$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft File: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft (raw, json) Hash identifier: aN/PoFTiht0Iz0S/iFy5RR7mizhjtiCRgJCTTvVzK2A= Subject key identifier: E7:18:32:FA:07:80:30:6A:1A:5D:38:8D:6F:E5:37:1D:DF:D9:BF:E0 Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 5748DD0347B0FE551C5D8673CAA338F5F2420576 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft Manifest number: 04ED Signing time: Sun 19 Oct 2025 01:01:22 +0000 Manifest this update: Sun 19 Oct 2025 00:56:22 +0000 Manifest next update: Wed 22 Oct 2025 11:13:22 +0000 Files and hashes: 1: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (hash: 8BcFapwe+X3BcAcYyUi0aKlB+9OoLNEUNoO57IgvOug=) 2: 323430343a613463303a3a2f33322d3438203d3e20313338383232.roa (hash: jd8RzIV4pb6xOSx8M2iJByCvMa7m6mddhFLRaUaFvoI=) 3: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl (hash: gjqfugle1DPJ5dQvbdCI6Bg48O6p5/kP7Qny0wWy5Os=) 4: 3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa (hash: mA/rP0hr8/EieVP2HKsGbfcjdkP2Kd8or4Jc67/Y7I0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 11:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:48:dd:03:47:b0:fe:55:1c:5d:86:73:ca:a3:38:f5:f2:42:05:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Oct 19 00:56:22 2025 GMT Not After : Oct 22 11:13:22 2025 GMT Subject: CN=E71832FA0780306A1A5D388D6FE5371DDFD9BFE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9d:db:58:36:1a:5a:3e:87:f4:5a:bc:2a:17: 99:30:43:1a:7e:f9:e0:06:7c:45:0d:d2:ac:c7:46: a9:5b:ef:e9:f5:e6:69:f0:dc:57:c7:58:f2:d2:a4: f6:fe:0f:bb:92:1d:7f:c1:74:9a:07:2b:86:7b:f3: ca:e9:ad:2c:83:60:87:14:d3:83:ab:38:30:55:4c: 26:0d:86:4a:ae:3c:1d:ed:0f:ca:bc:e9:3f:5b:6c: 8a:91:a7:96:a1:09:4e:90:94:f7:f7:41:15:ce:8a: 25:df:a3:a7:a2:4a:82:78:4e:f9:bd:62:fb:db:c6: aa:e5:5d:db:0d:9c:d5:09:62:50:a2:07:73:b5:ef: 63:3e:ce:a6:20:cf:2d:84:61:dd:fe:8f:f3:0e:92: b5:9b:ce:a6:c6:d6:7e:20:bb:67:8a:1c:50:b8:ca: 72:9f:6c:b7:6a:73:73:26:14:86:5e:b5:e2:b9:fc: 32:96:b6:d6:0c:d2:dd:b0:4e:2c:7a:03:61:02:52: f8:5a:01:e4:9b:69:b9:96:3f:91:ce:66:0d:1a:eb: f2:c0:8a:36:ed:6f:77:c6:58:32:4a:fa:4b:be:63: d9:84:ef:90:00:3c:d6:6a:86:6f:71:ec:b6:de:ee: 1f:51:bb:5a:f5:29:d7:ee:51:9d:69:0c:c3:d1:1c: b2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:18:32:FA:07:80:30:6A:1A:5D:38:8D:6F:E5:37:1D:DF:D9:BF:E0 X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:96:30:3a:96:99:c0:da:33:70:99:44:3a:39:fe:c7:c1:ea: c9:87:31:1a:7b:e7:4b:3c:01:a9:4f:4d:2f:28:eb:23:d1:5f: 53:63:82:61:c9:d2:b2:9a:fe:fb:a8:0c:eb:29:69:7d:69:a6: eb:89:10:c4:c9:d7:95:05:6f:04:f8:7a:b5:b4:a3:bf:b0:c2: b2:35:95:fd:f8:e3:9c:90:fe:6a:ec:bc:cf:18:20:66:e5:03: 56:eb:7c:ce:76:10:d6:fb:66:c9:6f:f8:dd:9a:e5:86:08:d2: 2d:05:e4:69:ea:1b:ac:0d:19:9d:b0:e0:ef:7d:82:f6:bf:b2: 73:90:dd:fa:6b:21:88:dd:a3:88:0e:6e:ed:f1:78:10:a0:32: 03:32:d9:34:83:4c:54:c8:62:12:05:e1:4b:31:55:6b:ad:c3: c4:f2:23:bf:05:43:06:99:9c:2a:27:af:8d:e9:c8:aa:a5:e8: 30:14:dc:fe:60:83:9b:6d:0a:15:b1:2b:da:bf:2f:07:4e:5d: cd:29:26:6e:55:11:f2:ba:41:f4:b5:ff:ee:26:8f:ab:99:ec: 7a:a1:0f:9e:02:0c:28:6f:e5:9c:f5:c2:03:0a:0d:00:62:d3: 6f:47:0e:1a:87:0c:23:36:d0:6f:31:01:af:8c:84:cc:11:5b: 24:b4:bf:a8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV0jdA0ew/lUcXYZzyqM49fJCBXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNTEwMTkwMDU2MjJaFw0yNTEwMjIxMTEzMjJaMDMxMTAvBgNV BAMTKEU3MTgzMkZBMDc4MDMwNkExQTVEMzg4RDZGRTUzNzFEREZEOUJGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmndtYNhpaPof0WrwqF5kwQxp+ +eAGfEUN0qzHRqlb7+n15mnw3FfHWPLSpPb+D7uSHX/BdJoHK4Z788rprSyDYIcU 04OrODBVTCYNhkquPB3tD8q86T9bbIqRp5ahCU6QlPf3QRXOiiXfo6eiSoJ4Tvm9 YvvbxqrlXdsNnNUJYlCiB3O172M+zqYgzy2EYd3+j/MOkrWbzqbG1n4gu2eKHFC4 ynKfbLdqc3MmFIZeteK5/DKWttYM0t2wTix6A2ECUvhaAeSbabmWP5HOZg0a6/LA ijbtb3fGWDJK+ku+Y9mE75AAPNZqhm9x7Lbe7h9Ru1r1KdfuUZ1pDMPRHLI9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5xgy+geAMGoaXTiNb+U3Hd/Zv+AwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTNiYmYxZGEtZTMxNy00OGVmLWFk NmQtZmU4YThiZjA4NDAwLzAvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4 NDM4M0E2MzNENC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMWWMDqWmcDaM3CZRDo5/sfB6smHMRp750s8 AalPTS8o6yPRX1NjgmHJ0rKa/vuoDOspaX1ppuuJEMTJ15UFbwT4erW0o7+wwrI1 lf3445yQ/mrsvM8YIGblA1brfM52ENb7Zslv+N2a5YYI0i0F5GnqG6wNGZ2w4O99 gva/snOQ3fprIYjdo4gObu3xeBCgMgMy2TSDTFTIYhIF4UsxVWutw8TyI78FQwaZ nConr43pyKql6DAU3P5gg5ttChWxK9q/LwdOXc0pJm5VEfK6QfS1/+4mj6uZ7Hqh D54CDChv5Zz1wgMKDQBi029HDhqHDCM20G8xAa+MhMwRWyS0v6g= -----END CERTIFICATE-----Generated at Mon Oct 20 10:34:09 2025 by rpki-client