$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: Z18PN7fVowqzkR6w+H8Q+HyvV7QQ7n/IUMHU7LV6hk0= Subject key identifier: 9F:02:7D:6F:F1:0D:65:7B:42:18:58:24:67:70:67:E1:BE:87:BC:1E Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 361188F6081F9F896C83522C44D643B2BF4CCBD1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 027A Signing time: Mon 03 Nov 2025 22:42:03 +0000 Manifest this update: Mon 03 Nov 2025 22:37:03 +0000 Manifest next update: Fri 07 Nov 2025 03:19:03 +0000 Files and hashes: 1: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA=) 2: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=) 3: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=) 4: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 5: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: btn366wZk5X/LbhkknHgrSEj+dlkWgK4+w6HiC3XS9g=) 6: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: fr8+FrmlPGl8AfQlow8lySzaZVznKtOBprgMvRW46vw=) 7: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU=) 8: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: nFdqNJzrbPVMKMevvhy6yLb9vrBcw7rDnrhy5oa4t9A=) 9: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 10: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: Q49EnVockO7Wf1pEkALOtAUiauf7qPnxOjOocdL9Yus=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 03:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:11:88:f6:08:1f:9f:89:6c:83:52:2c:44:d6:43:b2:bf:4c:cb:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 3 22:37:03 2025 GMT Not After : Nov 7 03:19:03 2025 GMT Subject: CN=9F027D6FF10D657B42185824677067E1BE87BC1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:89:b1:9b:cf:3c:2b:c0:3d:e8:d3:69:58: 84:d8:0c:4e:0c:be:3e:3f:b2:21:0a:30:ed:cd:90: e1:9c:df:a4:4d:a7:9c:83:ab:04:ac:31:35:9b:41: 38:52:53:e1:cf:49:e2:46:f6:0a:3e:76:f5:51:75: 91:57:1f:91:35:fe:cf:a3:29:b3:1f:ca:50:bc:b1: f3:72:af:f4:c9:3a:a6:ac:e6:83:cf:bc:de:e0:a9: 13:ed:cb:56:34:c5:40:26:4c:8c:36:e2:10:86:37: e8:51:fa:1b:db:fc:52:12:91:87:e7:f1:79:91:84: 85:f4:6a:97:e9:53:42:47:14:52:00:9b:0f:91:d2: fb:49:f2:e0:a6:f6:f7:e4:e1:10:bd:51:16:0e:87: 5e:97:9d:32:43:7e:4f:a4:74:27:f8:e7:d9:3b:55: 3a:ec:bc:15:6b:df:f5:7f:21:bc:3d:ef:88:94:67: 08:34:85:52:fb:5b:07:e4:51:20:4e:ce:4e:42:c8: ba:ec:61:58:44:92:4c:e1:c4:7c:2e:23:10:c1:34: 2d:e7:ef:7f:b2:23:88:92:da:56:a3:3c:52:38:e7: 89:01:a7:f8:26:79:64:98:dc:ec:8c:48:22:6a:f0: e0:27:7c:e4:42:12:61:7d:be:46:78:50:9b:0d:de: 7b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:02:7D:6F:F1:0D:65:7B:42:18:58:24:67:70:67:E1:BE:87:BC:1E X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ea:c5:0d:c1:1d:29:c9:0b:74:ea:ef:f9:3a:d8:4f:0e:d0: 97:69:95:5a:1f:37:4f:76:5b:7a:62:ef:bf:a9:77:3d:ea:47: e5:e9:ce:57:59:e1:30:b5:61:6d:92:89:8c:63:15:27:65:f2: 27:89:35:74:47:4f:0e:5c:bd:81:d1:e8:47:d2:14:68:af:5e: 5f:b2:8a:d5:cb:50:7d:fd:67:29:aa:7c:41:82:b0:db:69:ec: e8:a8:34:a4:8c:40:de:3e:67:a6:57:6a:ab:af:88:17:af:f9: e5:76:ff:1d:cc:49:f3:19:81:0a:06:ca:70:75:d3:c2:fd:be: cb:e0:82:81:d1:db:e9:2e:be:43:7e:c8:6e:bd:8d:00:40:59: 16:3f:73:f5:cd:66:db:25:6b:58:ff:61:c1:e0:f8:a3:df:33: 1f:ca:68:94:d5:32:bc:88:6e:ee:f2:f7:c4:45:24:f6:9a:eb: 23:fc:fa:af:f7:b0:3f:ad:19:d7:ab:13:e7:80:bb:47:47:49: cf:6a:07:8c:2b:bb:71:2c:b5:2e:ae:5b:08:67:76:ca:14:15: d2:76:94:8a:3c:e3:72:47:28:9c:06:51:66:6e:32:9e:ee:b6: d6:12:c2:45:c8:eb:b4:19:21:2d:0b:8f:43:e3:5a:44:15:67: fe:1d:f8:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNhGI9ggfn4lsg1IsRNZDsr9My9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTExMDMyMjM3MDNaFw0yNTExMDcwMzE5MDNaMDMxMTAvBgNV BAMTKDlGMDI3RDZGRjEwRDY1N0I0MjE4NTgyNDY3NzA2N0UxQkU4N0JDMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3T4mxm888K8A96NNpWITYDE4M vj4/siEKMO3NkOGc36RNp5yDqwSsMTWbQThSU+HPSeJG9go+dvVRdZFXH5E1/s+j KbMfylC8sfNyr/TJOqas5oPPvN7gqRPty1Y0xUAmTIw24hCGN+hR+hvb/FISkYfn 8XmRhIX0apfpU0JHFFIAmw+R0vtJ8uCm9vfk4RC9URYOh16XnTJDfk+kdCf459k7 VTrsvBVr3/V/Ibw974iUZwg0hVL7WwfkUSBOzk5CyLrsYVhEkkzhxHwuIxDBNC3n 73+yI4iS2lajPFI454kBp/gmeWSY3OyMSCJq8OAnfORCEmF9vkZ4UJsN3nsbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnwJ9b/ENZXtCGFgkZ3Bn4b6HvB4wHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI/qxQ3BHSnJC3Tq7/k62E8O0JdplVofN092 W3pi77+pdz3qR+XpzldZ4TC1YW2SiYxjFSdl8ieJNXRHTw5cvYHR6EfSFGivXl+y itXLUH39ZymqfEGCsNtp7OioNKSMQN4+Z6ZXaquviBev+eV2/x3MSfMZgQoGynB1 08L9vsvggoHR2+kuvkN+yG69jQBAWRY/c/XNZtsla1j/YcHg+KPfMx/KaJTVMryI bu7y98RFJPaa6yP8+q/3sD+tGderE+eAu0dHSc9qB4wru3EstS6uWwhndsoUFdJ2 lIo843JHKJwGUWZuMp7uttYSwkXI67QZIS0Lj0PjWkQVZ/4d+Lg= -----END CERTIFICATE-----Generated at Tue Nov 4 22:57:37 2025 by rpki-client