$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft (raw, json) Hash identifier: q10LEf7kCKLvCariKcxZ5dqv7dHtoG9MtIEzpTrxcWU= Subject key identifier: 41:5A:E5:C4:1A:A4:33:27:6C:EA:BD:26:18:C1:BB:B8:05:F9:2A:27 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 4A49C5A258EE3D92C4C53D1D3497BE9868C2662E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft Manifest number: 051A Signing time: Sun 19 Oct 2025 09:11:14 +0000 Manifest this update: Sun 19 Oct 2025 09:06:14 +0000 Manifest next update: Wed 22 Oct 2025 11:14:14 +0000 Files and hashes: 1: 3130332e35322e31382e302f32342d3234203d3e20313333383131.roa (hash: MpDUQT8A3dZvwWRQtlzD2B+hHv7+ces35KG+DCb4lSw=) 2: 3130332e35322e31362e302f32342d3234203d3e20313333383131.roa (hash: KMXBXh+Hz9t8Vs+CANui3lrLwoDdVGoivVhKoGTM+n0=) 3: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (hash: E70nlSvwN/YRzt3ipt5eUpiof5ZiDppc9oAiJGHFIb4=) 4: 3130332e35322e31392e302f32342d3234203d3e20313333383131.roa (hash: frS3InbJAyXvfYFJ9oqdkhlt6S7xP80lfV9ZpnmpcMc=) 5: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (hash: hHPw+Xqwsov7fA4EH++xE5Fe/5zBy6SOylLmX+aVZlE=) 6: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl (hash: 22E0ELNIp9Y3j9Ln7NiQ6/vOUfkC7zUvnvYlm22hUbQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 11:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:49:c5:a2:58:ee:3d:92:c4:c5:3d:1d:34:97:be:98:68:c2:66:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Oct 19 09:06:14 2025 GMT Not After : Oct 22 11:14:14 2025 GMT Subject: CN=415AE5C41AA433276CEABD2618C1BBB805F92A27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:19:45:ce:eb:a8:3c:e9:c1:ea:8a:85:84:a2: a5:6a:e5:03:cf:3c:84:35:3b:50:68:eb:7d:81:32: 3d:d1:d8:ae:fc:b9:7c:68:15:f1:57:4a:b7:6a:4a: 5e:3b:45:8c:b7:a0:d3:20:52:f1:63:19:a9:6b:3e: ca:41:a7:3b:44:df:fa:c0:66:3a:16:ba:dd:3b:a1: f5:f6:6e:ed:eb:bb:b2:10:0d:27:38:6b:d3:38:d9: b1:cb:77:0e:8d:81:0f:3b:77:48:f1:bb:24:1a:cb: 29:29:87:73:02:81:77:cc:5d:67:78:76:20:9a:af: b1:41:48:79:c5:6d:96:99:05:f5:79:90:14:e9:c7: 0a:b2:98:aa:f8:a9:68:c3:a6:dc:ba:14:58:c5:ab: e5:0d:17:c6:d9:4e:22:5f:4a:ba:3c:b5:3a:4d:56: bc:f4:f9:2c:77:80:91:7f:38:84:22:db:96:39:62: 83:46:b7:70:c5:6c:9e:00:ff:64:c2:c4:7c:bb:69: fa:bc:aa:00:8b:5b:63:04:ea:f3:c9:b7:2e:ab:4e: ef:9e:42:3e:d2:5e:ac:7d:81:51:4e:47:9f:96:6e: 4c:a6:35:52:44:3c:89:ce:b9:84:5a:98:cd:3b:6a: ca:0f:a1:4c:1b:af:15:d3:76:1e:fd:14:85:81:9e: 1d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5A:E5:C4:1A:A4:33:27:6C:EA:BD:26:18:C1:BB:B8:05:F9:2A:27 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:18:a1:43:db:64:6c:7e:30:c5:d2:fa:3a:22:c3:93:f8:34: 2e:08:19:d2:f6:9c:d4:92:7c:10:c5:d2:c3:22:ac:00:9d:3c: bf:2a:49:17:5d:86:3b:7c:b8:5c:f8:21:6a:ee:be:d4:1e:f2: f9:5a:3b:cd:f0:5c:2c:e8:0c:ea:d1:ed:47:2b:e8:ce:80:f4: e6:b7:72:b9:90:a7:1c:23:8d:7c:1d:b6:6b:99:02:3c:a1:a9: 5c:ab:e2:75:6f:26:4a:ac:b6:0c:5d:f4:54:ef:46:4f:09:5b: 17:37:95:7d:c3:7a:c2:02:f0:ef:80:31:be:f0:e4:e2:35:ef: 92:b4:e3:9d:86:bf:df:b9:69:b5:40:70:1e:2a:76:88:6d:ec: b5:22:7d:1f:df:d1:68:51:00:97:ab:78:eb:49:ef:b2:d0:0a: 1f:67:64:01:95:63:47:e8:08:c8:ea:32:69:48:5d:e1:95:ae: b0:dc:fd:18:be:b8:56:fe:c9:d8:48:3c:3b:d6:62:48:5f:5b: 40:e3:11:09:32:d3:e1:e6:a4:fb:fc:e0:e6:75:55:94:ba:20: 86:cc:5d:4e:ea:14:95:ec:ac:5b:59:7a:6a:f2:7d:05:7b:65: b4:d3:a1:04:66:ba:4e:d9:32:a0:e9:5e:50:a7:66:eb:27:40: 4e:41:cb:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSknFoljuPZLExT0dNJe+mGjCZi4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTEwMTkwOTA2MTRaFw0yNTEwMjIxMTE0MTRaMDMxMTAvBgNV BAMTKDQxNUFFNUM0MUFBNDMzMjc2Q0VBQkQyNjE4QzFCQkI4MDVGOTJBMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXGUXO66g86cHqioWEoqVq5QPP PIQ1O1Bo632BMj3R2K78uXxoFfFXSrdqSl47RYy3oNMgUvFjGalrPspBpztE3/rA ZjoWut07ofX2bu3ru7IQDSc4a9M42bHLdw6NgQ87d0jxuyQayykph3MCgXfMXWd4 diCar7FBSHnFbZaZBfV5kBTpxwqymKr4qWjDpty6FFjFq+UNF8bZTiJfSro8tTpN Vrz0+Sx3gJF/OIQi25Y5YoNGt3DFbJ4A/2TCxHy7afq8qgCLW2ME6vPJty6rTu+e Qj7SXqx9gVFOR5+WbkymNVJEPInOuYRamM07asoPoUwbrxXTdh79FIWBnh1XAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQVrlxBqkMyds6r0mGMG7uAX5KicwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFkZDdjMGYtMDJkMy00MjE3LTlm YzMtMDA0N2FlMTgzNmRjLzAvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIw NTNBOUMwQjZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIcYoUPbZGx+MMXS+joiw5P4NC4IGdL2nNSS fBDF0sMirACdPL8qSRddhjt8uFz4IWruvtQe8vlaO83wXCzoDOrR7Ucr6M6A9Oa3 crmQpxwjjXwdtmuZAjyhqVyr4nVvJkqstgxd9FTvRk8JWxc3lX3DesIC8O+AMb7w 5OI175K0452Gv9+5abVAcB4qdoht7LUifR/f0WhRAJereOtJ77LQCh9nZAGVY0fo CMjqMmlIXeGVrrDc/Ri+uFb+ydhIPDvWYkhfW0DjEQky0+HmpPv84OZ1VZS6IIbM XU7qFJXsrFtZemryfQV7ZbTToQRmuk7ZMqDpXlCnZusnQE5By0g= -----END CERTIFICATE-----Generated at Mon Oct 20 06:22:39 2025 by rpki-client