$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft File: 65E29AACDF8556B440C4D7180F51C447FFE5238F.mft (raw, json) Hash identifier: 5J/niUfb8yHK030yijH3uYasGxlRzNvoNyQ/EJoQDkY= Subject key identifier: A9:62:38:63:13:AE:D2:34:59:56:21:3A:21:3A:23:0F:76:EC:2D:EA Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 098C7851B9070CE028714373E4809960BEA879A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft Manifest number: 01D1 Signing time: Sun 02 Nov 2025 17:31:23 +0000 Manifest this update: Sun 02 Nov 2025 17:26:23 +0000 Manifest next update: Thu 06 Nov 2025 00:46:23 +0000 Files and hashes: 1: 65E29AACDF8556B440C4D7180F51C447FFE5238F.crl (hash: djT/Iq0UnE/YGOgavJqJXkWsZXu/l8ak+My+qDH3YQw=) 2: 3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa (hash: jJN+a1uyK5er9vytVlfqMqFHVNtiQSwDgGPE7xDkxVU=) 3: 3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa (hash: 7IHy7S58PrSgI+9s9OhKwDaIOEZSZJD9pKdINBx6ktw=) 4: 3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa (hash: iDhsHzDkVNr/vSSmI9ZIctObh09TpaY2vp55/txIX4E=) 5: 3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa (hash: dHvA0l4MoAsHbnDeUczCGz/tbqjQXH0AlY+9WKNokS8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 00:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8c:78:51:b9:07:0c:e0:28:71:43:73:e4:80:99:60:be:a8:79:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Nov 2 17:26:23 2025 GMT Not After : Nov 6 00:46:23 2025 GMT Subject: CN=A962386313AED2345956213A213A230F76EC2DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f5:b6:dd:b7:7b:98:9a:9d:6f:46:2e:12:dd: a5:3c:6b:9b:aa:e0:28:6e:bb:92:d7:67:4c:15:bf: 39:2f:14:2b:43:50:23:98:30:c7:6b:55:5b:e8:0a: 16:9a:eb:e5:6a:a6:35:7e:df:cb:0a:20:c4:67:57: d3:33:59:8c:36:d5:59:80:0f:33:25:66:be:42:8c: 77:9a:b0:56:9c:a6:d0:d0:47:b4:48:6b:4a:55:7f: ef:eb:67:85:68:3e:61:4f:ad:b1:f0:3b:b4:b6:5e: fd:9b:28:2c:3f:67:ce:f1:87:31:ab:1c:ee:0e:3c: 73:fb:25:fa:f1:ee:cd:6a:bc:67:99:dc:8e:df:ba: 94:68:99:39:db:d3:bc:f1:68:25:2a:56:5c:59:46: ec:80:65:d3:f2:a3:02:06:af:79:84:cc:75:e9:1a: 7b:87:13:80:6c:7e:20:39:7e:7f:b3:04:7d:65:fa: ba:c8:46:79:08:4e:3f:9f:80:56:69:a0:4a:7f:9d: 3d:d3:fc:ad:cc:3f:4d:97:77:9c:52:17:70:ed:9a: e7:66:13:8b:a7:42:a3:6f:30:86:ea:54:c9:80:f2: 1b:50:db:b9:b1:64:55:f4:14:c9:c0:7c:18:f0:df: fb:62:6c:81:2d:40:fb:d9:0f:e0:ae:4b:21:3d:ab: c0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:62:38:63:13:AE:D2:34:59:56:21:3A:21:3A:23:0F:76:EC:2D:EA X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7f:79:e2:8d:f4:81:c6:d4:76:04:ab:a2:50:19:94:bf:42: 01:62:4b:c3:aa:e4:b3:9c:5c:0b:a4:47:44:c3:82:a1:c6:fe: ca:ee:4b:c0:ef:84:46:9f:68:3c:82:c1:12:11:9b:e9:cb:69: fd:e4:d4:72:36:64:50:3b:ff:a1:79:5d:01:be:95:20:1f:87: 75:aa:f4:85:3a:20:d1:a6:98:13:6e:0c:52:5b:c4:d6:0c:11: e4:0e:f5:94:71:56:dc:f0:8c:04:bb:73:63:f1:4f:a9:ff:56: 63:89:88:28:6c:6f:02:e3:93:34:05:f9:73:a1:66:4a:24:b5: d0:68:c2:c3:5f:d6:b6:fb:e0:fa:10:df:a1:0b:1d:ec:a4:43: db:7f:0f:61:0b:b2:02:79:99:08:5d:8b:4c:e2:07:09:31:39: 74:85:11:78:b9:97:9c:ec:38:ca:b3:3a:83:3f:5b:db:b1:7e: 3c:0d:17:e4:08:c1:8f:e2:66:8b:e6:69:f8:73:f3:b6:d4:6a: b4:98:4a:dc:eb:c1:25:54:dd:a2:d0:a9:97:11:84:0f:4c:c8: 5c:a8:fa:24:4b:4f:8e:88:9d:f5:9f:3d:33:d3:11:85:0c:04: e1:35:51:55:f8:c3:3d:04:f4:8f:d6:3e:dc:58:b9:69:ea:ba: de:5b:76:2f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCYx4UbkHDOAocUNz5ICZYL6oeaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNTExMDIxNzI2MjNaFw0yNTExMDYwMDQ2MjNaMDMxMTAvBgNV BAMTKEE5NjIzODYzMTNBRUQyMzQ1OTU2MjEzQTIxM0EyMzBGNzZFQzJERUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW9bbdt3uYmp1vRi4S3aU8a5uq 4Chuu5LXZ0wVvzkvFCtDUCOYMMdrVVvoChaa6+VqpjV+38sKIMRnV9MzWYw21VmA DzMlZr5CjHeasFacptDQR7RIa0pVf+/rZ4VoPmFPrbHwO7S2Xv2bKCw/Z87xhzGr HO4OPHP7Jfrx7s1qvGeZ3I7fupRomTnb07zxaCUqVlxZRuyAZdPyowIGr3mEzHXp GnuHE4BsfiA5fn+zBH1l+rrIRnkITj+fgFZpoEp/nT3T/K3MP02Xd5xSF3Dtmudm E4unQqNvMIbqVMmA8htQ27mxZFX0FMnAfBjw3/tibIEtQPvZD+CuSyE9q8ADAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqWI4YxOu0jRZViE6ITojD3bsLeowHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDhjZTIwMDgtODRiNy00YmVmLTk0 YjktYmIzZmRiMTdiMjM4LzAvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0 NDdGRkU1MjM4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJp/eeKN9IHG1HYEq6JQGZS/QgFiS8Oq5LOc XAukR0TDgqHG/sruS8DvhEafaDyCwRIRm+nLaf3k1HI2ZFA7/6F5XQG+lSAfh3Wq 9IU6INGmmBNuDFJbxNYMEeQO9ZRxVtzwjAS7c2PxT6n/VmOJiChsbwLjkzQF+XOh ZkoktdBowsNf1rb74PoQ36ELHeykQ9t/D2ELsgJ5mQhdi0ziBwkxOXSFEXi5l5zs OMqzOoM/W9uxfjwNF+QIwY/iZovmafhz87bUarSYStzrwSVU3aLQqZcRhA9MyFyo +iRLT46InfWfPTPTEYUMBOE1UVX4wz0E9I/WPtxYuWnqut5bdi8= -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:37 2025 by rpki-client