$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: ZOi8+rD6TzGxXtgqJuSRGQFaIE+c2/rCVa/VAJkSBB0= Subject key identifier: A0:7B:8D:4C:31:40:3B:E9:2E:F8:1A:45:44:21:73:FF:0D:A5:1F:8C Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 77ED21AE5F1E76BBCE67EAC1A926A79342811561 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 0375 Signing time: Sun 02 Nov 2025 20:31:31 +0000 Manifest this update: Sun 02 Nov 2025 20:26:30 +0000 Manifest next update: Thu 06 Nov 2025 02:57:30 +0000 Files and hashes: 1: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 2: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: 9QGQ9s3wClWcZvk6EdSeFsJL5XrmMMjJEi56OwcXUcQ=) 3: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) 4: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 02:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ed:21:ae:5f:1e:76:bb:ce:67:ea:c1:a9:26:a7:93:42:81:15:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Nov 2 20:26:30 2025 GMT Not After : Nov 6 02:57:30 2025 GMT Subject: CN=A07B8D4C31403BE92EF81A45442173FF0DA51F8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:57:89:b3:57:11:9c:7f:22:0f:6d:ca:69:e3: 6a:0f:92:95:ee:8a:55:42:51:20:17:2f:3d:52:0d: 1d:5a:62:c1:a9:87:1d:44:87:2d:d6:82:3e:02:88: ce:55:af:50:43:ca:df:c3:9c:92:78:40:a8:35:08: e2:99:a3:a9:52:35:ab:19:bb:53:56:3a:a8:72:f2: 83:50:12:6b:ba:13:6e:a7:6f:76:49:f2:5f:90:73: 14:06:ac:96:df:40:52:59:53:a0:91:4a:98:18:42: c7:27:b5:fc:0a:26:f7:25:d6:ba:53:a7:39:c4:8e: 9d:8d:66:1d:37:7d:92:f8:2c:e5:63:0d:9a:4e:14: 14:c1:e5:2a:18:2d:d0:1e:c4:24:7c:39:bc:44:c5: 00:96:fc:9d:4e:e4:55:9e:c8:00:2c:30:a6:0c:68: 65:4c:a3:b7:ab:95:6e:76:68:24:a6:5c:e5:a7:f6: d2:ca:ba:ae:fd:db:09:2b:40:a7:72:7e:17:3e:c6: e3:85:4f:9c:db:76:df:45:fb:4b:de:5c:01:46:d2: 09:5f:a0:16:d0:dd:60:cb:d8:37:4f:af:02:9a:ff: ab:c1:63:9a:64:fa:21:72:8c:d7:a0:aa:b6:65:9f: 77:2d:68:b9:57:b8:29:e0:d0:66:eb:5d:44:cf:56: 50:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:7B:8D:4C:31:40:3B:E9:2E:F8:1A:45:44:21:73:FF:0D:A5:1F:8C X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:08:45:17:0d:79:9e:5c:83:b2:fb:34:9b:b9:9f:55:82:fa: 61:3c:71:43:af:f3:55:6c:4b:5d:94:d2:6a:3f:d5:0c:ad:78: fa:49:df:9b:6d:0a:1a:72:24:ac:f2:8c:9c:ea:9e:75:e2:ca: 64:6d:d8:91:60:62:d1:6b:20:13:97:f4:4d:83:34:1c:c6:60: 2e:17:da:fb:42:72:58:8d:68:be:a3:84:06:5b:ed:7c:ca:f8: 1f:45:34:1d:15:3f:da:09:35:13:44:67:f0:bc:b3:5d:b5:51: 58:68:0d:52:12:96:c5:cb:53:9b:0a:90:29:1f:47:a2:1b:0f: 61:b6:f6:92:e2:c4:1b:5c:27:5e:39:b1:e0:d5:1a:ee:c1:1f: b7:f0:8e:64:67:63:0b:fa:4f:22:b5:4e:67:c1:87:d3:d5:d7: 7b:bf:cd:ed:17:6a:82:89:19:b4:97:11:94:87:99:3b:76:43: ce:1c:d7:bc:03:bb:1b:e4:da:6e:a2:1d:4d:cd:79:a5:f7:a0: 89:c0:4f:6b:a4:7a:10:2d:ba:36:06:d4:78:0d:61:57:76:9a: 9c:76:21:30:ea:c4:f2:f6:f6:52:96:d5:53:dc:14:27:8e:49: d4:21:4b:59:50:a7:77:35:07:07:b1:ac:f9:d7:34:10:00:07: ee:ef:ce:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd+0hrl8edrvOZ+rBqSank0KBFWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTExMDIyMDI2MzBaFw0yNTExMDYwMjU3MzBaMDMxMTAvBgNV BAMTKEEwN0I4RDRDMzE0MDNCRTkyRUY4MUE0NTQ0MjE3M0ZGMERBNTFGOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZV4mzVxGcfyIPbcpp42oPkpXu ilVCUSAXLz1SDR1aYsGphx1Ehy3Wgj4CiM5Vr1BDyt/DnJJ4QKg1COKZo6lSNasZ u1NWOqhy8oNQEmu6E26nb3ZJ8l+QcxQGrJbfQFJZU6CRSpgYQscntfwKJvcl1rpT pznEjp2NZh03fZL4LOVjDZpOFBTB5SoYLdAexCR8ObxExQCW/J1O5FWeyAAsMKYM aGVMo7erlW52aCSmXOWn9tLKuq792wkrQKdyfhc+xuOFT5zbdt9F+0veXAFG0glf oBbQ3WDL2DdPrwKa/6vBY5pk+iFyjNegqrZln3ctaLlXuCng0GbrXUTPVlAPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoHuNTDFAO+ku+BpFRCFz/w2lH4wwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGUIRRcNeZ5cg7L7NJu5n1WC+mE8cUOv81Vs S12U0mo/1QytePpJ35ttChpyJKzyjJzqnnXiymRt2JFgYtFrIBOX9E2DNBzGYC4X 2vtCcliNaL6jhAZb7XzK+B9FNB0VP9oJNRNEZ/C8s121UVhoDVISlsXLU5sKkCkf R6IbD2G29pLixBtcJ145seDVGu7BH7fwjmRnYwv6TyK1TmfBh9PV13u/ze0XaoKJ GbSXEZSHmTt2Q84c17wDuxvk2m6iHU3NeaX3oInAT2ukehAtujYG1HgNYVd2mpx2 ITDqxPL29lKW1VPcFCeOSdQhS1lQp3c1BwexrPnXNBAAB+7vzpg= -----END CERTIFICATE-----Generated at Tue Nov 4 12:54:33 2025 by rpki-client