$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: iFWkH9CeqFAvgKkONvjyTqKLMCL7tqggYGv9cmsDgrE= Subject key identifier: 2F:EA:DC:96:56:EF:46:0C:9B:15:18:E6:4F:4A:A9:56:23:F1:E8:99 Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 1ACF506F5ED342EA3486E94707AB7994482CD6EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 01E1 Signing time: Sun 19 Oct 2025 13:21:45 +0000 Manifest this update: Sun 19 Oct 2025 13:16:45 +0000 Manifest next update: Wed 22 Oct 2025 13:33:45 +0000 Files and hashes: 1: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: c6BbZqskhId1bW3l6aSuRQLjcbQNOmGBaOGbC28FTXg=) 2: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: V8/ZkBK3iiEpK9YDKDVRI+pjYypoCXAu9+AsNY8oI2k=) 3: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZSgY5OMesKAVjFXk2K7xGan10euYjEFEbhi4eeTqUI4=) 4: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: GQbGwj8/3pFXSYNr52t6SKb3/O8bij4qIjKoYgJR2e8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:cf:50:6f:5e:d3:42:ea:34:86:e9:47:07:ab:79:94:48:2c:d6:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Oct 19 13:16:45 2025 GMT Not After : Oct 22 13:33:45 2025 GMT Subject: CN=2FEADC9656EF460C9B1518E64F4AA95623F1E899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c0:71:95:3b:28:54:e3:f2:4b:d0:91:24:d9: ad:96:d4:7c:64:2f:1e:52:5d:31:00:f7:d3:70:5a: de:38:78:f1:df:9b:ff:35:81:66:3e:6d:76:54:e3: c8:99:75:ed:c5:41:55:49:93:6d:c6:f6:ad:bf:92: 73:18:f2:39:1c:af:db:3a:90:a5:b9:c1:dd:aa:1b: 56:21:d7:66:07:18:95:ff:de:88:07:8b:78:a3:6d: b2:5c:88:7a:56:c7:94:8d:d1:c1:5b:a5:55:f0:57: b6:36:21:5d:44:18:a2:93:0a:a2:b9:49:bd:3d:1e: a6:e9:6f:6a:68:bb:e3:00:1d:c7:d6:52:ed:37:88: 69:e3:5a:62:8f:d8:39:a1:b2:38:d5:96:b9:4d:e9: 18:53:5d:f7:67:f5:26:37:54:e3:3c:ab:cc:a0:83: 0d:d9:33:0b:89:56:3a:1d:ad:d9:b2:08:6a:c0:e4: e0:85:f8:1c:39:46:8e:c8:6d:65:d4:9b:87:7e:a8: 62:99:f5:2f:18:7a:c5:77:51:fe:b8:f6:29:cd:f9: 56:9d:32:a3:1e:37:3b:95:83:27:a5:f3:00:be:0e: 32:a6:95:fb:81:04:d9:43:b0:d6:56:4c:29:7c:e2: b6:cd:83:2d:4b:e3:29:bf:95:75:81:77:f0:77:34: 65:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:EA:DC:96:56:EF:46:0C:9B:15:18:E6:4F:4A:A9:56:23:F1:E8:99 X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ee:9c:72:dc:e3:14:c4:03:18:08:bb:6d:2e:c0:5c:05:e2: f1:68:15:ca:4a:15:7d:7d:f9:ba:98:f5:7e:62:29:12:fa:4d: bf:7f:7c:d5:2e:45:6c:ce:b3:17:eb:61:e7:6f:bb:3a:41:80: 4b:8b:ce:4b:4c:95:a6:24:0c:fe:73:f7:43:95:6e:c2:07:87: 2f:28:59:08:0a:f3:99:ee:f6:a9:a6:64:0a:57:9f:12:d5:e2: 7c:67:c2:0c:a6:a5:37:f2:5d:1a:cc:3b:58:6c:57:42:14:9c: be:d2:e9:c6:2e:58:7a:32:15:9f:63:06:50:7d:0c:bf:3b:3b: 01:94:33:19:73:d3:4e:33:fc:56:db:7d:a8:0f:f1:e6:6d:0e: ad:cf:26:fa:d2:63:d4:08:2d:0f:d7:e4:4c:6f:ba:3d:4e:31: a1:49:59:c2:fb:3d:2b:c2:e8:37:d8:6b:0c:cf:d9:d9:05:e5: db:0d:cd:e2:35:d2:d7:e7:18:64:cd:88:f5:15:34:1e:3f:69: 31:ae:84:21:80:d1:6d:de:45:0a:21:6c:78:6c:6e:50:a5:99: 2e:49:0d:93:16:a3:51:ae:e8:f4:04:c1:9c:b6:cd:17:4f:b2: be:6d:7e:06:32:5b:f1:cf:14:ff:56:a8:d6:a2:42:c2:62:97: b0:e0:b8:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGs9Qb17TQuo0hulHB6t5lEgs1u8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTEwMTkxMzE2NDVaFw0yNTEwMjIxMzMzNDVaMDMxMTAvBgNV BAMTKDJGRUFEQzk2NTZFRjQ2MEM5QjE1MThFNjRGNEFBOTU2MjNGMUU4OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdwHGVOyhU4/JL0JEk2a2W1Hxk Lx5SXTEA99NwWt44ePHfm/81gWY+bXZU48iZde3FQVVJk23G9q2/knMY8jkcr9s6 kKW5wd2qG1Yh12YHGJX/3ogHi3ijbbJciHpWx5SN0cFbpVXwV7Y2IV1EGKKTCqK5 Sb09Hqbpb2pou+MAHcfWUu03iGnjWmKP2DmhsjjVlrlN6RhTXfdn9SY3VOM8q8yg gw3ZMwuJVjodrdmyCGrA5OCF+Bw5Ro7IbWXUm4d+qGKZ9S8YesV3Uf649inN+Vad MqMeNzuVgyel8wC+DjKmlfuBBNlDsNZWTCl84rbNgy1L4ym/lXWBd/B3NGVBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL+rcllbvRgybFRjmT0qpViPx6JkwHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH/unHLc4xTEAxgIu20uwFwF4vFoFcpKFX19 +bqY9X5iKRL6Tb9/fNUuRWzOsxfrYedvuzpBgEuLzktMlaYkDP5z90OVbsIHhy8o WQgK85nu9qmmZApXnxLV4nxnwgympTfyXRrMO1hsV0IUnL7S6cYuWHoyFZ9jBlB9 DL87OwGUMxlz004z/FbbfagP8eZtDq3PJvrSY9QILQ/X5Exvuj1OMaFJWcL7PSvC 6DfYawzP2dkF5dsNzeI10tfnGGTNiPUVNB4/aTGuhCGA0W3eRQohbHhsblClmS5J DZMWo1Gu6PQEwZy2zRdPsr5tfgYyW/HPFP9WqNaiQsJil7DguBE= -----END CERTIFICATE-----Generated at Mon Oct 20 10:06:31 2025 by rpki-client