$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft File: 1952B074D19D5AB562D7EE537AD3059EA097353B.mft (raw, json) Hash identifier: lOmfXyPTBjXsbBACa0rx6q7qJUUOKkG8S7z6ddk6s9E= Subject key identifier: EA:23:3E:3A:4F:37:DA:90:6D:64:E5:A0:96:2C:45:AD:A7:64:08:B2 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 510D1D43F630A2AC0A0378B3CC0CE3E156C283A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft Manifest number: 0214 Signing time: Sun 19 Oct 2025 09:31:34 +0000 Manifest this update: Sun 19 Oct 2025 09:26:34 +0000 Manifest next update: Wed 22 Oct 2025 18:38:34 +0000 Files and hashes: 1: 1952B074D19D5AB562D7EE537AD3059EA097353B.crl (hash: MqUYIpv+ExA0X0Yc04VTcgBjVdXFDGovIZeMUr1HTAU=) 2: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (hash: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA=) 3: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (hash: AS7ErBWYOh3ltpqaacXCmV2CVPom+cE/4rFVdqtAK+c=) 4: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (hash: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg=) 5: 3130332e3135382e32362e302f32342d3234203d3e20313431363735.roa (hash: ykRWiMSaAsP4Z39Whyu3kvlehUT+9RaQnqBPMyF4FR0=) 6: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (hash: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:0d:1d:43:f6:30:a2:ac:0a:03:78:b3:cc:0c:e3:e1:56:c2:83:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Oct 19 09:26:34 2025 GMT Not After : Oct 22 18:38:34 2025 GMT Subject: CN=EA233E3A4F37DA906D64E5A0962C45ADA76408B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:40:19:1d:f4:1f:06:db:eb:8f:dc:25:70:c6: 34:8e:c0:bd:b9:1b:d0:ee:08:1d:a0:44:9d:8f:a6: eb:c6:bd:76:9e:e7:45:46:10:01:ad:93:1f:6c:3c: 04:97:72:d8:23:c3:de:af:ce:4f:bb:55:05:e2:7b: 3a:b8:78:f5:29:f9:a3:9a:ec:5c:b5:ba:48:6b:13: a7:b8:34:75:6a:9c:0f:f9:9a:79:91:50:cc:ca:4d: 2d:6e:9a:d2:28:e1:9b:92:de:cd:02:01:4b:36:50: 67:f7:bb:36:15:6c:0d:a2:47:98:b9:de:62:10:fa: aa:95:89:fd:df:b5:11:d2:0a:ea:88:30:7a:2b:03: 9c:95:ce:28:a8:c0:5b:5b:3f:a2:01:f6:13:97:fe: 36:95:16:dd:fa:82:c1:da:e3:4f:aa:9e:3a:db:a3: 9a:f3:18:b5:e3:9a:78:9a:57:7a:06:64:c7:be:5e: ad:5a:08:9a:9c:65:67:6f:bb:3e:4d:9e:b1:86:f3: 6e:aa:16:f2:5a:1c:30:40:51:1b:0d:73:7e:2a:9f: 0e:4c:15:43:d7:39:79:17:61:44:a0:6d:89:d3:78: 16:ca:60:72:ce:b3:75:80:0a:63:11:5a:db:9f:42: 96:09:16:c5:b1:16:7f:0d:9d:5e:02:bc:1d:c2:17: 06:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:23:3E:3A:4F:37:DA:90:6D:64:E5:A0:96:2C:45:AD:A7:64:08:B2 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9e:93:4e:0e:74:12:bd:9d:b7:86:77:d7:1d:69:f0:79:82: ea:0c:95:af:cf:7a:9c:12:45:8f:05:9f:0e:59:fc:a7:49:f2: c0:dd:fc:ea:8e:d4:ad:68:61:12:32:e4:dc:17:9a:b4:b4:2e: c9:15:d2:ad:72:c0:0f:17:8b:8a:e9:c4:75:a7:93:a8:a3:2d: 77:53:d0:94:1f:9c:5d:a5:a6:90:ff:ae:a0:82:20:3a:d0:b8: 0d:34:d7:f9:d2:30:d4:93:a0:5b:a5:27:95:6a:d6:45:bc:2e: 1c:e1:5b:42:d1:38:01:94:d1:41:e2:cf:e5:a3:7a:98:51:40: b3:15:a4:40:f4:2d:29:ad:22:ed:55:b0:68:95:35:33:29:e7: 60:a6:85:ab:29:2d:e9:de:f9:dc:14:b9:28:80:48:65:9f:ed: 11:66:0d:ae:86:78:06:6a:c8:11:ce:a0:36:f7:11:97:19:5f: 08:43:ab:75:6a:0e:cb:b6:d3:d0:3b:95:1a:63:45:56:3c:84: 1c:34:a4:11:ac:9c:58:89:01:93:77:80:96:90:cf:c5:d5:8d: f8:10:64:55:d4:d7:23:b1:b6:b3:f0:da:d7:af:b1:3b:79:ca: 30:c7:6e:06:40:c4:21:6a:6b:86:2b:09:1f:74:8b:89:3d:aa: 0a:f9:62:52 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUQ0dQ/YwoqwKA3izzAzj4VbCg6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTEwMTkwOTI2MzRaFw0yNTEwMjIxODM4MzRaMDMxMTAvBgNV BAMTKEVBMjMzRTNBNEYzN0RBOTA2RDY0RTVBMDk2MkM0NUFEQTc2NDA4QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBQBkd9B8G2+uP3CVwxjSOwL25 G9DuCB2gRJ2PpuvGvXae50VGEAGtkx9sPASXctgjw96vzk+7VQXiezq4ePUp+aOa 7Fy1ukhrE6e4NHVqnA/5mnmRUMzKTS1umtIo4ZuS3s0CAUs2UGf3uzYVbA2iR5i5 3mIQ+qqVif3ftRHSCuqIMHorA5yVziiowFtbP6IB9hOX/jaVFt36gsHa40+qnjrb o5rzGLXjmniaV3oGZMe+Xq1aCJqcZWdvuz5NnrGG826qFvJaHDBAURsNc34qnw5M FUPXOXkXYUSgbYnTeBbKYHLOs3WACmMRWtufQpYJFsWxFn8NnV4CvB3CFwYrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6iM+Ok832pBtZOWglixFradkCLIwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDRmMmMwMjUtMWQ3Ni00YTM2LTgx NjAtYTllOGFmZTM1NzlmLzAvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1 OUVBMDk3MzUzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ+ek04OdBK9nbeGd9cdafB5guoMla/PepwS RY8Fnw5Z/KdJ8sDd/OqO1K1oYRIy5NwXmrS0LskV0q1ywA8Xi4rpxHWnk6ijLXdT 0JQfnF2lppD/rqCCIDrQuA001/nSMNSToFulJ5Vq1kW8LhzhW0LROAGU0UHiz+Wj ephRQLMVpED0LSmtIu1VsGiVNTMp52CmhaspLene+dwUuSiASGWf7RFmDa6GeAZq yBHOoDb3EZcZXwhDq3VqDsu209A7lRpjRVY8hBw0pBGsnFiJAZN3gJaQz8XVjfgQ ZFXU1yOxtrPw2tevsTt5yjDHbgZAxCFqa4YrCR90i4k9qgr5YlI= -----END CERTIFICATE-----Generated at Mon Oct 20 13:22:36 2025 by rpki-client