$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: PjmaP16DtvDhgSBw127LQxmeJPDZ5Ar1pwm8ISKsa8c= Subject key identifier: 57:DB:CB:22:70:68:BA:D0:66:3C:E8:A8:31:50:E9:CE:52:25:52:D8 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 62100755C8C543D9F89FA3BC7766D47B15BADE44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: 92 Signing time: Sat 18 Oct 2025 18:20:38 +0000 Manifest this update: Sat 18 Oct 2025 18:15:38 +0000 Manifest next update: Wed 22 Oct 2025 03:25:38 +0000 Files and hashes: 1: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: INjQk9VP51MyqVs6AifI6hywlnotuZa/mvHqS7PCw50=) 2: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: 4Y5Ddm6yUymC+qHSs8fVActMjjMDZEcHLdC59v78BoQ=) 3: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: kTHvzmqB/2veUohEP9ZdbxC595Rgd4EACGX8AypsPpY=) 4: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: xGHUucKhH5kmQ+65YZMYfuYlyW3kJ8ie5abut/yqhlk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 03:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:10:07:55:c8:c5:43:d9:f8:9f:a3:bc:77:66:d4:7b:15:ba:de:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Oct 18 18:15:38 2025 GMT Not After : Oct 22 03:25:38 2025 GMT Subject: CN=57DBCB227068BAD0663CE8A83150E9CE522552D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:74:87:10:22:fa:82:4d:2d:c7:f9:ef:30: e6:84:02:ca:8e:20:07:d2:54:a5:99:ab:f5:60:45: f9:57:9c:89:a2:74:77:78:03:df:64:d0:ce:e5:07: 81:c9:90:ba:76:77:e5:8d:73:e2:7d:ac:4b:78:59: a5:3d:05:cb:a4:18:32:63:3d:bc:dc:ca:cf:4c:66: a4:53:c6:86:7d:05:74:c5:4e:53:30:02:05:64:ce: f2:af:13:55:1e:67:e7:94:50:30:1d:bf:d5:18:d1: cb:de:04:b3:20:7f:7f:2e:23:5b:c0:5d:6a:a0:8c: a1:db:67:11:e7:5d:6b:08:88:72:ee:f6:7d:cb:03: 04:80:a4:b2:9a:bb:c5:4b:b5:8f:a9:24:7a:d3:17: 4e:ac:f1:58:6c:87:70:84:b3:be:05:3c:83:80:8f: 38:bb:3d:d6:1c:a9:b2:d4:31:3f:bd:62:03:67:d4: 46:e8:8c:99:ae:44:40:f9:f8:96:45:29:ba:5e:4a: 18:7e:92:5a:ee:af:99:1c:07:70:46:d6:01:4f:81: f4:18:e7:f2:ac:d2:c8:f2:fe:c3:d5:1c:cf:7a:72: 50:3f:1c:41:ba:00:f3:38:53:6f:be:5a:5f:32:82: 83:04:d1:18:f9:e5:2a:04:0a:55:4d:41:0b:8b:8a: ee:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DB:CB:22:70:68:BA:D0:66:3C:E8:A8:31:50:E9:CE:52:25:52:D8 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:2f:81:38:c4:38:c8:96:e2:17:c6:b8:58:64:fb:29:67:7b: ee:8b:09:7c:9b:d8:f6:c0:ae:76:3b:50:ec:a4:16:e0:15:e8: 09:14:5c:dd:78:15:ca:be:a4:a2:3b:1e:c1:5c:8e:3f:02:02: dd:99:db:d6:cb:37:df:40:9c:f4:bd:28:64:ae:88:2b:11:f1: f7:1b:56:c1:1d:9e:a5:66:7c:bc:d8:9d:82:22:d5:cd:4b:61: fe:db:d0:98:af:87:43:64:5f:ad:9b:af:77:33:ef:22:48:e6: 02:37:98:72:8f:1c:87:3d:0a:50:aa:ae:f8:b9:fd:5a:84:30: 87:1a:77:6e:c8:6d:f5:5e:c7:d2:0d:b7:bf:60:4c:fd:0a:19: 6f:db:e1:0b:b0:25:9d:54:d1:e8:79:c7:6f:6b:b6:9d:6a:92: 90:9a:00:05:d2:91:d1:d3:87:82:b3:b4:3f:64:30:02:85:cd: 77:29:55:91:bf:a5:16:5e:3a:65:ba:ed:51:4c:4b:2f:24:af: 48:31:6d:d5:a5:94:ea:dd:6e:3b:11:ba:85:14:a7:4d:89:4c: 89:c1:2c:eb:8b:72:2d:20:0b:94:af:0d:cc:df:6e:0a:38:4c: 5c:20:71:df:c1:b5:83:c1:f3:28:61:ce:e8:b0:4a:0e:10:ef: b2:43:e6:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYhAHVcjFQ9n4n6O8d2bUexW63kQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTEwMTgxODE1MzhaFw0yNTEwMjIwMzI1MzhaMDMxMTAvBgNV BAMTKDU3REJDQjIyNzA2OEJBRDA2NjNDRThBODMxNTBFOUNFNTIyNTUyRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR8XSHECL6gk0tx/nvMOaEAsqO IAfSVKWZq/VgRflXnImidHd4A99k0M7lB4HJkLp2d+WNc+J9rEt4WaU9BcukGDJj Pbzcys9MZqRTxoZ9BXTFTlMwAgVkzvKvE1UeZ+eUUDAdv9UY0cveBLMgf38uI1vA XWqgjKHbZxHnXWsIiHLu9n3LAwSApLKau8VLtY+pJHrTF06s8Vhsh3CEs74FPIOA jzi7PdYcqbLUMT+9YgNn1EbojJmuRED5+JZFKbpeShh+klrur5kcB3BG1gFPgfQY 5/Ks0sjy/sPVHM96clA/HEG6APM4U2++Wl8ygoME0Rj55SoEClVNQQuLiu6nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUV9vLInBoutBmPOioMVDpzlIlUtgwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJEvgTjEOMiW4hfGuFhk+ylne+6LCXyb2PbA rnY7UOykFuAV6AkUXN14Fcq+pKI7HsFcjj8CAt2Z29bLN99AnPS9KGSuiCsR8fcb VsEdnqVmfLzYnYIi1c1LYf7b0Jivh0NkX62br3cz7yJI5gI3mHKPHIc9ClCqrvi5 /VqEMIcad27IbfVex9INt79gTP0KGW/b4QuwJZ1U0eh5x29rtp1qkpCaAAXSkdHT h4KztD9kMAKFzXcpVZG/pRZeOmW67VFMSy8kr0gxbdWllOrdbjsRuoUUp02JTInB LOuLci0gC5SvDczfbgo4TFwgcd/BtYPB8yhhzuiwSg4Q77JD5k0= -----END CERTIFICATE-----Generated at Mon Oct 20 21:07:43 2025 by rpki-client