$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: NA0N4hoeUtgF6a3jQZlRpLxZcJKMcyENq03TnwyPAdM= Subject key identifier: BB:B7:AF:A1:F3:61:F9:B3:78:E3:20:13:59:88:08:17:4E:23:2F:8C Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 5E72C9CCF9183F02BBC2D353ED3DD7BE66A2BBBC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 01EF Signing time: Mon 03 Nov 2025 15:31:45 +0000 Manifest this update: Mon 03 Nov 2025 15:26:45 +0000 Manifest next update: Thu 06 Nov 2025 23:45:45 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: 5il9tcf0SqValDQz1W7zLnykpPJKZekj2IZiPz3BM+w=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 3: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 4: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 23:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:72:c9:cc:f9:18:3f:02:bb:c2:d3:53:ed:3d:d7:be:66:a2:bb:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Nov 3 15:26:45 2025 GMT Not After : Nov 6 23:45:45 2025 GMT Subject: CN=BBB7AFA1F361F9B378E32013598808174E232F8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1b:4d:6f:fe:ca:1b:62:64:c3:79:c3:30:a0: 5d:26:74:15:fb:4e:72:1a:fd:d0:21:44:d1:01:27: 72:36:5c:37:5e:7e:ca:6f:17:59:d6:c5:55:3c:b6: 1d:df:98:f5:00:9b:b2:f0:b1:bb:d2:8e:48:43:4c: 11:97:6d:2d:08:41:57:02:4d:31:a8:75:7a:30:65: bf:cf:79:b4:c0:7c:e8:6a:6e:13:41:02:78:e9:16: 79:93:be:50:96:62:7c:54:60:1c:31:c3:df:e8:30: c7:05:6c:5a:79:e3:27:d3:ed:91:0a:68:f9:d7:73: 4d:37:e9:9c:70:6f:26:82:e5:d1:00:1b:80:75:f9: c5:26:20:e0:2b:6b:15:2a:21:16:d5:16:44:47:9f: 7b:e8:1b:11:ef:b6:a3:89:3f:3e:8d:a0:8b:06:8d: f6:e3:d8:aa:2d:ad:bc:ca:43:23:18:24:dd:33:f6: 59:ae:9e:c0:95:b5:9b:78:d8:0e:7a:38:97:39:bf: 91:1f:25:ae:13:6f:e9:f7:2f:25:d9:53:03:d8:0c: 4f:01:28:94:77:ec:b7:c4:c2:b8:51:9c:63:7e:16: 31:90:83:21:5f:4d:d7:b0:5f:fb:97:25:9d:f8:0b: a1:3e:a9:2a:e9:b7:2a:5c:84:a0:00:33:d3:e0:de: eb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B7:AF:A1:F3:61:F9:B3:78:E3:20:13:59:88:08:17:4E:23:2F:8C X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:cc:8d:dd:9e:d7:22:ff:7f:4a:2f:58:42:be:ed:5b:05:6b: 67:66:14:ff:84:14:50:9f:87:e0:d1:9a:39:23:a2:c3:12:df: 34:22:c6:63:9b:ac:a2:d9:f5:c9:b1:09:54:c8:3e:c5:55:bb: 31:65:cd:f9:a6:6f:ab:42:13:dc:80:29:73:68:c4:75:d8:75: c4:6a:64:04:be:26:fd:1f:cd:f7:ca:ec:9f:b0:3b:2d:bd:8b: 37:85:63:45:37:5f:56:5b:5b:b9:c5:d9:e2:ef:ed:94:8b:1f: 60:61:97:7f:1e:52:f1:19:08:de:97:4b:df:1e:d2:8e:90:5a: 70:cd:a3:3f:60:f4:01:9b:47:54:7d:d6:95:f2:4e:f6:1a:d6: da:6d:5c:1e:04:a0:ab:d3:cd:7e:e8:12:78:bd:dd:b6:da:34: a8:13:4e:8e:3b:67:ca:5f:eb:60:2a:a8:a0:7a:eb:58:cb:16: 18:74:d9:6b:68:af:0d:e4:e0:03:3f:d0:e2:0a:8d:12:2e:ff: 30:f1:c2:6b:69:81:48:3f:4f:71:dc:b0:52:55:e5:a8:7b:a1: cd:9d:05:fb:eb:70:9a:54:e7:3c:2e:5e:1d:2d:65:5b:3b:88: 9d:46:b4:23:6a:48:a4:01:e4:13:40:c1:6c:44:61:3c:c9:21: 95:49:56:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXnLJzPkYPwK7wtNT7T3Xvmaiu7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTExMDMxNTI2NDVaFw0yNTExMDYyMzQ1NDVaMDMxMTAvBgNV BAMTKEJCQjdBRkExRjM2MUY5QjM3OEUzMjAxMzU5ODgwODE3NEUyMzJGOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLG01v/sobYmTDecMwoF0mdBX7 TnIa/dAhRNEBJ3I2XDdefspvF1nWxVU8th3fmPUAm7LwsbvSjkhDTBGXbS0IQVcC TTGodXowZb/PebTAfOhqbhNBAnjpFnmTvlCWYnxUYBwxw9/oMMcFbFp54yfT7ZEK aPnXc0036ZxwbyaC5dEAG4B1+cUmIOAraxUqIRbVFkRHn3voGxHvtqOJPz6NoIsG jfbj2KotrbzKQyMYJN0z9lmunsCVtZt42A56OJc5v5EfJa4Tb+n3LyXZUwPYDE8B KJR37LfEwrhRnGN+FjGQgyFfTdewX/uXJZ34C6E+qSrptypchKAAM9Pg3utXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUu7evofNh+bN44yATWYgIF04jL4wwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIDMjd2e1yL/f0ovWEK+7VsFa2dmFP+EFFCf h+DRmjkjosMS3zQixmObrKLZ9cmxCVTIPsVVuzFlzfmmb6tCE9yAKXNoxHXYdcRq ZAS+Jv0fzffK7J+wOy29izeFY0U3X1ZbW7nF2eLv7ZSLH2Bhl38eUvEZCN6XS98e 0o6QWnDNoz9g9AGbR1R91pXyTvYa1tptXB4EoKvTzX7oEni93bbaNKgTTo47Z8pf 62AqqKB661jLFhh02Wtorw3k4AM/0OIKjRIu/zDxwmtpgUg/T3HcsFJV5ah7oc2d BfvrcJpU5zwuXh0tZVs7iJ1GtCNqSKQB5BNAwWxEYTzJIZVJVpg= -----END CERTIFICATE-----Generated at Wed Nov 5 01:25:32 2025 by rpki-client