$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft File: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft (raw, json) Hash identifier: YupZ2hiImYnYUKn9yq2tXSSmqtMeIQgXbxzF4EnLndU= Subject key identifier: 82:A3:A3:64:F0:CC:41:58:86:13:9C:DF:12:28:E0:EB:64:CC:75:49 Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 1141CBF6F134A1DDA74947685E59A5F453E96288 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft Manifest number: 0522 Signing time: Tue 04 Nov 2025 11:41:07 +0000 Manifest this update: Tue 04 Nov 2025 11:36:07 +0000 Manifest next update: Fri 07 Nov 2025 19:58:07 +0000 Files and hashes: 1: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (hash: q884sNHCW5gx53DgOjtLJ9QZQAoxktWTxQd/7H0Tgro=) 2: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (hash: NJ/fZulIyr1e7dyoj8v3tiz901wVBYZYjvKtkVFLK3I=) 3: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (hash: 92iPAvFoV8ZIni26oBvQBCMwojDuPtSnBMptGXhyF7g=) 4: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (hash: jH+vIlrKU7PfFq1iZrO7cUj2zjNXd2QDgqmIURJ9hHo=) 5: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (hash: Co7QnH1utLTo+OaXOBXDzn1d7u1X3FX72sJ2/V1LcRI=) 6: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl (hash: wnDsM1viNK6478E4JR4Bw0D6xz1zRFOx+SmORA8KJd8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 19:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:41:cb:f6:f1:34:a1:dd:a7:49:47:68:5e:59:a5:f4:53:e9:62:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Nov 4 11:36:07 2025 GMT Not After : Nov 7 19:58:07 2025 GMT Subject: CN=82A3A364F0CC415886139CDF1228E0EB64CC7549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:1f:f3:db:fc:99:4e:26:42:60:60:61:57: 7e:7d:d5:72:ae:b9:17:00:c2:c9:b8:a3:d9:6e:3b: 8f:9c:73:e7:cd:70:e2:00:b5:87:12:46:b3:1f:d8: 18:2b:ef:d0:ca:16:26:b4:db:3b:49:db:71:81:b4: 15:77:37:02:b0:de:0f:f2:2d:ab:eb:0c:1e:b1:33: 6c:17:2a:6e:b3:1e:05:fd:8c:20:d3:f9:be:ac:18: 2e:cc:a8:25:41:23:4a:b8:0a:67:13:42:8a:da:ce: 69:26:be:43:18:ba:49:54:3f:36:2c:2e:31:ca:f6: f0:fa:9d:7b:45:84:82:85:ae:02:86:e2:1a:33:20: 45:93:c1:6f:e0:cb:23:29:0d:51:8a:35:c3:90:30: 65:88:54:56:b8:16:18:f8:25:36:20:99:b6:72:55: 8a:58:70:75:6f:0f:75:fb:0b:4a:90:86:91:03:53: cc:fa:96:db:c8:c2:29:2a:de:18:ac:72:a4:70:e0: 03:dc:99:12:62:17:5e:76:77:ed:37:08:84:1c:33: ee:3f:a2:fc:59:81:83:1a:02:27:af:1c:e3:db:3f: 6e:98:fb:07:33:67:57:25:d8:5c:2b:72:da:18:e4: 1d:f3:20:0e:df:0d:e7:82:04:59:d9:d6:32:32:fa: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A3:A3:64:F0:CC:41:58:86:13:9C:DF:12:28:E0:EB:64:CC:75:49 X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:1f:7a:f1:0d:b8:c0:2f:0f:32:19:49:a8:c1:ee:4b:16:6a: 1b:0c:1b:bc:c3:17:b7:d9:ad:ab:e5:0c:3f:cf:78:e8:63:6a: a7:bc:c2:e2:98:af:d5:3f:a6:8e:8b:c1:e8:0d:01:1d:8c:18: de:99:72:87:f0:04:b9:ed:d6:fa:f5:9b:51:12:bf:3d:a4:64: 13:f6:89:0c:1e:eb:5b:0c:3f:ff:df:da:28:c8:9f:f2:ed:4c: eb:d5:ca:28:4b:53:44:f9:39:53:bf:f5:85:60:ac:45:e2:d2: 30:94:28:fa:10:0d:92:6d:82:5b:c7:f6:a9:81:a4:ad:69:12: 01:75:23:96:03:00:a5:78:c1:9c:75:91:18:66:0e:74:3f:fb: 1f:f2:5b:47:37:31:86:78:4f:ab:4b:53:2e:c5:fd:2c:6e:42: d0:25:0c:d9:ac:1f:97:eb:f4:6a:14:c3:e3:f2:46:f1:ce:7d: cc:38:35:0b:4c:63:e5:fb:5c:45:2d:1b:f7:67:d8:d9:01:15: 82:4d:7a:51:fb:ad:82:4c:77:9a:95:39:a8:ed:9a:58:42:74: c4:91:a2:b0:55:d1:de:de:ed:01:19:41:10:0d:b9:df:ef:16: 82:1f:ee:14:40:9d:c3:b0:ee:fb:c9:fb:49:50:1b:0c:a3:ee: 94:c0:0e:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEUHL9vE0od2nSUdoXlml9FPpYogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTExMDQxMTM2MDdaFw0yNTExMDcxOTU4MDdaMDMxMTAvBgNV BAMTKDgyQTNBMzY0RjBDQzQxNTg4NjEzOUNERjEyMjhFMEVCNjRDQzc1NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RR/z2/yZTiZCYGBhV3591XKu uRcAwsm4o9luO4+cc+fNcOIAtYcSRrMf2Bgr79DKFia02ztJ23GBtBV3NwKw3g/y LavrDB6xM2wXKm6zHgX9jCDT+b6sGC7MqCVBI0q4CmcTQorazmkmvkMYuklUPzYs LjHK9vD6nXtFhIKFrgKG4hozIEWTwW/gyyMpDVGKNcOQMGWIVFa4Fhj4JTYgmbZy VYpYcHVvD3X7C0qQhpEDU8z6ltvIwikq3hiscqRw4APcmRJiF152d+03CIQcM+4/ ovxZgYMaAievHOPbP26Y+wczZ1cl2FwrctoY5B3zIA7fDeeCBFnZ1jIy+qMFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgqOjZPDMQViGE5zfEijg62TMdUkwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTJhYzBjYTUtNWNlNy00ZTZlLTlm ZmYtNzIxM2VmMWVmMzY0LzAvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJE QTIxMDZBNTk0Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJAfevENuMAvDzIZSajB7ksWahsMG7zDF7fZ ravlDD/PeOhjaqe8wuKYr9U/po6LwegNAR2MGN6ZcofwBLnt1vr1m1ESvz2kZBP2 iQwe61sMP//f2ijIn/LtTOvVyihLU0T5OVO/9YVgrEXi0jCUKPoQDZJtglvH9qmB pK1pEgF1I5YDAKV4wZx1kRhmDnQ/+x/yW0c3MYZ4T6tLUy7F/SxuQtAlDNmsH5fr 9GoUw+PyRvHOfcw4NQtMY+X7XEUtG/dn2NkBFYJNelH7rYJMd5qVOajtmlhCdMSR orBV0d7e7QEZQRANud/vFoIf7hRAncOw7vvJ+0lQGwyj7pTADsA= -----END CERTIFICATE-----Generated at Wed Nov 5 04:05:17 2025 by rpki-client