:52:9c:d8:35:88:b2:d6:49:e9:b6:3e:47: af:2c:25:3e:35:e8:13:38:be:2b:5a:a2:17:02:5c: 2d:28:13:0d:f4:e6:0f:b2:50:ba:46:30:35:6a:f7: 8c:1f:fd:70:6a:8e:6e:07:9e:4a:ac:8c:7d:39:b0: 32:8b:cb:60:92:c1:b4:8a:35:f5:93:3d:a8:5b:63: 64:37:01:7a:af:23:6d:09:23:54:d8:95:c4:da:56: de:e5:ec:90:01:fa:d8:76:9f:f7:f7:ee:8a:e2:52: 31:b5:c9:e7:56:36:05:fe:20:62:78:29:11:a2:b6: cf:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DF:88:92:4D:F4:52:B2:DC:E7:AC:A9:C2:08:F0:36:DE:BC:EC:F0 X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:3f:37:67:11:d0:c5:6a:63:3a:a4:1f:bf:80:27:6c:50:5f: d5:62:82:2f:60:12:e6:3b:ee:9b:5d:cb:f7:5a:8f:01:0f:6e: 2c:a9:4b:f6:28:3d:ca:09:e7:ef:f3:51:88:48:e1:2a:aa:d3: df:73:97:74:f4:28:95:3e:54:4b:0a:80:25:f6:73:6f:ad:2f: 7d:9b:54:5e:87:5e:a4:c2:9b:ce:80:43:e8:39:4d:86:f4:69: 06:12:e7:be:b1:c0:c7:47:0a:ef:1c:59:02:c5:cf:e0:f1:fc: fb:19:60:91:f9:38:2e:c8:67:e8:b1:ce:82:74:f3:3a:5e:38: 1b:34:50:d0:43:98:e5:11:15:8e:5c:b5:76:e3:ca:84:8f:07: d8:84:a6:d6:f6:76:c7:b3:ab:40:19:cf:59:3f:08:7e:f1:b2: 61:58:c6:0b:f9:12:cb:5c:4b:a4:b1:96:1e:96:0d:51:a9:8d: 1f:24:74:a6:f1:66:c8:a3:a9:eb:52:22:5b:47:45:c8:02:45: 3f:1b:fa:14:2b:13:14:b4:34:2d:4e:c0:9b:77:4b:54:8d:d3: 21:96:87:15:0c:80:3d:4b:85:e3:96:3f:19:a9:5d:8d:67:8d: 44:9b:21:ab:7e:5c:77:1f:00:34:46:13:7e:0d:56:87:dc:0b: ba:41:93:3e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP/EF+RdiDgwAraapQKu1LEwXS2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNTEwMTkyMDE1NTNaFw0yNTEwMjIyMDI1NTNaMDMxMTAvBgNV BAMTKDkwREY4ODkyNERGNDUyQjJEQ0U3QUNBOUMyMDhGMDM2REVCQ0VDRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaMLXnk4s0zAJZExSkmFhFC4z6 CBasmFvCkIUpR+z4ClWXF31sHVymUBu+BmZonYAd4sGpYTvNCZE3V/z77T+mZpbb HDSRuGYv64SnAxK9ZTJ2Xgypd9caU8PTPNiFgykTLQtKEFRMR/d7nVsbMsvMRzEC DO42TDwIdTlAVrl3/7iecIoCGUzDT1Kc2DWIstZJ6bY+R68sJT416BM4vitaohcC XC0oEw305g+yULpGMDVq94wf/XBqjm4HnkqsjH05sDKLy2CSwbSKNfWTPahbY2Q3 AXqvI20JI1TYlcTaVt7l7JAB+th2n/f37oriUjG1yedWNgX+IGJ4KRGits/9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkN+Ikk30UrLc56ypwgjwNt687PAwHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADQ/N2cR0MVqYzqkH7+AJ2xQX9Vigi9gEuY7 7ptdy/dajwEPbiypS/YoPcoJ5+/zUYhI4Sqq099zl3T0KJU+VEsKgCX2c2+tL32b VF6HXqTCm86AQ+g5TYb0aQYS576xwMdHCu8cWQLFz+Dx/PsZYJH5OC7IZ+ixzoJ0 8zpeOBs0UNBDmOURFY5ctXbjyoSPB9iEptb2dsezq0AZz1k/CH7xsmFYxgv5Estc S6Sxlh6WDVGpjR8kdKbxZsijqetSIltHRcgCRT8b+hQrExS0NC1OwJt3S1SN0yGW hxUMgD1LheOWPxmpXY1njUSbIat+XHcfADRGE34NVofcC7pBkz4= -----END CERTIFICATE-----Generated at Mon Oct 20 12:34:18 2025 by rpki-client