$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: /5HUK4TZ+7F7jQSp7flm3+/eYBsOmEYnZnkQ2+2mhAU= Subject key identifier: AF:DB:15:3E:A3:3B:1A:3A:33:F0:DD:AB:9C:6C:E9:3C:6B:B0:09:36 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 2D80447182DCD6B1FFDED6C90E9DFA6CFF8755A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 04F0 Signing time: Mon 03 Nov 2025 23:11:49 +0000 Manifest this update: Mon 03 Nov 2025 23:06:49 +0000 Manifest next update: Fri 07 Nov 2025 05:26:49 +0000 Files and hashes: 1: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: 2eCv61uQhskNycDWVgoEBlHVYZrbR0tsVBhG0tPSFQo=) 2: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: uhbTS40xOE2iorcFCGhU6uKqyXCDewHO7yiFkBSc5gw=) 3: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: 01o8IIdEBMNVP2rARnAtQNMxpIRvEPCoH/cFEbdvFjA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 05:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:80:44:71:82:dc:d6:b1:ff:de:d6:c9:0e:9d:fa:6c:ff:87:55:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Nov 3 23:06:49 2025 GMT Not After : Nov 7 05:26:49 2025 GMT Subject: CN=AFDB153EA33B1A3A33F0DDAB9C6CE93C6BB00936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:df:07:41:f3:ed:c2:cd:8a:4c:cf:4e:9c:56: 73:e0:76:14:ed:bb:9f:2f:93:be:c6:34:40:1f:42: 8d:1c:9b:1c:bc:6c:b1:b8:cb:8d:ec:b9:bd:de:30: 65:8a:4e:c4:ec:9d:ed:48:3b:48:cf:cf:5d:18:ee: ab:e8:fd:cb:ea:d1:63:5b:77:6d:73:b5:de:1c:2d: a9:4a:a5:5e:4f:c7:52:2f:90:b5:5d:7f:d0:43:ff: 01:81:4b:dc:38:e3:40:14:a3:38:01:05:39:8e:45: e1:e9:49:7e:9e:45:a5:aa:9b:e3:df:00:69:d7:d1: 63:85:84:d8:c9:53:68:a1:6e:4f:c7:87:36:e4:ae: d4:99:f0:59:b4:f3:6e:e2:95:16:42:ed:fb:d6:de: 39:f6:75:5e:e7:f7:23:ae:d1:48:d1:fb:4d:1d:fd: dc:57:ba:c3:60:58:b1:c3:d4:9b:ba:dd:6c:d2:d2: 79:99:d5:84:f7:83:8b:e0:10:60:4e:67:7c:70:52: 46:23:55:f9:3e:44:65:0b:f1:50:cf:bc:cb:a8:c2: 25:62:26:34:5c:fe:af:41:42:b0:57:92:3e:3a:f5: c2:40:0f:e8:94:9c:30:4c:b8:69:05:51:48:39:95: 16:ab:97:de:f4:28:4d:27:38:94:6e:be:06:e9:04: e0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DB:15:3E:A3:3B:1A:3A:33:F0:DD:AB:9C:6C:E9:3C:6B:B0:09:36 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:01:be:ad:a5:50:12:31:fa:66:b6:ce:0a:b3:90:8a:e6:c3: b4:d7:91:4b:ae:e9:d3:19:05:71:9b:f0:5e:e7:13:cc:5e:fe: 3b:b5:5e:ba:f8:cd:c1:e7:4d:9f:c9:2e:98:6e:0e:76:9e:ee: c8:da:42:dd:a7:5f:1d:c6:36:20:1e:76:a8:c1:01:76:08:73: dd:26:36:71:bf:53:8c:f6:96:ee:30:4d:a0:b5:8a:e0:3e:98: c8:71:38:74:c1:c9:42:4a:a6:6c:8a:52:d4:8f:4e:a2:7c:67: 00:9e:d1:c1:69:7c:71:f9:c2:af:2a:fb:10:8e:be:18:a4:7a: a6:1e:05:c5:08:78:2a:3f:44:f1:28:d5:e6:bd:f3:13:e8:cb: 01:49:1d:36:3c:63:f0:7c:dd:e2:32:4b:a3:b5:d6:a8:2c:6c: fa:5c:9b:fa:c2:07:2d:b8:02:1e:e1:2c:d8:80:96:29:b1:07: 82:69:53:db:6a:eb:d7:6b:23:54:52:c5:19:7d:0e:54:bb:cf: 50:c8:1a:78:f6:7d:3d:ae:6a:fd:92:b5:77:ef:a1:c8:d0:05: 1a:08:a2:a6:1b:1d:90:e5:e5:f0:df:f4:62:ae:8b:34:f8:74: 66:ce:93:32:65:46:dd:f9:f8:ad:ff:7b:06:91:79:5c:9c:93: ff:6f:7e:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULYBEcYLc1rH/3tbJDp36bP+HVakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNTExMDMyMzA2NDlaFw0yNTExMDcwNTI2NDlaMDMxMTAvBgNV BAMTKEFGREIxNTNFQTMzQjFBM0EzM0YwRERBQjlDNkNFOTNDNkJCMDA5MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt3wdB8+3CzYpMz06cVnPgdhTt u58vk77GNEAfQo0cmxy8bLG4y43sub3eMGWKTsTsne1IO0jPz10Y7qvo/cvq0WNb d21ztd4cLalKpV5Px1IvkLVdf9BD/wGBS9w440AUozgBBTmOReHpSX6eRaWqm+Pf AGnX0WOFhNjJU2ihbk/HhzbkrtSZ8Fm0827ilRZC7fvW3jn2dV7n9yOu0UjR+00d /dxXusNgWLHD1Ju63WzS0nmZ1YT3g4vgEGBOZ3xwUkYjVfk+RGUL8VDPvMuowiVi JjRc/q9BQrBXkj469cJAD+iUnDBMuGkFUUg5lRarl970KE0nOJRuvgbpBOARAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr9sVPqM7Gjoz8N2rnGzpPGuwCTYwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKoBvq2lUBIx+ma2zgqzkIrmw7TXkUuu6dMZ BXGb8F7nE8xe/ju1Xrr4zcHnTZ/JLphuDnae7sjaQt2nXx3GNiAedqjBAXYIc90m NnG/U4z2lu4wTaC1iuA+mMhxOHTByUJKpmyKUtSPTqJ8ZwCe0cFpfHH5wq8q+xCO vhikeqYeBcUIeCo/RPEo1ea98xPoywFJHTY8Y/B83eIyS6O11qgsbPpcm/rCBy24 Ah7hLNiAlimxB4JpU9tq69drI1RSxRl9DlS7z1DIGnj2fT2uav2StXfvocjQBRoI oqYbHZDl5fDf9GKuizT4dGbOkzJlRt35+K3/ewaReVyck/9vfs4= -----END CERTIFICATE-----Generated at Tue Nov 4 12:55:30 2025 by rpki-client