$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: vGipg8nuCFXb9xNjK45hu8l3ExxwoO9YRUVIl9dVBAs= Subject key identifier: FD:ED:DA:04:90:6B:9A:F3:38:80:3D:04:2B:13:0A:E1:6F:64:7D:9A Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 7DC9A4133BE58DD9F255DC557ED97041F25E77F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: CE Signing time: Mon 03 Nov 2025 08:22:02 +0000 Manifest this update: Mon 03 Nov 2025 08:17:02 +0000 Manifest next update: Thu 06 Nov 2025 17:08:02 +0000 Files and hashes: 1: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: aDHDgIyNaYfPhaZJNjMtkIDdnhC+Sb5X3HzDV2y9j6Y=) 2: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 3: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 4: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 5: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 17:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c9:a4:13:3b:e5:8d:d9:f2:55:dc:55:7e:d9:70:41:f2:5e:77:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Nov 3 08:17:02 2025 GMT Not After : Nov 6 17:08:02 2025 GMT Subject: CN=FDEDDA04906B9AF338803D042B130AE16F647D9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:46:e1:3d:13:b6:00:9e:2e:d4:45:cc:ff:a6: aa:c9:5e:4f:f1:63:fe:78:e2:e4:8c:73:6b:03:9e: 7f:71:2f:bf:32:5a:3d:7e:7b:7e:e1:5d:d6:6f:ed: 24:b9:99:f5:77:61:24:f6:41:6e:c1:37:c9:2f:a9: bf:62:9e:e8:62:95:c9:44:e7:07:82:20:59:42:52: 56:8f:8a:ec:9f:6e:9a:cc:28:dc:d0:37:56:99:e3: 2c:ef:f2:b5:9b:0d:37:2e:73:f5:56:de:ed:50:e9: 44:f1:2e:c2:1a:5f:04:f2:0b:31:00:88:d7:67:02: 9e:a1:ea:7c:8e:42:43:64:ab:0a:51:b0:81:c2:a4: 20:cd:3e:19:c3:88:14:d3:34:ee:d4:48:f9:67:cd: 09:2f:2c:90:48:65:7c:18:f0:59:39:e9:64:4f:b3: 97:d3:5c:50:bc:de:4d:de:48:70:08:0e:ee:e9:8f: c9:10:e6:45:29:b1:05:ea:57:ca:ee:79:88:b4:8e: 13:a0:e0:17:b7:a5:a7:2f:0a:e8:4c:71:ca:96:86: 31:7f:f4:a1:e0:4a:00:50:9c:6f:b4:36:31:2a:9c: 90:fe:08:89:48:c2:16:98:98:2d:0d:87:77:9c:cc: 68:d6:f3:03:61:22:dd:f2:9f:4c:87:b0:9d:5b:cd: 19:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:ED:DA:04:90:6B:9A:F3:38:80:3D:04:2B:13:0A:E1:6F:64:7D:9A X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:68:38:b5:0d:01:68:21:70:c8:22:cd:06:ef:29:1d:12:c4: 55:b3:b9:33:e5:b5:d2:65:fa:54:2e:07:dc:9b:79:97:7a:3c: f7:84:8f:b0:b3:9a:ba:99:5b:1d:0b:56:29:a0:a2:1f:cd:3c: 85:55:5f:fe:36:1e:41:f7:60:b1:02:d9:60:87:1b:49:d9:0d: 72:05:19:d2:7d:f6:f9:35:52:57:1f:9b:a0:df:df:80:b3:e3: f2:c9:d9:7f:7a:44:3f:ae:03:95:28:20:87:20:e9:77:cf:38: 3e:36:23:82:e7:67:f6:e3:ed:9b:28:6e:66:52:64:af:11:69: 52:66:e2:75:e9:08:2f:4e:11:3b:7c:1f:49:cd:b2:4a:88:21: 6d:86:58:7f:54:40:47:b5:a4:5a:b3:0f:2f:d7:80:3f:a1:9b: e2:14:c8:15:90:6e:94:2e:77:27:52:07:79:4f:58:a8:67:ba: 46:11:96:b5:4b:bd:bc:bb:8d:64:5f:10:5a:86:23:15:96:46: 43:dd:85:2b:6f:0e:e5:3d:62:eb:42:1c:29:3c:6d:ca:11:9c: 5c:05:2d:71:5a:74:16:91:a9:82:2c:74:62:72:4d:51:61:21: 6f:ef:1c:be:f9:42:4f:a9:01:41:1e:b4:fc:9f:77:fe:21:9f: 54:a1:49:dd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfcmkEzvljdnyVdxVftlwQfJed/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTExMDMwODE3MDJaFw0yNTExMDYxNzA4MDJaMDMxMTAvBgNV BAMTKEZERUREQTA0OTA2QjlBRjMzODgwM0QwNDJCMTMwQUUxNkY2NDdEOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkRuE9E7YAni7URcz/pqrJXk/x Y/544uSMc2sDnn9xL78yWj1+e37hXdZv7SS5mfV3YST2QW7BN8kvqb9inuhilclE 5weCIFlCUlaPiuyfbprMKNzQN1aZ4yzv8rWbDTcuc/VW3u1Q6UTxLsIaXwTyCzEA iNdnAp6h6nyOQkNkqwpRsIHCpCDNPhnDiBTTNO7USPlnzQkvLJBIZXwY8Fk56WRP s5fTXFC83k3eSHAIDu7pj8kQ5kUpsQXqV8rueYi0jhOg4Be3pacvCuhMccqWhjF/ 9KHgSgBQnG+0NjEqnJD+CIlIwhaYmC0Nh3eczGjW8wNhIt3yn0yHsJ1bzRkLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/e3aBJBrmvM4gD0EKxMK4W9kfZowHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJhoOLUNAWghcMgizQbvKR0SxFWzuTPltdJl +lQuB9ybeZd6PPeEj7CzmrqZWx0LVimgoh/NPIVVX/42HkH3YLEC2WCHG0nZDXIF GdJ99vk1Ulcfm6Df34Cz4/LJ2X96RD+uA5UoIIcg6XfPOD42I4LnZ/bj7ZsobmZS ZK8RaVJm4nXpCC9OETt8H0nNskqIIW2GWH9UQEe1pFqzDy/XgD+hm+IUyBWQbpQu dydSB3lPWKhnukYRlrVLvby7jWRfEFqGIxWWRkPdhStvDuU9YutCHCk8bcoRnFwF LXFadBaRqYIsdGJyTVFhIW/vHL75Qk+pAUEetPyfd/4hn1ShSd0= -----END CERTIFICATE-----Generated at Tue Nov 4 21:08:34 2025 by rpki-client