$ rpki-client -vvf repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft File: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft (raw, json) Hash identifier: /vxKMyeLh0sk/aPs/HA66rLBNhtfBK2rAoVoBmZAsyk= Subject key identifier: 0C:68:C2:76:68:40:11:A1:61:3A:E0:A3:D3:F7:9D:34:4F:9C:FF:13 Authority key identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB Certificate issuer: /CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Certificate serial: 4C122E46B92E866C38C58CFF4C9663A3A707B431 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft Manifest number: EF Signing time: Mon 03 Nov 2025 05:01:01 +0000 Manifest this update: Mon 03 Nov 2025 04:56:01 +0000 Manifest next update: Thu 06 Nov 2025 09:47:01 +0000 Files and hashes: 1: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl (hash: smZKF+FHOpCcfRnmLfSVbsVrp8NIDNAsm792382rv+8=) 2: 3135372e36362e3132322e302f32342d3234203d3e203633383538.roa (hash: 4USC1AQzGKvJLoaILHyi8/vcN8nVPul2782sFf1fdxE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 09:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:12:2e:46:b9:2e:86:6c:38:c5:8c:ff:4c:96:63:a3:a7:07:b4:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Validity Not Before: Nov 3 04:56:01 2025 GMT Not After : Nov 6 09:47:01 2025 GMT Subject: CN=0C68C276684011A1613AE0A3D3F79D344F9CFF13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:18:e1:e8:64:96:70:d8:d5:cc:88:95:fc:d3: 30:32:c2:57:97:08:8b:95:15:f4:dc:5d:57:01:98: 08:7c:42:b9:d7:52:2f:38:5c:4a:15:e8:5c:e0:61: b0:39:53:2f:e3:79:50:1a:02:6d:1b:bb:f3:b2:0c: 19:76:3b:dd:31:d2:ba:23:2a:c1:8a:6d:22:cc:b9: 4a:33:b2:1d:71:93:15:58:6b:bb:6f:db:0f:80:cf: 19:59:51:5e:15:c2:86:4f:41:76:de:e0:33:b0:91: 0f:47:e7:d4:e0:85:4b:6b:89:4c:65:55:be:0f:95: 48:11:75:ab:ca:9e:af:e8:87:88:87:d4:0b:c8:df: 47:54:a9:c1:47:da:83:45:73:36:f0:1d:c7:dc:e9: 95:15:be:96:b2:03:e1:d3:81:0b:e8:ef:ac:05:92: 25:ef:9a:69:69:29:f1:03:87:b1:e1:2d:eb:0b:2e: eb:67:df:be:2b:6c:c9:bb:54:a6:c3:4b:a9:27:b8: 20:3b:0c:69:ad:7b:b2:22:15:13:c8:e5:75:4b:9a: b9:b8:ba:6b:0b:29:65:33:95:75:d5:59:d0:8a:79: 02:18:3c:ba:e6:de:e6:de:7f:46:6d:8f:40:80:37: c0:53:f2:ef:68:8c:e9:11:77:81:aa:78:4b:fa:70: 5e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:68:C2:76:68:40:11:A1:61:3A:E0:A3:D3:F7:9D:34:4F:9C:FF:13 X509v3 Authority Key Identifier: keyid:5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:77:0c:53:09:24:66:f3:7d:55:87:82:18:fb:70:60:52:17: 3a:95:16:f1:e8:62:c6:c1:88:6b:90:cf:e6:88:fc:a5:a2:d7: 53:08:a9:c2:8b:59:ec:19:64:24:27:55:df:20:50:c7:2e:a6: dc:b8:67:2f:87:80:c3:9a:4c:bc:5b:4d:6e:ee:59:19:62:85: 4c:44:da:57:b0:08:9f:38:d2:bf:28:e0:cf:84:19:73:fa:cf: 8e:62:39:fd:07:01:ef:53:0d:00:c7:f9:fd:90:d0:85:97:3a: 2c:91:e9:93:78:ed:77:cb:a6:12:99:7a:e8:f0:5d:32:92:29: 4a:b6:4a:9c:48:76:ff:ba:f8:f3:2c:ce:b8:44:44:f8:7b:d2: e3:a5:76:8e:6a:fa:53:52:8e:1d:37:ff:b6:47:36:e9:a1:d1: 9c:44:e1:73:d7:a5:30:98:81:fc:db:10:c6:a5:77:ba:e3:c3: 51:9d:d5:0e:b4:d6:0c:7c:f2:2e:50:9e:12:fd:0e:69:1b:dd: 41:95:66:d8:e4:d3:f4:39:5d:e2:f4:77:31:88:0e:f3:bb:c3: cf:f4:d8:9e:a5:f4:fa:4d:56:cc:47:a7:d3:9a:34:52:da:9d: a4:84:e8:fc:42:0a:13:ee:77:aa:6f:36:50:59:79:b7:24:67: 1d:b8:28:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTBIuRrkuhmw4xYz/TJZjo6cHtDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RE NEE5ODRFQjAeFw0yNTExMDMwNDU2MDFaFw0yNTExMDYwOTQ3MDFaMDMxMTAvBgNV BAMTKDBDNjhDMjc2Njg0MDExQTE2MTNBRTBBM0QzRjc5RDM0NEY5Q0ZGMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDGOHoZJZw2NXMiJX80zAywleX CIuVFfTcXVcBmAh8QrnXUi84XEoV6FzgYbA5Uy/jeVAaAm0bu/OyDBl2O90x0roj KsGKbSLMuUozsh1xkxVYa7tv2w+AzxlZUV4VwoZPQXbe4DOwkQ9H59TghUtriUxl Vb4PlUgRdavKnq/oh4iH1AvI30dUqcFH2oNFczbwHcfc6ZUVvpayA+HTgQvo76wF kiXvmmlpKfEDh7HhLesLLutn374rbMm7VKbDS6knuCA7DGmte7IiFRPI5XVLmrm4 umsLKWUzlXXVWdCKeQIYPLrm3ubef0Ztj0CAN8BT8u9ojOkRd4GqeEv6cF6JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDGjCdmhAEaFhOuCj0/edNE+c/xMwHwYDVR0j BBgwFoAUWo1N7F/Cm+biSQRi9YCQPdSphOswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZWNmNWQ5NC03ZjFmLTQzYmYtYjdhYS0yMjBmMGMxNTZlYzAvMC81QThENERFQzVG QzI5QkU2RTI0OTA0NjJGNTgwOTAzREQ0QTk4NEVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RENEE5 ODRFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2VjZjVkOTQtN2YxZi00M2JmLWI3 YWEtMjIwZjBjMTU2ZWMwLzAvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkw M0RENEE5ODRFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALJ3DFMJJGbzfVWHghj7cGBSFzqVFvHoYsbB iGuQz+aI/KWi11MIqcKLWewZZCQnVd8gUMcupty4Zy+HgMOaTLxbTW7uWRlihUxE 2lewCJ840r8o4M+EGXP6z45iOf0HAe9TDQDH+f2Q0IWXOiyR6ZN47XfLphKZeujw XTKSKUq2SpxIdv+6+PMszrhERPh70uOldo5q+lNSjh03/7ZHNumh0ZxE4XPXpTCY gfzbEMald7rjw1Gd1Q601gx88i5QnhL9Dmkb3UGVZtjk0/Q5XeL0dzGIDvO7w8/0 2J6l9PpNVsxHp9OaNFLanaSE6PxCChPud6pvNlBZebckZx24KKQ= -----END CERTIFICATE-----Generated at Wed Nov 5 02:06:03 2025 by rpki-client