$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: 2VpRXT9ti/mAGBscPLnITwE+KQBKpqkCPgP7dhiBc0U= Subject key identifier: 92:82:6E:66:F2:6F:8E:86:5C:77:B7:25:43:0F:8E:C4:59:72:F8:DA Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 55CFA9A9D2DDDD27236D0F1CDD6497322B67234C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 0530 Signing time: Tue 04 Nov 2025 13:31:04 +0000 Manifest this update: Tue 04 Nov 2025 13:26:04 +0000 Manifest next update: Fri 07 Nov 2025 18:20:04 +0000 Files and hashes: 1: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: uPDVVbZ30vMiS7ICaiMlPFqi7dENbHEzKUZfQWcdyZc=) 2: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: tHhLDdHHbsCkG+UHT3p88TUY2+W5e4f+3agioxt0A6g=) 3: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: 1h7fo52sVm4cJACJ1QTb5QR43dKEDAqoDnfictr7I+U=) 4: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: ArGX3GK83LFApxV4uLSs4kfPXNu12xplyTp4FBzO9Nw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:cf:a9:a9:d2:dd:dd:27:23:6d:0f:1c:dd:64:97:32:2b:67:23:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Nov 4 13:26:04 2025 GMT Not After : Nov 7 18:20:04 2025 GMT Subject: CN=92826E66F26F8E865C77B725430F8EC45972F8DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a8:91:90:9e:1d:7a:49:d4:3a:29:1e:50:9b: b5:51:a7:87:9f:c4:66:c5:c8:9a:57:08:08:6a:dc: eb:fc:0a:5f:c8:73:e5:7e:5b:a1:d5:f1:7b:4f:13: dc:8b:b4:4f:48:cf:a1:a2:23:55:74:94:8a:90:67: d5:71:5a:5e:28:06:28:5a:01:be:14:ce:5c:75:25: 99:5c:77:36:63:28:02:84:ec:bf:f1:75:11:87:14: 2f:b2:8d:ab:19:4a:2c:56:22:c8:2a:a3:30:7f:8c: 61:28:6d:06:d7:2d:9e:fd:1f:1a:12:04:fb:57:36: 12:1e:8a:f5:e5:ae:38:38:32:45:5f:f7:9a:f8:bb: bb:87:ec:b4:ff:5b:d2:2d:e2:61:69:7c:c5:a5:6d: be:3d:a8:56:9a:01:8e:32:81:61:9b:1e:95:bc:c1: 90:4b:4d:ee:1f:02:3f:57:b7:4d:5e:96:66:31:aa: a0:0d:08:55:20:8d:ca:ad:77:ce:df:67:d7:ed:66: f7:c6:4f:5a:98:1c:1d:51:b5:91:2c:75:91:5c:0b: 15:93:92:18:cc:84:9d:27:d6:21:d6:ea:df:08:6a: 56:f4:d4:75:c9:9d:c0:83:39:cf:99:49:f0:d3:c5: 22:31:5c:e0:9c:83:d4:78:33:b0:51:da:d7:8d:27: 0c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:82:6E:66:F2:6F:8E:86:5C:77:B7:25:43:0F:8E:C4:59:72:F8:DA X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:48:5c:7f:c2:d6:50:c8:1c:f8:a3:6a:cf:17:04:af:b6:b9: 07:51:44:34:8e:45:8e:0f:74:db:b7:3a:4c:f9:02:6f:2c:8f: 38:c3:ac:af:4e:0b:ed:7d:37:c8:ca:59:78:38:6d:ba:9f:c1: 8a:d1:bf:94:4e:37:bd:ab:84:90:82:ea:cc:c4:08:45:ed:e8: 49:68:99:b4:8d:92:51:6a:fa:51:6b:7e:f8:43:43:2e:64:a4: 36:66:24:42:35:f9:f4:21:28:cb:12:e9:28:3d:ee:3f:6c:90: 25:ac:c5:52:e2:f4:14:11:04:6a:70:0e:65:1e:e3:68:a9:25: b1:f7:28:42:18:5b:97:03:da:c7:86:93:ac:52:8c:0c:65:6c: d1:18:0e:df:b5:c9:89:87:6c:22:20:82:6a:fc:d4:d1:21:20: ea:c4:89:1a:9a:36:8a:c3:bf:06:2e:07:5c:b7:ad:29:f8:66: 75:1e:8f:bd:3b:46:98:8f:42:15:cb:d6:87:40:8c:42:9c:5e: a9:7d:80:17:97:f9:f4:4d:27:77:b6:80:2e:b7:5b:03:53:aa: 27:12:c6:6c:06:42:30:96:09:51:af:fa:e0:91:e7:f6:7c:fd: 5f:4b:34:84:42:29:47:98:87:b4:f5:a6:1f:10:50:6c:e9:b4: 75:6e:b7:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVc+pqdLd3ScjbQ8c3WSXMitnI0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTExMDQxMzI2MDRaFw0yNTExMDcxODIwMDRaMDMxMTAvBgNV BAMTKDkyODI2RTY2RjI2RjhFODY1Qzc3QjcyNTQzMEY4RUM0NTk3MkY4REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfqJGQnh16SdQ6KR5Qm7VRp4ef xGbFyJpXCAhq3Ov8Cl/Ic+V+W6HV8XtPE9yLtE9Iz6GiI1V0lIqQZ9VxWl4oBiha Ab4Uzlx1JZlcdzZjKAKE7L/xdRGHFC+yjasZSixWIsgqozB/jGEobQbXLZ79HxoS BPtXNhIeivXlrjg4MkVf95r4u7uH7LT/W9It4mFpfMWlbb49qFaaAY4ygWGbHpW8 wZBLTe4fAj9Xt01elmYxqqANCFUgjcqtd87fZ9ftZvfGT1qYHB1RtZEsdZFcCxWT khjMhJ0n1iHW6t8Ialb01HXJncCDOc+ZSfDTxSIxXOCcg9R4M7BR2teNJwwfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkoJuZvJvjoZcd7clQw+OxFly+NowHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJtIXH/C1lDIHPijas8XBK+2uQdRRDSORY4P dNu3Okz5Am8sjzjDrK9OC+19N8jKWXg4bbqfwYrRv5RON72rhJCC6szECEXt6Elo mbSNklFq+lFrfvhDQy5kpDZmJEI1+fQhKMsS6Sg97j9skCWsxVLi9BQRBGpwDmUe 42ipJbH3KEIYW5cD2seGk6xSjAxlbNEYDt+1yYmHbCIggmr81NEhIOrEiRqaNorD vwYuB1y3rSn4ZnUej707RpiPQhXL1odAjEKcXql9gBeX+fRNJ3e2gC63WwNTqicS xmwGQjCWCVGv+uCR5/Z8/V9LNIRCKUeYh7T1ph8QUGzptHVut3k= -----END CERTIFICATE-----Generated at Tue Nov 4 19:08:55 2025 by rpki-client