$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft File: 2985976A4B3081770748882703E16497964D05A6.mft (raw, json) Hash identifier: PtZMLX9qWZ2uXWGVI+sCA36tUOngL5sNvumVY8SdDW8= Subject key identifier: 6B:2B:FB:70:AE:89:CD:39:C7:29:56:EF:18:21:25:EA:92:E1:16:85 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 19A8ACCC1323F2CD022E80AA663679F02EB8011E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft Manifest number: 020D Signing time: Tue 04 Nov 2025 22:30:39 +0000 Manifest this update: Tue 04 Nov 2025 22:25:39 +0000 Manifest next update: Sat 08 Nov 2025 09:04:39 +0000 Files and hashes: 1: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (hash: 6DmXkqMFBwmOgmu7GrU8MAR3khWhl6gAoERCQcW2kCE=) 2: 3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa (hash: RrW5I2lzLuA+7ZMS1LEMZMinrm7Ftg4PYDdGcwSGY08=) 3: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (hash: fbMC3foKpfnHAAX7CqNwv+8CUIBKmVdM4iWFdYY2w+c=) 4: 2985976A4B3081770748882703E16497964D05A6.crl (hash: xX3edb82bcLFQo3XMIPVHhnNCqSCsB57mgMAZsnS6j0=) 5: 3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa (hash: s3jB5rGy3ygjsQ7KSNEtfVl4k8P8QCufhhtVBzaX2IQ=) 6: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (hash: h0i6o1md9zXeZ9ZcSa+PGKss268qYszF+iOxTtMdu4E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 00:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a8:ac:cc:13:23:f2:cd:02:2e:80:aa:66:36:79:f0:2e:b8:01:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Nov 4 22:25:39 2025 GMT Not After : Nov 8 09:04:39 2025 GMT Subject: CN=6B2BFB70AE89CD39C72956EF182125EA92E11685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3a:82:ae:63:74:a9:44:7f:f2:1d:c0:ca:5f: f2:d6:e8:ba:45:72:4b:b0:e1:f9:83:87:78:1f:1a: f0:91:e1:ba:04:a3:03:5c:4a:9d:8a:83:20:45:3c: cb:fb:2c:55:56:d9:ab:dd:d9:d6:c7:b2:21:c8:c6: 6f:86:dc:eb:10:ba:5e:d5:e0:5a:5e:ac:dd:8d:37: 62:ae:75:72:18:ac:72:bf:1f:86:20:0b:95:ab:96: ab:66:65:a7:18:fa:40:ae:4e:0e:04:8f:38:97:78: f0:96:c9:13:ff:1f:ad:85:a0:e7:2d:17:37:27:d3: 88:78:4c:db:73:d1:6c:42:5a:18:39:8d:a9:18:ca: 96:21:9d:9f:bb:3c:9a:f4:b1:02:3d:f8:f5:c2:e5: ba:66:2c:ec:69:95:ac:8b:32:bf:76:48:37:bf:5c: 83:7d:30:f3:5b:57:51:a9:79:7c:a1:00:0d:f2:d1: 96:6d:91:7d:ea:b0:f1:ff:d7:53:04:ba:41:81:ff: 02:7b:a8:88:3b:d2:06:87:63:60:72:e1:70:bb:51: 55:a1:6f:10:08:db:26:4a:97:3a:84:08:e2:6f:69: f5:f9:62:a3:65:d3:31:a6:18:32:71:fa:b6:ec:80: f2:15:43:77:7e:d1:82:8b:f6:f7:7f:9c:a9:da:96: 4e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2B:FB:70:AE:89:CD:39:C7:29:56:EF:18:21:25:EA:92:E1:16:85 X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:7a:6c:f2:89:7f:a5:25:a0:75:11:55:00:0a:a9:9a:16:6a: e2:53:4d:ef:a4:d0:88:c5:49:f7:57:2d:35:12:66:b1:30:ea: 40:7a:2e:65:92:20:67:0b:59:3e:0b:d8:b7:3b:7e:f2:45:30: 64:2e:11:cc:31:a0:ed:f6:4e:b5:db:d1:95:e1:96:5b:c5:35: 68:f1:e9:f5:1d:64:48:ff:e1:fc:2e:34:e2:fb:49:7f:c0:19: d5:a1:aa:d7:7b:7d:0d:5b:e6:5e:01:f3:fa:b6:01:bd:3a:5d: 35:69:09:65:e2:a6:93:7b:53:5e:c4:4e:73:8b:69:6c:9f:e1: 58:e0:71:69:cc:33:66:58:21:21:ec:a1:ce:c2:41:49:88:e8: db:47:e5:7e:1b:cb:98:30:01:b7:6a:a1:35:43:24:8b:e8:23: a8:cf:7c:09:14:c8:10:e5:56:15:8f:58:b0:09:9b:97:8f:15: 94:7f:2f:2b:e3:cd:28:7e:58:39:17:d8:56:40:ba:c1:0a:09: e6:7e:db:51:53:f3:a0:e3:aa:1e:c1:82:43:11:c2:fe:f2:f9: 85:c9:9a:f0:95:b6:de:f7:16:c3:56:50:f2:4e:45:d8:cb:84: 43:6c:79:59:96:e1:b7:2b:63:09:00:c9:48:5b:f1:d2:e4:6b: 44:80:34:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGaiszBMj8s0CLoCqZjZ58C64AR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTExMDQyMjI1MzlaFw0yNTExMDgwOTA0MzlaMDMxMTAvBgNV BAMTKDZCMkJGQjcwQUU4OUNEMzlDNzI5NTZFRjE4MjEyNUVBOTJFMTE2ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIOoKuY3SpRH/yHcDKX/LW6LpF ckuw4fmDh3gfGvCR4boEowNcSp2KgyBFPMv7LFVW2avd2dbHsiHIxm+G3OsQul7V 4FperN2NN2KudXIYrHK/H4YgC5WrlqtmZacY+kCuTg4EjziXePCWyRP/H62FoOct Fzcn04h4TNtz0WxCWhg5jakYypYhnZ+7PJr0sQI9+PXC5bpmLOxplayLMr92SDe/ XIN9MPNbV1GpeXyhAA3y0ZZtkX3qsPH/11MEukGB/wJ7qIg70gaHY2By4XC7UVWh bxAI2yZKlzqECOJvafX5YqNl0zGmGDJx+rbsgPIVQ3d+0YKL9vd/nKnalk5hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUayv7cK6JzTnHKVbvGCEl6pLhFoUwHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0 OTc5NjREMDVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIh6bPKJf6UloHURVQAKqZoWauJTTe+k0IjF SfdXLTUSZrEw6kB6LmWSIGcLWT4L2Lc7fvJFMGQuEcwxoO32TrXb0ZXhllvFNWjx 6fUdZEj/4fwuNOL7SX/AGdWhqtd7fQ1b5l4B8/q2Ab06XTVpCWXippN7U17ETnOL aWyf4VjgcWnMM2ZYISHsoc7CQUmI6NtH5X4by5gwAbdqoTVDJIvoI6jPfAkUyBDl VhWPWLAJm5ePFZR/LyvjzSh+WDkX2FZAusEKCeZ+21FT86Djqh7BgkMRwv7y+YXJ mvCVtt73FsNWUPJORdjLhENseVmW4bcrYwkAyUhb8dLka0SANEE= -----END CERTIFICATE-----Generated at Wed Nov 5 05:06:53 2025 by rpki-client