$ rpki-client -vvf repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft File: 1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft (raw, json) Hash identifier: Jp6zPHV4gQ/WTP/1w3mFgdqNVSlgSw/z6D87rOeCV1c= Subject key identifier: 48:92:E1:49:70:EA:3F:5B:47:D4:47:22:57:58:B1:C6:BE:D0:7E:E0 Authority key identifier: 1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F Certificate issuer: /CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Certificate serial: 7681A57A6C1D3AE25B25D27FF870036E4B8996AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft Manifest number: 01BD Signing time: Sun 19 Oct 2025 00:40:05 +0000 Manifest this update: Sun 19 Oct 2025 00:35:05 +0000 Manifest next update: Wed 22 Oct 2025 06:31:05 +0000 Files and hashes: 1: 3131342e3134312e39342e302f32342d3234203d3e20313338383138.roa (hash: CSQkGTmQt+s2JfwWnvim+F5o3slRbbgf9XyF9r9GepU=) 2: 3131342e3134312e39312e302f32342d3234203d3e20313338383138.roa (hash: IJ/QrpohwAAMEHf60VyOYZyE2rLKrvAARpcXl8wmM9I=) 3: 3131342e3134312e39352e302f32342d3234203d3e20313338383138.roa (hash: hHpqodeyU8amc0Yg+Vz1Yb1kEzG9g5qGdXKGONkFhDE=) 4: 3131342e3134312e39302e302f32342d3234203d3e203338373733.roa (hash: 9CQ6JFUhExdNBAYYYWcUpyzc1PDrxOfBKcNbdLlWf6U=) 5: 3131342e3134312e38382e302f32342d3234203d3e203338373733.roa (hash: uzdxCFJ60y1EqFPWBfLgLUEnJ7LWJrfPQeMyJb9m5FM=) 6: 3131342e3134312e39332e302f32342d3234203d3e20313338383138.roa (hash: FqS1mlGjIL0BP5gK9enlmVRuaz2y9/mIcmX+UTD+qKA=) 7: 3131342e3134312e38392e302f32342d3234203d3e203338373733.roa (hash: 8i3x4gBaZ9q2FeKL77QwQugTPoFrVoqppzokcKf7V9U=) 8: 1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl (hash: KlYW/7CyYTV3QaElne3uGOqGjUb3+M8KmwMJJPQwZcc=) 9: 3131342e3134312e39322e302f32342d3234203d3e20313338383138.roa (hash: K3N55cBe6+W2+UEDhGR/EreK/NsWeZinIyNl1uxEyoA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:81:a5:7a:6c:1d:3a:e2:5b:25:d2:7f:f8:70:03:6e:4b:89:96:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F Validity Not Before: Oct 19 00:35:05 2025 GMT Not After : Oct 22 06:31:05 2025 GMT Subject: CN=4892E14970EA3F5B47D447225758B1C6BED07EE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f8:43:62:d0:2e:33:15:c6:41:df:35:58:be: 2c:8a:0d:ef:16:ff:bc:40:88:80:2a:f2:15:67:09: 66:a6:b2:45:d3:4a:1a:d4:e8:49:18:f8:11:87:08: fe:58:33:a8:ea:e6:d5:23:40:24:18:e8:f1:be:3a: ee:49:db:1f:fc:2c:71:2a:50:d1:6b:c6:1c:a5:1b: 2e:46:8a:64:65:3d:0a:6a:f0:3d:12:2b:8c:ee:ef: f0:8c:d6:00:e3:0e:fb:9b:36:64:d7:65:bb:af:8e: 45:29:9a:8e:34:e3:3d:10:e2:0d:90:d1:64:cb:f5: 9d:60:26:4e:9d:ee:d1:64:08:e0:43:54:41:ea:cd: 49:9e:3b:1e:72:6a:e7:50:17:3c:79:32:42:9e:93: 09:64:5c:f7:a1:fe:60:22:40:cd:90:4e:fb:bc:cb: 72:a7:f8:4f:d5:00:8b:72:61:48:b3:56:65:b0:ea: 9f:b7:48:9b:07:18:5c:13:21:b5:2f:21:70:d2:78: 09:61:a2:f7:bb:a3:09:93:88:65:9c:7c:9d:e2:4f: 81:ee:db:1a:8d:b8:39:a3:0e:ab:6f:34:11:39:a1: 41:b6:17:3b:99:9a:dc:ee:3c:a9:cb:ef:14:d6:ab: 6c:7e:f7:7d:88:c4:13:0a:d1:10:88:14:ab:97:36: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:92:E1:49:70:EA:3F:5B:47:D4:47:22:57:58:B1:C6:BE:D0:7E:E0 X509v3 Authority Key Identifier: keyid:1B:F9:9D:4D:CD:5B:F5:03:BE:97:23:AB:F5:51:DD:D7:0D:C1:46:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c7fc54fb-724e-4316-b9bc-1c4b06ea57ae/0/1BF99D4DCD5BF503BE9723ABF551DDD70DC1464F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:54:f4:93:a8:b5:f3:c6:ff:b9:26:b5:21:63:b2:ee:0e:8a: 33:92:ea:d2:fb:df:90:ab:3d:7c:4e:08:93:cf:9e:aa:6d:7a: ab:68:78:14:3b:fc:79:54:e8:f1:28:d7:3e:f3:fa:89:a1:d1: 4a:cc:75:74:32:43:a0:93:fa:2e:1e:00:c3:cc:8d:5b:56:ba: 83:38:6b:51:54:70:be:1e:99:04:b5:c6:2a:b5:1a:21:17:1c: f8:81:3e:b7:6a:48:1e:83:08:1c:2d:c2:a2:23:07:d8:63:44: 4d:69:0e:70:67:c5:a0:71:1c:24:bb:89:8e:e2:e3:4a:56:52: fd:cb:bf:13:41:37:e3:be:b9:12:15:c3:c4:0f:d1:d6:93:5f: 95:0d:2e:b8:d5:87:e8:01:88:3a:ca:51:2e:55:e8:e8:9b:37: 3f:98:1e:60:2e:11:7b:db:61:b7:ce:d8:fd:88:e5:64:1e:5c: 5f:c7:af:02:26:19:c6:f5:72:97:e1:04:9a:1e:03:49:1c:d3: 9b:42:1c:54:2f:95:8e:ed:c4:ad:8c:c7:b7:ae:68:af:17:37: 3d:13:4e:35:9a:d8:fb:af:7a:5e:f4:5a:62:43:a1:01:4c:78: c6:b1:a9:52:ae:df:6d:28:b3:34:55:ff:73:4a:43:10:b3:cb: f3:ae:4b:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdoGlemwdOuJbJdJ/+HADbkuJlq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcw REMxNDY0RjAeFw0yNTEwMTkwMDM1MDVaFw0yNTEwMjIwNjMxMDVaMDMxMTAvBgNV BAMTKDQ4OTJFMTQ5NzBFQTNGNUI0N0Q0NDcyMjU3NThCMUM2QkVEMDdFRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs+ENi0C4zFcZB3zVYviyKDe8W /7xAiIAq8hVnCWamskXTShrU6EkY+BGHCP5YM6jq5tUjQCQY6PG+Ou5J2x/8LHEq UNFrxhylGy5GimRlPQpq8D0SK4zu7/CM1gDjDvubNmTXZbuvjkUpmo404z0Q4g2Q 0WTL9Z1gJk6d7tFkCOBDVEHqzUmeOx5yaudQFzx5MkKekwlkXPeh/mAiQM2QTvu8 y3Kn+E/VAItyYUizVmWw6p+3SJsHGFwTIbUvIXDSeAlhove7owmTiGWcfJ3iT4Hu 2xqNuDmjDqtvNBE5oUG2FzuZmtzuPKnL7xTWq2x+932IxBMK0RCIFKuXNq/nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSJLhSXDqP1tH1EciV1ixxr7QfuAwHwYDVR0j BBgwFoAUG/mdTc1b9QO+lyOr9VHd1w3BRk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j N2ZjNTRmYi03MjRlLTQzMTYtYjliYy0xYzRiMDZlYTU3YWUvMC8xQkY5OUQ0RENE NUJGNTAzQkU5NzIzQUJGNTUxRERENzBEQzE0NjRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURERDcwREMx NDY0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzdmYzU0ZmItNzI0ZS00MzE2LWI5 YmMtMWM0YjA2ZWE1N2FlLzAvMUJGOTlENERDRDVCRjUwM0JFOTcyM0FCRjU1MURE RDcwREMxNDY0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJlU9JOotfPG/7kmtSFjsu4OijOS6tL735Cr PXxOCJPPnqpteqtoeBQ7/HlU6PEo1z7z+omh0UrMdXQyQ6CT+i4eAMPMjVtWuoM4 a1FUcL4emQS1xiq1GiEXHPiBPrdqSB6DCBwtwqIjB9hjRE1pDnBnxaBxHCS7iY7i 40pWUv3LvxNBN+O+uRIVw8QP0daTX5UNLrjVh+gBiDrKUS5V6OibNz+YHmAuEXvb YbfO2P2I5WQeXF/HrwImGcb1cpfhBJoeA0kc05tCHFQvlY7txK2Mx7euaK8XNz0T TjWa2Puvel70WmJDoQFMeMaxqVKu320oszRV/3NKQxCzy/OuSxg= -----END CERTIFICATE-----Generated at Mon Oct 20 22:47:59 2025 by rpki-client