$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft File: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft (raw, json) Hash identifier: vwpqP4sVcKkk5sliToQicosUq2oW0y/z8WWe8bf0cTE= Subject key identifier: 60:B8:11:EB:08:EB:17:0E:10:1E:64:15:13:C5:FE:42:AB:FC:B4:31 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 31DAFC766702BF12F5C7B625ABB00AF6707E7057 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft Manifest number: 05DE Signing time: Mon 03 Nov 2025 19:20:39 +0000 Manifest this update: Mon 03 Nov 2025 19:15:39 +0000 Manifest next update: Fri 07 Nov 2025 02:30:39 +0000 Files and hashes: 1: 3130332e31382e37362e302f32322d3234203d3e203535373031.roa (hash: oa5lMgIER/j9/ZBqK2jTnvVzB4d9A9ON67O4sbQz5Lo=) 2: 34392e302e302e302f32322d3234203d3e203535373031.roa (hash: yzJFuCgJdtqHHRWns+YkV15nd/BuBUJW5VOi1zg7H6Q=) 3: 34332e3235322e3233382e302f32342d3234203d3e203535373031.roa (hash: Nnf66JxT1+eZbCkYQn8x6cz4I9We7qQ0T90RTh7FkG0=) 4: 3130332e33312e3233322e302f32322d3234203d3e203535373031.roa (hash: BrB/GW7Td9VbCbmZFNch6tbk4BKMd6sCGKbNPlrCa44=) 5: 8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl (hash: GyhQP2N94/bTGZbnCdMcthCu5kEJq4RXGunP2ytWbFs=) 6: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (hash: 7FX65tSRyznIseHKWjzPuHzH3CNvHvrWJempYLyB19A=) 7: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (hash: L3e7xhgbdKiD6xLSCC6o4EcC4VabYtoVoPe/Fd1r3p4=) 8: 34332e3235322e3233362e302f32332d3234203d3e203535373031.roa (hash: Dc8BdtAPO03Z1L5MRp5Y72lj+merY2MxA64B93hGmbo=) 9: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (hash: QqG89TEZjAnI8K1IrPR29kJtDOMjh4sJXdy9wDe7GkQ=) 10: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (hash: 4zJcjhi99V9+23NjQKwrFy3Y4HQGoSDMxwY4qblbwdg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 02:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:da:fc:76:67:02:bf:12:f5:c7:b6:25:ab:b0:0a:f6:70:7e:70:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Nov 3 19:15:39 2025 GMT Not After : Nov 7 02:30:39 2025 GMT Subject: CN=60B811EB08EB170E101E641513C5FE42ABFCB431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f4:aa:ca:8e:71:f2:0a:21:10:2f:37:8b:47: d5:ad:e6:c4:fb:bc:3f:ae:46:3f:48:87:73:f9:3b: c9:a5:98:21:ae:26:cd:4d:1a:b0:cc:a8:65:47:28: 7a:db:ab:36:68:8a:7c:35:aa:e0:20:5a:4c:18:09: 73:2e:a6:90:f1:3a:d2:e7:2a:87:44:2c:81:bf:db: 31:b5:ac:35:7f:47:18:63:08:b3:10:45:7a:4f:82: c2:6c:10:90:f9:80:25:48:36:f0:1c:59:50:09:fa: 10:d8:51:e8:02:2c:2d:23:0a:40:da:17:c9:ca:25: 9a:f0:8d:06:67:99:f1:be:84:8a:5b:4d:cc:04:a5: 2e:b7:cb:f9:e8:ee:0a:9c:28:79:a2:86:05:64:ea: 48:40:71:b1:7c:6b:c5:ba:06:0e:c5:89:3a:ff:2e: 9a:78:38:12:95:75:25:b6:60:a5:83:68:e1:29:d2: d0:c0:58:22:fc:a4:99:c9:3a:f9:36:23:13:4e:f2: 9d:5b:de:ec:16:c6:16:a9:05:25:ea:f5:37:bc:b6: ed:28:98:7c:49:59:16:78:94:33:d9:6f:2d:ad:51: 58:f6:69:ef:fd:69:d5:62:24:2d:7e:ae:3a:45:aa: 62:fb:ce:ff:f9:3d:da:21:05:0c:07:64:7f:4a:04: 64:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B8:11:EB:08:EB:17:0E:10:1E:64:15:13:C5:FE:42:AB:FC:B4:31 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:6d:76:d5:da:3b:77:bd:dc:4f:3d:96:39:1f:9b:cd:0d:71: df:6c:85:00:f8:3d:8f:15:46:cc:4d:85:e4:da:94:2b:27:9e: c9:fa:11:1e:eb:cd:71:0b:08:e1:2d:04:12:8e:1f:46:06:3d: 7b:b1:63:dd:95:cc:d1:8e:7b:3c:3b:68:af:6d:06:2b:97:f2: 77:76:31:5b:00:0e:23:c0:0c:ed:dc:ed:49:59:a5:e6:8f:e2: 1c:eb:64:1d:e5:9a:26:b5:6e:bf:15:9c:2c:a0:cc:74:97:9a: ac:8c:62:bd:7c:a1:60:18:78:ee:5c:4d:6e:41:9c:48:3b:5e: 5e:ce:25:f2:b4:be:ca:c6:70:67:41:e8:af:f2:c4:d3:e1:6b: 06:f3:19:b4:7b:42:74:9a:c8:2b:85:7d:66:62:e8:9a:0e:36: 4e:4d:8d:99:41:7d:60:90:37:2f:51:35:46:16:54:9c:51:6f: 16:a8:64:3e:08:81:7e:d0:e3:33:00:ed:6d:3f:24:93:be:82: 37:44:59:d3:e9:be:cd:21:fa:8f:ec:6f:9a:67:d4:ad:e5:54: 11:9f:91:57:18:07:eb:46:f7:9b:e8:4a:e1:9b:ee:10:b3:26: f8:a5:b0:8f:20:73:57:a6:cc:13:bf:54:23:e5:9c:81:f8:3f: 91:29:73:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMdr8dmcCvxL1x7Ylq7AK9nB+cFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNTExMDMxOTE1MzlaFw0yNTExMDcwMjMwMzlaMDMxMTAvBgNV BAMTKDYwQjgxMUVCMDhFQjE3MEUxMDFFNjQxNTEzQzVGRTQyQUJGQ0I0MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq9KrKjnHyCiEQLzeLR9Wt5sT7 vD+uRj9Ih3P5O8mlmCGuJs1NGrDMqGVHKHrbqzZoinw1quAgWkwYCXMuppDxOtLn KodELIG/2zG1rDV/RxhjCLMQRXpPgsJsEJD5gCVINvAcWVAJ+hDYUegCLC0jCkDa F8nKJZrwjQZnmfG+hIpbTcwEpS63y/no7gqcKHmihgVk6khAcbF8a8W6Bg7FiTr/ Lpp4OBKVdSW2YKWDaOEp0tDAWCL8pJnJOvk2IxNO8p1b3uwWxhapBSXq9Te8tu0o mHxJWRZ4lDPZby2tUVj2ae/9adViJC1+rjpFqmL7zv/5PdohBQwHZH9KBGRDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYLgR6wjrFw4QHmQVE8X+Qqv8tDEwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjdkOWY4NTEtN2U3My00Mzg0LTk1 MGUtOGJlOGUxNWZkM2VlLzAvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBC NzU4QkY1MEY2QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANNtdtXaO3e93E89ljkfm80Ncd9shQD4PY8V RsxNheTalCsnnsn6ER7rzXELCOEtBBKOH0YGPXuxY92VzNGOezw7aK9tBiuX8nd2 MVsADiPADO3c7UlZpeaP4hzrZB3lmia1br8VnCygzHSXmqyMYr18oWAYeO5cTW5B nEg7Xl7OJfK0vsrGcGdB6K/yxNPhawbzGbR7QnSayCuFfWZi6JoONk5NjZlBfWCQ Ny9RNUYWVJxRbxaoZD4IgX7Q4zMA7W0/JJO+gjdEWdPpvs0h+o/sb5pn1K3lVBGf kVcYB+tG95voSuGb7hCzJvilsI8gc1emzBO/VCPlnIH4P5Epc8s= -----END CERTIFICATE-----Generated at Tue Nov 4 01:58:39 2025 by rpki-client