$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: r+rgWYFeAqMy+neJhyoAZAq9j0HswP7Wi4WUAETAsXw= Subject key identifier: 46:2E:C1:E9:F4:AD:84:E3:B8:8A:63:3F:07:12:A9:A5:CE:B0:2C:96 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 5BBC502F48D98C524A7E8625ADBD68E32E1834AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 0272 Signing time: Sat 18 Oct 2025 06:02:02 +0000 Manifest this update: Sat 18 Oct 2025 05:57:02 +0000 Manifest next update: Tue 21 Oct 2025 16:45:02 +0000 Files and hashes: 1: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) 2: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: ug7NuEM/rsjZSg1iUvWp9cjgPUMG+v7cT82VRey6EAc=) 3: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 4: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 5: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=) 6: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) 7: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 8: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 9: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 10: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 16:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bc:50:2f:48:d9:8c:52:4a:7e:86:25:ad:bd:68:e3:2e:18:34:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Oct 18 05:57:02 2025 GMT Not After : Oct 21 16:45:02 2025 GMT Subject: CN=462EC1E9F4AD84E3B88A633F0712A9A5CEB02C96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:43:3d:1e:f5:2a:2b:c0:93:79:9a:6c:2f:1a: 6d:87:90:28:dd:a6:7d:39:1f:2f:cd:6e:ea:f7:22: 49:85:e5:ed:10:1c:46:3f:b2:1c:27:b3:d0:3b:e8: ce:eb:6b:17:73:7c:fa:e7:46:c1:67:07:b8:2a:2d: e9:6a:31:06:0e:89:01:d9:0e:95:9b:49:0b:2d:0a: dc:cb:b4:00:fa:22:2f:da:ed:82:16:fd:c7:a7:90: 86:81:fb:ac:0f:ee:65:a3:74:07:e2:d2:da:ca:f4: cc:66:35:d0:bd:dd:3d:c4:68:16:98:b9:03:b2:c1: 15:e8:15:ca:03:39:42:80:15:15:f9:b6:c9:80:18: 72:71:b3:f4:19:22:ec:fd:04:1c:5f:46:19:19:c9: 5e:8b:39:42:d2:d1:56:31:c9:a5:a7:f9:cd:ac:6d: 35:52:65:f6:da:a2:79:05:07:fc:58:34:8f:ce:ea: 20:81:76:b6:74:26:2d:fe:2f:58:57:28:2c:6a:3f: d0:c2:61:79:8e:32:d0:4f:13:f7:e5:a2:5d:05:86: 05:84:02:fd:aa:48:03:93:4d:db:c5:3f:aa:10:07: ca:04:a8:77:d5:50:71:eb:e9:a9:91:aa:f7:c5:c3: 0c:9f:8a:f3:9e:ec:d0:29:4c:95:8d:15:93:89:a8: 60:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2E:C1:E9:F4:AD:84:E3:B8:8A:63:3F:07:12:A9:A5:CE:B0:2C:96 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:25:16:13:1f:0e:bd:d5:26:d4:96:32:2e:5a:cc:8c:90:c8: 1f:61:2d:6e:63:44:92:47:f5:9c:f7:44:2c:f6:cc:df:e7:65: ca:95:73:64:0f:88:c9:83:44:4a:57:e1:e0:77:76:9e:ca:80: 78:b1:41:56:5d:af:b6:30:16:0d:6f:22:a5:55:56:b1:fc:4c: a5:1a:b2:71:f3:ed:2c:7a:73:e8:ce:f0:d8:9c:45:23:75:75: 04:d0:b7:18:94:6b:e7:10:d6:27:2f:70:67:b6:58:da:59:d6: 18:12:c0:c2:ad:34:49:65:d1:63:bc:45:bd:9d:f2:66:e5:00: d1:1a:59:23:76:eb:8e:56:4f:a0:ef:fc:9e:f6:54:1e:ca:72: bd:d2:a5:fd:49:7b:5a:96:65:bb:62:d5:cc:90:a0:4e:24:24: 43:c5:f6:93:e5:0a:68:05:ac:7c:2a:f2:e8:fe:c6:c0:db:f3: c2:88:c6:3c:c0:08:36:f3:b9:d7:43:5c:83:f6:3a:33:35:a6: 49:d8:51:70:f9:20:6f:73:22:de:ec:9f:ab:7c:28:1c:bd:93: b3:a3:72:37:7e:05:f6:2a:ff:55:72:36:46:68:47:b0:a8:c0: 8f:30:31:36:ee:15:ad:e9:82:4c:64:4c:e6:21:08:b6:45:9a: b1:23:5c:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW7xQL0jZjFJKfoYlrb1o4y4YNKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTEwMTgwNTU3MDJaFw0yNTEwMjExNjQ1MDJaMDMxMTAvBgNV BAMTKDQ2MkVDMUU5RjRBRDg0RTNCODhBNjMzRjA3MTJBOUE1Q0VCMDJDOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbQz0e9SorwJN5mmwvGm2HkCjd pn05Hy/Nbur3IkmF5e0QHEY/shwns9A76M7raxdzfPrnRsFnB7gqLelqMQYOiQHZ DpWbSQstCtzLtAD6Ii/a7YIW/cenkIaB+6wP7mWjdAfi0trK9MxmNdC93T3EaBaY uQOywRXoFcoDOUKAFRX5tsmAGHJxs/QZIuz9BBxfRhkZyV6LOULS0VYxyaWn+c2s bTVSZfbaonkFB/xYNI/O6iCBdrZ0Ji3+L1hXKCxqP9DCYXmOMtBPE/flol0FhgWE Av2qSAOTTdvFP6oQB8oEqHfVUHHr6amRqvfFwwyfivOe7NApTJWNFZOJqGARAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURi7B6fSthOO4imM/BxKppc6wLJYwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGslFhMfDr3VJtSWMi5azIyQyB9hLW5jRJJH 9Zz3RCz2zN/nZcqVc2QPiMmDREpX4eB3dp7KgHixQVZdr7YwFg1vIqVVVrH8TKUa snHz7Sx6c+jO8NicRSN1dQTQtxiUa+cQ1icvcGe2WNpZ1hgSwMKtNEll0WO8Rb2d 8mblANEaWSN2645WT6Dv/J72VB7Kcr3Spf1Je1qWZbti1cyQoE4kJEPF9pPlCmgF rHwq8uj+xsDb88KIxjzACDbzuddDXIP2OjM1pknYUXD5IG9zIt7sn6t8KBy9k7Oj cjd+BfYq/1VyNkZoR7CowI8wMTbuFa3pgkxkTOYhCLZFmrEjXO0= -----END CERTIFICATE-----Generated at Mon Oct 20 09:46:00 2025 by rpki-client