$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: UICdwYYbTyJOzkt/zeHVShTHGJpV+y0Be0AvPGW8IGg= Subject key identifier: 26:04:2F:39:8D:B2:E9:5D:85:B2:59:CB:CF:BC:F9:65:ED:60:B9:69 Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 376795539249B1806BAA662C8C82A22F49B67CE8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 020D Signing time: Tue 04 Nov 2025 09:41:09 +0000 Manifest this update: Tue 04 Nov 2025 09:36:09 +0000 Manifest next update: Fri 07 Nov 2025 20:09:09 +0000 Files and hashes: 1: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: 6UhOGV8DI7PfyTejWhCSmpLpe0trLgn56lREPd3WDVA=) 2: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: waduuQGbh6j/B5ku3DvTiewntig4E8DdeVNkC4YoucY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:67:95:53:92:49:b1:80:6b:aa:66:2c:8c:82:a2:2f:49:b6:7c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Nov 4 09:36:09 2025 GMT Not After : Nov 7 20:09:09 2025 GMT Subject: CN=26042F398DB2E95D85B259CBCFBCF965ED60B969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:35:32:5a:0d:6a:ca:7b:1d:af:87:70:09: 45:c5:26:9c:39:2e:01:83:75:d5:d1:9a:67:8b:cb: b1:c6:19:71:76:cd:2b:2d:8a:a2:ef:e6:87:fe:33: 6b:4a:dc:32:83:cf:5c:90:43:a1:d8:a7:03:fe:ab: 3d:a6:44:6d:49:83:21:d9:0b:bd:38:18:df:64:69: d5:1e:25:7e:00:f2:d3:ea:da:0b:af:9e:47:15:a4: e9:9f:6b:1a:83:96:eb:b1:f2:94:82:2e:76:b2:f0: 00:cd:2d:94:ea:05:99:a5:bf:27:d3:fa:3f:9c:2e: 3f:e5:51:2c:ef:0d:4d:31:6e:37:f6:91:20:66:4f: 7c:a9:7d:4d:99:e8:e5:ae:9a:dc:64:cd:e8:dc:07: 33:9f:97:78:79:1c:92:13:e3:d7:b0:99:07:bb:86: a9:8f:ca:b4:fb:10:08:20:80:c1:57:a0:af:35:28: a4:3e:6d:1e:a2:06:7e:19:98:47:d4:b9:f8:b7:e7: 54:0c:eb:cb:09:f4:71:f7:b7:7d:81:89:ef:0b:db: da:c6:27:09:53:b1:70:1d:95:99:68:b6:d2:27:c1: 73:c5:00:28:60:a2:a9:6e:07:df:70:d3:1f:53:df: 1c:d9:cb:11:60:bf:6b:e0:bd:be:52:0d:c1:11:8b: ff:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:04:2F:39:8D:B2:E9:5D:85:B2:59:CB:CF:BC:F9:65:ED:60:B9:69 X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f2:a4:4a:7d:f7:54:19:14:54:6a:22:32:b6:2f:d2:5a:f7: 01:f2:9e:23:3f:ec:51:38:05:6d:ce:3f:d1:cb:7a:31:70:9a: 88:97:89:b9:3f:6c:91:99:d9:82:cb:48:52:34:99:9e:3b:1f: ed:a0:63:17:af:7c:08:2d:ec:2e:e7:99:a7:8e:75:57:8b:af: 78:23:cb:8a:e5:6d:ef:0f:c7:e9:a2:1a:8a:e7:db:08:71:56: 90:8a:6e:4f:43:06:c6:8e:b7:bc:a2:9f:49:b8:fc:06:ed:b5: c8:85:4d:29:a2:f3:25:2b:62:b3:82:7a:d1:75:f1:86:b0:6b: 93:62:ac:d7:9f:2c:01:78:b8:8e:db:09:64:1c:56:66:37:42: 4f:ec:ef:54:db:08:b1:75:b2:93:5c:ad:3b:a2:3b:21:af:26: e9:d1:ec:e7:51:cc:49:9a:03:cc:14:1c:76:11:45:03:ab:2c: c3:3b:7f:7d:65:f7:71:60:20:7c:7c:fc:0f:68:69:6d:43:37: 70:b0:01:2d:48:02:15:3e:2a:67:78:0c:a8:20:23:94:e1:60: 0b:b9:b9:17:3b:89:b9:2c:1d:74:bb:73:ed:d0:b8:72:3f:04: a6:14:ce:c8:83:e9:6f:fc:10:b2:aa:2e:14:31:64:17:9e:b1: c2:45:d0:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN2eVU5JJsYBrqmYsjIKiL0m2fOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNTExMDQwOTM2MDlaFw0yNTExMDcyMDA5MDlaMDMxMTAvBgNV BAMTKDI2MDQyRjM5OERCMkU5NUQ4NUIyNTlDQkNGQkNGOTY1RUQ2MEI5NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6TUyWg1qynsdr4dwCUXFJpw5 LgGDddXRmmeLy7HGGXF2zSstiqLv5of+M2tK3DKDz1yQQ6HYpwP+qz2mRG1JgyHZ C704GN9kadUeJX4A8tPq2guvnkcVpOmfaxqDluux8pSCLnay8ADNLZTqBZmlvyfT +j+cLj/lUSzvDU0xbjf2kSBmT3ypfU2Z6OWumtxkzejcBzOfl3h5HJIT49ewmQe7 hqmPyrT7EAgggMFXoK81KKQ+bR6iBn4ZmEfUufi351QM68sJ9HH3t32Bie8L29rG JwlTsXAdlZlottInwXPFAChgoqluB99w0x9T3xzZyxFgv2vgvb5SDcERi//HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJgQvOY2y6V2FslnLz7z5Ze1guWkwHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADvypEp991QZFFRqIjK2L9Ja9wHyniM/7FE4 BW3OP9HLejFwmoiXibk/bJGZ2YLLSFI0mZ47H+2gYxevfAgt7C7nmaeOdVeLr3gj y4rlbe8Px+miGorn2whxVpCKbk9DBsaOt7yin0m4/AbttciFTSmi8yUrYrOCetF1 8Yawa5NirNefLAF4uI7bCWQcVmY3Qk/s71TbCLF1spNcrTuiOyGvJunR7OdRzEma A8wUHHYRRQOrLMM7f31l93FgIHx8/A9oaW1DN3CwAS1IAhU+Kmd4DKggI5ThYAu5 uRc7ibksHXS7c+3QuHI/BKYUzsiD6W/8ELKqLhQxZBeescJF0Mc= -----END CERTIFICATE-----Generated at Tue Nov 4 19:08:45 2025 by rpki-client