$ rpki-client -vvf repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft (raw, json) Hash identifier: hZCmVgaF+KwpDXSTseTPPGk1ipF3AKGQaMYpRlwmeUs= Subject key identifier: 8F:82:57:7E:F2:1B:56:43:E7:CC:C8:69:D8:BC:D3:12:54:25:24:CB Authority key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Certificate issuer: /CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Certificate serial: 7E97FC3BA5ADA39FBC216879D24CFA9A33978B0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft Manifest number: AD Signing time: Mon 03 Nov 2025 04:40:49 +0000 Manifest this update: Mon 03 Nov 2025 04:35:49 +0000 Manifest next update: Thu 06 Nov 2025 13:55:49 +0000 Files and hashes: 1: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl (hash: tjhGFmZhDiiGju976Z7ESb1MRjMsXgD6e30+CBMCXag=) 2: 3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa (hash: pR6eogbZvQzPFnI0kZLcItGmRoYFBBreikW5pxdST7Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 13:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:97:fc:3b:a5:ad:a3:9f:bc:21:68:79:d2:4c:fa:9a:33:97:8b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Validity Not Before: Nov 3 04:35:49 2025 GMT Not After : Nov 6 13:55:49 2025 GMT Subject: CN=8F82577EF21B5643E7CCC869D8BCD312542524CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:00:6f:77:2b:ee:8c:87:3d:4d:40:c7:5d:47: b5:6d:69:71:91:ab:07:5e:18:55:0c:67:3a:6e:1d: eb:7b:5c:91:6f:71:0f:d4:42:ff:f9:3b:5c:28:d0: cc:96:f3:3a:2a:a3:3f:d1:e3:1a:7e:fc:e8:06:27: bb:a5:fb:6e:a6:05:ce:b0:37:80:a2:23:55:a7:07: 69:20:11:7e:1c:65:2f:15:1f:8f:fc:2e:2c:1e:46: 58:47:b5:90:68:c3:e7:ef:37:cd:2d:3f:7b:94:1c: bf:52:9e:e7:39:4b:f1:ac:82:b4:1a:c2:99:f4:a7: 33:07:ee:d7:6c:a3:1a:ff:c5:61:d5:87:b9:5b:e4: 01:48:a6:4b:27:85:0b:98:7f:cf:3d:8f:46:0b:14: a1:47:ab:91:64:f5:80:67:80:47:78:e3:69:9c:5a: b8:28:5d:2d:9e:20:76:a3:a1:07:93:33:39:5f:8d: d6:13:72:fa:ce:1d:94:50:c1:ed:2e:0a:a5:66:13: cd:fb:38:17:28:8f:36:48:09:d4:d5:15:09:de:75: 17:07:5c:22:15:99:99:d8:20:56:8f:0e:6e:be:21: 8d:27:28:66:98:83:cf:9c:96:74:94:3f:f1:c0:d7: 7c:7e:51:17:a0:50:c5:6d:1c:89:89:f6:54:aa:8b: cb:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:82:57:7E:F2:1B:56:43:E7:CC:C8:69:D8:BC:D3:12:54:25:24:CB X509v3 Authority Key Identifier: keyid:52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:02:66:3a:79:23:24:95:dc:7f:53:d7:81:57:6f:8c:2d:d2: 06:db:e2:bb:23:7f:0d:a2:86:82:ad:b2:a9:e5:8d:d4:af:1d: c1:a1:03:bf:78:41:10:09:c0:99:04:88:9d:2d:36:c2:0d:43: c7:a0:47:54:f4:c8:62:43:97:51:e7:f3:b7:38:11:dc:67:55: 29:8c:da:07:ad:4d:97:33:26:ac:f0:9f:98:81:c4:de:05:49: f2:c1:51:7d:5c:41:b7:12:52:9c:76:d2:bb:44:ea:12:e4:40: c7:16:03:e4:b4:c0:5f:2b:8c:16:13:10:68:e1:0c:94:86:36: 85:64:b4:f6:5c:27:75:d3:d2:2a:6b:0f:22:33:1c:3a:25:1a: 4c:5a:9e:c7:00:46:19:2c:9c:b0:07:4d:f7:f3:2c:7a:b1:74: 21:7a:11:28:66:26:16:2d:2b:2b:c4:98:ce:16:f7:0f:ec:2c: 89:c5:05:cd:bf:c2:0e:e1:76:a8:58:3c:d3:b4:42:75:33:96: 62:c2:57:70:f7:9e:b0:b8:ba:8f:ff:c1:14:c2:33:a5:f5:42: eb:a8:32:d1:0b:f4:9b:68:48:a2:21:01:67:cc:ee:8b:f0:fe: e1:a9:fc:da:9e:63:8e:c9:13:1a:ed:af:4b:3c:97:01:78:ad: cc:1a:b8:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfpf8O6Wto5+8IWh50kz6mjOXiw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0Iz OUU1Q0YzQTAeFw0yNTExMDMwNDM1NDlaFw0yNTExMDYxMzU1NDlaMDMxMTAvBgNV BAMTKDhGODI1NzdFRjIxQjU2NDNFN0NDQzg2OUQ4QkNEMzEyNTQyNTI0Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAAG93K+6Mhz1NQMddR7VtaXGR qwdeGFUMZzpuHet7XJFvcQ/UQv/5O1wo0MyW8zoqoz/R4xp+/OgGJ7ul+26mBc6w N4CiI1WnB2kgEX4cZS8VH4/8LiweRlhHtZBow+fvN80tP3uUHL9Snuc5S/GsgrQa wpn0pzMH7tdsoxr/xWHVh7lb5AFIpksnhQuYf889j0YLFKFHq5Fk9YBngEd442mc WrgoXS2eIHajoQeTMzlfjdYTcvrOHZRQwe0uCqVmE837OBcojzZICdTVFQnedRcH XCIVmZnYIFaPDm6+IY0nKGaYg8+clnSUP/HA13x+URegUMVtHImJ9lSqi8tnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUj4JXfvIbVkPnzMhp2LzTElQlJMswHwYDVR0j BBgwFoAUUrnB5fC680XEDy55ZpxjyznlzzowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMC81MkI5QzFFNUYw QkFGMzQ1QzQwRjJFNzk2NjlDNjNDQjM5RTVDRjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0IzOUU1 Q0YzQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTBhODU5MGUtZTRkYy00NDE2LWE2 ZmEtZmI3OGQ2ZGQxMmQ3LzAvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYz Q0IzOUU1Q0YzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKQCZjp5IySV3H9T14FXb4wt0gbb4rsjfw2i hoKtsqnljdSvHcGhA794QRAJwJkEiJ0tNsINQ8egR1T0yGJDl1Hn87c4EdxnVSmM 2getTZczJqzwn5iBxN4FSfLBUX1cQbcSUpx20rtE6hLkQMcWA+S0wF8rjBYTEGjh DJSGNoVktPZcJ3XT0iprDyIzHDolGkxanscARhksnLAHTffzLHqxdCF6EShmJhYt KyvEmM4W9w/sLInFBc2/wg7hdqhYPNO0QnUzlmLCV3D3nrC4uo//wRTCM6X1Quuo MtEL9JtoSKIhAWfM7ovw/uGp/NqeY47JExrtr0s8lwF4rcwauPI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:32:05 2025 by rpki-client