$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft File: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft (raw, json) Hash identifier: UJj4xvwRQukB1IZooCYNu59quny2guRIsPScBu3y+6c= Subject key identifier: FF:52:97:6B:74:FF:76:F0:9B:67:EF:BD:FD:D4:E6:95:33:37:02:FB Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Certificate serial: 53094C1396BF3FF983560C857D32D7DD8FD3F795 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft Manifest number: 0202 Signing time: Sun 02 Nov 2025 14:41:32 +0000 Manifest this update: Sun 02 Nov 2025 14:36:32 +0000 Manifest next update: Wed 05 Nov 2025 21:13:32 +0000 Files and hashes: 1: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl (hash: tw4r2Mfr0etoa6vENP04t3ykebU+1YGCcC0yNEH+XlU=) 2: 3130332e3139312e35342e302f32342d3234203d3e20313439393133.roa (hash: CllgKLcIRd3lX7KQsM2tAZpeFF8Rj9z8kpx3sCEVEDA=) 3: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (hash: a5a2FZuaU8+YwWyJiNpJaq/a07NXsjnc5SwcHCXziC4=) 4: 3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa (hash: MzEupSrXlebebmZ66Gd92DusEJ4mRAdQ/8taDo8z+bk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 21:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:09:4c:13:96:bf:3f:f9:83:56:0c:85:7d:32:d7:dd:8f:d3:f7:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Validity Not Before: Nov 2 14:36:32 2025 GMT Not After : Nov 5 21:13:32 2025 GMT Subject: CN=FF52976B74FF76F09B67EFBDFDD4E695333702FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:a1:c3:b1:46:38:e4:c9:c5:bf:ca:56:0b: 8f:f1:48:a2:ed:3a:28:a6:37:f4:d3:d6:8e:aa:5e: d7:3d:54:b6:88:14:bf:c1:a5:c9:bf:ad:0c:eb:bd: e2:36:a8:9f:88:0a:bd:d6:07:c4:68:28:d3:35:4a: be:18:4d:22:1d:2c:dd:53:02:ec:31:18:eb:c3:94: 89:90:96:5b:62:86:d4:22:d4:cb:f7:30:dd:82:2d: 8d:9d:6c:97:00:91:74:26:09:dc:c7:5f:93:b0:83: 9e:67:c9:cd:5f:26:98:47:ac:0d:5d:10:d0:10:29: a8:20:a1:ab:e8:a9:3d:f8:2d:e7:9c:b3:a4:db:8b: 60:95:aa:ae:f5:fd:da:d2:bd:e0:af:3c:6e:b9:49: 68:c0:33:b8:51:76:93:8d:02:0c:d3:a4:82:39:a1: 6f:ed:c7:d6:19:e6:90:62:8f:85:28:56:f5:53:9a: 96:aa:16:c4:7a:69:c4:84:49:3f:7a:72:1f:45:2d: 3c:bd:52:db:32:24:1d:07:dc:28:a4:2e:15:36:09: 71:c6:f7:9b:21:23:fc:d2:84:62:bc:4d:2d:ba:0b: 20:01:c2:e8:33:9d:cf:51:a9:24:46:a0:e8:a4:4e: ad:a6:eb:ef:99:7c:fd:80:6b:df:85:4f:02:9a:c7: 44:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:52:97:6B:74:FF:76:F0:9B:67:EF:BD:FD:D4:E6:95:33:37:02:FB X509v3 Authority Key Identifier: keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:c3:f0:51:b6:31:2c:da:95:d3:77:8a:4e:a0:33:ea:76:0b: 55:ef:48:9f:45:cd:fd:01:f4:ed:cb:62:17:24:fe:4f:b4:f6: 3c:c5:ae:ad:19:0c:45:fc:9b:a4:03:0c:42:40:5b:cb:89:e2: ab:4e:48:23:7d:c2:78:c6:05:27:b4:1f:f9:2d:0d:e9:f3:03: 5d:41:35:0f:07:4c:07:e7:15:d7:68:72:f7:d6:da:6a:99:e7: 03:18:75:b9:c4:30:c5:28:d4:fd:5b:cd:e0:4b:d5:6d:36:70: 1e:62:23:5d:50:a1:44:e5:55:3d:5b:cd:98:f0:8d:a6:3e:64: 38:93:94:dc:d4:38:eb:e3:fa:47:8a:25:c7:9a:06:5e:03:20: e8:9f:63:d1:3d:02:22:f7:39:e2:39:26:6d:c4:cb:1d:49:bb: 86:48:d1:9f:cd:3a:5b:42:3d:c9:e1:d7:c4:2b:81:f1:ea:6c: 8d:4a:19:6a:03:99:ac:95:b2:c1:58:6c:42:ba:64:67:74:a3: dd:d1:a1:cc:62:77:75:00:38:c1:69:d3:3b:e5:b6:aa:6b:5e: 39:18:9d:c3:6f:06:fe:67:81:f4:5a:69:6f:2c:1e:9a:9a:7c: 0c:89:25:25:0e:88:63:17:90:e1:da:b1:1c:2f:98:69:1f:69: 3c:e3:73:54 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUwlME5a/P/mDVgyFfTLX3Y/T95UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJC RTBERkQzMzAeFw0yNTExMDIxNDM2MzJaFw0yNTExMDUyMTEzMzJaMDMxMTAvBgNV BAMTKEZGNTI5NzZCNzRGRjc2RjA5QjY3RUZCREZERDRFNjk1MzMzNzAyRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGvqHDsUY45MnFv8pWC4/xSKLt OiimN/TT1o6qXtc9VLaIFL/Bpcm/rQzrveI2qJ+ICr3WB8RoKNM1Sr4YTSIdLN1T AuwxGOvDlImQlltihtQi1Mv3MN2CLY2dbJcAkXQmCdzHX5Owg55nyc1fJphHrA1d ENAQKaggoavoqT34Leecs6Tbi2CVqq71/drSveCvPG65SWjAM7hRdpONAgzTpII5 oW/tx9YZ5pBij4UoVvVTmpaqFsR6acSEST96ch9FLTy9UtsyJB0H3CikLhU2CXHG 95shI/zShGK8TS26CyABwugznc9RqSRGoOikTq2m6++ZfP2Aa9+FTwKax0RXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/1KXa3T/dvCbZ++9/dTmlTM3AvswHwYDVR0j BBgwFoAURY2aK0wi/1AWri4kcp0j4r4N/TMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODZkNmJhMS0xZjczLTQ3NzYtOGE2YS00ZjQ1MTIwNzkyYjEvMC80NThEOUEyQjRD MjJGRjUwMTZBRTJFMjQ3MjlEMjNFMkJFMERGRDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJCRTBE RkQzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzg2ZDZiYTEtMWY3My00Nzc2LThh NmEtNGY0NTEyMDc5MmIxLzAvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIz RTJCRTBERkQzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJTD8FG2MSzaldN3ik6gM+p2C1XvSJ9Fzf0B 9O3LYhck/k+09jzFrq0ZDEX8m6QDDEJAW8uJ4qtOSCN9wnjGBSe0H/ktDenzA11B NQ8HTAfnFddocvfW2mqZ5wMYdbnEMMUo1P1bzeBL1W02cB5iI11QoUTlVT1bzZjw jaY+ZDiTlNzUOOvj+keKJceaBl4DIOifY9E9AiL3OeI5Jm3Eyx1Ju4ZI0Z/NOltC Pcnh18QrgfHqbI1KGWoDmayVssFYbEK6ZGd0o93Rocxid3UAOMFp0zvltqprXjkY ncNvBv5ngfRaaW8sHpqafAyJJSUOiGMXkOHasRwvmGkfaTzjc1Q= -----END CERTIFICATE-----Generated at Tue Nov 4 12:56:43 2025 by rpki-client