$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: PoApVM+RqYVemnlCmUnKm0muIhBRAoggK+v17eB/OlU= Subject key identifier: 13:A2:8E:45:1B:1F:AD:0E:1A:28:E2:4E:54:56:81:46:00:C0:F0:6F Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 4203C4C9C72F270CE178B067F18C28206798D461 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: D5 Signing time: Sun 19 Oct 2025 19:11:10 +0000 Manifest this update: Sun 19 Oct 2025 19:06:10 +0000 Manifest next update: Wed 22 Oct 2025 20:22:10 +0000 Files and hashes: 1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: O1iHx0qk3ek0gf91GU/NhCsgbAlROa8L2rT3VpaxIyw=) 2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 20:22:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:03:c4:c9:c7:2f:27:0c:e1:78:b0:67:f1:8c:28:20:67:98:d4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: Oct 19 19:06:10 2025 GMT Not After : Oct 22 20:22:10 2025 GMT Subject: CN=13A28E451B1FAD0E1A28E24E5456814600C0F06F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4a:9c:99:b7:4b:9d:81:d3:e8:45:1c:3d:55: 8a:18:6d:f1:d4:94:92:cd:27:aa:06:c1:1f:a4:d5: f0:c6:d4:e3:27:29:3a:91:2e:fb:91:0e:e6:c3:dc: 8e:39:b5:30:20:12:3e:62:ea:8c:65:11:f3:16:2d: 0b:19:44:f7:05:c8:49:39:d4:aa:76:ab:52:22:34: b4:ca:f7:21:46:02:0e:07:5f:20:3f:30:41:68:7c: 0d:ed:a6:54:0d:e2:39:f1:0f:79:59:42:83:a8:24: dc:db:36:cf:0f:df:6e:e4:e9:48:22:60:ce:f1:13: 57:c1:e6:b0:c5:4f:00:89:b2:29:c1:07:c7:ad:ac: 45:de:9d:d7:3b:a8:54:f1:a5:d1:2e:54:37:7b:8c: 2c:ce:b2:11:b0:9c:00:13:2f:75:af:1d:ac:d0:55: 1e:f8:7d:b4:b0:9a:3e:68:5b:a9:c1:f0:e5:af:2c: 98:b0:06:c2:9d:a7:2e:f2:89:cc:07:98:d2:54:5f: 41:9f:d4:d0:a0:78:e1:14:f6:cb:09:55:8c:ac:09: 4c:3d:86:fb:c9:e8:b7:50:67:d2:ec:6b:e4:99:10: a4:5a:42:b2:30:cc:4f:8d:74:1d:d4:4b:ad:4a:db: ea:87:89:f6:cf:a1:57:5d:ea:de:8b:0f:40:d1:17: 82:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A2:8E:45:1B:1F:AD:0E:1A:28:E2:4E:54:56:81:46:00:C0:F0:6F X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:ef:b5:0f:12:39:cd:2a:00:9d:49:02:35:ce:ce:db:bb:74: 69:7d:8e:d0:16:c0:18:54:c9:c3:da:37:46:ff:75:39:f5:eb: 35:0c:9f:90:b2:b0:fc:da:11:50:93:fc:01:16:a0:75:9d:2a: ab:16:ec:58:2c:3f:ea:94:96:31:0a:fb:0c:1f:7c:f8:36:bb: b8:46:5d:f2:3e:d4:32:7c:ae:9a:27:a8:f8:db:a8:04:8f:e4: 0a:76:2a:63:83:19:33:52:65:20:18:57:49:4e:47:4e:f8:bd: b2:b0:26:4e:21:52:46:6f:9e:39:7b:04:bc:80:f9:83:bd:47: 1e:c6:39:81:83:33:62:fa:d3:f4:7e:b2:63:1c:98:15:15:4e: ef:a1:23:ba:bd:d4:1a:5b:49:d2:18:02:13:c2:87:e9:4e:5e: 5d:0c:b3:0b:61:7f:c1:9d:da:84:4e:48:b9:5e:57:94:cd:1f: 76:3d:6a:f4:c9:3c:4a:9d:7a:62:5e:ea:be:8b:cc:77:b7:45: 60:83:9f:64:1d:18:d4:07:c1:b6:7b:83:b9:0e:99:56:ce:0e: 2d:6f:18:a7:ff:2f:70:3e:bd:14:4b:6f:23:79:ad:2f:5e:b6: 8d:95:2b:90:10:b4:95:5e:0e:8b:32:85:ce:73:44:7e:cf:13: c4:b6:7b:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQgPEyccvJwzheLBn8YwoIGeY1GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNTEwMTkxOTA2MTBaFw0yNTEwMjIyMDIyMTBaMDMxMTAvBgNV BAMTKDEzQTI4RTQ1MUIxRkFEMEUxQTI4RTI0RTU0NTY4MTQ2MDBDMEYwNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeSpyZt0udgdPoRRw9VYoYbfHU lJLNJ6oGwR+k1fDG1OMnKTqRLvuRDubD3I45tTAgEj5i6oxlEfMWLQsZRPcFyEk5 1Kp2q1IiNLTK9yFGAg4HXyA/MEFofA3tplQN4jnxD3lZQoOoJNzbNs8P327k6Ugi YM7xE1fB5rDFTwCJsinBB8etrEXendc7qFTxpdEuVDd7jCzOshGwnAATL3WvHazQ VR74fbSwmj5oW6nB8OWvLJiwBsKdpy7yicwHmNJUX0Gf1NCgeOEU9ssJVYysCUw9 hvvJ6LdQZ9Lsa+SZEKRaQrIwzE+NdB3US61K2+qHifbPoVdd6t6LD0DRF4JlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE6KORRsfrQ4aKOJOVFaBRgDA8G8wHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADDvtQ8SOc0qAJ1JAjXOztu7dGl9jtAWwBhU ycPaN0b/dTn16zUMn5CysPzaEVCT/AEWoHWdKqsW7FgsP+qUljEK+wwffPg2u7hG XfI+1DJ8rponqPjbqASP5Ap2KmODGTNSZSAYV0lOR074vbKwJk4hUkZvnjl7BLyA +YO9Rx7GOYGDM2L60/R+smMcmBUVTu+hI7q91BpbSdIYAhPCh+lOXl0Mswthf8Gd 2oROSLleV5TNH3Y9avTJPEqdemJe6r6LzHe3RWCDn2QdGNQHwbZ7g7kOmVbODi1v GKf/L3A+vRRLbyN5rS9eto2VK5AQtJVeDosyhc5zRH7PE8S2e1w= -----END CERTIFICATE-----Generated at Mon Oct 20 13:08:13 2025 by rpki-client