$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: UGNczz03Du0D8/8IlVe8osl8Sh8eveF/s1EeBJEMJT8= Subject key identifier: B3:6B:2B:BE:C2:67:3A:7C:D2:94:D3:62:51:8C:00:A6:B2:64:C8:FE Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 0C11E8538BDA9BE9E1A7AEE24E48547666B30043 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 051B Signing time: Mon 03 Nov 2025 01:50:59 +0000 Manifest this update: Mon 03 Nov 2025 01:45:59 +0000 Manifest next update: Thu 06 Nov 2025 05:46:59 +0000 Files and hashes: 1: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: 6cay+22jgK2jJ5kHptCGyq9N/Ohrennqt2xMZNtXy0A=) 2: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: dHAXVvHNWN3lX3SmokQ/UCj86xJ8/z2lq2nv43vYPc0=) 3: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: vyo5RypkFQEnVHU24LrFw7oPwATfGzPKn/kBk5If2Fc=) 4: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 0DSPPC3eIjICQ1QgbLgmjGB64GhEc/FiJxgxZMMi2rw=) 5: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: i8E531bAACF/do6q7C690HP7ycKInzio0QMeynldjVQ=) 6: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: jGoXC4NtMGtzcx+R9/Q81p54SI3SY8CoW+n8Kb2SzRU=) 7: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: wHpTffZ2nuWlAhlZXWgWT5vAarjhnzHKQ1BNdqdBZLA=) 8: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: LSvRzZKZqA3NwdEC9iho4W4LPDyE6x1z3v9TKwhHRg0=) 9: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: YHgchxUowX4afg18dRitbsm1i2Jr1bcDLdOROkNe9ds=) 10: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: tAs35Xh9PvYdZJSIW4FLCQe0rvv+Ua53CMSGfgCNFT4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 05:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:11:e8:53:8b:da:9b:e9:e1:a7:ae:e2:4e:48:54:76:66:b3:00:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Nov 3 01:45:59 2025 GMT Not After : Nov 6 05:46:59 2025 GMT Subject: CN=B36B2BBEC2673A7CD294D362518C00A6B264C8FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ec:e7:4c:0f:28:3b:40:75:44:94:18:23:f9: b6:65:56:aa:ba:59:e0:cc:43:e9:c4:95:a1:00:45: ca:74:08:46:89:d5:99:3f:0f:91:d8:93:66:b5:ba: ed:98:76:b4:d4:81:a4:c9:cb:2c:bf:7f:96:2b:43: 93:34:36:05:c5:16:62:33:70:b0:70:57:42:a6:7b: f3:4b:16:a7:3c:c3:86:f2:62:68:32:75:c8:a0:6a: e8:0d:28:f4:0b:d1:52:ac:f8:52:7b:97:b8:06:c2: 43:8f:43:dd:28:ef:ed:1e:e4:50:a1:e1:6b:bf:f1: c5:32:1f:8d:b3:52:0e:5d:8b:80:8b:c8:8a:28:b7: 63:c0:fd:76:63:e6:93:94:c7:84:37:78:54:48:ed: e5:60:a6:11:c7:2c:fe:9f:55:df:ac:0b:27:d8:7f: 65:af:fa:d8:bd:eb:a4:62:a9:09:16:1b:48:13:4c: 87:f4:81:b8:28:41:a0:bc:bb:d7:7e:0f:3d:59:d1: 2e:0b:53:12:9d:e2:b8:83:01:30:23:40:a6:67:81: e2:0e:77:95:7c:32:76:a6:fc:09:c5:71:81:75:e2: 45:83:1c:be:51:8d:7d:9d:c4:f0:a3:3f:2a:fc:ec: 48:16:93:8a:04:1c:a7:2f:f6:d5:f6:bc:80:c7:97: cb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6B:2B:BE:C2:67:3A:7C:D2:94:D3:62:51:8C:00:A6:B2:64:C8:FE X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:13:46:a8:81:fd:9b:00:62:f9:c2:95:a1:ff:c2:35:c6:57: 52:64:1d:f9:d6:ee:ee:38:dc:01:10:37:71:d5:9d:0e:c8:b1: bb:4d:55:c1:e7:95:52:9a:c0:5d:4a:da:3c:7b:42:81:64:84: b0:13:ea:47:01:dd:31:69:f8:54:3f:bf:96:63:8e:c0:ce:fe: f6:50:4f:c9:7e:ce:3a:35:4e:1a:de:23:f0:7e:cf:ca:38:d6: b9:64:cc:cf:33:60:53:ac:7e:50:46:29:aa:e1:22:88:c8:50: 39:5b:85:6b:5c:ef:01:5b:6c:d7:6a:9c:ba:6d:0a:4d:8c:db: f4:95:0a:ea:0b:f8:e7:71:aa:41:2e:d6:1b:88:9f:71:16:73: 90:bd:21:19:68:66:20:7e:64:92:a1:0a:26:5c:8c:24:52:45: 5c:00:72:d0:b0:51:a3:d2:f9:cd:8f:32:c6:36:45:57:07:70: 96:66:f2:0c:7f:0c:d3:1e:c1:21:0c:d7:6d:b7:96:82:48:e0: bf:04:09:4b:3d:a3:70:18:f0:c1:ca:04:c8:c7:ae:26:1e:c2: 7a:73:49:51:74:54:cd:30:ad:53:c2:bd:26:2b:3a:3a:88:21: 00:c0:f2:26:4b:b7:89:5b:b9:a4:27:4e:2f:78:77:46:43:f3: 6b:82:cc:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDBHoU4vam+nhp67iTkhUdmazAEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTExMDMwMTQ1NTlaFw0yNTExMDYwNTQ2NTlaMDMxMTAvBgNV BAMTKEIzNkIyQkJFQzI2NzNBN0NEMjk0RDM2MjUxOEMwMEE2QjI2NEM4RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk7OdMDyg7QHVElBgj+bZlVqq6 WeDMQ+nElaEARcp0CEaJ1Zk/D5HYk2a1uu2YdrTUgaTJyyy/f5YrQ5M0NgXFFmIz cLBwV0Kme/NLFqc8w4byYmgydcigaugNKPQL0VKs+FJ7l7gGwkOPQ90o7+0e5FCh 4Wu/8cUyH42zUg5di4CLyIoot2PA/XZj5pOUx4Q3eFRI7eVgphHHLP6fVd+sCyfY f2Wv+ti966RiqQkWG0gTTIf0gbgoQaC8u9d+Dz1Z0S4LUxKd4riDATAjQKZngeIO d5V8Mnam/AnFcYF14kWDHL5RjX2dxPCjPyr87EgWk4oEHKcv9tX2vIDHl8srAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs2srvsJnOnzSlNNiUYwAprJkyP4wHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGYTRqiB/ZsAYvnClaH/wjXGV1JkHfnW7u44 3AEQN3HVnQ7IsbtNVcHnlVKawF1K2jx7QoFkhLAT6kcB3TFp+FQ/v5ZjjsDO/vZQ T8l+zjo1ThreI/B+z8o41rlkzM8zYFOsflBGKarhIojIUDlbhWtc7wFbbNdqnLpt Ck2M2/SVCuoL+OdxqkEu1huIn3EWc5C9IRloZiB+ZJKhCiZcjCRSRVwActCwUaPS +c2PMsY2RVcHcJZm8gx/DNMewSEM1223loJI4L8ECUs9o3AY8MHKBMjHriYewnpz SVF0VM0wrVPCvSYrOjqIIQDA8iZLt4lbuaQnTi94d0ZD82uCzDw= -----END CERTIFICATE-----Generated at Tue Nov 4 08:12:37 2025 by rpki-client