$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft (raw, json) Hash identifier: UQXrpi/WxQe7VE1M5JPrc3+7xjmPLoCEe52M9QmlexI= Subject key identifier: 09:21:DA:C3:F2:A8:E3:08:88:55:AD:2B:AF:70:94:42:87:C2:35:3D Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 702056FDE22C28F78055C0E8609CA85271871390 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft Manifest number: 051F Signing time: Mon 03 Nov 2025 04:21:17 +0000 Manifest this update: Mon 03 Nov 2025 04:16:17 +0000 Manifest next update: Thu 06 Nov 2025 07:26:17 +0000 Files and hashes: 1: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl (hash: VkeuKxqlUGpnAhJJqnf9tOGV9O9TesowWP5a9uL+0GY=) 2: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (hash: NswJoPlTbkW1QbykJdu3UOhV7IqDYlomNhuRwW/poHY=) 3: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (hash: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8=) 4: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (hash: GyTvAyiqDcz4HqvEtyjLwFP+vqa6W3Rz6dNaGJkDvBQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 07:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:20:56:fd:e2:2c:28:f7:80:55:c0:e8:60:9c:a8:52:71:87:13:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Nov 3 04:16:17 2025 GMT Not After : Nov 6 07:26:17 2025 GMT Subject: CN=0921DAC3F2A8E3088855AD2BAF70944287C2353D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:91:72:15:aa:e4:8f:dd:01:8f:9c:3c:31:a9: 75:c1:ec:37:fa:50:96:f9:a1:ff:b6:8c:19:07:21: 47:6b:4d:d2:27:59:2b:6a:e3:21:56:0c:47:37:bf: 69:21:4b:5c:b2:13:8e:c0:ca:e1:42:f0:ac:4b:5a: 64:78:92:62:77:0c:9e:b8:93:d6:3c:82:22:87:6b: 9e:bc:e1:89:81:0b:4a:df:50:91:3b:94:3d:55:25: 81:87:c4:b8:04:a9:84:9a:a5:b8:e5:80:a5:3b:91: 45:c0:1f:5d:8b:51:8c:95:fc:99:5e:a7:a2:30:0e: 08:a6:d5:fc:30:6f:50:14:6c:8d:1f:89:11:c4:94: c4:85:6d:8b:1d:c7:01:d7:09:3e:7e:ba:af:05:9b: f7:cd:55:05:45:5f:29:b2:fe:e7:9f:c4:be:4f:e9: 08:86:8b:e3:02:21:c8:94:94:d8:36:a3:7c:ad:97: 15:94:03:8b:a1:b5:82:7e:92:9f:aa:4a:c7:4c:1e: db:35:80:65:df:bb:4f:e9:2d:9b:37:e7:ff:18:ce: d3:46:5a:60:04:fb:fa:b8:3e:fe:39:48:1a:fe:61: 53:1d:17:53:ed:31:f5:08:00:e0:07:3b:7a:20:92: 6c:58:5c:ad:52:98:cd:17:9e:43:d1:41:ad:60:72: b8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:21:DA:C3:F2:A8:E3:08:88:55:AD:2B:AF:70:94:42:87:C2:35:3D X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:c9:c0:7f:c6:11:11:63:f8:cb:09:c2:c4:89:cc:70:03:fc: 3e:b5:5d:e0:70:4d:a6:f7:88:1f:06:73:7b:51:b7:59:11:6a: 83:32:9a:67:85:df:36:7d:b5:8c:52:f1:96:ec:bb:c6:51:0e: ae:2a:2a:c8:d4:0f:ea:14:ea:d0:2a:9f:97:63:8f:27:27:69: 5b:ef:b9:f9:f9:bb:43:4b:b4:ca:69:5b:36:f4:9b:d2:97:cd: 17:98:29:00:e1:44:e7:09:f0:fd:a6:59:a6:12:dd:e9:36:bc: a3:a2:a5:2d:a6:f1:0a:04:14:5d:40:b7:96:21:48:79:54:d0: 87:cf:af:4c:b0:4e:66:25:ee:b2:95:07:86:aa:b9:cb:a6:71: cf:e4:25:ae:8f:5f:c2:34:a7:ad:c6:93:5c:4d:21:e5:fa:97: 08:c0:14:09:dc:a1:2d:b9:0b:6e:2c:05:2e:9e:aa:88:76:b4: e1:a1:ca:d2:af:a9:0c:52:82:ca:c7:33:7c:b9:c6:9e:54:f2: d2:f1:6e:2b:1f:78:f0:e4:1f:7c:c5:af:fb:29:ad:2d:d7:21: e2:62:8d:7a:e3:5c:47:c3:4c:e2:10:5b:88:0b:5b:c4:25:54: 54:42:c8:00:2e:e9:d0:7d:5e:79:95:df:b1:b2:56:27:68:03: 9c:3f:39:2e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcCBW/eIsKPeAVcDoYJyoUnGHE5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNTExMDMwNDE2MTdaFw0yNTExMDYwNzI2MTdaMDMxMTAvBgNV BAMTKDA5MjFEQUMzRjJBOEUzMDg4ODU1QUQyQkFGNzA5NDQyODdDMjM1M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDikXIVquSP3QGPnDwxqXXB7Df6 UJb5of+2jBkHIUdrTdInWStq4yFWDEc3v2khS1yyE47AyuFC8KxLWmR4kmJ3DJ64 k9Y8giKHa5684YmBC0rfUJE7lD1VJYGHxLgEqYSapbjlgKU7kUXAH12LUYyV/Jle p6IwDgim1fwwb1AUbI0fiRHElMSFbYsdxwHXCT5+uq8Fm/fNVQVFXymy/uefxL5P 6QiGi+MCIciUlNg2o3ytlxWUA4uhtYJ+kp+qSsdMHts1gGXfu0/pLZs35/8YztNG WmAE+/q4Pv45SBr+YVMdF1PtMfUIAOAHO3ogkmxYXK1SmM0XnkPRQa1gcrgFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCSHaw/Ko4wiIVa0rr3CUQofCNT0wHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNiOGFlOTctNjgxOC00OGE5LWFi ZTQtZWRiOTYwNDlmM2M4LzAvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVC RENCNUFEQkQyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACDJwH/GERFj+MsJwsSJzHAD/D61XeBwTab3 iB8Gc3tRt1kRaoMymmeF3zZ9tYxS8Zbsu8ZRDq4qKsjUD+oU6tAqn5djjycnaVvv ufn5u0NLtMppWzb0m9KXzReYKQDhROcJ8P2mWaYS3ek2vKOipS2m8QoEFF1At5Yh SHlU0IfPr0ywTmYl7rKVB4aqucumcc/kJa6PX8I0p63Gk1xNIeX6lwjAFAncoS25 C24sBS6eqoh2tOGhytKvqQxSgsrHM3y5xp5U8tLxbisfePDkH3zFr/sprS3XIeJi jXrjXEfDTOIQW4gLW8QlVFRCyAAu6dB9XnmV37GyVidoA5w/OS4= -----END CERTIFICATE-----Generated at Wed Nov 5 03:02:31 2025 by rpki-client