$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft File: 8CFA88063D5C0A51C1D737A5170338865A245358.mft (raw, json) Hash identifier: FOgjM0JHstcyS2dks+uDJl3okeX3jZV4kQiMByCMRLI= Subject key identifier: F1:2E:A5:2C:96:F3:1F:E2:77:5F:43:8F:81:EC:9D:BC:D4:8B:32:D8 Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358 Certificate serial: 631F3A251897FB6D3A283F4D6EFB369634DD034B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft Manifest number: 051F Signing time: Mon 03 Nov 2025 18:41:45 +0000 Manifest this update: Mon 03 Nov 2025 18:36:45 +0000 Manifest next update: Thu 06 Nov 2025 22:00:45 +0000 Files and hashes: 1: 8CFA88063D5C0A51C1D737A5170338865A245358.crl (hash: JyL0vTHbJ8kI4arG68uLfoWq0L7kND2bhgwJR6Q4lok=) 2: 3130332e3132362e3230302e302f32332d3233203d3e20313338313133.roa (hash: OX5qJy0ELn8OIpv9cwcHP0OwwrzKVk8H6b2UKzBtyEg=) 3: 3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa (hash: iKqR4sdrDvQYzAbaXB9On/A/Jy5fdaFvtV4f3tabdnk=) 4: 3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa (hash: x7tsLph+/FB0QeKJjGm8RZPvo26S0bN0rsI7VAab3d8=) 5: 323430343a313034303a3a2f33322d3332203d3e20313338313133.roa (hash: IwOy6L011wgRp4Z43jUYFVOd/TCfuz6IilpFz+BTytc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 22:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:1f:3a:25:18:97:fb:6d:3a:28:3f:4d:6e:fb:36:96:34:dd:03:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358 Validity Not Before: Nov 3 18:36:45 2025 GMT Not After : Nov 6 22:00:45 2025 GMT Subject: CN=F12EA52C96F31FE2775F438F81EC9DBCD48B32D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:34:e9:be:85:8a:72:9f:b9:04:a9:2b:5b:e6: 7b:2c:2d:a8:5c:af:16:ff:18:c7:f2:38:08:91:6c: 43:0c:79:a0:d9:db:81:3b:c4:27:44:68:52:da:87: 9d:40:8a:75:65:19:e0:48:e6:d4:9a:ae:ea:f3:61: d9:37:ba:ce:70:f5:4e:9f:80:cb:ea:b0:25:03:7c: a7:25:24:6f:47:60:0e:36:80:97:78:1f:78:52:49: 5e:75:ed:85:5c:56:df:e6:b5:b7:49:80:21:2b:72: dc:76:b5:7a:7e:0c:88:a0:c3:d6:94:91:2d:eb:3b: 7e:a8:b7:d5:f5:2a:83:76:36:e4:c6:92:cd:14:a6: db:70:6a:91:a6:f2:f0:b9:2e:bb:51:39:c2:85:ce: 71:47:fd:39:b9:91:17:50:96:c0:5d:e3:1f:0e:95: 84:c7:93:02:2d:39:0d:26:fb:66:7d:48:e3:00:ad: 48:8e:d4:6b:53:eb:09:34:12:7d:fc:0c:87:24:b2: 72:3a:cb:68:d6:dd:98:67:92:0e:5d:27:dc:a7:21: d2:21:a3:58:32:4d:59:21:2e:9c:25:c7:65:fb:22: 72:8e:d6:1c:06:6f:f0:c6:cf:ae:e3:c6:0d:36:b4: b5:0e:03:53:03:ef:99:4f:d0:99:b0:4d:2a:df:a2: 7e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:2E:A5:2C:96:F3:1F:E2:77:5F:43:8F:81:EC:9D:BC:D4:8B:32:D8 X509v3 Authority Key Identifier: keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:09:41:c5:fc:93:4b:9c:28:b3:79:ba:11:6b:9e:d9:c4:87: ea:e9:f0:a7:0a:61:18:24:f4:09:48:ec:6f:08:83:57:32:f6: 91:72:fe:9f:7e:aa:86:31:0e:02:11:cf:b2:c1:80:c7:6a:b2: 4c:d8:57:9b:0b:05:19:10:d4:b5:84:28:3e:67:cd:88:56:c2: a0:a1:55:d3:27:e5:aa:5f:db:f2:71:86:13:3f:94:35:78:ef: 74:3d:d3:4a:67:22:9b:e3:27:3b:ab:ad:00:e5:30:a3:09:31: d6:59:10:4f:ed:0d:63:4c:14:d9:c6:88:c2:34:b6:0a:1b:c9: b1:60:a1:c1:ee:e4:a7:d5:6f:43:4f:ac:cb:87:a0:fa:4f:24: 44:ac:9b:32:ac:1b:53:be:af:36:73:82:5d:16:db:30:c8:7c: 64:68:28:29:1e:94:ea:44:41:c7:5c:4a:44:45:92:08:ae:fb: c2:62:4d:26:56:91:80:fa:c3:7b:44:1c:e3:b6:c7:e1:82:5d: 94:05:e9:a8:84:88:a3:35:91:cf:69:45:a8:ef:5d:2c:15:48: 07:cc:99:10:f8:a9:c5:ce:1c:7e:de:ce:45:92:89:96:60:c7: ba:66:36:77:33:1b:e5:5a:42:44:d1:0f:c4:2e:f8:6c:ae:a4: a5:af:95:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYx86JRiX+206KD9Nbvs2ljTdA0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1 QTI0NTM1ODAeFw0yNTExMDMxODM2NDVaFw0yNTExMDYyMjAwNDVaMDMxMTAvBgNV BAMTKEYxMkVBNTJDOTZGMzFGRTI3NzVGNDM4RjgxRUM5REJDRDQ4QjMyRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKNOm+hYpyn7kEqStb5nssLahc rxb/GMfyOAiRbEMMeaDZ24E7xCdEaFLah51AinVlGeBI5tSarurzYdk3us5w9U6f gMvqsCUDfKclJG9HYA42gJd4H3hSSV517YVcVt/mtbdJgCErctx2tXp+DIigw9aU kS3rO36ot9X1KoN2NuTGks0UpttwapGm8vC5LrtROcKFznFH/Tm5kRdQlsBd4x8O lYTHkwItOQ0m+2Z9SOMArUiO1GtT6wk0En38DIcksnI6y2jW3Zhnkg5dJ9ynIdIh o1gyTVkhLpwlx2X7InKO1hwGb/DGz67jxg02tLUOA1MD75lP0JmwTSrfon57AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8S6lLJbzH+J3X0OPgeydvNSLMtgwHwYDVR0j BBgwFoAUjPqIBj1cClHB1zelFwM4hlokU1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTJlNWI2OS1hZGJkLTRlMmQtODQ3ZC0zNzQ4MTU1ODFkODYvMC84Q0ZBODgwNjNE NUMwQTUxQzFENzM3QTUxNzAzMzg4NjVBMjQ1MzU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1QTI0 NTM1OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGEyZTViNjktYWRiZC00ZTJkLTg0 N2QtMzc0ODE1NTgxZDg2LzAvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4 ODY1QTI0NTM1OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABYJQcX8k0ucKLN5uhFrntnEh+rp8KcKYRgk 9AlI7G8Ig1cy9pFy/p9+qoYxDgIRz7LBgMdqskzYV5sLBRkQ1LWEKD5nzYhWwqCh VdMn5apf2/JxhhM/lDV473Q900pnIpvjJzurrQDlMKMJMdZZEE/tDWNMFNnGiMI0 tgobybFgocHu5KfVb0NPrMuHoPpPJESsmzKsG1O+rzZzgl0W2zDIfGRoKCkelOpE QcdcSkRFkgiu+8JiTSZWkYD6w3tEHOO2x+GCXZQF6aiEiKM1kc9pRajvXSwVSAfM mRD4qcXOHH7ezkWSiZZgx7pmNnczG+VaQkTRD8Qu+GyupKWvlcI= -----END CERTIFICATE-----Generated at Wed Nov 5 01:57:51 2025 by rpki-client