$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft File: 0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft (raw, json) Hash identifier: nIMd7PYVamUSTAFcwYrKSl2pRr8DDrfsSPUDGN4pJ+k= Subject key identifier: BD:75:40:7C:C7:24:4C:84:E7:AA:F2:BB:D7:DA:FF:E5:6F:1D:87:15 Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 656F441C420359628C11574A424956C66EB4D506 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft Manifest number: 0523 Signing time: Wed 12 Nov 2025 15:10:04 +0000 Manifest this update: Wed 12 Nov 2025 15:05:04 +0000 Manifest next update: Sun 16 Nov 2025 01:15:04 +0000 Files and hashes: 1: 0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl (hash: k4IGC+t+96ajPNsDTxU3gKQPMw1I9q1kjhhrPYZV/pg=) 2: 3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa (hash: TU9zvXhzWTJdHe9aJGaZ4ESWd+R9UnSTLhOnKf2ldQw=) 3: 3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa (hash: BUjAtiDKImhm44uw2SFH6kSw2t9lwdf9XIcal9kQ1mg=) 4: 3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa (hash: 3sAJshp+EPOwtrV5/4YJuemXpZyIihe64Jp+iK5G1jY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Nov 2025 01:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:6f:44:1c:42:03:59:62:8c:11:57:4a:42:49:56:c6:6e:b4:d5:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Nov 12 15:05:04 2025 GMT Not After : Nov 16 01:15:04 2025 GMT Subject: CN=BD75407CC7244C84E7AAF2BBD7DAFFE56F1D8715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:df:be:84:b3:8c:5d:5c:71:4b:27:6c:16: 63:1a:7c:4d:d8:76:0f:98:c6:ea:3f:b4:bb:97:fb: 78:5f:fe:f7:96:44:e4:84:9b:4b:03:96:83:38:56: 09:8d:f2:9b:1a:9e:71:94:11:84:35:3d:06:bb:2a: 1a:91:d6:85:05:cd:a8:6a:57:be:d0:dc:d8:75:7f: 1b:f5:f1:40:64:c7:7f:c3:a4:10:a8:58:02:97:d7: 29:83:00:89:24:08:f9:63:99:f5:4f:a0:a1:7a:08: 26:79:69:8a:33:b7:61:71:a0:d8:c5:7b:4c:53:67: 4d:fc:67:38:86:c5:72:1d:ec:11:2a:49:6a:b5:91: 71:27:d8:6c:77:30:df:21:7e:81:ec:9e:8f:fc:d6: 5d:26:c0:4b:31:73:ba:a0:5a:37:fe:aa:76:e8:c4: 62:53:86:3c:3b:58:4b:cf:21:cf:11:2b:32:cd:cb: 87:cc:10:a3:d2:52:a0:25:36:49:48:22:d9:72:7d: 44:36:86:14:32:cf:05:54:a5:16:ec:1c:10:58:f4: c9:5b:95:e0:e5:82:f8:5d:bc:32:04:f0:a2:7f:ff: 15:02:b8:91:c8:1e:51:bf:ba:56:9b:77:a2:25:2b: c5:6a:31:8b:92:71:34:da:74:ff:b9:03:ab:8c:2f: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:75:40:7C:C7:24:4C:84:E7:AA:F2:BB:D7:DA:FF:E5:6F:1D:87:15 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:89:34:43:81:1c:d4:88:b6:2d:ee:df:77:90:b9:47:42:fc: 23:b3:51:1a:ef:e7:67:f9:9a:ad:ed:bd:bc:f9:e9:a2:63:60: c9:81:67:6a:e3:41:5b:9a:84:5d:30:d7:8e:dd:15:e7:68:a6: 5b:a0:47:5e:f3:4c:0a:9a:51:71:c7:1c:50:fd:ad:43:2b:70: b3:43:89:1a:d4:77:1c:4a:3f:bc:de:f3:01:93:db:c6:c2:56: 65:8c:9a:39:26:e4:55:28:7b:d4:03:fa:ec:f1:f9:50:fd:c1: 22:ee:f8:7a:c3:17:b1:e9:08:66:4c:c0:bd:4d:aa:5c:ef:76: 14:61:aa:09:35:a1:7a:66:cc:4c:56:b8:6f:40:81:c0:26:f0: 52:6e:28:7c:3f:71:d6:3e:b9:5b:dd:78:ba:5a:6f:63:cb:cf: fd:cf:9e:e5:53:b8:2d:f6:69:b4:96:61:82:4a:17:32:82:01: 88:d4:0a:9e:e7:2c:7e:8b:c3:8d:76:33:42:4d:7d:a3:cc:90: 8f:1f:07:c4:8d:26:42:34:ca:ef:a5:b9:5f:ce:85:02:49:ea: 10:f5:84:d1:bb:ec:5d:bf:27:ae:c5:35:fd:ff:8d:ca:3b:9d: 7e:00:a1:2e:05:74:5f:25:63:ca:36:7b:e4:ce:37:0c:02:4c: bc:9d:84:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZW9EHEIDWWKMEVdKQklWxm601QYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNTExMTIxNTA1MDRaFw0yNTExMTYwMTE1MDRaMDMxMTAvBgNV BAMTKEJENzU0MDdDQzcyNDRDODRFN0FBRjJCQkQ3REFGRkU1NkYxRDg3MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHad++hLOMXVxxSydsFmMafE3Y dg+Yxuo/tLuX+3hf/veWROSEm0sDloM4VgmN8psannGUEYQ1PQa7KhqR1oUFzahq V77Q3Nh1fxv18UBkx3/DpBCoWAKX1ymDAIkkCPljmfVPoKF6CCZ5aYozt2FxoNjF e0xTZ038ZziGxXId7BEqSWq1kXEn2Gx3MN8hfoHsno/81l0mwEsxc7qgWjf+qnbo xGJThjw7WEvPIc8RKzLNy4fMEKPSUqAlNklIItlyfUQ2hhQyzwVUpRbsHBBY9Mlb leDlgvhdvDIE8KJ//xUCuJHIHlG/ulabd6IlK8VqMYuScTTadP+5A6uML2mdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvXVAfMckTITnqvK719r/5W8dhxUwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGE0YTIxYjktZjkxMi00MWYzLWI2 MmMtMTIxNzU4MWM5NDhhLzAvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgz MTQ3NDVDRDk3Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAuJNEOBHNSIti3u33eQuUdC/COzURrv52f5 mq3tvbz56aJjYMmBZ2rjQVuahF0w147dFedoplugR17zTAqaUXHHHFD9rUMrcLND iRrUdxxKP7ze8wGT28bCVmWMmjkm5FUoe9QD+uzx+VD9wSLu+HrDF7HpCGZMwL1N qlzvdhRhqgk1oXpmzExWuG9AgcAm8FJuKHw/cdY+uVvdeLpab2PLz/3PnuVTuC32 abSWYYJKFzKCAYjUCp7nLH6Lw412M0JNfaPMkI8fB8SNJkI0yu+luV/OhQJJ6hD1 hNG77F2/J67FNf3/jco7nX4AoS4FdF8lY8o2e+TONwwCTLydhNs= -----END CERTIFICATE-----Generated at Thu Nov 13 08:19:52 2025 by rpki-client