$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft File: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft (raw, json) Hash identifier: wdx0u1Bhh0eOQIq6y4Ob6Ii+j4dtodAp4yvAi+EJCd0= Subject key identifier: FE:C9:75:A6:E1:B4:86:25:B2:73:78:73:72:D4:B6:66:45:CD:57:83 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 44F1EC1A846E56F696E1B51A1C81D583F7098C19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft Manifest number: 0213 Signing time: Sun 19 Oct 2025 21:30:59 +0000 Manifest this update: Sun 19 Oct 2025 21:25:59 +0000 Manifest next update: Thu 23 Oct 2025 05:42:59 +0000 Files and hashes: 1: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (hash: YfWdCVoIH1DQu9Nb8zknsBq3gjAx6STdl7+GflAiVVY=) 2: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (hash: 5ODCvpJsl+XnXZcZjU6a9g5frNriLFm4lEWGxVY15JQ=) 3: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (hash: 6pWVSpFXVKH6EqJrCt3rmPa2Bj+n9pO/wL1SNQ2qvtg=) 4: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl (hash: EwaJHUflgOA7ZI01JtNdThrBxduNtm09+2LSMU/KWOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f1:ec:1a:84:6e:56:f6:96:e1:b5:1a:1c:81:d5:83:f7:09:8c:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Oct 19 21:25:59 2025 GMT Not After : Oct 23 05:42:59 2025 GMT Subject: CN=FEC975A6E1B48625B273787372D4B66645CD5783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:76:5a:46:fe:3b:c2:d7:d7:4c:80:24:ff: ab:71:27:4e:43:16:e6:33:3e:8c:ff:e2:f0:3d:c3: 4a:0a:c0:b4:8a:40:6c:e8:54:5d:5d:26:42:f2:91: 30:6c:ef:a9:0d:6e:82:e4:79:e7:df:f8:e4:5f:4e: fd:37:ec:25:1e:fc:a6:15:48:95:36:3c:1e:2f:a7: 8d:d4:ef:1b:f7:cc:79:c7:fb:de:c8:ac:95:05:4c: e3:c0:6a:29:dd:50:c5:43:32:47:b9:5d:fb:3e:f0: 66:83:24:8b:1f:c5:12:f9:43:e5:a6:2a:46:22:01: d7:79:ff:78:a2:89:8a:08:0b:4e:ac:47:47:7c:2e: b8:1b:c0:45:d1:0e:fd:78:18:e8:de:15:fd:6d:66: 74:c9:05:52:78:7f:b3:92:51:8c:ba:7d:1a:1a:b1: 56:09:e9:d6:3e:a1:c2:d0:a5:60:e6:99:5b:b1:d4: 0b:10:ae:2f:c1:92:3b:ae:3d:b3:50:79:a2:23:64: 73:fc:c9:7a:87:30:d4:61:57:7f:e4:bc:05:98:b9: 5a:0d:7f:27:74:a0:79:5f:2b:df:3a:40:56:8a:46: 15:12:a0:0b:9d:18:03:7b:d1:dc:15:cc:fc:d0:7f: 0a:73:04:74:6b:6f:9b:67:79:eb:26:34:9e:50:71: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C9:75:A6:E1:B4:86:25:B2:73:78:73:72:D4:B6:66:45:CD:57:83 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:d3:7f:b5:42:2e:f5:cc:8d:6c:c8:73:43:5c:4e:00:df:e3: b4:75:71:c5:3e:2e:a2:af:62:08:98:85:d6:5e:54:74:08:75: 17:bf:51:bb:f6:38:c6:94:41:76:39:c3:8b:cf:7e:d7:de:a1: 92:bc:0a:a2:6d:e2:a7:42:2f:53:63:18:b0:38:92:9f:d8:46: fa:3a:23:93:e0:02:b3:a0:a7:40:b5:f8:6d:87:79:ea:02:77: d5:23:f8:a6:4f:4f:53:0f:77:f5:b1:09:77:6e:cc:90:e9:00: 1d:d5:ed:ac:67:44:fc:60:74:c2:51:ca:32:03:1c:85:0a:66: 1d:50:be:6b:49:b4:9d:18:38:4e:d2:83:9a:72:d5:67:14:9a: 12:20:75:74:67:8c:a7:f0:56:a0:ff:66:c2:3c:ab:44:91:e6: a8:e3:1c:cb:e6:fb:81:67:58:34:fb:00:58:ae:30:0f:a5:e2: 6e:bc:c4:69:6a:43:21:9c:cb:a7:48:dc:66:92:74:67:62:5a: ba:d8:2b:b5:97:04:78:db:e9:5f:6b:f1:61:ef:35:b2:40:91: 2b:31:16:cc:ec:d0:5f:bb:d7:47:37:8b:9b:a0:5d:25:45:7e: 2e:61:6c:bb:24:87:d2:a8:b6:f8:f7:b1:26:d9:a1:b2:fd:c5: cd:71:55:eb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURPHsGoRuVvaW4bUaHIHVg/cJjBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNTEwMTkyMTI1NTlaFw0yNTEwMjMwNTQyNTlaMDMxMTAvBgNV BAMTKEZFQzk3NUE2RTFCNDg2MjVCMjczNzg3MzcyRDRCNjY2NDVDRDU3ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRVHZaRv47wtfXTIAk/6txJ05D FuYzPoz/4vA9w0oKwLSKQGzoVF1dJkLykTBs76kNboLkeeff+ORfTv037CUe/KYV SJU2PB4vp43U7xv3zHnH+97IrJUFTOPAaindUMVDMke5Xfs+8GaDJIsfxRL5Q+Wm KkYiAdd5/3iiiYoIC06sR0d8LrgbwEXRDv14GOjeFf1tZnTJBVJ4f7OSUYy6fRoa sVYJ6dY+ocLQpWDmmVux1AsQri/BkjuuPbNQeaIjZHP8yXqHMNRhV3/kvAWYuVoN fyd0oHlfK986QFaKRhUSoAudGAN70dwVzPzQfwpzBHRrb5tneesmNJ5QcWJjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/sl1puG0hiWyc3hzctS2ZkXNV4MwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTIyOWNhNTAtZTk1Yy00NWJiLTlj MzAtNjNlMTJhZjdhNWUxLzAvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRC OUZCQTBCMzlCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFfTf7VCLvXMjWzIc0NcTgDf47R1ccU+LqKv YgiYhdZeVHQIdRe/Ubv2OMaUQXY5w4vPftfeoZK8CqJt4qdCL1NjGLA4kp/YRvo6 I5PgArOgp0C1+G2HeeoCd9Uj+KZPT1MPd/WxCXduzJDpAB3V7axnRPxgdMJRyjID HIUKZh1QvmtJtJ0YOE7Sg5py1WcUmhIgdXRnjKfwVqD/ZsI8q0SR5qjjHMvm+4Fn WDT7AFiuMA+l4m68xGlqQyGcy6dI3GaSdGdiWrrYK7WXBHjb6V9r8WHvNbJAkSsx Fszs0F+710c3i5ugXSVFfi5hbLskh9Kotvj3sSbZobL9xc1xVes= -----END CERTIFICATE-----Generated at Mon Oct 20 15:32:19 2025 by rpki-client