$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: YYYCpunZ3OVC+Ns9vv/WgJ4t2W0UOCY2kqaM17ctihY= Subject key identifier: D8:CE:69:60:35:71:25:40:23:AE:71:5A:AB:C3:97:12:75:D7:84:F1 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 7E09CBEE5D5C12BE7252CB1F637A3560624E96A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 04AB Signing time: Sun 19 Oct 2025 02:21:18 +0000 Manifest this update: Sun 19 Oct 2025 02:16:18 +0000 Manifest next update: Wed 22 Oct 2025 08:15:18 +0000 Files and hashes: 1: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: e3tuv4bUE+5sOOhpfdGmGuOFPlroiW0z6wkdn0Eg6vM=) 2: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: haYFhyqQAzHxtl6tmeljYYsBBheKypSgwwhpgbm3LRE=) 3: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: q5CuF5e5qYX8bk7E7KseYjajuExzeTaBW1PNtQOhgkQ=) 4: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: j9xUg13KQEtQqrg9g3ERUl0kaedTdjzl5FAcPmtGqCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:09:cb:ee:5d:5c:12:be:72:52:cb:1f:63:7a:35:60:62:4e:96:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Oct 19 02:16:18 2025 GMT Not After : Oct 22 08:15:18 2025 GMT Subject: CN=D8CE69603571254023AE715AABC3971275D784F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:79:cb:ff:61:0e:89:3a:83:0d:3a:d6:f4:61: f9:f5:4f:c0:1a:46:90:e1:f1:12:4e:f1:ae:8c:68: 79:61:02:2e:ff:f6:08:79:f5:31:84:1f:68:01:40: 46:81:b4:ca:32:c2:39:1b:a3:9a:82:f5:51:7f:25: c1:be:f5:02:c3:3c:6f:35:ee:fd:8f:97:bb:11:75: e6:45:b0:18:c1:37:b2:73:4c:91:dc:d3:f1:3b:a8: 0a:ac:40:97:9e:64:84:75:fd:da:9e:fd:86:c4:07: ee:12:45:d5:dd:98:27:d8:0a:fd:cc:6e:a2:71:23: 4b:62:8b:23:da:3c:58:e1:ff:88:70:48:5a:51:91: 65:2b:67:ac:90:bd:bd:57:f3:f2:8d:eb:9f:f8:90: 3f:0c:27:74:fb:b3:cd:80:c2:24:60:d4:81:7c:53: b3:3f:47:f6:b8:4b:02:ff:6a:19:71:a2:f3:06:8b: 1b:dc:30:4a:7d:61:21:ca:b9:87:84:8a:ae:19:61: 0e:d1:45:ff:47:23:64:d8:cf:70:0c:64:ff:e0:58: 82:92:d8:3f:28:53:64:4f:d9:83:03:87:45:93:e9: b4:cc:a2:63:35:a9:25:c1:78:b4:a0:c9:6e:63:7a: c4:f4:2c:d9:cc:08:45:bd:a2:d2:41:6c:5a:5b:86: 65:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CE:69:60:35:71:25:40:23:AE:71:5A:AB:C3:97:12:75:D7:84:F1 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:4a:72:2e:92:17:71:a9:fc:c1:75:ba:75:87:e5:5f:2b:fe: ed:42:b6:ee:e7:ab:c1:88:d1:18:80:ce:55:72:45:8b:99:d5: 57:0f:95:db:63:6d:54:b5:92:3a:73:41:5b:20:9b:31:91:06: 5a:96:04:e6:04:6b:cf:67:76:ec:7f:a1:ac:b3:40:5c:e7:90: 71:e3:62:f2:b5:17:99:7c:a8:9b:9a:5b:a1:20:63:8e:20:a1: 7b:20:b7:6b:4b:3c:c1:61:df:f5:6a:c6:c7:f2:c3:bc:92:94: 06:dc:11:81:b9:ba:97:c2:20:da:55:85:54:46:f4:47:ef:31: af:29:28:ef:fa:b1:f4:36:12:a4:84:b2:d3:ea:ce:5d:03:ef: 69:8a:40:ff:17:24:a6:6a:cd:af:bd:4b:af:5c:64:39:a4:64: 50:22:06:8d:15:5d:47:45:b7:23:59:e0:ef:c4:79:23:61:e4: 27:7c:6d:85:6c:f0:21:4f:ad:d8:6f:3a:6b:c3:8e:c4:c0:5c: 89:9a:f0:f9:8b:1f:c3:3c:d7:d7:68:88:4d:78:35:76:31:c1: 85:af:04:61:e8:df:2f:13:21:70:9a:c6:e4:e4:3f:10:8d:d3: a6:11:9f:67:ed:fb:e0:20:da:52:55:b8:c4:24:59:c8:03:7d: ea:db:18:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfgnL7l1cEr5yUssfY3o1YGJOlqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTEwMTkwMjE2MThaFw0yNTEwMjIwODE1MThaMDMxMTAvBgNV BAMTKEQ4Q0U2OTYwMzU3MTI1NDAyM0FFNzE1QUFCQzM5NzEyNzVENzg0RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPecv/YQ6JOoMNOtb0Yfn1T8Aa RpDh8RJO8a6MaHlhAi7/9gh59TGEH2gBQEaBtMoywjkbo5qC9VF/JcG+9QLDPG81 7v2Pl7sRdeZFsBjBN7JzTJHc0/E7qAqsQJeeZIR1/dqe/YbEB+4SRdXdmCfYCv3M bqJxI0tiiyPaPFjh/4hwSFpRkWUrZ6yQvb1X8/KN65/4kD8MJ3T7s82AwiRg1IF8 U7M/R/a4SwL/ahlxovMGixvcMEp9YSHKuYeEiq4ZYQ7RRf9HI2TYz3AMZP/gWIKS 2D8oU2RP2YMDh0WT6bTMomM1qSXBeLSgyW5jesT0LNnMCEW9otJBbFpbhmUzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2M5pYDVxJUAjrnFaq8OXEnXXhPEwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKNKci6SF3Gp/MF1unWH5V8r/u1Ctu7nq8GI 0RiAzlVyRYuZ1VcPldtjbVS1kjpzQVsgmzGRBlqWBOYEa89ndux/oayzQFznkHHj YvK1F5l8qJuaW6EgY44goXsgt2tLPMFh3/Vqxsfyw7ySlAbcEYG5upfCINpVhVRG 9EfvMa8pKO/6sfQ2EqSEstPqzl0D72mKQP8XJKZqza+9S69cZDmkZFAiBo0VXUdF tyNZ4O/EeSNh5Cd8bYVs8CFPrdhvOmvDjsTAXIma8PmLH8M819doiE14NXYxwYWv BGHo3y8TIXCaxuTkPxCN06YRn2ft++Ag2lJVuMQkWcgDferbGEo= -----END CERTIFICATE-----Generated at Mon Oct 20 20:16:35 2025 by rpki-client