$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: tsiWadLe6Pj464c0jJxZqjDkvbgWJmi4wpyeJhA/V7g= Subject key identifier: 58:66:F2:65:DD:2F:3F:2F:8A:B2:65:DD:78:19:76:E2:D6:C7:85:73 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 10AFF2281726AA4F9655F2734C7FFB69DB656D57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 0186 Signing time: Tue 04 Nov 2025 15:02:18 +0000 Manifest this update: Tue 04 Nov 2025 14:57:18 +0000 Manifest next update: Sat 08 Nov 2025 02:29:18 +0000 Files and hashes: 1: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 2: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: yBw+aCXdB9npcbSfGnEkgmHskvDbXYQjSpIkUm6MIEE=) 3: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) 4: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 5: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 02:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:af:f2:28:17:26:aa:4f:96:55:f2:73:4c:7f:fb:69:db:65:6d:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Nov 4 14:57:18 2025 GMT Not After : Nov 8 02:29:18 2025 GMT Subject: CN=5866F265DD2F3F2F8AB265DD781976E2D6C78573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b3:c0:dc:e0:f5:0d:ce:cd:40:b7:fd:10:56: c8:d4:d0:ee:bb:e6:dc:f6:13:fd:98:03:12:84:db: 79:32:c1:8b:0d:ff:0c:b4:98:03:fe:7a:58:a7:41: ab:af:3c:61:d9:e0:be:e6:16:09:a4:c7:f3:ee:b2: fd:7a:73:61:e9:c1:be:39:14:65:97:ea:7f:5b:f0: 15:e5:3e:ab:da:5f:3e:cf:69:54:5a:72:92:05:d2: 11:af:c2:36:6e:96:f6:50:fe:a6:8e:3f:d0:ae:47: 14:e1:8e:e8:54:a0:05:a8:63:0c:f4:ab:8a:2f:74: 96:7b:0b:a8:70:4c:a9:ec:d9:19:1c:1f:fb:6a:f5: 3e:d7:9a:43:2f:4a:d1:2e:f0:37:ca:cf:f4:08:ad: fd:bd:34:39:0a:87:99:9d:7b:19:da:ea:3c:17:b3: 6f:48:08:9b:dc:91:c6:69:d2:01:f5:24:06:8e:ef: bd:99:58:8d:1e:76:51:a2:32:3d:46:6b:58:65:d3: 06:da:98:2a:42:65:25:4a:d1:8c:de:1c:85:e3:f1: 21:98:41:7b:fa:4b:f1:78:de:4f:21:e5:f0:db:fa: 01:0a:24:b2:27:c3:2d:71:cc:6a:1f:cd:53:17:bb: f0:19:79:ec:37:24:5f:11:94:25:ed:6a:9b:16:21: 60:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:66:F2:65:DD:2F:3F:2F:8A:B2:65:DD:78:19:76:E2:D6:C7:85:73 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:de:ef:bb:24:85:25:7e:f9:0d:23:4b:3e:62:cb:12:a6:3d: f7:f4:18:80:58:77:a4:b6:9c:18:81:6f:5e:3d:4b:d5:f0:f4: a3:32:dd:1f:8a:75:f6:32:a7:63:20:cb:5c:27:01:48:f9:3a: 06:be:16:e8:a0:e8:83:ad:f5:ce:24:ff:3f:84:79:38:d2:4e: 82:27:af:18:47:5f:b8:67:60:a4:5a:ad:2d:3f:5e:e7:2c:aa: d5:d5:d0:2b:f4:23:b2:98:46:7c:7a:e3:a1:d1:d0:de:cd:6a: 0f:11:d9:c7:f0:14:f8:0c:49:7f:57:a3:fe:2d:d4:2e:ef:6e: a8:39:a0:36:95:7c:5a:44:49:14:f8:22:cf:3f:38:fd:f5:47: ea:15:f0:69:27:ba:f3:f1:33:20:f0:cf:f7:d1:c7:23:e3:a8: b1:9a:c1:fd:cc:55:56:b1:fe:91:53:2c:f4:94:13:00:9d:5b: 5a:65:a9:94:69:06:02:9c:72:83:03:ae:0b:5d:d6:77:16:4a: ac:75:1a:9e:79:06:97:f3:17:25:b0:72:d9:27:e7:b1:ca:be: 3d:a0:74:f6:ef:ba:cd:7e:ad:df:5c:3b:06:48:8b:28:f1:67: 7d:2d:9c:d9:73:a5:2a:65:b8:a9:59:08:de:6c:8a:44:33:29: 3d:40:58:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEK/yKBcmqk+WVfJzTH/7adtlbVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTExMDQxNDU3MThaFw0yNTExMDgwMjI5MThaMDMxMTAvBgNV BAMTKDU4NjZGMjY1REQyRjNGMkY4QUIyNjVERDc4MTk3NkUyRDZDNzg1NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCds8Dc4PUNzs1At/0QVsjU0O67 5tz2E/2YAxKE23kywYsN/wy0mAP+elinQauvPGHZ4L7mFgmkx/Pusv16c2Hpwb45 FGWX6n9b8BXlPqvaXz7PaVRacpIF0hGvwjZulvZQ/qaOP9CuRxThjuhUoAWoYwz0 q4ovdJZ7C6hwTKns2RkcH/tq9T7XmkMvStEu8DfKz/QIrf29NDkKh5mdexna6jwX s29ICJvckcZp0gH1JAaO772ZWI0edlGiMj1Ga1hl0wbamCpCZSVK0YzeHIXj8SGY QXv6S/F43k8h5fDb+gEKJLInwy1xzGofzVMXu/AZeew3JF8RlCXtapsWIWBZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWGbyZd0vPy+KsmXdeBl24tbHhXMwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK7e77skhSV++Q0jSz5iyxKmPff0GIBYd6S2 nBiBb149S9Xw9KMy3R+KdfYyp2Mgy1wnAUj5Oga+Fuig6IOt9c4k/z+EeTjSToIn rxhHX7hnYKRarS0/XucsqtXV0Cv0I7KYRnx646HR0N7Nag8R2cfwFPgMSX9Xo/4t 1C7vbqg5oDaVfFpESRT4Is8/OP31R+oV8GknuvPxMyDwz/fRxyPjqLGawf3MVVax /pFTLPSUEwCdW1plqZRpBgKccoMDrgtd1ncWSqx1Gp55BpfzFyWwctkn57HKvj2g dPbvus1+rd9cOwZIiyjxZ30tnNlzpSpluKlZCN5sikQzKT1AWPI= -----END CERTIFICATE-----Generated at Wed Nov 5 01:25:44 2025 by rpki-client