$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft (raw, json) Hash identifier: hSQcej1AEGDh1W8tckO6lcMhs146qhqU1vcijy4/DIM= Subject key identifier: 44:0D:A2:25:5F:D6:12:20:85:20:B2:EA:DF:4F:E1:6F:91:8B:CF:95 Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 5C519BA16848AF0EB7C52629DB42867B122DC4C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft Manifest number: 01FD Signing time: Mon 03 Nov 2025 15:41:21 +0000 Manifest this update: Mon 03 Nov 2025 15:36:21 +0000 Manifest next update: Thu 06 Nov 2025 22:13:21 +0000 Files and hashes: 1: 3130332e32352e3130382e302f32342d3234203d3e20313332363334.roa (hash: fBDOlCYFIj49Ll99j2HPW9RAkablwrcxgHTldEFv/Jk=) 2: 3131392e34372e39302e302f32342d3234203d3e203338353237.roa (hash: 2gYjkNpQS7rIhX41LQ5E9ZRuFubPcLm5+1qbHYEWbNU=) 3: 3132342e3130392e32302e302f32342d3234203d3e203338353237.roa (hash: ETJz1GlN0xqgrI/TiDRe3oL2wRqZlR8gI6HL/idn2yc=) 4: 3132342e3130392e32312e302f32342d3234203d3e203338353237.roa (hash: JF25GsZLyzVMqdMpnO1WYlSsjR6hM621Mtm2BRDUvVE=) 5: 3131392e34372e38382e302f32342d3234203d3e203338353237.roa (hash: gaK9TNDkDAX6rLbicLT8NaMu8dPZqEuVmgkAb8uim8M=) 6: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl (hash: qu3AAmKDbYSzk7BPfRVe6NqvQPP8vrKkdjqGavLY3F4=) 7: 3131392e34372e39352e302f32342d3234203d3e20313439343039.roa (hash: IOQi+x8HL04tSdZdkybbwTiZjcbDVMFrGx/+Tn9mObQ=) 8: 3131392e34372e38392e302f32342d3234203d3e203338353237.roa (hash: 2N3BwgIjWHFbTQKqljv/UDzpCDNCSry44iBQjllcOAY=) 9: 32372e3132342e38332e302f32342d3234203d3e20313332363334.roa (hash: 2EEYdzWr91JIl7YnldqA+u9ZlAli1CH0l6dUJ+oRlZU=) 10: 3132342e3130392e32332e302f32342d3234203d3e203338353237.roa (hash: hSmHQriBgEB6G8euGPo5okmMfhhllZ1AqyrcnX9VlJE=) 11: 3132342e3130392e32322e302f32342d3234203d3e20313339393439.roa (hash: HVWbk3IWKH+5JXE4MGQxsGy0csGyHkuWv0WX8uhGzdw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 22:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:51:9b:a1:68:48:af:0e:b7:c5:26:29:db:42:86:7b:12:2d:c4:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Nov 3 15:36:21 2025 GMT Not After : Nov 6 22:13:21 2025 GMT Subject: CN=440DA2255FD612208520B2EADF4FE16F918BCF95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a2:45:96:8f:06:02:91:a4:c8:80:dd:8b:ea: c8:6f:83:ac:e2:3d:54:e7:10:65:b3:88:b2:f2:e0: dd:d3:92:81:d7:d1:d8:b5:d0:cb:82:db:fc:bd:4e: a7:05:46:54:e9:d1:93:1a:c4:38:55:d9:fb:81:ed: 78:3d:8e:18:fe:ae:d1:f7:5e:eb:3d:ae:89:31:27: 81:88:3f:26:76:96:11:ca:e6:de:af:6f:d5:a1:df: 84:e7:e2:19:ad:5e:0d:b5:5e:69:25:5c:05:a8:43: 9f:a0:39:3d:a6:51:0a:a0:c6:48:cf:81:87:0b:f3: c6:9c:63:1c:4d:1e:dd:0c:7c:05:0b:8f:28:4b:01: 5e:25:83:02:dd:bb:d5:3b:b5:11:ae:f1:d6:11:95: fb:a5:50:8a:b3:0e:fb:db:f3:5a:33:2f:3d:e0:e9: 10:be:35:16:eb:c0:17:06:f8:d5:6a:db:d5:08:05: 37:3c:a9:e5:7e:46:e9:1f:0a:53:4e:18:8f:dd:9d: a1:d6:54:0e:b5:60:ec:ad:d9:bb:ae:07:c9:8d:eb: 69:bb:71:81:fe:61:cb:db:d1:17:66:b2:d2:2a:97: 33:5d:d2:ca:c7:55:af:a2:77:a9:b9:71:bc:f2:75: 60:90:b8:f3:7a:ed:17:73:9c:59:15:df:18:4a:86: 8e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0D:A2:25:5F:D6:12:20:85:20:B2:EA:DF:4F:E1:6F:91:8B:CF:95 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:70:02:67:47:d7:61:f2:3f:0a:3b:5c:b7:69:51:1e:6d:e4: 4a:f9:ed:ab:20:a3:16:21:be:97:be:2e:14:95:ff:23:66:a2: 7f:15:a2:16:b0:22:1a:d3:02:7f:a6:33:34:7b:d5:16:17:33: df:ab:35:05:21:b1:10:43:e6:ee:b0:33:b9:89:58:03:24:8a: b2:fb:bd:b8:30:be:86:ff:b6:49:78:e9:82:43:67:12:99:94: 52:23:e4:2b:e5:18:14:4c:72:90:0f:80:9b:5d:a9:c6:ee:47: a6:d9:d7:d8:0e:a3:49:40:b8:52:fa:9b:63:46:34:43:c5:51: ce:bc:6b:77:ec:7c:04:ba:78:1c:42:e8:ed:c4:c5:46:91:66: 90:47:10:9f:9a:ba:5d:c2:47:20:88:ed:33:2c:43:3c:0e:4c: 18:67:ab:6f:d2:cd:f3:3c:a7:ec:23:75:63:24:59:08:36:9c: 2d:be:38:85:c4:4a:67:ef:ea:76:ea:7f:b1:70:7f:86:50:e4: cf:52:0b:75:b7:a6:75:99:89:18:7e:61:21:cc:24:b4:fd:e6: c3:1a:49:88:db:12:f0:68:33:bf:4b:34:46:dc:cf:a3:fe:be: 34:09:fe:c2:57:2e:f5:82:1b:9e:cb:5a:db:3d:d5:dc:23:3d: ce:69:41:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXFGboWhIrw63xSYp20KGexItxMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTExMDMxNTM2MjFaFw0yNTExMDYyMjEzMjFaMDMxMTAvBgNV BAMTKDQ0MERBMjI1NUZENjEyMjA4NTIwQjJFQURGNEZFMTZGOTE4QkNGOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClokWWjwYCkaTIgN2L6shvg6zi PVTnEGWziLLy4N3TkoHX0di10MuC2/y9TqcFRlTp0ZMaxDhV2fuB7Xg9jhj+rtH3 Xus9rokxJ4GIPyZ2lhHK5t6vb9Wh34Tn4hmtXg21XmklXAWoQ5+gOT2mUQqgxkjP gYcL88acYxxNHt0MfAULjyhLAV4lgwLdu9U7tRGu8dYRlfulUIqzDvvb81ozLz3g 6RC+NRbrwBcG+NVq29UIBTc8qeV+RukfClNOGI/dnaHWVA61YOyt2buuB8mN62m7 cYH+Ycvb0RdmstIqlzNd0srHVa+id6m5cbzydWCQuPN67RdznFkV3xhKho73AgMB AAGjggI8MIICODAdBgNVHQ4EFgQURA2iJV/WEiCFILLq30/hb5GLz5UwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzE3ZWZkMmEtMDJhYi00MjAyLTk3 MGYtZjY5OWRmZjk3ZGU1LzAvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VE NTBDRjlBNjQ3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFRwAmdH12HyPwo7XLdpUR5t5Er57asgoxYh vpe+LhSV/yNmon8VohawIhrTAn+mMzR71RYXM9+rNQUhsRBD5u6wM7mJWAMkirL7 vbgwvob/tkl46YJDZxKZlFIj5CvlGBRMcpAPgJtdqcbuR6bZ19gOo0lAuFL6m2NG NEPFUc68a3fsfAS6eBxC6O3ExUaRZpBHEJ+aul3CRyCI7TMsQzwOTBhnq2/SzfM8 p+wjdWMkWQg2nC2+OIXESmfv6nbqf7Fwf4ZQ5M9SC3W3pnWZiRh+YSHMJLT95sMa SYjbEvBoM79LNEbcz6P+vjQJ/sJXLvWCG57LWts91dwjPc5pQVY= -----END CERTIFICATE-----Generated at Tue Nov 4 18:38:30 2025 by rpki-client