$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: QVQrBg0Tw8tUwqxlh0aZsyTrpbUQuOVermdIFsKeTHs= Subject key identifier: 96:FA:F0:14:9C:5F:00:85:7F:65:F9:96:25:15:74:7E:6D:CB:43:0E Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 54B0367C8C4B26C6AC64832D885AA75D02571DA6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 0129 Signing time: Mon 03 Nov 2025 15:41:52 +0000 Manifest this update: Mon 03 Nov 2025 15:36:52 +0000 Manifest next update: Thu 06 Nov 2025 20:16:52 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: HfS8yjkRRBUMTvtuZonjZK41KRcMOzpMcLcOVYR81pY=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 20:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b0:36:7c:8c:4b:26:c6:ac:64:83:2d:88:5a:a7:5d:02:57:1d:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Nov 3 15:36:52 2025 GMT Not After : Nov 6 20:16:52 2025 GMT Subject: CN=96FAF0149C5F00857F65F9962515747E6DCB430E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:64:03:15:02:8c:91:bc:44:7c:24:92:2e:08: 85:eb:8e:c7:07:76:a9:3d:d6:bf:91:63:54:85:a9: 89:9b:c3:e1:d6:6f:30:de:2a:38:c2:c3:85:7e:ce: 0e:8c:fd:cc:f2:6b:65:9d:dc:50:0a:f2:97:fd:eb: 3d:9d:fa:1e:b1:7f:52:d3:ed:9d:f8:d9:42:bb:cc: 99:b7:ec:fc:06:77:af:26:1a:eb:5f:67:59:c6:6c: 94:36:dc:76:72:f4:96:50:62:6c:9a:42:62:a3:ab: e8:b0:2b:87:a3:5d:c0:40:b0:e5:62:5f:fe:3f:e0: ef:9b:82:6b:b5:3b:f5:3b:bd:c6:11:32:a7:88:6f: e4:59:ac:5e:87:85:10:d1:1a:f0:63:4e:d3:bb:33: e3:f1:83:43:86:8c:76:ea:bf:46:b6:a2:2b:35:ac: ec:e6:d9:21:e4:22:c6:c7:4f:bb:98:bf:48:2a:fd: 92:b8:db:fa:1f:6d:f1:98:9c:ed:24:39:31:67:23: 15:65:78:f9:75:11:ae:82:e6:e7:a1:cd:ab:3a:60: 76:65:a3:d6:c5:ca:9e:b3:04:2f:23:80:79:82:c7: 8a:b8:d4:9a:60:22:6d:cb:eb:cc:f7:86:88:ff:46: ec:8a:ca:94:b8:20:03:61:ec:40:db:84:7c:e1:05: 25:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FA:F0:14:9C:5F:00:85:7F:65:F9:96:25:15:74:7E:6D:CB:43:0E X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:3b:47:63:b7:39:f0:9d:c5:d8:6c:80:db:26:22:09:c4:e3: b8:69:b7:74:b2:da:2e:2a:3b:fe:d4:25:69:85:e9:5c:da:13: 07:f0:2c:32:fd:31:36:3f:3f:86:98:6e:c1:85:9e:1d:de:1c: 53:cb:54:83:ef:d9:9a:8a:11:a2:41:f2:1e:e4:df:9a:00:56: 6c:4a:54:86:e5:a2:cf:68:c9:32:37:3c:43:ad:38:30:8d:59: da:a6:c1:1d:67:7a:b5:37:00:2c:64:33:d0:23:0c:c8:91:a5: 9b:d7:f6:6d:23:b3:aa:dc:93:58:8b:25:29:e5:3f:d9:03:c0: c1:df:cb:f8:c1:2f:45:f0:aa:3a:cb:df:96:80:d8:fe:0b:6f: dc:2e:49:af:76:93:fc:8b:23:52:bc:3b:a4:d2:e3:90:8d:8f: 30:fa:ba:8e:b8:e2:4e:70:63:cf:3d:05:ed:42:00:7e:19:61: d7:84:dc:4b:99:5b:ca:e1:cb:95:26:43:a5:00:c5:f4:f6:cc: b7:89:2a:bc:9b:b2:b4:25:7f:be:c4:3e:4d:b2:99:1e:c5:07: 69:00:90:10:b1:e2:b4:22:2c:4f:99:aa:b2:1f:bb:1a:a1:17: 62:31:ee:00:19:f3:a2:74:20:49:d9:d4:4b:56:dd:52:52:68: c2:5e:a3:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVLA2fIxLJsasZIMtiFqnXQJXHaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTExMDMxNTM2NTJaFw0yNTExMDYyMDE2NTJaMDMxMTAvBgNV BAMTKDk2RkFGMDE0OUM1RjAwODU3RjY1Rjk5NjI1MTU3NDdFNkRDQjQzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEZAMVAoyRvER8JJIuCIXrjscH dqk91r+RY1SFqYmbw+HWbzDeKjjCw4V+zg6M/czya2Wd3FAK8pf96z2d+h6xf1LT 7Z342UK7zJm37PwGd68mGutfZ1nGbJQ23HZy9JZQYmyaQmKjq+iwK4ejXcBAsOVi X/4/4O+bgmu1O/U7vcYRMqeIb+RZrF6HhRDRGvBjTtO7M+Pxg0OGjHbqv0a2ois1 rOzm2SHkIsbHT7uYv0gq/ZK42/ofbfGYnO0kOTFnIxVlePl1Ea6C5uehzas6YHZl o9bFyp6zBC8jgHmCx4q41JpgIm3L68z3hoj/RuyKypS4IANh7EDbhHzhBSU3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlvrwFJxfAIV/ZfmWJRV0fm3LQw4wHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJE7R2O3OfCdxdhsgNsmIgnE47hpt3Sy2i4q O/7UJWmF6VzaEwfwLDL9MTY/P4aYbsGFnh3eHFPLVIPv2ZqKEaJB8h7k35oAVmxK VIblos9oyTI3PEOtODCNWdqmwR1nerU3ACxkM9AjDMiRpZvX9m0js6rck1iLJSnl P9kDwMHfy/jBL0XwqjrL35aA2P4Lb9wuSa92k/yLI1K8O6TS45CNjzD6uo644k5w Y889Be1CAH4ZYdeE3EuZW8rhy5UmQ6UAxfT2zLeJKrybsrQlf77EPk2ymR7FB2kA kBCx4rQiLE+ZqrIfuxqhF2Ix7gAZ86J0IEnZ1EtW3VJSaMJeo6Q= -----END CERTIFICATE-----Generated at Wed Nov 5 09:52:55 2025 by rpki-client