$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft File: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft (raw, json) Hash identifier: u+5Ex/Hgw7UK7cvBx0gb0vE3xExXhm+ywFtnfYky93M= Subject key identifier: 66:0D:96:80:43:37:4A:35:40:87:F9:8C:63:0A:D4:EF:15:31:DA:37 Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 6B3C41083C830364EA389641829360EF2B68AB3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft Manifest number: 0115 Signing time: Tue 04 Nov 2025 21:30:50 +0000 Manifest this update: Tue 04 Nov 2025 21:25:50 +0000 Manifest next update: Sat 08 Nov 2025 03:34:50 +0000 Files and hashes: 1: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (hash: lPAaUMCnmORN0lcIkL1SdTQ//TRobbXWIgBrv9ai9Yc=) 2: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (hash: XQ5YOO3QMAmUiXXyDyAvfXAeHqliwoa7oF/Rg8qefuw=) 3: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl (hash: DTSSDZhiaKlzzz9zmqigQz22zYBQSDqXG013iTGYYh4=) 4: 3230332e3134352e35382e302f32342d3234203d3e20313432333735.roa (hash: bBnfqhprKZxO7GNHi6JFSi7ubIWOVMTy7/ydlUAr+qE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 03:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3c:41:08:3c:83:03:64:ea:38:96:41:82:93:60:ef:2b:68:ab:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Nov 4 21:25:50 2025 GMT Not After : Nov 8 03:34:50 2025 GMT Subject: CN=660D968043374A354087F98C630AD4EF1531DA37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:61:35:d5:23:92:d7:80:5e:4f:fc:9c:6d:7d: 32:16:21:8e:2f:34:81:86:a4:84:62:f6:2e:5c:93: 44:53:b6:de:71:41:8b:67:6f:46:9c:4c:5f:ce:24: 0f:7a:bf:66:2d:a6:d3:58:80:4c:61:b5:87:91:97: 2b:ea:e7:15:b0:b1:10:23:f6:d6:ed:ef:1c:a2:fc: 7e:31:85:6a:40:90:cc:b7:99:1e:84:56:5b:66:fd: 00:2f:d9:24:9e:c2:7f:e7:4c:a5:cc:be:aa:7d:37: b6:64:06:c9:00:bf:75:6e:85:93:a9:6d:4c:ef:8c: 08:49:59:cf:54:c1:57:fa:b4:8c:8e:6e:2f:ee:62: a3:d5:37:b1:fe:5f:52:01:be:15:72:94:fa:d8:79: f0:4a:cd:34:3d:82:1b:64:86:b9:de:c4:2f:1e:5e: 4a:05:f3:bc:ab:07:73:0a:1a:61:b2:42:98:22:91: 2d:6b:87:11:55:2a:86:ac:d8:a3:0d:74:c9:56:42: bb:b0:d8:e8:2d:09:10:b4:d4:8c:2f:ea:b3:fe:97: b9:67:ab:69:f2:eb:2f:ba:79:2f:da:1d:7f:75:24: b0:19:56:15:2d:b8:26:81:10:90:32:35:5b:b7:1b: 86:f5:be:34:72:be:bb:5a:7f:72:f9:bb:65:11:2b: 04:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0D:96:80:43:37:4A:35:40:87:F9:8C:63:0A:D4:EF:15:31:DA:37 X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:9b:98:79:a2:b3:44:9e:9f:fe:4a:ce:a2:01:0b:97:e5:0c: 5d:0b:eb:b8:b6:ab:d0:05:07:21:54:db:8f:f3:e2:33:73:2b: b5:ca:53:95:51:d3:73:1f:ee:4c:a6:22:65:06:58:5b:45:b0: 19:29:f6:00:d4:e4:66:05:46:04:e2:3a:d1:d9:9e:74:7a:59: b3:f7:13:00:4a:a5:44:6a:a8:14:f6:ff:57:04:7b:cf:94:9f: 9d:96:b2:bf:6a:d5:0a:de:48:d0:00:0f:8e:9b:cf:27:39:0d: 8c:79:13:26:70:da:63:06:2a:bf:e3:d8:ca:9f:70:b5:2b:54: 39:32:6e:13:21:9a:c4:4f:54:39:74:a7:88:e0:4c:9c:c5:63: a1:6a:b2:29:06:58:61:96:d2:da:f7:c5:69:3e:cd:45:d1:4c: 97:29:89:14:10:cd:9c:ca:0f:13:9d:dc:c1:c4:09:31:1d:a2: c9:94:29:52:45:a7:c3:d6:08:83:21:74:9d:dd:40:f1:6d:02: ac:d6:16:a1:98:1b:51:f0:89:4e:62:e3:3c:60:74:b3:21:be: ef:fd:a0:13:62:ff:d2:b2:c2:80:ed:7b:67:f5:7a:9a:19:69: c6:fa:69:c6:e0:41:74:ae:b9:b4:c6:60:5a:d5:58:24:3b:e9: e0:19:a0:8f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUazxBCDyDA2TqOJZBgpNg7ytoqz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNTExMDQyMTI1NTBaFw0yNTExMDgwMzM0NTBaMDMxMTAvBgNV BAMTKDY2MEQ5NjgwNDMzNzRBMzU0MDg3Rjk4QzYzMEFENEVGMTUzMURBMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuYTXVI5LXgF5P/JxtfTIWIY4v NIGGpIRi9i5ck0RTtt5xQYtnb0acTF/OJA96v2YtptNYgExhtYeRlyvq5xWwsRAj 9tbt7xyi/H4xhWpAkMy3mR6EVltm/QAv2SSewn/nTKXMvqp9N7ZkBskAv3VuhZOp bUzvjAhJWc9UwVf6tIyObi/uYqPVN7H+X1IBvhVylPrYefBKzTQ9ghtkhrnexC8e XkoF87yrB3MKGmGyQpgikS1rhxFVKoas2KMNdMlWQruw2OgtCRC01Iwv6rP+l7ln q2ny6y+6eS/aHX91JLAZVhUtuCaBEJAyNVu3G4b1vjRyvrtaf3L5u2URKwSZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZg2WgEM3SjVAh/mMYwrU7xUx2jcwHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzZhYTNiZWItNTc2MS00YzM0LTg4 ZDMtMDE1Y2NjNjQwMDJmLzAvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMz RTFCNTMwNjMzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKybmHmis0Sen/5KzqIBC5flDF0L67i2q9AF ByFU24/z4jNzK7XKU5VR03Mf7kymImUGWFtFsBkp9gDU5GYFRgTiOtHZnnR6WbP3 EwBKpURqqBT2/1cEe8+Un52Wsr9q1QreSNAAD46bzyc5DYx5EyZw2mMGKr/j2Mqf cLUrVDkybhMhmsRPVDl0p4jgTJzFY6FqsikGWGGW0tr3xWk+zUXRTJcpiRQQzZzK DxOd3MHECTEdosmUKVJFp8PWCIMhdJ3dQPFtAqzWFqGYG1HwiU5i4zxgdLMhvu/9 oBNi/9KywoDte2f1epoZacb6acbgQXSuubTGYFrVWCQ76eAZoI8= -----END CERTIFICATE-----Generated at Wed Nov 5 14:24:01 2025 by rpki-client