$ rpki-client -vvf repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft File: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft (raw, json) Hash identifier: +eZfWyqtf4jqTFk6Ez/kczK03T3mStbb5xGRRYcBxiQ= Subject key identifier: EC:0F:76:26:1D:93:56:21:4A:6B:53:AF:93:7B:39:12:44:AB:5D:7D Authority key identifier: 86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E Certificate issuer: /CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Certificate serial: 3F69A887FDBFE32CBDC715F52717782D15AFEE03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft Manifest number: 0242 Signing time: Mon 20 Oct 2025 02:51:52 +0000 Manifest this update: Mon 20 Oct 2025 02:46:52 +0000 Manifest next update: Thu 23 Oct 2025 06:03:52 +0000 Files and hashes: 1: 3130332e3138362e39322e302f32342d3234203d3e20313439363937.roa (hash: scqosPwH5BL2/2imBhyJZEPHHItlqeTByFILkve6Gxg=) 2: 3130332e3138362e39322e302f32332d3234203d3e20313439363937.roa (hash: yvcS+4k20Y8iRZaWxf96+9kxISErdYY6WtdAGoUwpMc=) 3: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl (hash: Iz/9tfUsLBOMGUy57xe3wltMeAHWHM2kyQFek7bh9n0=) 4: 3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa (hash: pI4Ee2HOCQgHXKn0phpNZPvS39KAXUpqkjdsByhi1e8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 06:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:69:a8:87:fd:bf:e3:2c:bd:c7:15:f5:27:17:78:2d:15:af:ee:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Validity Not Before: Oct 20 02:46:52 2025 GMT Not After : Oct 23 06:03:52 2025 GMT Subject: CN=EC0F76261D9356214A6B53AF937B391244AB5D7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:aa:90:39:aa:14:3d:cd:c7:d2:8d:01:3a:c0: 4c:9a:31:dd:fa:bc:fc:39:60:87:27:4b:85:9a:33: dc:d9:2a:f3:3e:55:93:6d:fa:51:63:02:72:a8:f7: 62:be:07:db:44:d3:5f:78:07:9f:fe:42:92:72:9c: 63:17:28:df:ed:51:7e:bb:2e:be:d9:9c:0e:23:5d: 9a:d6:d9:6c:0d:9a:65:6d:ff:62:1e:89:2a:69:f9: 10:47:82:75:e4:42:1d:b7:93:ac:4f:b6:af:2c:f3: ff:28:b4:ff:29:f2:ab:88:9f:e5:03:59:15:f4:68: b9:82:85:40:1b:42:0a:56:b4:0d:4e:c0:c0:97:80: 51:c7:12:04:18:83:56:fb:93:47:b4:7b:2d:02:d2: ed:18:07:7c:22:7d:1e:a6:d2:75:4a:e2:96:f2:9f: 92:71:04:30:af:c7:90:38:f2:fe:a4:76:cf:74:8f: 09:18:3e:52:49:99:87:5c:a7:30:1a:1e:ae:a0:de: 45:b3:ed:84:fe:da:9b:38:e2:d6:13:ae:56:00:47: 79:be:38:99:11:cb:70:90:05:6e:2c:1c:7c:98:f6: 69:cc:e3:3c:71:5c:d7:9a:26:6d:43:52:c9:df:fc: 2a:be:d1:c1:38:ba:8e:e5:07:6e:99:98:dd:60:9f: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0F:76:26:1D:93:56:21:4A:6B:53:AF:93:7B:39:12:44:AB:5D:7D X509v3 Authority Key Identifier: keyid:86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:be:60:ce:68:5e:2b:f1:da:36:b9:c1:08:c9:1c:8c:fa:5e: 4d:4d:67:b8:88:64:bf:d8:5e:59:37:1c:24:a2:a8:4b:55:f4: fe:f4:45:6c:5a:fb:73:d7:9d:5d:41:2c:d3:5d:a5:68:79:df: 4f:0f:7f:cf:ff:ed:53:a3:25:d7:db:43:f4:71:75:e2:00:17: 1f:64:fc:c7:e7:5f:88:a4:83:73:38:45:2d:03:9b:b7:a9:f6: 46:e0:cb:2d:16:a7:0f:f7:3a:46:d1:3a:d0:c4:3a:eb:d5:b6: 14:28:dc:51:02:1f:07:0c:f3:d3:c7:c3:5e:bd:3d:07:4f:08: a4:b9:6b:22:34:62:94:ea:ac:85:f7:9a:b0:ac:e9:35:32:58: b3:d7:2d:b9:3b:64:21:10:89:43:7a:4b:e7:21:e1:ac:89:b8: cb:94:a2:a5:d0:b6:b0:8b:6c:4e:1e:4f:45:22:a0:30:e2:45: 9f:d8:72:82:82:8d:71:23:fd:26:8b:b8:8d:94:37:27:75:f7: 80:9e:0f:17:e3:59:8f:9b:4d:e9:e5:18:2b:d4:eb:62:ab:2b: 75:12:42:eb:65:e0:06:96:ef:de:93:a5:48:4f:32:4e:81:3a: 27:05:17:40:df:6a:da:16:fa:fe:9d:14:6c:2d:55:b7:21:14: 2b:09:40:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP2moh/2/4yy9xxX1Jxd4LRWv7gMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdF MkZGMjYzRTAeFw0yNTEwMjAwMjQ2NTJaFw0yNTEwMjMwNjAzNTJaMDMxMTAvBgNV BAMTKEVDMEY3NjI2MUQ5MzU2MjE0QTZCNTNBRjkzN0IzOTEyNDRBQjVEN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZqpA5qhQ9zcfSjQE6wEyaMd36 vPw5YIcnS4WaM9zZKvM+VZNt+lFjAnKo92K+B9tE0194B5/+QpJynGMXKN/tUX67 Lr7ZnA4jXZrW2WwNmmVt/2IeiSpp+RBHgnXkQh23k6xPtq8s8/8otP8p8quIn+UD WRX0aLmChUAbQgpWtA1OwMCXgFHHEgQYg1b7k0e0ey0C0u0YB3wifR6m0nVK4pby n5JxBDCvx5A48v6kds90jwkYPlJJmYdcpzAaHq6g3kWz7YT+2ps44tYTrlYAR3m+ OJkRy3CQBW4sHHyY9mnM4zxxXNeaJm1DUsnf/Cq+0cE4uo7lB26ZmN1gn1nxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7A92Jh2TViFKa1Ovk3s5EkSrXX0wHwYDVR0j BBgwFoAUhuZ5Wsq5nPKc58fhDX/M5+L/Jj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGUxYWM3Yy05MDRkLTQ5M2YtYmE1ZS01ZTA4MzdkY2JkMjkvMC84NkU2Nzk1QUNB Qjk5Q0YyOUNFN0M3RTEwRDdGQ0NFN0UyRkYyNjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdFMkZG MjYzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTRlMWFjN2MtOTA0ZC00OTNmLWJh NWUtNWUwODM3ZGNiZDI5LzAvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkND RTdFMkZGMjYzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEa+YM5oXivx2ja5wQjJHIz6Xk1NZ7iIZL/Y Xlk3HCSiqEtV9P70RWxa+3PXnV1BLNNdpWh5308Pf8//7VOjJdfbQ/RxdeIAFx9k /MfnX4ikg3M4RS0Dm7ep9kbgyy0Wpw/3OkbROtDEOuvVthQo3FECHwcM89PHw169 PQdPCKS5ayI0YpTqrIX3mrCs6TUyWLPXLbk7ZCEQiUN6S+ch4ayJuMuUoqXQtrCL bE4eT0UioDDiRZ/YcoKCjXEj/SaLuI2UNyd194CeDxfjWY+bTenlGCvU62KrK3US Qutl4AaW796TpUhPMk6BOicFF0DfatoW+v6dFGwtVbchFCsJQMA= -----END CERTIFICATE-----Generated at Tue Oct 21 04:18:29 2025 by rpki-client