$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft File: 2FD08E6755CF1CCAAF9D5834449797848A706B57.mft (raw, json) Hash identifier: MUfrVk2GmjsIWTUtNkjckDN7ayEsW9f6AUlAmSP0NvA= Subject key identifier: 0D:05:0A:09:CB:11:D1:8B:53:E9:65:ED:68:66:D2:7B:25:9E:E1:D5 Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 447BBF088FD18F5B311E44F0B21055504412BED7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft Manifest number: 03BE Signing time: Sat 18 Oct 2025 14:11:59 +0000 Manifest this update: Sat 18 Oct 2025 14:06:59 +0000 Manifest next update: Tue 21 Oct 2025 14:18:59 +0000 Files and hashes: 1: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (hash: QZlEVkF+HK3hEYAiWRapnYHmq7/bX0k5ZRTsDh0lSOE=) 2: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (hash: 73VvZzU4m43+fgjvOlr3Vv7ZHMtLS9jm+/QTGsOwFck=) 3: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (hash: XjGDHZwetIWHjLp7+uPq3/exRvIl0m5tUGNnQVZ+/fU=) 4: 2FD08E6755CF1CCAAF9D5834449797848A706B57.crl (hash: GCN7uOxna75PETdeVJBjgvLhic7YSZuUpfIp8iIa5do=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 14:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7b:bf:08:8f:d1:8f:5b:31:1e:44:f0:b2:10:55:50:44:12:be:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Oct 18 14:06:59 2025 GMT Not After : Oct 21 14:18:59 2025 GMT Subject: CN=0D050A09CB11D18B53E965ED6866D27B259EE1D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:22:a3:6b:fd:66:03:70:21:ae:86:0e:09:f7: 3a:f3:00:06:c9:98:1f:5e:aa:bf:55:c3:7c:eb:06: fb:2b:57:3d:d6:ea:12:d9:41:77:51:63:01:21:4e: 87:d5:0d:1c:97:26:7e:2a:58:24:cb:77:7f:75:40: b0:78:50:f4:71:da:a0:0d:59:b4:8c:7b:ee:39:c5: 01:3f:78:bd:86:90:90:b6:d6:77:50:73:49:9b:c0: 22:e2:fe:74:14:0b:27:8d:52:53:0c:e3:fb:cb:52: 7b:53:32:83:1f:24:4f:e1:ad:05:cb:0d:dc:c2:9a: fe:c3:25:6d:7f:cc:8c:1a:81:44:42:12:c7:b0:5e: 2d:2f:38:bc:0b:ae:82:d2:fb:c9:27:a3:77:8f:ce: 8b:bf:05:ec:b0:ef:d6:09:0d:db:b7:18:65:59:81: 45:88:11:fd:f9:fc:77:21:1a:25:7d:0b:73:f4:33: b4:6e:80:7f:82:e8:c9:ea:14:aa:dc:e2:52:c7:2b: d9:c4:40:bf:4f:8e:6b:31:c1:11:f3:bb:ca:87:21: 4a:1b:09:cf:ab:55:88:65:bc:3a:02:d3:b8:32:6f: 77:99:95:f2:c0:c1:40:b3:ad:19:df:e0:05:8e:49: fa:3b:8f:1a:98:05:bd:6d:db:b0:87:02:8f:91:07: f4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:05:0A:09:CB:11:D1:8B:53:E9:65:ED:68:66:D2:7B:25:9E:E1:D5 X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2a:06:9b:69:77:4c:ca:e8:3e:35:db:e1:b2:df:be:55:51: 71:2d:39:ac:a4:94:96:59:b2:f5:1d:be:cd:ea:71:ea:4b:13: d3:12:51:dc:3f:55:02:58:7c:1d:0a:d5:f1:bb:c9:b1:2d:f3: 11:2f:90:8d:32:d9:c5:a4:58:71:2b:64:9c:52:05:d3:db:a5: 56:1a:c8:d0:6f:4b:01:52:71:b5:e9:e6:d3:cc:cf:e6:97:ce: cf:ca:3b:62:75:2f:b2:65:f5:f4:c3:ac:d5:84:0b:e2:30:7d: 90:d5:9b:2f:ea:fe:d0:90:71:f7:51:93:47:25:a4:55:d1:3d: 27:85:d5:b8:72:62:8e:51:56:f5:6f:4a:7d:7a:13:6e:00:39: 44:eb:0c:b9:bc:8d:2c:e8:1c:ca:1a:34:89:8b:5d:4d:16:94: e7:21:14:f3:7c:49:25:08:f3:eb:e7:35:2f:96:40:e2:1c:3c: fe:b2:e2:b7:64:e9:3e:a1:e4:c4:e7:20:e3:27:40:a8:86:0e: a7:4c:54:f9:e1:8b:2a:a0:33:91:92:78:e1:a6:a0:68:8a:2e: 57:08:8a:ab:f2:40:bc:60:0d:3e:fa:53:4f:dd:bf:5b:3c:26: 81:35:4b:59:e3:86:73:ee:17:c9:0e:7a:e2:dc:ff:d6:30:9f: 16:ee:8b:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURHu/CI/Rj1sxHkTwshBVUEQSvtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTEwMTgxNDA2NTlaFw0yNTEwMjExNDE4NTlaMDMxMTAvBgNV BAMTKDBEMDUwQTA5Q0IxMUQxOEI1M0U5NjVFRDY4NjZEMjdCMjU5RUUxRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKIqNr/WYDcCGuhg4J9zrzAAbJ mB9eqr9Vw3zrBvsrVz3W6hLZQXdRYwEhTofVDRyXJn4qWCTLd391QLB4UPRx2qAN WbSMe+45xQE/eL2GkJC21ndQc0mbwCLi/nQUCyeNUlMM4/vLUntTMoMfJE/hrQXL DdzCmv7DJW1/zIwagURCEsewXi0vOLwLroLS+8kno3ePzou/Beyw79YJDdu3GGVZ gUWIEf35/HchGiV9C3P0M7RugH+C6MnqFKrc4lLHK9nEQL9PjmsxwRHzu8qHIUob Cc+rVYhlvDoC07gyb3eZlfLAwUCzrRnf4AWOSfo7jxqYBb1t27CHAo+RB/QNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDQUKCcsR0YtT6WXtaGbSeyWe4dUwHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNkMGQ3ZmEtZDZmOC00YzIyLWI0 OGEtNThiOGVkOGVkZGE3LzAvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3 ODQ4QTcwNkI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG0qBptpd0zK6D412+Gy375VUXEtOayklJZZ svUdvs3qcepLE9MSUdw/VQJYfB0K1fG7ybEt8xEvkI0y2cWkWHErZJxSBdPbpVYa yNBvSwFScbXp5tPMz+aXzs/KO2J1L7Jl9fTDrNWEC+IwfZDVmy/q/tCQcfdRk0cl pFXRPSeF1bhyYo5RVvVvSn16E24AOUTrDLm8jSzoHMoaNImLXU0WlOchFPN8SSUI 8+vnNS+WQOIcPP6y4rdk6T6h5MTnIOMnQKiGDqdMVPnhiyqgM5GSeOGmoGiKLlcI iqvyQLxgDT76U0/dv1s8JoE1S1njhnPuF8kOeuLc/9Ywnxbui+w= -----END CERTIFICATE-----Generated at Mon Oct 20 09:45:31 2025 by rpki-client