$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: a3Qml2tmKVvvnRiPYx4UCvWPaPPbkyKVKuYp6UbHl3A= Subject key identifier: 52:FB:A7:61:B7:3C:C1:5B:4B:79:D6:FD:D5:1C:10:94:5E:68:84:FB Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 13A58A4F6712229576D3EE318AB58543F1019FFD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 04DB Signing time: Sun 02 Nov 2025 05:21:01 +0000 Manifest this update: Sun 02 Nov 2025 05:16:01 +0000 Manifest next update: Wed 05 Nov 2025 07:27:01 +0000 Files and hashes: 1: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: p7znIjGrzIeqiJgSyw1Go9JzIhUPDTiZx2kzEBcMX+M=) 2: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: FqumLAE5ExkmaatbD11ff744L2iTMEhUHWhZUQWOtLU=) 3: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=) 4: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: B1z7435wktlprDH5cV7ESeviQNHJWtixmzyZQDxzwuw=) 5: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 07:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:a5:8a:4f:67:12:22:95:76:d3:ee:31:8a:b5:85:43:f1:01:9f:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Nov 2 05:16:01 2025 GMT Not After : Nov 5 07:27:01 2025 GMT Subject: CN=52FBA761B73CC15B4B79D6FDD51C10945E6884FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2b:26:41:d1:d7:c1:9d:b0:19:0f:93:d4:f6: 7b:a8:1b:76:e8:a4:d6:46:12:b0:74:d3:71:35:6e: d5:27:01:56:e1:4f:12:cb:a2:9a:01:80:9d:11:5f: e6:bb:3b:a2:f9:06:01:09:8b:77:40:00:fb:a4:15: 42:b8:04:d3:dd:ec:56:e4:6f:5b:3a:96:14:eb:82: e1:22:e6:98:76:d0:c1:60:7f:2d:c1:0a:11:ba:f7: dd:6c:37:bd:b0:62:1b:d2:9b:80:89:d1:72:7e:6b: 97:3f:2d:d1:33:fe:34:96:7e:65:e7:f5:96:4d:69: 63:0f:c4:05:cb:f7:cf:bb:d1:91:15:b8:77:e2:3e: f8:61:34:9e:f6:0c:b7:36:76:b4:42:4a:ba:60:7d: fb:60:eb:af:5a:03:f6:56:39:9d:3b:63:94:fe:99: 1e:e2:6f:41:99:ca:2d:12:54:b3:9c:56:f7:af:a4: 5e:2e:ba:7b:b4:9c:89:07:8e:f5:e5:ed:8a:6c:4c: f2:9e:0e:30:e4:79:2e:59:fa:9d:da:c7:41:4a:4e: 3f:b6:b3:c8:29:05:e5:a9:85:25:63:3b:14:35:a2: dc:2d:02:5f:01:4e:b6:b0:eb:6d:99:ce:fc:7e:8b: 53:ec:41:41:35:e1:ea:33:a4:b9:96:28:77:8f:69: af:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FB:A7:61:B7:3C:C1:5B:4B:79:D6:FD:D5:1C:10:94:5E:68:84:FB X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e3:8a:19:5d:ca:23:d1:4c:48:25:19:58:c2:08:88:4a:4a: b5:bd:9f:09:ec:ba:05:5b:a9:8a:34:7b:61:52:c4:07:f1:8e: 9d:32:9d:1b:ee:65:f2:53:89:60:e5:f1:fa:83:d1:a2:0c:11: 12:0d:7d:48:69:71:2a:a6:55:8e:6f:be:61:07:90:b6:aa:4d: 38:55:6a:de:4f:8f:5d:2d:c9:57:87:b8:fe:74:96:2c:35:f1: ce:71:ed:fd:b1:99:39:d2:5b:90:fa:9a:4b:eb:b4:76:c0:02: 57:d0:30:a3:5d:8b:09:06:0c:5a:1e:5b:1c:36:aa:98:a9:dd: 3a:6c:38:a2:e1:c3:93:a5:9d:b0:d7:10:d6:09:d7:fa:4c:90: e2:d2:a7:92:8e:56:d1:4a:c3:c1:f6:b8:c7:f1:07:80:8b:4f: 34:e6:71:a4:af:9b:68:1a:a6:1f:dd:59:d7:ed:79:4c:fd:e8: 27:d9:ea:9e:53:8e:23:3e:d0:d6:be:28:62:f8:cd:06:fb:41: 9f:da:05:db:2c:39:dc:b0:b3:de:6f:a4:0c:f5:0e:d3:35:fb: 71:53:cb:be:df:cb:02:d4:08:9c:af:15:ce:a4:bf:78:00:0c: 72:e0:df:8c:c0:a9:2e:40:4d:eb:8a:28:1b:fd:7b:1e:65:ca: 80:f4:63:06 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE6WKT2cSIpV20+4xirWFQ/EBn/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTExMDIwNTE2MDFaFw0yNTExMDUwNzI3MDFaMDMxMTAvBgNV BAMTKDUyRkJBNzYxQjczQ0MxNUI0Qjc5RDZGREQ1MUMxMDk0NUU2ODg0RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTKyZB0dfBnbAZD5PU9nuoG3bo pNZGErB003E1btUnAVbhTxLLopoBgJ0RX+a7O6L5BgEJi3dAAPukFUK4BNPd7Fbk b1s6lhTrguEi5ph20MFgfy3BChG6991sN72wYhvSm4CJ0XJ+a5c/LdEz/jSWfmXn 9ZZNaWMPxAXL98+70ZEVuHfiPvhhNJ72DLc2drRCSrpgfftg669aA/ZWOZ07Y5T+ mR7ib0GZyi0SVLOcVvevpF4uunu0nIkHjvXl7YpsTPKeDjDkeS5Z+p3ax0FKTj+2 s8gpBeWphSVjOxQ1otwtAl8BTraw622Zzvx+i1PsQUE14eozpLmWKHePaa+NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUvunYbc8wVtLedb91RwQlF5ohPswHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJzjihldyiPRTEglGVjCCIhKSrW9nwnsugVb qYo0e2FSxAfxjp0ynRvuZfJTiWDl8fqD0aIMERINfUhpcSqmVY5vvmEHkLaqTThV at5Pj10tyVeHuP50liw18c5x7f2xmTnSW5D6mkvrtHbAAlfQMKNdiwkGDFoeWxw2 qpip3TpsOKLhw5OlnbDXENYJ1/pMkOLSp5KOVtFKw8H2uMfxB4CLTzTmcaSvm2ga ph/dWdfteUz96CfZ6p5TjiM+0Na+KGL4zQb7QZ/aBdssOdyws95vpAz1DtM1+3FT y77fywLUCJyvFc6kv3gADHLg34zAqS5ATeuKKBv9ex5lyoD0YwY= -----END CERTIFICATE-----Generated at Tue Nov 4 02:20:24 2025 by rpki-client