$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: LicjFcfFCjshUXFoZT7eVBEbrMtgaCXcfuL/jrO0p9Q= Subject key identifier: 7A:4A:72:BC:9E:AB:99:78:B2:67:D6:13:3C:50:98:ED:F1:4D:34:3F Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 2E052BFDD661B5D72F008A0F3ACA4AF894533648 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: C7 Signing time: Sat 18 Oct 2025 19:52:05 +0000 Manifest this update: Sat 18 Oct 2025 19:47:05 +0000 Manifest next update: Tue 21 Oct 2025 21:36:05 +0000 Files and hashes: 1: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 2: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 3: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 4: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 5: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: YKHYoY4SSm/3xtgeUbZd+eb1uIQDzMVAkk2CHSzOBYA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 21:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:05:2b:fd:d6:61:b5:d7:2f:00:8a:0f:3a:ca:4a:f8:94:53:36:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Oct 18 19:47:05 2025 GMT Not After : Oct 21 21:36:05 2025 GMT Subject: CN=7A4A72BC9EAB9978B267D6133C5098EDF14D343F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:aa:f8:f8:fc:41:7d:e8:40:65:5f:8e:2d:4b: 8d:d0:87:b5:09:e4:54:9f:5c:45:6a:e8:ac:37:c5: 20:99:e0:06:b0:08:18:78:8f:4e:92:27:71:da:b1: 66:c0:9e:29:3f:c8:8c:ed:ff:39:43:dd:b6:38:6f: c6:35:b1:5f:3f:d0:ec:14:d2:69:f2:76:01:c9:99: 8e:e8:7a:ca:a5:ca:7e:45:3b:a3:4e:95:1c:cc:20: c2:3c:b0:eb:e5:82:8d:05:1a:55:78:20:b1:f6:45: 9b:20:c2:d9:1c:43:f5:e1:ee:ba:b3:cf:87:90:bc: 1e:49:06:5b:4f:8c:10:f3:cc:70:c6:8b:bd:8c:c4: 09:10:8c:0e:a7:6a:dc:03:bf:02:a4:52:4c:ef:d9: 5c:f5:d1:56:51:9f:15:18:5c:8e:b7:e0:dd:ec:8e: 82:d4:cc:b5:f1:fd:00:a4:a1:06:40:55:61:e1:8c: 64:b3:81:6e:4a:ae:6d:1d:04:f8:33:70:83:08:0a: a1:12:bb:8b:43:78:dd:30:94:82:45:6f:b2:52:52: 24:42:96:84:f6:58:c1:18:9d:f6:af:98:60:0a:4a: fd:64:51:66:aa:4f:12:3c:b0:64:6e:af:3d:6b:51: 87:c9:c8:5f:f2:c7:56:1f:e3:e6:6a:78:84:47:4e: 65:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4A:72:BC:9E:AB:99:78:B2:67:D6:13:3C:50:98:ED:F1:4D:34:3F X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:02:c6:95:f2:50:56:7b:65:18:ae:bf:27:54:a8:8f:77:e3: 1a:b6:bd:85:bc:1d:81:37:91:d9:86:4e:e2:08:79:1b:54:fa: 3b:a3:b0:7a:a2:66:8d:d8:8d:ea:9c:2e:13:08:0a:75:09:4e: d6:c3:85:ac:17:2e:69:16:4d:68:82:95:08:87:94:be:e3:6c: f1:73:86:3d:25:0b:76:0f:29:d7:d1:8a:dd:a9:a9:1e:02:bb: 1f:33:c5:6e:76:41:64:c7:b4:03:2b:e8:a1:92:12:14:df:84: 18:5b:da:01:2f:d1:72:5b:42:df:9d:3f:da:c1:82:e6:fe:64: a8:f8:85:0d:3e:6f:68:af:1a:f7:d2:08:18:51:96:0d:48:6a: 53:ea:67:cf:df:5b:1c:13:43:56:fa:5e:7e:aa:22:e9:77:33: 23:f5:2f:6f:c3:ce:94:97:09:37:a2:d7:7e:5e:0c:cb:f4:5e: db:f9:c3:d6:8f:1a:08:65:4e:7b:69:58:e1:6e:b3:2c:a3:e2: f6:56:52:e4:0d:5c:93:6b:ef:7f:96:f4:5e:15:4d:f1:38:32: 82:a9:1f:6c:b8:2a:a3:13:fb:a7:1e:77:d0:81:44:5e:a5:1e: 59:fb:79:0a:93:a9:6c:f6:01:59:25:b7:8c:e3:44:ee:d1:ac: ba:2a:c3:c1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULgUr/dZhtdcvAIoPOspK+JRTNkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTEwMTgxOTQ3MDVaFw0yNTEwMjEyMTM2MDVaMDMxMTAvBgNV BAMTKDdBNEE3MkJDOUVBQjk5NzhCMjY3RDYxMzNDNTA5OEVERjE0RDM0M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaqvj4/EF96EBlX44tS43Qh7UJ 5FSfXEVq6Kw3xSCZ4AawCBh4j06SJ3HasWbAnik/yIzt/zlD3bY4b8Y1sV8/0OwU 0mnydgHJmY7oesqlyn5FO6NOlRzMIMI8sOvlgo0FGlV4ILH2RZsgwtkcQ/Xh7rqz z4eQvB5JBltPjBDzzHDGi72MxAkQjA6natwDvwKkUkzv2Vz10VZRnxUYXI634N3s joLUzLXx/QCkoQZAVWHhjGSzgW5Krm0dBPgzcIMICqESu4tDeN0wlIJFb7JSUiRC loT2WMEYnfavmGAKSv1kUWaqTxI8sGRurz1rUYfJyF/yx1Yf4+ZqeIRHTmW5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUekpyvJ6rmXiyZ9YTPFCY7fFNND8wHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE0CxpXyUFZ7ZRiuvydUqI934xq2vYW8HYE3 kdmGTuIIeRtU+jujsHqiZo3YjeqcLhMICnUJTtbDhawXLmkWTWiClQiHlL7jbPFz hj0lC3YPKdfRit2pqR4Cux8zxW52QWTHtAMr6KGSEhTfhBhb2gEv0XJbQt+dP9rB gub+ZKj4hQ0+b2ivGvfSCBhRlg1IalPqZ8/fWxwTQ1b6Xn6qIul3MyP1L2/DzpSX CTei135eDMv0Xtv5w9aPGghlTntpWOFusyyj4vZWUuQNXJNr73+W9F4VTfE4MoKp H2y4KqMT+6ced9CBRF6lHln7eQqTqWz2AVklt4zjRO7RrLoqw8E= -----END CERTIFICATE-----Generated at Mon Oct 20 21:20:55 2025 by rpki-client