$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: lxI2a82Ydb8l537R+s2tt+6VgBai3TWVF6kDaDoX9Wg= Subject key identifier: 25:EB:C9:FF:4C:CA:C8:F1:36:65:01:27:28:90:30:A6:D2:EF:6C:55 Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 5BE84E0849E906DC376EE9DB7B79DBE127F917C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 036C Signing time: Sun 02 Nov 2025 13:40:52 +0000 Manifest this update: Sun 02 Nov 2025 13:35:52 +0000 Manifest next update: Wed 05 Nov 2025 17:22:52 +0000 Files and hashes: 1: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 2: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: 5Q3Bl0dW8fLvQzkk0FnSy+jbZ38hVuze/c69Rqp8eWk=) 3: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 4: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 5: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 6: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 7: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 8: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) 9: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 10: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 17:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e8:4e:08:49:e9:06:dc:37:6e:e9:db:7b:79:db:e1:27:f9:17:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Nov 2 13:35:52 2025 GMT Not After : Nov 5 17:22:52 2025 GMT Subject: CN=25EBC9FF4CCAC8F136650127289030A6D2EF6C55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8d:75:fd:78:e8:25:6c:3d:38:69:43:5d:93: 2f:3a:92:25:0f:7e:2c:30:05:88:17:d6:ba:ba:84: b2:00:7e:7c:02:51:af:a6:b0:9c:78:38:82:09:76: e5:32:00:d2:ee:64:29:d5:90:cb:0c:4c:1e:0e:7e: 52:15:d4:11:b3:ae:89:4d:d5:4f:aa:0d:d0:ac:83: ac:f8:6c:92:da:da:03:f5:63:bc:4f:f1:30:6b:7b: 04:5d:67:e2:ae:8e:d9:49:ae:cb:14:d5:a5:79:f8: cf:e6:7b:12:2a:ec:b4:89:53:cd:ee:eb:3a:f3:3b: 9b:8b:2d:75:c1:75:bc:ee:02:38:a7:f3:64:6c:0c: 86:30:1d:08:80:7b:e8:8b:25:de:d7:95:38:95:f5: 08:9b:21:49:5c:56:d4:ed:ad:84:42:a0:9a:27:8e: ba:97:3a:c8:b2:49:76:e8:55:86:a7:51:c9:b1:60: d0:60:83:dc:ec:5c:81:cc:c6:69:6f:55:a4:e4:83: f3:fd:dc:4d:dd:67:c4:2b:f6:48:d2:d5:17:e3:fb: 5b:b5:f9:ee:46:76:fa:57:0c:c7:49:71:a3:71:be: 50:05:e8:f0:7c:35:e4:31:09:1a:bc:67:39:04:f8: 8f:8b:4f:3f:e8:2d:28:7e:e4:65:d5:eb:b7:60:7e: e4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EB:C9:FF:4C:CA:C8:F1:36:65:01:27:28:90:30:A6:D2:EF:6C:55 X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:df:89:5f:f0:13:14:ce:eb:50:93:7c:e5:7b:30:b1:ed:4c: f6:cc:92:5a:b2:46:70:8d:16:03:a4:88:ce:c4:9d:21:41:73: da:e4:fc:71:04:c6:ad:22:16:eb:94:4a:13:e0:f5:7e:c2:22: a3:d7:1e:da:73:5d:35:42:eb:41:0c:88:8f:d1:45:7b:b5:30: b3:ca:1c:4a:9a:9a:64:b3:1d:65:cd:5a:c4:73:28:dc:50:59: f6:da:67:ca:73:20:7d:91:65:c0:0e:4c:49:da:38:a2:9c:6c: e9:f2:e7:c5:ca:8c:6e:fc:b4:73:50:d9:e1:fe:ee:b0:e5:75: e6:39:5f:78:0e:4d:eb:48:7e:05:e4:ba:4c:d1:e3:56:c2:20: c4:fc:3d:99:2b:0e:8d:67:f1:91:30:b5:ff:54:64:e6:03:08: e1:6c:87:1b:6f:1e:ce:ac:f1:09:d0:e5:49:9f:e5:c8:30:6c: 1a:89:fa:5e:dc:2d:17:e6:ab:a9:5b:ed:37:5c:91:46:7b:d8: 07:fc:32:da:05:40:75:a1:78:6e:ad:7f:08:f6:9d:8b:e3:a3: c4:2d:26:78:30:52:ad:2e:b9:69:b0:6a:bf:e4:03:2f:5e:c6: 0c:23:ee:45:71:32:4c:a4:82:16:34:64:a6:fe:af:a4:2c:2d: 4a:e4:55:14 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW+hOCEnpBtw3bunbe3nb4Sf5F8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTExMDIxMzM1NTJaFw0yNTExMDUxNzIyNTJaMDMxMTAvBgNV BAMTKDI1RUJDOUZGNENDQUM4RjEzNjY1MDEyNzI4OTAzMEE2RDJFRjZDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWjXX9eOglbD04aUNdky86kiUP fiwwBYgX1rq6hLIAfnwCUa+msJx4OIIJduUyANLuZCnVkMsMTB4OflIV1BGzrolN 1U+qDdCsg6z4bJLa2gP1Y7xP8TBrewRdZ+KujtlJrssU1aV5+M/mexIq7LSJU83u 6zrzO5uLLXXBdbzuAjin82RsDIYwHQiAe+iLJd7XlTiV9QibIUlcVtTtrYRCoJon jrqXOsiySXboVYanUcmxYNBgg9zsXIHMxmlvVaTkg/P93E3dZ8Qr9kjS1Rfj+1u1 +e5GdvpXDMdJcaNxvlAF6PB8NeQxCRq8ZzkE+I+LTz/oLSh+5GXV67dgfuQbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJevJ/0zKyPE2ZQEnKJAwptLvbFUwHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACvfiV/wExTO61CTfOV7MLHtTPbMklqyRnCN FgOkiM7EnSFBc9rk/HEExq0iFuuUShPg9X7CIqPXHtpzXTVC60EMiI/RRXu1MLPK HEqammSzHWXNWsRzKNxQWfbaZ8pzIH2RZcAOTEnaOKKcbOny58XKjG78tHNQ2eH+ 7rDldeY5X3gOTetIfgXkukzR41bCIMT8PZkrDo1n8ZEwtf9UZOYDCOFshxtvHs6s 8QnQ5Umf5cgwbBqJ+l7cLRfmq6lb7TdckUZ72Af8MtoFQHWheG6tfwj2nYvjo8Qt JngwUq0uuWmwar/kAy9exgwj7kVxMkykghY0ZKb+r6QsLUrkVRQ= -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:53 2025 by rpki-client