$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft File: 3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft (raw, json) Hash identifier: sJQawW0DYGPIwBOxijhr3WBoKiI+ggxoKZDSo3mfGkw= Subject key identifier: 1F:01:BD:C3:F7:CE:76:67:B0:6F:2F:86:11:15:8A:BC:75:F2:07:57 Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 06C0AB1E1FAADCB175613439261C4EAFC9A1394F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft Manifest number: 0241 Signing time: Tue 04 Nov 2025 07:02:05 +0000 Manifest this update: Tue 04 Nov 2025 06:57:05 +0000 Manifest next update: Fri 07 Nov 2025 13:42:05 +0000 Files and hashes: 1: 3132302e32392e3232372e302f32342d3234203d3e203338373634.roa (hash: kizpm5pMXSzgoWrppvdtyhcaCD0lO2EdJCuHJxptLZU=) 2: 3132302e32392e3232352e302f32342d3234203d3e203338373634.roa (hash: iVloZrBIKi8lO+ez3IilhigHeiC4/XBak2SIy/5eYbE=) 3: 3132302e32392e3233312e302f32342d3234203d3e203338373634.roa (hash: 3zNl9QPxwFV4edQhVMCJxnLjianzmdRSes5SZUBTIJM=) 4: 3132302e32392e3233302e302f32342d3234203d3e203139393035.roa (hash: eJhmyhXXadCdmI4sMr9QqAto/qcSNuimAa2ijC8e73Y=) 5: 3132302e32392e3232362e302f32342d3234203d3e203139393035.roa (hash: 3HF7GKrMWvA2HVJvaEA0TLWlABe/FvvXdYdd308g/bM=) 6: 3132302e32392e3232382e302f32342d3234203d3e203139393035.roa (hash: qnWaLPQKCclL3KbhPyWf5fv4NRd/K4sQGvE8/3c+X3Y=) 7: 3132302e32392e3232392e302f32342d3234203d3e203139393035.roa (hash: VUbT8SHEyKOKmASLTaMwWEhd8ggbwmzz2pEnc4bB2PQ=) 8: 3132302e32392e3232362e302f32342d3234203d3e203338373634.roa (hash: mysGAJlaNM3q0YL8uE3Xz1GWVqbaXG+zqdMdDsNe4Gc=) 9: 3132302e32392e3232382e302f32342d3234203d3e203338373634.roa (hash: RPYaZow5ZwQZRWzcXVmYwaCDDEvxoHSoWyb9lPO3JzQ=) 10: 3132302e32392e3233312e302f32342d3234203d3e203139393035.roa (hash: r2yKO3KrSmkrfjQ84qnMxwLYCnCinVawrYAR52ueF/A=) 11: 3132302e32392e3233302e302f32342d3234203d3e203338373634.roa (hash: 8F55uNQoN3zi97DtY0Vq2ak+DmYZUOFPxOyq8OUlCl0=) 12: 3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl (hash: djrE+sOZFyREpj2w52TNmiBjwyqIX+9yx3bcUETEBlg=) 13: 3132302e32392e3232392e302f32342d3234203d3e203338373634.roa (hash: qDCFFlpgV3kLnT4aXYTKC6LV3pb8e9ELxOyK+x211n0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c0:ab:1e:1f:aa:dc:b1:75:61:34:39:26:1c:4e:af:c9:a1:39:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Nov 4 06:57:05 2025 GMT Not After : Nov 7 13:42:05 2025 GMT Subject: CN=1F01BDC3F7CE7667B06F2F8611158ABC75F20757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:f0:a7:b0:76:a1:cb:4e:f1:e3:8f:f9:63: ad:82:46:30:ce:52:93:39:7a:02:72:8c:07:e0:5a: ee:14:cb:56:43:f7:24:89:c9:35:c1:0e:3f:e6:67: 12:10:c7:e4:1b:27:5c:c9:fd:15:de:83:f6:b3:80: 7d:b4:7b:15:53:96:fe:dd:04:ee:b3:f0:85:2b:bb: 18:bc:70:87:8c:2a:ce:af:dd:53:a9:5b:b4:e9:76: f7:1d:6d:68:e0:2f:af:49:46:6f:cb:d1:9d:c5:62: 10:79:39:82:90:d8:31:d2:3a:4e:f7:40:ea:ea:4d: 78:5f:9b:b6:7f:28:55:f7:cf:59:fd:50:6a:b9:3d: d8:9a:20:a9:49:52:32:68:f7:c7:92:fb:4f:75:19: ca:55:18:da:ee:44:78:b8:07:e1:57:ef:e8:13:5c: 05:c2:be:8f:1c:39:ba:64:97:0d:96:f4:20:c8:40: 93:80:4f:9b:be:38:23:22:a8:03:ca:a3:ce:aa:06: e1:c0:90:bc:92:ad:14:ea:07:05:7b:23:22:be:96: a7:67:99:22:06:c8:d6:72:6a:56:a3:8f:0e:58:3d: 9d:66:d3:1a:52:26:86:11:67:89:3d:6d:93:97:9c: 23:87:a3:50:68:0c:93:60:ad:14:03:09:9a:3f:ee: 8f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:01:BD:C3:F7:CE:76:67:B0:6F:2F:86:11:15:8A:BC:75:F2:07:57 X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:be:98:49:f3:e6:c2:ce:3d:f6:d7:e6:dc:77:dc:a6:19:cb: 2e:23:e7:41:88:99:65:5b:5e:e8:ec:a5:0c:33:f3:2a:54:a7: b2:f1:ba:ea:55:d0:56:b7:18:b6:64:9e:a8:eb:cc:e8:fa:4e: de:51:fb:e9:67:e7:b8:5b:fd:93:08:94:93:40:ff:9e:0d:fe: 8d:a0:fa:85:03:49:7c:43:14:ba:aa:3c:6f:13:c8:64:17:3f: 85:69:c0:14:0e:9f:90:a6:74:89:ea:4d:1d:17:c8:f2:62:d9: aa:b9:90:80:89:45:ed:8f:5b:42:da:2b:14:76:04:4d:4f:fc: 44:88:35:b4:f8:dc:6c:ca:9c:98:f5:4b:fc:2f:f1:a9:20:f6: ff:86:a1:fe:97:62:e3:0d:e6:e9:fe:ae:8a:eb:47:36:40:81: a5:76:4a:f0:09:a2:84:01:7a:cf:90:2c:68:15:5c:35:fe:e7: 82:99:d4:c0:36:91:15:31:06:7f:ce:11:f4:d2:a9:48:8e:4d: e3:a0:4c:37:1c:56:1d:a1:99:70:16:1b:99:b0:91:05:1c:7e: 1b:02:52:b2:97:c5:d0:b4:55:f9:9d:ea:d0:83:66:d6:6a:0e: b0:bd:14:f9:bc:5f:d5:66:df:4b:9c:2d:02:3f:8a:44:0c:81: 43:06:11:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBsCrHh+q3LF1YTQ5JhxOr8mhOU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNTExMDQwNjU3MDVaFw0yNTExMDcxMzQyMDVaMDMxMTAvBgNV BAMTKDFGMDFCREMzRjdDRTc2NjdCMDZGMkY4NjExMTU4QUJDNzVGMjA3NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSh/CnsHahy07x44/5Y62CRjDO UpM5egJyjAfgWu4Uy1ZD9ySJyTXBDj/mZxIQx+QbJ1zJ/RXeg/azgH20exVTlv7d BO6z8IUruxi8cIeMKs6v3VOpW7TpdvcdbWjgL69JRm/L0Z3FYhB5OYKQ2DHSOk73 QOrqTXhfm7Z/KFX3z1n9UGq5PdiaIKlJUjJo98eS+091GcpVGNruRHi4B+FX7+gT XAXCvo8cObpklw2W9CDIQJOAT5u+OCMiqAPKo86qBuHAkLySrRTqBwV7IyK+lqdn mSIGyNZyalajjw5YPZ1m0xpSJoYRZ4k9bZOXnCOHo1BoDJNgrRQDCZo/7o9bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHwG9w/fOdmewby+GERWKvHXyB1cwHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjIxYzljYWQtYzNiOS00NWEwLWJl YjYtYmNlNDhlMmIyMjcyLzAvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1 NTdBMzVCMDI1MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIm+mEnz5sLOPfbX5tx33KYZyy4j50GImWVb XujspQwz8ypUp7LxuupV0Fa3GLZknqjrzOj6Tt5R++ln57hb/ZMIlJNA/54N/o2g +oUDSXxDFLqqPG8TyGQXP4VpwBQOn5CmdInqTR0XyPJi2aq5kICJRe2PW0LaKxR2 BE1P/ESINbT43GzKnJj1S/wv8akg9v+Gof6XYuMN5un+rorrRzZAgaV2SvAJooQB es+QLGgVXDX+54KZ1MA2kRUxBn/OEfTSqUiOTeOgTDccVh2hmXAWG5mwkQUcfhsC UrKXxdC0Vfmd6tCDZtZqDrC9FPm8X9Vm30ucLQI/ikQMgUMGESs= -----END CERTIFICATE-----Generated at Tue Nov 4 16:46:39 2025 by rpki-client