$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft File: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft (raw, json) Hash identifier: qTPK7/yoxpzjrnP2Pd3C58VLZFbl9Krj4KNm6ToAJXg= Subject key identifier: D8:67:A4:6C:31:ED:06:2F:1C:F3:77:7E:87:72:73:05:DF:86:45:69 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 5A5E1A7C33613AB18EEC5ADD8B2A55B7BFE40C79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft Manifest number: 04BC Signing time: Mon 03 Nov 2025 00:50:41 +0000 Manifest this update: Mon 03 Nov 2025 00:45:41 +0000 Manifest next update: Thu 06 Nov 2025 02:11:41 +0000 Files and hashes: 1: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (hash: Hp5JXQrEPxCMGP++NvFxm2uvusi9TtoQlGvA7/UOH1I=) 2: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (hash: 5V8TdCs3cgs+nmmoF4z5Y22rIV0qGc1uTgZVGMrslKU=) 3: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl (hash: 3Gon+9fmzXzuulRYfoQDBvM6JPR9ajWA+eSab1b+Mg4=) 4: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (hash: laLJUGonDC43HjG3ZGNawYIEQ9ln67j38UngxvM2zgQ=) 5: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (hash: DTVsh2XoacQGQ0M4VZPcXWe9xYvlSB7Zv3KJ/YTK1Yw=) 6: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (hash: Mt5SrkBl0TnCuOW6KjiUo7KU17URT0CCUG/IFHUWPhI=) 7: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (hash: MfxGUIrhtjjGajjX90ABbBqTVuaaEFP6XuBr1Yslsx0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 02:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:5e:1a:7c:33:61:3a:b1:8e:ec:5a:dd:8b:2a:55:b7:bf:e4:0c:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Nov 3 00:45:41 2025 GMT Not After : Nov 6 02:11:41 2025 GMT Subject: CN=D867A46C31ED062F1CF3777E87727305DF864569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:62:a0:29:2b:fd:a4:80:d4:83:ee:e0:47: f1:2b:03:ce:4b:4b:36:d8:52:17:e8:df:b3:26:a6: ec:5a:d4:aa:ca:f3:c4:ac:21:91:f0:c1:bd:05:74: f6:e9:58:d8:27:b3:db:89:f8:34:1e:f5:fe:87:71: 4a:08:21:28:73:56:3f:2a:a1:04:69:95:f9:2e:78: 40:25:e3:92:d4:c5:ef:40:0a:75:49:1e:8e:28:a9: d9:0f:bb:93:5f:d0:9f:e4:82:f7:69:0b:4f:2f:d2: 2c:70:51:13:15:33:d6:85:33:bf:cb:44:ef:92:d0: 0b:a1:10:60:19:6e:ac:58:81:5e:80:9c:af:6e:87: e4:26:d5:6a:1b:d6:30:0d:fa:87:f5:91:a0:d5:bb: 32:36:49:0e:ca:ae:4b:60:8d:4c:d1:91:0b:ed:09: 1e:f8:f0:f3:18:7f:93:24:10:1f:6b:d6:6e:e3:e0: 3d:ba:47:56:03:b8:0c:52:67:69:d1:80:60:3d:fe: 40:b5:61:61:4d:d5:78:3c:43:17:30:1c:c3:d9:f2: ed:8f:c7:59:87:b5:25:7a:14:0e:e8:dc:b7:53:38: b0:18:42:c3:53:40:2e:4e:04:40:04:70:0c:4d:5e: d0:83:2f:b2:68:23:27:fc:30:9e:85:d6:6f:d3:68: 09:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:67:A4:6C:31:ED:06:2F:1C:F3:77:7E:87:72:73:05:DF:86:45:69 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:87:69:66:a4:3c:2a:f7:63:9a:e4:60:b6:1b:8c:39:2f:bf: ac:06:58:6b:26:e6:5e:94:de:ee:f6:ea:5e:20:18:78:27:57: 07:07:9c:ed:c4:49:d6:24:15:ad:be:af:64:60:a9:dc:1d:ff: 67:85:70:42:81:b4:2e:f0:f8:be:56:38:e7:81:48:f7:8a:67: f1:1c:10:84:be:02:fd:30:2e:1d:69:e8:9b:a8:2d:be:ca:5a: c8:8b:50:f2:e1:dd:20:dd:a8:8f:d5:0e:67:5c:67:20:bc:7a: 15:e4:50:3f:39:38:5a:f0:b5:9b:23:59:f9:d3:b3:2c:9f:fd: 86:5e:cc:ef:35:f1:01:82:23:8d:a3:74:db:e9:b3:55:ed:4e: 19:22:f0:39:1b:3c:0b:43:63:f0:56:77:bc:55:20:31:1f:14: f2:35:f8:68:cb:ef:da:29:6d:6d:03:c2:43:a7:e1:7d:c7:3d: c7:20:e6:b5:8a:d4:5b:23:31:3f:92:12:17:1e:03:ca:ff:73: f6:8e:a8:e7:cc:c6:0f:dd:0c:96:b9:28:2e:3b:4f:d0:80:71: 0d:81:55:27:9a:cb:76:d0:6b:91:44:c4:7a:b2:b0:aa:ac:a6: b4:b7:36:9e:39:79:8e:41:b8:55:71:6c:d6:06:cc:cb:93:04: 2f:ee:65:f0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWl4afDNhOrGO7FrdiypVt7/kDHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTExMDMwMDQ1NDFaFw0yNTExMDYwMjExNDFaMDMxMTAvBgNV BAMTKEQ4NjdBNDZDMzFFRDA2MkYxQ0YzNzc3RTg3NzI3MzA1REY4NjQ1NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWXmKgKSv9pIDUg+7gR/ErA85L SzbYUhfo37Mmpuxa1KrK88SsIZHwwb0FdPbpWNgns9uJ+DQe9f6HcUoIIShzVj8q oQRplfkueEAl45LUxe9ACnVJHo4oqdkPu5Nf0J/kgvdpC08v0ixwURMVM9aFM7/L RO+S0AuhEGAZbqxYgV6AnK9uh+Qm1Wob1jAN+of1kaDVuzI2SQ7KrktgjUzRkQvt CR748PMYf5MkEB9r1m7j4D26R1YDuAxSZ2nRgGA9/kC1YWFN1Xg8QxcwHMPZ8u2P x1mHtSV6FA7o3LdTOLAYQsNTQC5OBEAEcAxNXtCDL7JoIyf8MJ6F1m/TaAmdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2GekbDHtBi8c83d+h3JzBd+GRWkwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3 OGYtYzhiMThhNDQyNDQ1LzAvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5 NUNBNzlDQUFEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGCHaWakPCr3Y5rkYLYbjDkvv6wGWGsm5l6U 3u726l4gGHgnVwcHnO3ESdYkFa2+r2Rgqdwd/2eFcEKBtC7w+L5WOOeBSPeKZ/Ec EIS+Av0wLh1p6JuoLb7KWsiLUPLh3SDdqI/VDmdcZyC8ehXkUD85OFrwtZsjWfnT syyf/YZezO818QGCI42jdNvps1XtThki8DkbPAtDY/BWd7xVIDEfFPI1+GjL79op bW0DwkOn4X3HPccg5rWK1FsjMT+SEhceA8r/c/aOqOfMxg/dDJa5KC47T9CAcQ2B VSeay3bQa5FExHqysKqsprS3Np45eY5BuFVxbNYGzMuTBC/uZfA= -----END CERTIFICATE-----Generated at Tue Nov 4 19:24:27 2025 by rpki-client