$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft File: A2F125E1CDB95BA2AF5636AF284A399496555F38.mft (raw, json) Hash identifier: +lReOBV8NvrJAXHXWjaY1pVOYZrmK1P+9upsQ6BN5Sk= Subject key identifier: 0D:25:14:0F:5E:20:0E:C4:B2:6E:23:3C:C9:25:BC:CF:4D:C6:D5:83 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 01B90B02D4BCB40B64940CF29CE407AD0ECE2D6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft Manifest number: 0206 Signing time: Sun 19 Oct 2025 23:31:58 +0000 Manifest this update: Sun 19 Oct 2025 23:26:58 +0000 Manifest next update: Thu 23 Oct 2025 02:35:58 +0000 Files and hashes: 1: 3130332e3139312e3231392e302f32342d3234203d3e20313439393330.roa (hash: wMwayzIPwqMBIP88IOsXTpqmzpX3PVf3WfVEJ/JlX8M=) 2: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (hash: GYOdgB5E6zAfN6csGwKvCQu8t1dBnuZsHYI8ZcYsOXc=) 3: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (hash: eU4CsIBkCNHWwkLGYk1dQXK+PlYTeSPnN5JLGBDdwoE=) 4: A2F125E1CDB95BA2AF5636AF284A399496555F38.crl (hash: 7BPydof729m6epyBgmWRj0zmI/hH9zJbQtg+Gk8Mo2s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:35:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b9:0b:02:d4:bc:b4:0b:64:94:0c:f2:9c:e4:07:ad:0e:ce:2d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Oct 19 23:26:58 2025 GMT Not After : Oct 23 02:35:58 2025 GMT Subject: CN=0D25140F5E200EC4B26E233CC925BCCF4DC6D583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7f:23:62:ad:67:26:33:db:80:88:36:7f:8a: 30:f2:d6:8f:fe:80:26:45:58:dd:c9:92:8b:e0:03: 8d:ee:fe:24:eb:13:6e:84:8e:d9:e1:9f:07:3b:9a: fa:ae:98:f8:36:10:ff:76:9f:97:ec:e2:16:33:bd: 5d:1a:56:e2:49:9b:e2:0c:9e:25:5c:4a:4a:75:fa: d6:6a:6a:7b:53:06:ea:c0:7b:e3:bd:70:02:a1:df: bc:93:5e:df:94:9c:2d:20:99:84:7e:98:11:7f:c7: 45:16:36:5a:4e:2c:d6:aa:18:a2:e9:ec:73:ee:b6: 50:69:14:15:17:4b:a4:40:05:8f:96:7c:6a:c8:94: 42:b1:9c:cb:30:d1:75:94:66:a6:cd:57:e0:ed:32: 16:14:f6:58:d8:b6:f9:25:23:97:f5:7d:76:d9:f3: bb:96:a6:42:a0:c2:9b:44:3c:a5:ec:45:7c:78:6b: c1:60:67:e8:51:65:05:44:b0:93:69:b6:56:bf:c3: 06:46:17:99:0d:ec:43:80:ff:83:bb:a2:05:d6:98: f2:a5:04:96:60:57:37:d0:7e:9d:f5:9c:5d:97:7f: ab:dd:bc:5c:eb:0a:1c:85:b2:56:6e:eb:6a:7d:dd: 92:7d:68:70:e5:a6:5c:0b:c3:45:5b:6c:fa:11:0d: 14:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:25:14:0F:5E:20:0E:C4:B2:6E:23:3C:C9:25:BC:CF:4D:C6:D5:83 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ea:e4:b8:cc:9f:f1:5a:93:e1:80:92:23:88:14:fa:12:db: f8:23:fc:95:8f:82:29:1d:35:75:d7:12:4d:64:44:19:2c:ea: 1b:7f:b9:c0:a4:95:00:5e:35:1d:28:04:aa:01:50:51:0e:9c: c9:aa:c0:3d:b7:10:64:59:30:38:c6:c5:55:bb:cf:98:8e:10: ef:32:db:2d:c5:61:2b:c2:53:95:1b:87:61:d7:ca:c2:34:dc: e9:62:3f:60:0a:5c:8f:3d:ac:e6:9e:04:ec:cc:0d:6b:36:b1: 56:ce:b9:38:44:c9:6d:52:3f:c7:ee:19:05:dc:4e:80:95:ad: 3d:22:40:a1:f4:9c:c5:52:e0:d2:91:22:69:85:ba:f9:c7:34: 0d:fa:b5:90:f6:94:51:34:a4:5b:14:29:f4:f5:71:ea:4e:8d: db:9b:c3:2e:b6:9b:98:ec:ff:17:1b:73:4b:d0:dd:ff:64:50: 4f:bc:ef:9a:0f:3c:06:23:67:59:c9:56:05:bf:66:45:4d:1f: dc:e4:87:5e:06:53:9b:e4:84:5d:1f:bd:3b:0a:14:10:ce:04: 65:eb:6b:05:e9:2d:71:9f:56:de:79:62:7b:18:4f:cb:e6:fd: 17:bc:c0:6b:5a:ea:49:38:de:ad:3d:71:55:d0:9d:95:b3:81: c6:28:36:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAbkLAtS8tAtklAzynOQHrQ7OLW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNTEwMTkyMzI2NThaFw0yNTEwMjMwMjM1NThaMDMxMTAvBgNV BAMTKDBEMjUxNDBGNUUyMDBFQzRCMjZFMjMzQ0M5MjVCQ0NGNERDNkQ1ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNfyNirWcmM9uAiDZ/ijDy1o/+ gCZFWN3JkovgA43u/iTrE26Ejtnhnwc7mvqumPg2EP92n5fs4hYzvV0aVuJJm+IM niVcSkp1+tZqantTBurAe+O9cAKh37yTXt+UnC0gmYR+mBF/x0UWNlpOLNaqGKLp 7HPutlBpFBUXS6RABY+WfGrIlEKxnMsw0XWUZqbNV+DtMhYU9ljYtvklI5f1fXbZ 87uWpkKgwptEPKXsRXx4a8FgZ+hRZQVEsJNptla/wwZGF5kN7EOA/4O7ogXWmPKl BJZgVzfQfp31nF2Xf6vdvFzrChyFslZu62p93ZJ9aHDlplwLw0VbbPoRDRTnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDSUUD14gDsSybiM8ySW8z03G1YMwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjMzNzBkMjQtYTY1Ni00MzM2LTg0 MmItOWJkNWRjYTJiNDBhLzAvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5 OTQ5NjU1NUYzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABrq5LjMn/Fak+GAkiOIFPoS2/gj/JWPgikd NXXXEk1kRBks6ht/ucCklQBeNR0oBKoBUFEOnMmqwD23EGRZMDjGxVW7z5iOEO8y 2y3FYSvCU5Ubh2HXysI03OliP2AKXI89rOaeBOzMDWs2sVbOuThEyW1SP8fuGQXc ToCVrT0iQKH0nMVS4NKRImmFuvnHNA36tZD2lFE0pFsUKfT1cepOjdubwy62m5js /xcbc0vQ3f9kUE+875oPPAYjZ1nJVgW/ZkVNH9zkh14GU5vkhF0fvTsKFBDOBGXr awXpLXGfVt55YnsYT8vm/Re8wGta6kk43q09cVXQnZWzgcYoNl4= -----END CERTIFICATE-----Generated at Mon Oct 20 20:16:31 2025 by rpki-client