$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: qABYbaVNvAjBIEbiDGdflOgdBw8x0hkUtSuh07RXpnw= Subject key identifier: 54:9C:F3:DE:08:EB:1D:4F:C6:96:9C:6B:2C:6C:80:E0:C8:E6:E3:A1 Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 5CBE492612D85EE86016271BFC0714AD9ADE0055 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 022E Signing time: Sun 19 Oct 2025 17:11:43 +0000 Manifest this update: Sun 19 Oct 2025 17:06:43 +0000 Manifest next update: Thu 23 Oct 2025 01:03:43 +0000 Files and hashes: 1: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=) 2: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: 4nKUqP3VmXvNr9KSdavCaXF9FJ9Z1Gh4FCN8kD5crGc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:be:49:26:12:d8:5e:e8:60:16:27:1b:fc:07:14:ad:9a:de:00:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Oct 19 17:06:43 2025 GMT Not After : Oct 23 01:03:43 2025 GMT Subject: CN=549CF3DE08EB1D4FC6969C6B2C6C80E0C8E6E3A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:37:20:2c:58:aa:09:c1:0c:02:6c:0a:48:c8: 51:5e:b7:2f:ce:2e:2c:65:4b:fe:fc:45:16:e1:83: 88:22:a8:65:ff:78:88:d5:70:01:12:cb:96:92:08: 27:03:76:12:c1:e8:88:93:d1:60:9e:c5:71:67:29: 2c:64:44:6f:1b:eb:51:98:41:a7:ce:59:8b:b1:90: 03:87:6e:fd:26:1f:08:25:83:2d:f5:b3:c7:ba:eb: 29:72:46:02:16:b5:1e:a9:54:2a:e3:da:80:92:37: db:fa:e9:13:7a:38:7d:8e:23:de:56:95:5a:96:67: 31:46:e1:83:a8:cd:b5:9f:c3:75:d5:01:ea:c8:23: e2:c3:bd:ce:3d:66:e5:f6:c1:4f:25:f5:34:d3:9c: 7f:64:a4:bf:c2:5c:89:7e:62:48:cb:1f:64:78:89: 4b:fb:17:eb:5c:61:71:88:a4:67:cc:f5:b8:7f:4e: 5c:41:10:37:52:3e:9f:2a:6b:5b:01:f0:f2:7b:ea: c1:27:33:17:e8:71:10:1c:cd:f5:01:6a:5d:a0:32: e5:08:69:59:08:f1:df:d7:df:ab:25:4d:6c:c0:c0: ca:8c:49:08:97:e7:5c:ab:07:73:8c:83:02:d2:75: 36:5d:74:3b:40:90:ae:a7:48:e0:f7:9b:fe:48:04: cf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:9C:F3:DE:08:EB:1D:4F:C6:96:9C:6B:2C:6C:80:E0:C8:E6:E3:A1 X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:e1:d5:68:cd:a4:76:c2:79:a2:b7:b0:ce:c5:2e:fe:61:fd: e0:af:1f:f0:de:88:14:01:f2:e0:8b:85:45:b0:a1:21:79:3e: 90:82:b4:35:42:82:3a:a1:a8:3a:37:ce:a3:a4:16:51:ea:39: 68:d3:e3:76:42:fc:ef:e3:59:3a:9f:cd:d9:6b:ec:08:1b:97: 46:a1:2c:39:4d:f5:be:90:d8:e3:7f:bb:54:d3:76:71:cb:2b: 87:8d:e3:04:05:34:6b:55:17:61:f0:ea:72:94:fe:b6:89:db: b4:a7:98:37:a2:43:01:e0:90:a1:ea:94:b4:bc:53:55:d1:15: 85:9d:28:d5:80:f9:de:75:e9:62:dd:36:17:7b:b2:46:9c:14: 1d:9d:fd:81:d8:95:06:76:fa:07:82:9d:46:17:76:46:a4:f8: d8:c9:80:80:39:5c:bd:2c:c4:ff:a6:a6:84:07:50:51:0f:1a: cb:0a:e2:92:6b:60:a1:89:0f:b3:66:b6:ee:9f:7f:cf:d6:f9: b6:c1:cf:43:15:28:8c:7a:68:60:19:85:0a:8f:5d:b7:f4:10: 65:bf:71:39:4f:c7:dc:50:29:5f:13:2a:29:89:65:0d:3d:78: 82:14:94:32:26:b2:04:e0:ce:ad:d4:10:f7:14:f2:1d:0f:bc: 4f:2d:93:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXL5JJhLYXuhgFicb/AcUrZreAFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNTEwMTkxNzA2NDNaFw0yNTEwMjMwMTAzNDNaMDMxMTAvBgNV BAMTKDU0OUNGM0RFMDhFQjFENEZDNjk2OUM2QjJDNkM4MEUwQzhFNkUzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoNyAsWKoJwQwCbApIyFFety/O LixlS/78RRbhg4giqGX/eIjVcAESy5aSCCcDdhLB6IiT0WCexXFnKSxkRG8b61GY QafOWYuxkAOHbv0mHwglgy31s8e66ylyRgIWtR6pVCrj2oCSN9v66RN6OH2OI95W lVqWZzFG4YOozbWfw3XVAerII+LDvc49ZuX2wU8l9TTTnH9kpL/CXIl+YkjLH2R4 iUv7F+tcYXGIpGfM9bh/TlxBEDdSPp8qa1sB8PJ76sEnMxfocRAczfUBal2gMuUI aVkI8d/X36slTWzAwMqMSQiX51yrB3OMgwLSdTZddDtAkK6nSOD3m/5IBM9RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVJzz3gjrHU/GlpxrLGyA4Mjm46EwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABDh1WjNpHbCeaK3sM7FLv5h/eCvH/DeiBQB 8uCLhUWwoSF5PpCCtDVCgjqhqDo3zqOkFlHqOWjT43ZC/O/jWTqfzdlr7Agbl0ah LDlN9b6Q2ON/u1TTdnHLK4eN4wQFNGtVF2Hw6nKU/raJ27SnmDeiQwHgkKHqlLS8 U1XRFYWdKNWA+d516WLdNhd7skacFB2d/YHYlQZ2+geCnUYXdkak+NjJgIA5XL0s xP+mpoQHUFEPGssK4pJrYKGJD7Nmtu6ff8/W+bbBz0MVKIx6aGAZhQqPXbf0EGW/ cTlPx9xQKV8TKimJZQ09eIIUlDImsgTgzq3UEPcU8h0PvE8tkxs= -----END CERTIFICATE-----Generated at Mon Oct 20 12:26:15 2025 by rpki-client