$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft File: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft (raw, json) Hash identifier: jVExyUGjX8CMAAxhnMKURt1N0EltJ9TGt3XPZookbW0= Subject key identifier: D4:3F:9F:B5:E6:30:4A:FD:A1:76:60:74:1B:19:A1:42:3E:A5:C0:F9 Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Certificate serial: 2E61264CBE09132FCE7EE662538B6396048D33F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft Manifest number: 01F2 Signing time: Sun 19 Oct 2025 11:59:48 +0000 Manifest this update: Sun 19 Oct 2025 11:54:48 +0000 Manifest next update: Mon 20 Oct 2025 15:24:48 +0000 Files and hashes: 1: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl (hash: ZQ9wg9/q9aAdlvkZWFLj/dhnnKXjE0p4HDQ9uSB84kA=) 2: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (hash: kx3ayya4lPrQllp+nogQF65nwTl1whhZEUlAaHtTvAM=) 3: AS153176.asa (hash: nTAPGafaR0TwBdv5jCAijmg7tuOn6F8lJBqMjy7Nxfk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 15:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:61:26:4c:be:09:13:2f:ce:7e:e6:62:53:8b:63:96:04:8d:33:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Validity Not Before: Oct 19 11:54:48 2025 GMT Not After : Oct 20 15:24:48 2025 GMT Subject: CN=D43F9FB5E6304AFDA17660741B19A1423EA5C0F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1d:6e:ba:02:4a:01:02:5c:8a:34:33:6b:5a: 28:c4:97:7a:a0:58:38:b6:9d:da:48:11:a6:7e:8f: 4e:ae:0f:a5:01:31:c6:ca:43:09:50:21:12:0d:3e: 30:dd:48:ac:0f:d4:e0:cb:8c:f5:98:fe:ce:8b:ac: 9f:77:40:b5:20:74:da:2d:a7:5b:cd:5f:0c:0b:30: 50:a9:83:7f:02:2e:56:58:15:85:c7:f2:f8:b0:24: 99:27:1c:1d:57:c8:1b:b4:89:dc:07:ce:6d:51:a3: 7a:1e:cb:dc:3e:1c:fb:c6:80:e0:9a:f3:95:73:23: 69:48:7a:9a:ae:37:7d:a9:db:cd:13:90:6a:43:3f: d7:7d:f6:2c:6b:3d:6f:e4:78:f2:a1:e9:dc:be:d0: bd:f0:86:cc:5c:c9:86:c3:0e:6b:cd:ea:e1:8d:1d: 78:95:67:e2:57:98:7c:5c:0a:73:71:7a:40:6f:f6: f3:c4:f0:b5:e3:d9:52:0b:fe:01:cb:02:56:b4:dd: cb:ff:80:39:ef:50:87:1b:1c:d7:3e:ce:dc:6b:5e: 69:de:8d:d2:c3:59:c1:62:fb:7b:d4:bc:3c:e5:0d: 7c:19:2d:d5:b7:b3:d8:23:a0:75:0d:24:db:50:10: 59:bd:f4:35:4a:d1:48:4f:f8:d1:34:0a:0f:fe:51: 7d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3F:9F:B5:E6:30:4A:FD:A1:76:60:74:1B:19:A1:42:3E:A5:C0:F9 X509v3 Authority Key Identifier: keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:b0:de:52:04:ef:cd:08:02:10:f1:0e:f7:c8:f9:e7:86:fb: 2a:b4:6f:58:8f:6a:33:cf:b3:d0:31:34:7a:48:fd:2f:e6:3c: f4:fb:7b:d3:12:3a:b2:51:0e:4f:0a:72:93:70:d4:72:19:2f: d0:ae:63:c1:a2:3d:f1:14:67:08:f1:dd:98:15:fb:30:28:82: 22:ac:15:8a:a5:01:42:79:64:98:54:56:25:2f:2c:1a:e6:a7: 4e:00:d9:5f:b3:4c:00:1c:c2:78:1b:38:55:73:97:ff:c5:be: a9:89:e1:d5:c6:4b:9e:36:93:81:86:25:d7:a0:82:59:df:2d: d3:38:87:51:ed:63:7f:35:8c:d0:23:76:94:78:be:22:2d:5a: 12:ac:1d:b4:ba:bb:94:64:ff:f5:81:0a:62:f7:62:75:6c:43: 80:f9:5c:a3:22:03:07:b7:82:69:a8:58:94:bd:21:fd:ec:0d: aa:21:1c:f5:27:4d:05:af:14:15:c7:7c:b7:ee:02:c4:5f:53: 48:11:0b:a4:8d:03:f9:26:48:56:e4:1f:f9:78:db:02:76:5a: 40:f0:9d:8b:38:c6:d7:e4:00:d3:fa:31:11:c7:fc:32:14:d6: f0:c0:16:f0:52:16:0f:7b:34:96:1e:f3:ba:6e:c8:e2:75:4b: 6a:6f:47:71 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIULmEmTL4JEy/OfuZiU4tjlgSNM/IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyg5NEEyRjE2REY0 MTdDMzJFMDU3QUEyNjhDMEU1MkM3MEQxQTQwNkM1MB4XDTI1MTAxOTExNTQ0OFoX DTI1MTAyMDE1MjQ0OFowMzExMC8GA1UEAxMoRDQzRjlGQjVFNjMwNEFGREExNzY2 MDc0MUIxOUExNDIzRUE1QzBGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQdbroCSgECXIo0M2taKMSXeqBYOLad2kgRpn6PTq4PpQExxspDCVAhEg0+ MN1IrA/U4MuM9Zj+zousn3dAtSB02i2nW81fDAswUKmDfwIuVlgVhcfy+LAkmScc HVfIG7SJ3AfObVGjeh7L3D4c+8aA4JrzlXMjaUh6mq43fanbzROQakM/1332LGs9 b+R48qHp3L7QvfCGzFzJhsMOa83q4Y0deJVn4leYfFwKc3F6QG/288TwtePZUgv+ AcsCVrTdy/+AOe9Qhxsc1z7O3Gtead6N0sNZwWL7e9S8POUNfBkt1bez2COgdQ0k 21AQWb30NUrRSE/40TQKD/5RfUsCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBTUP5+1 5jBK/aF2YHQbGaFCPqXA+TAfBgNVHSMEGDAWgBSUovFt9BfDLgV6omjA5Sxw0aQG xTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMy85NEEyRjE2REY0MTdDMzJFMDU3 QUEyNjhDMEU1MkM3MEQxQTQwNkM1LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sS0x4YmZRWHd5NEZlcUpvd09Vc2NO R2tCc1UuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzMvOTRBMkYxNkRGNDE3QzMyRTA1 N0FBMjY4QzBFNTJDNzBEMUE0MDZDNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBALOw3lIE780IAhDxDvfI +eeG+yq0b1iPajPPs9AxNHpI/S/mPPT7e9MSOrJRDk8KcpNw1HIZL9CuY8GiPfEU Zwjx3ZgV+zAogiKsFYqlAUJ5ZJhUViUvLBrmp04A2V+zTAAcwngbOFVzl//FvqmJ 4dXGS542k4GGJdegglnfLdM4h1HtY381jNAjdpR4viItWhKsHbS6u5Rk//WBCmL3 YnVsQ4D5XKMiAwe3gmmoWJS9If3sDaohHPUnTQWvFBXHfLfuAsRfU0gRC6SNA/km SFbkH/l42wJ2WkDwnYs4xtfkANP6MRHH/DIU1vDAFvBSFg97NJYe87puyOJ1S2pv R3E= -----END CERTIFICATE-----Generated at Mon Oct 20 07:27:31 2025 by rpki-client