$ rpki-client -vvf repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft File: DE4325727D17555F6DABCC72788E361C741D47CF.mft (raw, json) Hash identifier: A4dYBanIGTaxZnA/JH3L9jwcICyzPDGf6hoZymPj7w4= Subject key identifier: 45:AA:2D:0D:C8:EA:46:0B:E7:EC:AA:FB:6F:46:E0:15:F7:91:B0:BC Authority key identifier: DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF Certificate issuer: /CN=DE4325727D17555F6DABCC72788E361C741D47CF Certificate serial: 19A499AFA855CB08C10EEF4DE8E90946026583F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft Manifest number: 01D8 Signing time: Sun 19 Oct 2025 22:10:03 +0000 Manifest this update: Sun 19 Oct 2025 22:05:03 +0000 Manifest next update: Wed 22 Oct 2025 22:25:03 +0000 Files and hashes: 1: DE4325727D17555F6DABCC72788E361C741D47CF.crl (hash: b6u1QnPyyrGzEmRKSuz5xqT4sHvw1V4CpALZq+OOKv8=) 2: 3130332e3135352e32342e302f32342d3234203d3e20313431303734.roa (hash: frVX3KU+95dnNdoEu8zY99nlhl5o8DK8rzkyAoketnM=) 3: 323430363a363263303a3a2f33322d3332203d3e20313431303734.roa (hash: 2Lk6auTAFU1KMFXNa9pRSBxyYyKqC713tFzsVGAw9EU=) 4: 3130332e3135352e32342e302f32332d3233203d3e20313431303734.roa (hash: 6aU9uz5CHHldU1HIevUJsAf5erVKI657uWFvNEr+ic0=) 5: 3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa (hash: G51YluNBJVnWJJLUM3oLTxL1SDaPjGOTZwYfGpp2BCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 22:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a4:99:af:a8:55:cb:08:c1:0e:ef:4d:e8:e9:09:46:02:65:83:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4325727D17555F6DABCC72788E361C741D47CF Validity Not Before: Oct 19 22:05:03 2025 GMT Not After : Oct 22 22:25:03 2025 GMT Subject: CN=45AA2D0DC8EA460BE7ECAAFB6F46E015F791B0BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:de:4c:2b:dd:0a:16:90:4d:c8:15:4f:9e: 9a:92:6c:ab:af:ca:08:6d:29:70:eb:46:72:b5:21: 5e:f4:d4:ce:6b:b1:7a:2c:d7:f5:e0:b6:74:55:5d: 14:ec:50:38:25:dd:59:65:24:a2:d8:97:25:24:45: 96:e3:70:25:29:68:c6:22:49:1d:cb:06:b2:d2:24: d4:c2:1a:ad:48:95:37:91:86:06:4d:69:03:3d:14: bd:15:30:61:cd:6e:d7:f3:88:48:e5:ad:cb:8c:75: 49:27:5d:94:47:f4:85:be:4b:98:76:a4:43:86:c4: 21:2c:f1:56:9a:2e:c5:9d:81:11:e1:89:81:7d:8c: d0:16:a0:7e:3d:e1:88:00:77:30:33:c2:18:d2:c3: 9f:22:86:40:75:ce:97:99:bd:64:e1:46:6e:6e:23: dd:57:dd:0e:22:19:45:5e:1a:4d:5e:33:62:f5:54: 8f:bd:35:61:fc:32:ec:0c:2a:a7:90:ee:1d:c6:b4: 5d:23:2c:bb:19:a8:09:e6:6e:cd:50:a0:94:2e:52: 58:e5:18:fc:0d:2d:9a:79:63:11:24:28:ce:c6:82: d9:5c:ab:d5:00:1e:65:85:2c:34:12:36:a7:f4:71: 37:58:a1:45:26:c9:a7:ca:b6:60:1b:7e:fe:8c:5c: 1f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AA:2D:0D:C8:EA:46:0B:E7:EC:AA:FB:6F:46:E0:15:F7:91:B0:BC X509v3 Authority Key Identifier: keyid:DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:21:b8:0b:05:93:35:36:0f:68:6b:66:d5:dd:de:a0:c4:35: 4d:47:88:16:e0:46:05:9d:32:44:7b:01:b6:de:d2:22:78:6c: 1b:fc:59:6f:62:69:e5:c8:57:e5:72:6d:82:60:01:80:ef:11: ec:03:5a:6c:c8:0a:a3:28:f9:2c:f1:92:68:b5:09:a3:0e:a2: 9e:51:35:72:0a:ac:00:c4:26:7c:eb:ec:3b:e7:ae:3f:1f:99: 0b:1b:b3:02:33:c8:e1:da:16:4c:53:d0:2a:98:96:9b:3f:c3: 9e:d6:cc:d8:c9:cd:01:67:73:39:31:64:a0:c4:13:ae:6b:8c: 7c:95:9e:a3:67:4a:e6:0f:85:db:7c:05:ea:fa:b1:e6:40:ee: bf:01:cc:4b:98:a9:c0:ed:a0:39:f6:42:b7:86:00:4e:77:85: aa:10:97:a3:cb:82:06:1b:a7:a9:ba:b9:dc:78:d1:ef:1c:20: 96:29:a7:5a:57:4a:4f:32:39:92:cf:64:f1:8c:ee:ab:43:da: ce:64:93:be:61:f4:a4:cd:78:ad:8b:cd:1c:50:85:83:b6:4a: c3:bf:41:cc:fb:da:9b:b0:d8:80:24:c8:83:43:8d:79:37:ff: 6d:b2:7d:ec:de:9a:69:e3:22:63:34:31:f7:de:06:4b:42:79: 3b:96:5f:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGaSZr6hVywjBDu9N6OkJRgJlg/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3 NDFENDdDRjAeFw0yNTEwMTkyMjA1MDNaFw0yNTEwMjIyMjI1MDNaMDMxMTAvBgNV BAMTKDQ1QUEyRDBEQzhFQTQ2MEJFN0VDQUFGQjZGNDZFMDE1Rjc5MUIwQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEFd5MK90KFpBNyBVPnpqSbKuv yghtKXDrRnK1IV701M5rsXos1/XgtnRVXRTsUDgl3VllJKLYlyUkRZbjcCUpaMYi SR3LBrLSJNTCGq1IlTeRhgZNaQM9FL0VMGHNbtfziEjlrcuMdUknXZRH9IW+S5h2 pEOGxCEs8VaaLsWdgRHhiYF9jNAWoH494YgAdzAzwhjSw58ihkB1zpeZvWThRm5u I91X3Q4iGUVeGk1eM2L1VI+9NWH8MuwMKqeQ7h3GtF0jLLsZqAnmbs1QoJQuUljl GPwNLZp5YxEkKM7Ggtlcq9UAHmWFLDQSNqf0cTdYoUUmyafKtmAbfv6MXB9lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURaotDcjqRgvn7Kr7b0bgFfeRsLwwHwYDVR0j BBgwFoAU3kMlcn0XVV9tq8xyeI42HHQdR88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDc2MDhjZS1jM2Y4LTQ0ZWItYWVlNy1iNzg0YWUyMGM5YzcvMC9ERTQzMjU3MjdE MTc1NTVGNkRBQkNDNzI3ODhFMzYxQzc0MUQ0N0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3NDFE NDdDRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA3NjA4Y2UtYzNmOC00NGViLWFl ZTctYjc4NGFlMjBjOWM3LzAvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2 MUM3NDFENDdDRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMUhuAsFkzU2D2hrZtXd3qDENU1HiBbgRgWd MkR7Abbe0iJ4bBv8WW9iaeXIV+VybYJgAYDvEewDWmzICqMo+Szxkmi1CaMOop5R NXIKrADEJnzr7Dvnrj8fmQsbswIzyOHaFkxT0CqYlps/w57WzNjJzQFnczkxZKDE E65rjHyVnqNnSuYPhdt8Ber6seZA7r8BzEuYqcDtoDn2QreGAE53haoQl6PLggYb p6m6udx40e8cIJYpp1pXSk8yOZLPZPGM7qtD2s5kk75h9KTNeK2LzRxQhYO2SsO/ Qcz72puw2IAkyINDjXk3/22yfezemmnjImM0MffeBktCeTuWXyE= -----END CERTIFICATE-----Generated at Mon Oct 20 07:43:49 2025 by rpki-client