$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft File: BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft (raw, json) Hash identifier: 3hJ0FRogSqverjGTQc19KwqUsZaWfE2T8VkfBPmi520= Subject key identifier: E4:C7:2A:6B:C2:BB:0D:04:3A:24:49:35:A3:1C:AD:D3:81:9C:4D:A8 Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 42651D5A7E517DD2758C2288B222DD3A0FAA27AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft Manifest number: 052C Signing time: Sun 02 Nov 2025 17:02:26 +0000 Manifest this update: Sun 02 Nov 2025 16:57:26 +0000 Manifest next update: Thu 06 Nov 2025 04:13:26 +0000 Files and hashes: 1: 3130332e32312e38342e302f32322d3234203d3e203435373836.roa (hash: TQgzpMcLfaNgOb2UQ22DmepvwTBX2ZphizKn7sBXlfU=) 2: 3230322e36312e3130302e302f32332d3234203d3e203435373836.roa (hash: a8mTP5wqsK0/6i33hi9F2fx0vcrLrr8F0sXVOsBm+uM=) 3: BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl (hash: +rYvM6VE9gKmtPUnsPPjK4Pmh+2TY8/ODReUbW0cIsM=) 4: 3131312e36372e37362e302f32342d3234203d3e203536323333.roa (hash: q6kGIkTw1IEwFZ8E1rrhCKF72eKLzmU0iFvN+CMeGms=) 5: 3131312e36372e36342e302f31392d3234203d3e203435373836.roa (hash: WtJvSkSMcWIFCYDWJoeYFOWIHYYIU2e63ZAjyF2Lb8o=) 6: 3131312e36372e38302e302f32332d3234203d3e203535363931.roa (hash: 6r7ytzVqOZCu9ltnazdoDFZyu1sN5kdyWtk6OiFCZME=) 7: 3138322e35302e3234302e302f32302d3234203d3e203435373836.roa (hash: duzHqAm6QedJQSgIxWwqnRHJ98BpWQZp6Vy/UDaP+2w=) 8: 3131312e36372e38362e302f32332d3234203d3e203234353337.roa (hash: tDz28BGDnFd3MGcS96yd4J0BbOjvcShV8THChhLQTrA=) 9: 323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa (hash: /ZSyzzH4osQQo8OEYTUKDqHS0TOIh680hRVxT7riSK4=) 10: 3131312e36372e37332e302f32342d3234203d3e203536323333.roa (hash: LN/QrtLQN7eBHDeVxv+de8QzLZrhiGE5e9eCTFW2W9s=) 11: 34352e36342e3130302e302f32322d3234203d3e203435373836.roa (hash: sLI9kyH4UUKtJ48DuSDvIEt/kI9PlelTvUCSLOep6GI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 04:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:65:1d:5a:7e:51:7d:d2:75:8c:22:88:b2:22:dd:3a:0f:aa:27:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Nov 2 16:57:26 2025 GMT Not After : Nov 6 04:13:26 2025 GMT Subject: CN=E4C72A6BC2BB0D043A244935A31CADD3819C4DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:34:14:e1:31:5e:14:2e:73:70:f4:5a:5a:f1: 50:97:e3:b6:1d:17:fc:09:09:2f:1e:9a:33:b4:68: 32:29:b5:03:74:40:56:28:1b:e9:ca:9f:ff:a7:5d: 67:a3:07:51:09:3c:99:c5:bf:27:41:eb:bb:cb:8d: 20:81:a5:19:7a:54:9f:25:e4:e0:89:5f:f4:b2:8b: 21:66:c8:41:86:ee:49:6d:68:da:e7:4f:04:70:b4: 46:c0:98:0f:5a:29:cd:23:50:54:d3:e6:11:3d:16: 84:b1:35:49:bc:a1:fe:ad:e0:41:c2:4c:7b:9f:61: fa:d1:8b:ed:41:61:07:49:49:09:ab:42:72:f5:5c: 7a:d5:1b:19:1e:9b:02:e7:9b:04:2e:87:42:ec:23: 41:ac:ee:4b:7e:49:a0:4f:e5:7b:ba:e2:7d:b9:88: 12:37:24:e6:69:73:ef:cc:96:fb:bf:fd:c4:fb:25: fa:a0:9c:b5:da:2e:dc:c3:29:91:79:8e:ed:01:0c: e2:7c:e3:8a:a8:c4:d9:a3:59:c5:86:5e:f3:2c:2a: 48:b7:48:6a:a8:30:2d:10:a0:79:0c:ef:52:0a:13: 4a:2e:81:ba:dd:71:b0:59:83:36:f5:47:50:b6:5d: ee:a3:9c:4f:b9:98:c6:05:3f:49:20:85:56:25:f8: 3a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C7:2A:6B:C2:BB:0D:04:3A:24:49:35:A3:1C:AD:D3:81:9C:4D:A8 X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:99:90:aa:15:67:99:c3:28:d0:2f:cf:4b:de:2d:2e:63:32: 27:58:da:71:64:1e:c9:5a:26:13:b5:6f:19:2d:1f:c0:04:08: 8a:d0:fa:41:41:b4:ce:ff:77:cc:6b:9b:62:0f:1e:4a:77:06: 2d:27:20:03:78:46:f9:38:ab:a7:db:98:9b:c2:67:69:3b:6c: d0:78:78:3c:d7:43:07:e3:a6:07:2a:50:83:a5:5e:df:27:84: 2f:0a:94:01:98:56:25:3d:73:bd:09:03:b9:16:b5:28:f6:e6: 8c:02:84:6e:32:b3:ad:36:73:e9:fa:f3:39:99:a0:9e:af:a2: eb:86:7f:30:be:ba:29:63:12:28:a5:bb:0a:87:0e:c6:76:6e: b9:2b:57:35:fa:4b:2a:f8:15:99:48:d7:98:64:1f:df:53:aa: da:29:09:1b:25:1d:68:87:c4:c7:ba:6d:27:4c:eb:de:4f:c6: ad:89:a2:bd:c0:53:59:7e:2b:f9:e9:23:72:cd:43:12:fe:57: a8:a4:95:b9:c5:db:ca:40:20:2f:54:e1:7d:d2:d3:bf:21:06: 93:cf:51:a8:f9:5f:c4:f5:d4:bf:31:0d:14:a6:cb:80:1c:71: da:b4:89:2a:f8:ec:b6:37:54:c7:16:0a:ca:5a:2e:c1:db:b9: 34:31:77:64 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQmUdWn5RfdJ1jCKIsiLdOg+qJ64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yNTExMDIxNjU3MjZaFw0yNTExMDYwNDEzMjZaMDMxMTAvBgNV BAMTKEU0QzcyQTZCQzJCQjBEMDQzQTI0NDkzNUEzMUNBREQzODE5QzREQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuNBThMV4ULnNw9Fpa8VCX47Yd F/wJCS8emjO0aDIptQN0QFYoG+nKn/+nXWejB1EJPJnFvydB67vLjSCBpRl6VJ8l 5OCJX/SyiyFmyEGG7kltaNrnTwRwtEbAmA9aKc0jUFTT5hE9FoSxNUm8of6t4EHC THufYfrRi+1BYQdJSQmrQnL1XHrVGxkemwLnmwQuh0LsI0Gs7kt+SaBP5Xu64n25 iBI3JOZpc+/Mlvu//cT7JfqgnLXaLtzDKZF5ju0BDOJ844qoxNmjWcWGXvMsKki3 SGqoMC0QoHkM71IKE0ougbrdcbBZgzb1R1C2Xe6jnE+5mMYFP0kghVYl+DprAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5Mcqa8K7DQQ6JEk1oxyt04GcTagwHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwZGE0NDctYTEzOC00NjI1LWE0 MjAtYTcxMWFjMjQzNTE5LzAvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNG OTJBRkU4QUEyQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA+ZkKoVZ5nDKNAvz0veLS5jMidY2nFkHsla JhO1bxktH8AECIrQ+kFBtM7/d8xrm2IPHkp3Bi0nIAN4Rvk4q6fbmJvCZ2k7bNB4 eDzXQwfjpgcqUIOlXt8nhC8KlAGYViU9c70JA7kWtSj25owChG4ys602c+n68zmZ oJ6vouuGfzC+uiljEiiluwqHDsZ2brkrVzX6Syr4FZlI15hkH99TqtopCRslHWiH xMe6bSdM695Pxq2Jor3AU1l+K/npI3LNQxL+V6iklbnF28pAIC9U4X3S078hBpPP Uaj5X8T11L8xDRSmy4Accdq0iSr47LY3VMcWCspaLsHbuTQxd2Q= -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:32 2025 by rpki-client