$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: 5V9/SulsQRf0apux+Zi2aU3LSmLxnChhsLQfiqDYgYE= Subject key identifier: 20:E4:9B:C9:11:F5:BB:2E:E5:49:64:13:B2:07:93:E5:51:3A:10:5E Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 46888BFA38040F3BD153E5A1FA93D7AC7509A8BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 04D5 Signing time: Sun 19 Oct 2025 20:51:00 +0000 Manifest this update: Sun 19 Oct 2025 20:46:00 +0000 Manifest next update: Thu 23 Oct 2025 03:38:00 +0000 Files and hashes: 1: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: FqumLAE5ExkmaatbD11ff744L2iTMEhUHWhZUQWOtLU=) 2: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: p7znIjGrzIeqiJgSyw1Go9JzIhUPDTiZx2kzEBcMX+M=) 3: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=) 4: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: Y71vIP5MDeNmXVgSu4sp/198/zfUe/NhsOK1OR59pxw=) 5: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:88:8b:fa:38:04:0f:3b:d1:53:e5:a1:fa:93:d7:ac:75:09:a8:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Oct 19 20:46:00 2025 GMT Not After : Oct 23 03:38:00 2025 GMT Subject: CN=20E49BC911F5BB2EE5496413B20793E5513A105E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1c:aa:b4:5b:24:d7:73:b6:37:e4:70:a9:8e: 1d:ca:c5:71:9f:a8:be:27:e8:ab:a6:1d:c5:db:3c: db:ad:c9:35:91:b4:72:50:c8:e7:c5:e1:98:a9:c3: 7e:8f:49:ed:bb:e1:bb:b3:22:6d:d6:a5:b0:fa:4f: b2:24:0c:1c:a9:50:74:ea:71:0a:68:62:9d:70:c0: 26:2f:c9:a5:f2:f8:c8:04:c9:ff:ce:c4:f6:f7:d7: 77:1a:5b:4a:92:8b:f0:ea:24:71:81:07:54:9d:a7: d0:77:1d:57:33:3e:1e:95:cc:f7:9e:43:9b:ea:2c: 4a:92:c1:54:39:e3:54:59:6a:2b:08:38:24:a2:d1: 4f:eb:1d:4c:1d:54:f6:34:c9:86:ff:4f:09:7f:e1: 76:ec:17:8e:15:6d:da:df:be:c8:37:c0:a0:b6:6b: 04:be:b5:e4:41:b2:a8:e2:b5:3f:96:a7:a0:b4:ee: 17:1a:e4:a5:7c:b7:92:36:de:f7:e6:d8:78:42:6b: 53:37:a6:95:ea:c8:10:a3:e9:dd:f6:49:52:d4:c0: 1d:0a:f1:40:5e:5b:9b:03:55:5e:06:90:1e:c5:67: b8:d1:47:9a:68:fb:b1:0f:19:44:c0:80:c3:f0:0d: 17:3f:ab:3f:f4:6d:04:dc:c5:31:63:bb:77:ec:01: 6e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E4:9B:C9:11:F5:BB:2E:E5:49:64:13:B2:07:93:E5:51:3A:10:5E X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:a8:61:59:7c:1b:f5:33:e7:27:34:08:0f:e7:fd:35:cd:c8: 80:28:b1:9d:a9:7c:c2:36:3e:e7:dc:94:ef:8d:ac:74:96:71: ed:ce:ed:7a:85:72:36:90:ff:1e:c1:60:a7:b8:ff:ab:fc:6b: 3f:e5:8a:a1:59:48:3e:6b:64:c1:37:f6:84:67:a8:a4:6f:b2: 63:0c:7c:50:f6:d1:d3:06:2e:f7:74:99:22:64:4a:b6:c2:86: c2:50:01:3e:d9:53:e9:3c:2c:6b:a3:03:1e:da:bb:60:44:ed: fa:1b:56:68:d6:0a:f8:ad:79:0b:e7:66:85:7c:99:48:20:3a: fa:bc:78:a4:aa:6e:2e:ac:fb:35:16:44:3d:36:e4:c6:9c:5c: 88:e5:e5:55:7b:39:10:40:14:61:94:32:09:c4:92:d2:2e:35: 97:03:dd:54:02:7e:bb:5a:bd:49:26:84:6a:b5:eb:20:17:a2: b8:ee:95:ef:90:2a:76:28:f0:68:77:43:70:70:4a:5d:a8:92: bb:55:59:37:53:ad:12:a2:df:78:8b:ae:36:36:65:4e:1d:a0: 2c:17:f2:b1:2c:92:43:da:22:bf:8b:b9:70:77:0c:95:17:09: 7d:c6:1e:5b:7e:80:e7:6b:f4:03:ce:5d:61:65:8c:a1:15:9f: 86:91:6c:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURoiL+jgEDzvRU+Wh+pPXrHUJqL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTEwMTkyMDQ2MDBaFw0yNTEwMjMwMzM4MDBaMDMxMTAvBgNV BAMTKDIwRTQ5QkM5MTFGNUJCMkVFNTQ5NjQxM0IyMDc5M0U1NTEzQTEwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfHKq0WyTXc7Y35HCpjh3KxXGf qL4n6KumHcXbPNutyTWRtHJQyOfF4Zipw36PSe274buzIm3WpbD6T7IkDBypUHTq cQpoYp1wwCYvyaXy+MgEyf/OxPb313caW0qSi/DqJHGBB1Sdp9B3HVczPh6VzPee Q5vqLEqSwVQ541RZaisIOCSi0U/rHUwdVPY0yYb/Twl/4XbsF44Vbdrfvsg3wKC2 awS+teRBsqjitT+Wp6C07hca5KV8t5I23vfm2HhCa1M3ppXqyBCj6d32SVLUwB0K 8UBeW5sDVV4GkB7FZ7jRR5po+7EPGUTAgMPwDRc/qz/0bQTcxTFju3fsAW5JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIOSbyRH1uy7lSWQTsgeT5VE6EF4wHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJeoYVl8G/Uz5yc0CA/n/TXNyIAosZ2pfMI2 PufclO+NrHSWce3O7XqFcjaQ/x7BYKe4/6v8az/liqFZSD5rZME39oRnqKRvsmMM fFD20dMGLvd0mSJkSrbChsJQAT7ZU+k8LGujAx7au2BE7fobVmjWCviteQvnZoV8 mUggOvq8eKSqbi6s+zUWRD025MacXIjl5VV7ORBAFGGUMgnEktIuNZcD3VQCfrta vUkmhGq16yAXorjule+QKnYo8Gh3Q3BwSl2okrtVWTdTrRKi33iLrjY2ZU4doCwX 8rEskkPaIr+LuXB3DJUXCX3GHlt+gOdr9APOXWFljKEVn4aRbEA= -----END CERTIFICATE-----Generated at Mon Oct 20 11:05:22 2025 by rpki-client