$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft File: 5B558AD01277C8212C974318B6352FB28BF683AD.mft (raw, json) Hash identifier: DHVn3o0HD4Mhdlw9U380D8mfBiycMYHVCBMG9ctP3Kk= Subject key identifier: F5:A5:CE:D9:36:51:7A:4E:D7:7E:61:E3:59:21:F6:B1:A5:62:CF:26 Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 74095653146A868541A5CB0DCB484BC53DB7F0A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft Manifest number: 01CD Signing time: Mon 20 Oct 2025 15:30:51 +0000 Manifest this update: Mon 20 Oct 2025 15:25:51 +0000 Manifest next update: Fri 24 Oct 2025 01:30:51 +0000 Files and hashes: 1: 3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa (hash: ZDqeHH9c3Ge8DQKLptNu9Fe3zE45Y025wBi0fQHXBeg=) 2: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (hash: IAfCc36b+ZuLfkNXk9UGXWqhcIrd0+kkw00XJdFWpic=) 3: 5B558AD01277C8212C974318B6352FB28BF683AD.crl (hash: Rd75VQpr8wTL2VtotmFLJngj519JY0mURVfjwG1AekM=) 4: 3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa (hash: cCo2j3DaRw7ST6xKRFKIc+Fk9WAeawaQpPCFHRoRW38=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:09:56:53:14:6a:86:85:41:a5:cb:0d:cb:48:4b:c5:3d:b7:f0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Oct 20 15:25:51 2025 GMT Not After : Oct 24 01:30:51 2025 GMT Subject: CN=F5A5CED936517A4ED77E61E35921F6B1A562CF26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5a:05:8c:6c:b2:f9:99:4b:5a:47:03:1d:7c: 4b:8c:4f:ed:4c:d8:7c:0b:fb:f1:5a:63:79:91:e7: a8:35:55:90:5b:eb:96:de:ce:2c:f7:d6:9d:17:e1: dc:f8:21:b4:c7:d0:3d:91:7c:d8:fb:de:28:7c:0f: 71:d4:5f:23:e0:d6:fd:17:b5:b9:97:44:5c:32:4d: fa:51:66:48:42:7c:80:2e:a4:40:27:63:5a:8c:65: ef:93:2c:84:07:d2:e6:9b:06:1f:5d:29:9c:5b:d0: ed:cc:f6:9d:25:31:92:ba:34:0f:ae:4d:9c:29:6a: aa:07:6a:2c:ba:e5:39:5c:57:b5:87:a0:30:5f:07: 07:d4:5c:92:d0:9b:94:81:e5:9e:95:23:84:42:24: 14:25:31:cd:7e:ae:05:a7:ef:1a:ed:29:f1:c1:50: 42:cc:96:e6:78:a9:db:80:03:8d:c7:a9:89:5b:9e: 5a:8c:8e:99:cf:a5:f6:09:d2:ec:1d:e1:38:e9:7d: 65:77:22:23:fb:76:6e:e2:a9:0a:bf:05:8a:89:0f: 7a:0d:a3:92:ae:91:09:76:aa:73:21:dc:60:86:8d: 1c:38:ef:8b:44:7d:32:76:c9:c1:6a:e0:e3:b4:39: c8:67:ce:fe:7d:58:82:26:fd:53:7f:b9:1d:9e:aa: de:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A5:CE:D9:36:51:7A:4E:D7:7E:61:E3:59:21:F6:B1:A5:62:CF:26 X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:0b:8a:5b:64:f4:c1:24:fa:16:52:ad:46:ea:cb:e4:0f:b4: e7:ac:d7:b0:10:08:2a:0f:5c:3f:7d:3a:4b:db:63:11:e3:5f: 06:07:34:18:22:81:c1:02:56:f5:da:79:7f:90:66:3f:82:9e: 6a:37:d5:cb:a8:dc:01:e4:a9:21:4e:35:bd:b9:c9:8c:07:59: b8:28:ff:3f:58:59:72:f0:7c:8d:50:ef:d9:ca:31:c3:65:1b: 92:70:30:84:9f:c3:47:a7:01:e0:73:99:87:55:3b:5d:d0:cd: 96:4e:4a:bd:bf:d7:e6:5c:0a:43:75:6d:34:fc:a4:28:04:56: e0:d8:6b:d5:08:c9:35:f3:7f:e1:7c:4c:e7:fb:6b:03:72:b1: bc:36:dc:97:5c:2c:1c:d5:df:27:29:b3:c9:6a:0a:9a:ad:0d: 0b:e5:f6:94:72:a9:83:28:c2:2f:21:ba:5e:85:10:a1:08:b1: 7a:de:13:c5:26:c2:da:7e:31:d0:8a:f8:21:ac:f0:72:df:f7: 68:7c:d8:af:80:02:5b:13:b2:a9:aa:95:82:19:69:59:3d:38: cd:f4:60:7f:86:80:7f:2e:b5:0e:ac:a3:a5:0c:aa:7b:9a:3a: 6d:ca:66:3b:15:e8:1f:50:bd:01:64:3b:96:ff:40:01:cb:f6: c2:96:f7:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdAlWUxRqhoVBpcsNy0hLxT238KIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNTEwMjAxNTI1NTFaFw0yNTEwMjQwMTMwNTFaMDMxMTAvBgNV BAMTKEY1QTVDRUQ5MzY1MTdBNEVENzdFNjFFMzU5MjFGNkIxQTU2MkNGMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3WgWMbLL5mUtaRwMdfEuMT+1M 2HwL+/FaY3mR56g1VZBb65beziz31p0X4dz4IbTH0D2RfNj73ih8D3HUXyPg1v0X tbmXRFwyTfpRZkhCfIAupEAnY1qMZe+TLIQH0uabBh9dKZxb0O3M9p0lMZK6NA+u TZwpaqoHaiy65TlcV7WHoDBfBwfUXJLQm5SB5Z6VI4RCJBQlMc1+rgWn7xrtKfHB UELMluZ4qduAA43HqYlbnlqMjpnPpfYJ0uwd4TjpfWV3IiP7dm7iqQq/BYqJD3oN o5KukQl2qnMh3GCGjRw474tEfTJ2ycFq4OO0Ochnzv59WIIm/VN/uR2eqt53AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9aXO2TZRek7XfmHjWSH2saVizyYwHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmE1YjRmYTQtMzI4Yy00Y2YyLWFk ZTMtYzg2ODEzMWQ0ZTBkLzAvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJG QjI4QkY2ODNBRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFgLiltk9MEk+hZSrUbqy+QPtOes17AQCCoP XD99OkvbYxHjXwYHNBgigcECVvXaeX+QZj+Cnmo31cuo3AHkqSFONb25yYwHWbgo /z9YWXLwfI1Q79nKMcNlG5JwMISfw0enAeBzmYdVO13QzZZOSr2/1+ZcCkN1bTT8 pCgEVuDYa9UIyTXzf+F8TOf7awNysbw23JdcLBzV3ycps8lqCpqtDQvl9pRyqYMo wi8hul6FEKEIsXreE8Umwtp+MdCK+CGs8HLf92h82K+AAlsTsqmqlYIZaVk9OM30 YH+GgH8utQ6so6UMqnuaOm3KZjsV6B9QvQFkO5b/QAHL9sKW95g= -----END CERTIFICATE-----Generated at Mon Oct 20 23:31:04 2025 by rpki-client