$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: jaPIbcbayca+M7xy+Jh5dpaT2XQe4fSIvmV9o5WFGlk= Subject key identifier: 0E:75:A6:0F:5B:D5:6D:71:8E:87:3C:18:6A:2E:2B:72:17:F6:33:C3 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 6F3AC541D1C7B9E2CF634ADBD956EB7A99DE6E71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 052F Signing time: Sun 02 Nov 2025 18:01:21 +0000 Manifest this update: Sun 02 Nov 2025 17:56:21 +0000 Manifest next update: Wed 05 Nov 2025 20:12:21 +0000 Files and hashes: 1: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 2: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) 3: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: 8gSLWughmL8m0kTBNKNFoBQ2Wmwlfxvtj3yQCE0vZjg=) 4: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA=) 5: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: lz/aRA5xwGbvGMSgXL70n8EEkKYV5RNTgznI5gnec7Q=) 6: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: e9uiS3KNGlZ+EQjSXY4m6NwJ9lRr8aifmafZU96mQ7k=) 7: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:3a:c5:41:d1:c7:b9:e2:cf:63:4a:db:d9:56:eb:7a:99:de:6e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Nov 2 17:56:21 2025 GMT Not After : Nov 5 20:12:21 2025 GMT Subject: CN=0E75A60F5BD56D718E873C186A2E2B7217F633C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:ba:63:c6:d5:fb:31:b2:79:9b:ca:68:a1: 48:18:06:b0:d3:04:92:13:ec:f3:27:eb:1b:ef:48: 35:2f:92:61:3b:4d:da:65:a5:ab:0c:99:6c:9b:e7: 2d:93:65:72:f0:cc:be:68:eb:8f:72:4f:53:aa:ea: de:51:8d:0b:e9:95:de:69:c7:f0:b3:4c:e7:7e:42: ea:43:74:8c:a3:5f:ae:1f:52:47:b0:91:f0:35:88: 33:6f:5a:a6:97:8b:9a:c9:84:e4:37:49:78:c7:f7: c1:57:7d:a9:7c:0a:45:bf:ae:08:ce:92:6f:5b:ba: 78:08:d4:5b:88:b9:f0:72:59:c3:0a:49:3d:22:61: 23:14:f9:01:ae:90:c0:f9:75:7b:40:58:fc:e8:3b: 62:6e:33:87:24:d8:9b:2e:7e:64:58:f5:c6:dc:a8: f0:07:8e:3e:5e:d5:5e:08:bc:85:a5:77:b6:25:fc: 1b:49:42:a3:99:b2:c6:0c:4b:cd:05:97:19:31:6f: d3:66:b2:56:1d:93:7c:0f:d9:c6:5a:55:b6:8f:d9: e5:e5:8a:a0:61:01:14:fd:8e:97:32:92:87:79:73: d0:61:de:ec:6f:0a:92:e0:5b:db:0e:90:8f:23:2f: 45:cb:8f:42:fd:ae:9a:19:fd:8d:ba:6c:53:5c:b5: 5a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:75:A6:0F:5B:D5:6D:71:8E:87:3C:18:6A:2E:2B:72:17:F6:33:C3 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:3d:6f:bb:9c:91:90:3f:81:6e:49:7a:ae:98:c9:c6:81:52: bb:ec:97:39:b0:6e:16:a2:f2:79:70:c4:02:09:1e:c4:9f:d8: 13:85:cb:2f:ea:e1:69:00:63:dd:65:f4:e0:d6:8a:b9:e3:5a: b7:a6:49:a4:75:1c:05:82:dc:32:b3:6f:44:e3:a3:12:57:a4: 2a:01:39:65:77:21:e4:91:4b:bb:b3:39:24:e0:d8:df:f5:21: 2c:f0:28:64:dd:95:c9:7b:f8:c6:a9:5e:82:96:9f:f6:84:6f: e4:7b:b5:76:ea:d7:7b:f9:70:43:e9:8c:2c:15:bf:42:9c:8f: 95:72:b5:e4:58:76:b6:5b:46:48:28:4f:8d:b3:3a:03:40:83: a3:6d:46:ca:66:b2:01:b5:85:58:5c:6f:d5:88:21:0b:4c:eb: 29:01:fc:64:30:54:94:47:31:8d:2e:5d:15:1d:30:08:48:d6: 72:cf:41:00:cc:13:6c:ca:f7:b0:c5:55:60:71:90:e7:19:7c: 04:eb:61:74:e5:cc:20:08:9e:01:ad:e9:7c:c5:be:64:3d:3e: d3:0f:05:5d:b1:04:55:0d:fc:18:6d:69:a8:9a:12:f4:7f:33: 36:13:51:70:aa:69:8c:5d:cf:8a:1e:65:18:94:f7:63:dc:30: 4d:9d:e2:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbzrFQdHHueLPY0rb2VbrepnebnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTExMDIxNzU2MjFaFw0yNTExMDUyMDEyMjFaMDMxMTAvBgNV BAMTKDBFNzVBNjBGNUJENTZENzE4RTg3M0MxODZBMkUyQjcyMTdGNjMzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGArpjxtX7MbJ5m8pooUgYBrDT BJIT7PMn6xvvSDUvkmE7TdplpasMmWyb5y2TZXLwzL5o649yT1Oq6t5RjQvpld5p x/CzTOd+QupDdIyjX64fUkewkfA1iDNvWqaXi5rJhOQ3SXjH98FXfal8CkW/rgjO km9bungI1FuIufByWcMKST0iYSMU+QGukMD5dXtAWPzoO2JuM4ck2JsufmRY9cbc qPAHjj5e1V4IvIWld7Yl/BtJQqOZssYMS80Flxkxb9NmslYdk3wP2cZaVbaP2eXl iqBhART9jpcykod5c9Bh3uxvCpLgW9sOkI8jL0XLj0L9rpoZ/Y26bFNctVqJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDnWmD1vVbXGOhzwYai4rchf2M8MwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKM9b7uckZA/gW5Jeq6YycaBUrvslzmwbhai 8nlwxAIJHsSf2BOFyy/q4WkAY91l9ODWirnjWremSaR1HAWC3DKzb0TjoxJXpCoB OWV3IeSRS7uzOSTg2N/1ISzwKGTdlcl7+MapXoKWn/aEb+R7tXbq13v5cEPpjCwV v0Kcj5VyteRYdrZbRkgoT42zOgNAg6NtRspmsgG1hVhcb9WIIQtM6ykB/GQwVJRH MY0uXRUdMAhI1nLPQQDME2zK97DFVWBxkOcZfATrYXTlzCAIngGt6XzFvmQ9PtMP BV2xBFUN/BhtaaiaEvR/MzYTUXCqaYxdz4oeZRiU92PcME2d4i0= -----END CERTIFICATE-----Generated at Tue Nov 4 08:12:40 2025 by rpki-client