$ rpki-client -vvf repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft File: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft (raw, json) Hash identifier: KWZCNd2e/W057Yp1M75xDBBX39qnnbBva+TPSTb65C8= Subject key identifier: 60:60:8D:25:BC:B6:01:4A:A5:9F:14:C4:06:A9:56:59:26:FF:E0:9E Authority key identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 Certificate issuer: /CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Certificate serial: 6DE16C05826EDDE9F382AC54859CD1FE67AA7355 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft Manifest number: 0235 Signing time: Mon 03 Nov 2025 15:31:47 +0000 Manifest this update: Mon 03 Nov 2025 15:26:47 +0000 Manifest next update: Thu 06 Nov 2025 16:59:47 +0000 Files and hashes: 1: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl (hash: BxSqBJ+Q4ietuk2V46pBxIOGUXr703MNmJxGGY1tUPY=) 2: 3130332e3138332e362e302f32332d3234203d3e20313439343037.roa (hash: bu4LtbxxfvYhSmPVYXsHJnQ8u6QDASxNerDLPSby9+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 16:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e1:6c:05:82:6e:dd:e9:f3:82:ac:54:85:9c:d1:fe:67:aa:73:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Validity Not Before: Nov 3 15:26:47 2025 GMT Not After : Nov 6 16:59:47 2025 GMT Subject: CN=60608D25BCB6014AA59F14C406A9565926FFE09E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:50:c5:f5:26:95:9b:6c:73:82:0e:91:6c:77: 98:e4:34:07:47:67:56:b2:92:70:44:fb:c1:c2:fe: 6f:48:fc:c4:99:55:c2:57:7c:7e:ef:ab:f6:bc:37: 90:0b:24:ab:a1:10:71:e1:3b:f0:c8:d0:a5:c4:af: 24:11:b2:50:61:0e:b6:88:de:d0:9c:2f:e7:b9:19: 81:18:20:d5:69:50:bb:7e:d2:d0:27:23:f1:04:88: fa:58:43:f6:15:06:5a:fa:a3:de:16:b6:b1:1f:db: 42:89:23:dc:1f:d3:33:a9:ab:4e:3f:b3:21:90:29: e2:e6:f0:65:14:9d:42:28:c0:98:1f:d6:78:88:42: c6:36:dd:c6:43:26:b7:9d:85:71:24:33:28:9b:c1: 00:eb:43:ce:78:29:ad:a7:25:ab:85:b4:e8:23:45: 53:06:05:74:e1:c8:b1:94:ed:bb:38:52:69:da:03: e7:1e:d3:ef:f9:e3:19:a3:2f:7d:eb:de:18:bc:00: 85:b1:b5:e2:2a:28:41:50:6c:f1:4f:3d:a1:e1:09: 6b:0b:4e:20:06:f2:0a:5c:27:7a:8c:77:9f:d9:21: 82:51:ff:98:4c:18:cb:5f:2d:55:c0:6d:1f:e2:40: dc:72:58:dc:2c:cf:9d:0e:c9:94:e9:ea:80:30:0f: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:60:8D:25:BC:B6:01:4A:A5:9F:14:C4:06:A9:56:59:26:FF:E0:9E X509v3 Authority Key Identifier: keyid:D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:63:27:f0:71:c1:d7:c6:a2:2f:82:92:7d:cb:32:ed:c6:33: eb:62:cb:b3:ac:eb:b6:67:6f:e3:ee:eb:4a:15:90:10:7f:e0: 41:67:23:d2:cd:f6:de:66:4d:5a:65:ab:ef:c3:cf:8b:31:e8: b3:a1:25:3a:9e:0f:82:dc:f1:19:eb:d0:a9:e8:20:69:ea:c4: c0:51:86:c3:68:cc:01:06:bf:ef:8a:0f:8d:c9:d6:37:db:91: 80:a3:ac:ae:4a:e4:6d:c7:67:71:b8:62:b2:a5:9f:3b:cc:6d: 61:79:53:74:e8:13:9b:91:61:17:3b:28:51:dc:bd:90:7e:de: e1:c0:9d:01:be:96:2e:1a:78:22:5a:be:25:0d:6d:a4:34:94: 22:90:aa:ed:cb:5c:ca:1d:54:89:43:d2:d9:5b:cd:d4:25:4e: 00:48:af:ba:e7:79:b2:78:85:21:03:11:d9:a3:44:d3:08:c3: a2:b1:91:05:90:8d:10:90:9a:ee:8c:83:8e:3a:ed:9d:cb:30: 27:a3:04:04:db:6a:54:c1:2f:ca:ff:10:01:99:74:82:71:5d: 46:29:a2:03:de:c6:4a:16:71:21:8f:6d:8f:a8:76:bf:9a:4d: f0:07:e4:97:69:77:ce:88:2d:ad:23:af:c0:9e:16:bb:4d:28: 72:6c:c6:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbeFsBYJu3enzgqxUhZzR/meqc1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2 NEREOUYyNjAeFw0yNTExMDMxNTI2NDdaFw0yNTExMDYxNjU5NDdaMDMxMTAvBgNV BAMTKDYwNjA4RDI1QkNCNjAxNEFBNTlGMTRDNDA2QTk1NjU5MjZGRkUwOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqUMX1JpWbbHOCDpFsd5jkNAdH Z1ayknBE+8HC/m9I/MSZVcJXfH7vq/a8N5ALJKuhEHHhO/DI0KXEryQRslBhDraI 3tCcL+e5GYEYINVpULt+0tAnI/EEiPpYQ/YVBlr6o94WtrEf20KJI9wf0zOpq04/ syGQKeLm8GUUnUIowJgf1niIQsY23cZDJredhXEkMyibwQDrQ854Ka2nJauFtOgj RVMGBXThyLGU7bs4UmnaA+ce0+/54xmjL33r3hi8AIWxteIqKEFQbPFPPaHhCWsL TiAG8gpcJ3qMd5/ZIYJR/5hMGMtfLVXAbR/iQNxyWNwsz50OyZTp6oAwD5vxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYGCNJby2AUqlnxTEBqlWWSb/4J4wHwYDVR0j BBgwFoAU0ho1l9e169mlR2gPHC7XpGTdnyYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2M1NjA1ZC1mMTdhLTQwMTAtOTI1My0yMTBjNjRmMTQ4YmQvMC9EMjFBMzU5N0Q3 QjVFQkQ5QTU0NzY4MEYxQzJFRDdBNDY0REQ5RjI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3QTQ2NERE OUYyNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NjNTYwNWQtZjE3YS00MDEwLTky NTMtMjEwYzY0ZjE0OGJkLzAvRDIxQTM1OTdEN0I1RUJEOUE1NDc2ODBGMUMyRUQ3 QTQ2NEREOUYyNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIxjJ/BxwdfGoi+Ckn3LMu3GM+tiy7Os67Zn b+Pu60oVkBB/4EFnI9LN9t5mTVplq+/Dz4sx6LOhJTqeD4Lc8Rnr0KnoIGnqxMBR hsNozAEGv++KD43J1jfbkYCjrK5K5G3HZ3G4YrKlnzvMbWF5U3ToE5uRYRc7KFHc vZB+3uHAnQG+li4aeCJaviUNbaQ0lCKQqu3LXModVIlD0tlbzdQlTgBIr7rnebJ4 hSEDEdmjRNMIw6KxkQWQjRCQmu6Mg4467Z3LMCejBATbalTBL8r/EAGZdIJxXUYp ogPexkoWcSGPbY+odr+aTfAH5Jdpd86ILa0jr8CeFrtNKHJsxs0= -----END CERTIFICATE-----Generated at Tue Nov 4 16:43:22 2025 by rpki-client