$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: FhhGY2p7r8seYytbGmLzE62qPG6wu3uJw2M0QDeKfqg= Subject key identifier: 05:8B:EF:47:F3:E2:6C:72:D3:75:1D:3A:9C:DD:1C:A1:9C:55:DD:0A Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 522AD75190EC5B910A37E7953978E120C97CDD9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0256 Signing time: Tue 04 Nov 2025 15:41:12 +0000 Manifest this update: Tue 04 Nov 2025 15:36:12 +0000 Manifest next update: Sat 08 Nov 2025 00:43:12 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: qonOSoihdyEOGXKEjx0ElQczxx60RKjDCLheufBA0qE=) 2: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: FtG7UTnBYSh2M3vWRnVkD9lIpheeCE0k5r6AEh+Oihw=) 3: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: pGfLfqeQeD8uU2thnQryvAF3YiN767pDKu8zHBjIsCs=) 4: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: yCac+KeTfH0lkjTAK49G4zxY27cUgoZJXWm+CK7QM48=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 00:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2a:d7:51:90:ec:5b:91:0a:37:e7:95:39:78:e1:20:c9:7c:dd:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Nov 4 15:36:12 2025 GMT Not After : Nov 8 00:43:12 2025 GMT Subject: CN=058BEF47F3E26C72D3751D3A9CDD1CA19C55DD0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:12:d0:a8:15:28:89:a5:52:bf:9a:51:fb:fc: 3f:ca:aa:cf:19:2a:ca:3f:f7:1c:7e:5d:5d:3e:1b: 9e:78:b4:f7:1a:7e:af:74:43:a2:40:70:34:29:df: db:ec:74:89:b5:10:bd:cb:b5:a2:18:80:92:84:95: 96:4f:e7:3b:d9:c3:c7:cf:97:0e:c5:67:23:4a:f6: 46:1a:d4:8c:c7:6a:cd:a0:b5:cb:55:d0:01:f8:46: 05:23:e8:97:ea:e8:0b:c0:07:42:3d:00:87:aa:f1: cc:a4:af:6a:a9:b7:68:83:12:f6:12:18:f9:78:52: 4c:0f:68:df:2f:48:9a:08:6e:e6:c8:5a:3c:70:a9: ce:4e:95:73:7f:d5:23:43:e9:72:c7:8f:eb:09:d4: d7:ec:99:ba:50:b1:62:04:17:da:36:62:68:30:6a: 59:44:f4:52:57:3f:16:84:13:5e:71:6a:d2:39:cf: 54:fe:72:dc:ac:c8:1e:21:34:b1:a4:20:b9:1a:7d: 49:de:87:3a:b1:63:72:34:6c:44:37:37:c7:e1:5f: a7:6a:08:48:82:52:43:fd:d0:1b:29:ef:b2:6f:27: 27:8e:bc:62:8d:c7:37:14:01:c0:b7:3d:8f:7d:ec: 3b:8f:38:bf:29:0b:8f:34:86:39:b7:c2:ec:68:c7: be:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8B:EF:47:F3:E2:6C:72:D3:75:1D:3A:9C:DD:1C:A1:9C:55:DD:0A X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c9:0d:d6:54:5a:e2:13:b9:23:60:d2:d8:cb:74:ff:8a:4d:3a: b0:dc:12:97:db:16:44:ed:dd:ce:9b:78:41:c9:b6:3b:4d:70: 1d:ca:18:0d:19:f8:13:61:c9:05:11:cf:68:36:cd:a0:41:97: 68:93:98:39:9f:b1:8b:b9:df:54:e0:ae:b2:93:0e:f0:1a:5c: 3a:79:5e:b6:d4:66:96:0e:e0:eb:09:5f:ae:08:e0:36:45:48: db:01:55:b1:c9:d0:d3:da:b0:69:1b:89:fe:8a:fd:29:3d:cf: fc:e2:0e:c7:b2:db:25:fa:ce:88:87:9a:ab:60:f2:16:57:ed: 8f:da:69:4e:87:bf:d8:2d:20:a3:e5:7d:11:c9:50:bd:fc:a1: 4d:dc:34:34:b2:8e:ce:f4:4b:9d:bb:d0:3c:bf:c8:c9:79:05: be:39:d8:f8:ea:98:2f:c6:ba:86:c2:ee:e0:e0:e9:98:87:51: 2f:90:1f:fb:3e:7a:93:96:69:4f:5e:c5:0d:17:32:ce:7d:93: 15:3d:d4:5f:3b:ce:d8:d0:8e:ce:80:a5:71:fa:86:8d:42:fb: 52:04:84:9d:d7:7d:69:33:52:d6:54:1b:03:2e:61:9f:42:4c: de:24:e5:fc:9c:d0:54:e9:8e:fc:13:48:41:3c:ad:f8:fd:10: 41:01:0e:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUirXUZDsW5EKN+eVOXjhIMl83ZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTExMDQxNTM2MTJaFw0yNTExMDgwMDQzMTJaMDMxMTAvBgNV BAMTKDA1OEJFRjQ3RjNFMjZDNzJEMzc1MUQzQTlDREQxQ0ExOUM1NUREMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDREtCoFSiJpVK/mlH7/D/Kqs8Z Kso/9xx+XV0+G554tPcafq90Q6JAcDQp39vsdIm1EL3LtaIYgJKElZZP5zvZw8fP lw7FZyNK9kYa1IzHas2gtctV0AH4RgUj6Jfq6AvAB0I9AIeq8cykr2qpt2iDEvYS GPl4UkwPaN8vSJoIbubIWjxwqc5OlXN/1SND6XLHj+sJ1NfsmbpQsWIEF9o2Ymgw allE9FJXPxaEE15xatI5z1T+ctysyB4hNLGkILkafUnehzqxY3I0bEQ3N8fhX6dq CEiCUkP90Bsp77JvJyeOvGKNxzcUAcC3PY997DuPOL8pC480hjm3wuxox76DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBYvvR/PibHLTdR06nN0coZxV3QowHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMkN1lRa4hO5I2DS2Mt0/4pNOrDcEpfbFkTt 3c6beEHJtjtNcB3KGA0Z+BNhyQURz2g2zaBBl2iTmDmfsYu531TgrrKTDvAaXDp5 XrbUZpYO4OsJX64I4DZFSNsBVbHJ0NPasGkbif6K/Sk9z/ziDsey2yX6zoiHmqtg 8hZX7Y/aaU6Hv9gtIKPlfRHJUL38oU3cNDSyjs70S5270Dy/yMl5Bb452PjqmC/G uobC7uDg6ZiHUS+QH/s+epOWaU9exQ0XMs59kxU91F87ztjQjs6ApXH6ho1C+1IE hJ3XfWkzUtZUGwMuYZ9CTN4k5fyc0FTpjvwTSEE8rfj9EEEBDuc= -----END CERTIFICATE-----Generated at Wed Nov 5 16:30:48 2025 by rpki-client