$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft File: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft (raw, json) Hash identifier: 6UIsUwNP2VFDL0d1lC+Mgc/eNSqxp/mtqTcB8tDIjPQ= Subject key identifier: 7E:17:26:CA:5A:8B:DA:98:00:34:C8:89:98:39:E2:E2:D5:31:04:C7 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 387A6D57EB1BDF623D5E6FAD287EF8F60753E911 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft Manifest number: 051B Signing time: Fri 24 Oct 2025 19:21:31 +0000 Manifest this update: Fri 24 Oct 2025 19:16:31 +0000 Manifest next update: Tue 28 Oct 2025 07:15:31 +0000 Files and hashes: 1: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl (hash: m23HPBVoPT94e6K0o2xYBjGOtSm6jRWJYEMl3AMQkcw=) 2: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (hash: gDwS3CZNot9PKNbXfgVaxRg3XKEAojqRRjZmWUnIieM=) 3: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (hash: bj03wSoaB1PZHhqBBV4Wr4Sjs0onXCgWYauPl2mcWtw=) 4: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (hash: +hHtMHqrRgOxnxPgQ1JDtVaqmRcnzLdlLvloLKvOcZA=) 5: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (hash: qJMxf0aJqdHPfbLPNvUiMxKhq3U6DmyX3ZCQXdLa44w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 07:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7a:6d:57:eb:1b:df:62:3d:5e:6f:ad:28:7e:f8:f6:07:53:e9:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Oct 24 19:16:31 2025 GMT Not After : Oct 28 07:15:31 2025 GMT Subject: CN=7E1726CA5A8BDA980034C8899839E2E2D53104C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d6:19:94:69:69:08:fb:da:32:83:6c:76:e8: 21:b7:da:b7:20:0f:e6:cb:2d:f1:e3:b3:9e:4a:44: ec:02:30:10:58:b2:6f:97:c6:5b:22:eb:e9:bd:5c: 38:f8:f4:2b:66:00:f3:14:f1:ec:64:4c:0d:1d:59: 84:63:7a:33:b6:18:7c:db:ec:48:7f:02:83:b1:72: c0:69:5c:5d:4c:04:22:af:57:3c:76:83:92:ad:09: de:88:5d:f3:cf:2b:6a:3e:9d:38:f9:04:85:f2:06: ac:5a:2f:41:f8:a2:fa:08:d3:c3:c2:19:56:a3:04: eb:20:4f:d2:a5:e5:7c:73:b4:ed:d1:31:a5:0b:c2: de:57:13:dd:d3:25:b6:ce:4c:3c:90:61:f4:89:53: eb:c0:6e:2d:22:cc:63:4b:6a:da:de:d9:c3:3f:de: ac:a3:49:9e:99:74:3b:b5:60:6a:f4:6d:b2:83:e8: 3e:59:a2:9b:e4:c8:ce:7e:c7:17:44:01:c5:f1:84: b4:41:57:01:0b:95:41:df:b9:39:c2:f9:ca:14:e2: 6c:f4:7e:74:11:0b:0b:65:fb:82:7f:54:11:62:0f: 39:5d:09:80:85:82:35:da:36:df:6e:4a:82:22:bb: f4:97:25:7b:5f:eb:25:fe:68:87:2f:f4:88:8b:04: 65:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:17:26:CA:5A:8B:DA:98:00:34:C8:89:98:39:E2:E2:D5:31:04:C7 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:0d:f5:f3:ba:ff:fa:ab:fe:84:90:7e:56:50:63:e5:a4:ff: 33:8a:63:b9:e7:01:ec:9d:bf:6b:a0:05:65:36:e3:a4:0f:d9: 5a:7b:05:dc:83:bd:a3:1e:4d:3f:e2:35:bd:c2:ff:ea:2d:53: 76:13:a8:f4:8a:57:a7:3e:ce:70:6f:57:12:9a:cd:80:74:15: 5d:0d:08:e6:4c:64:8a:a3:65:c4:5f:91:aa:48:d6:ad:6b:69: 0d:6f:55:fc:d7:45:09:17:87:2c:11:df:80:31:fb:e0:37:c1: 7b:47:a3:5a:55:21:bf:41:da:46:ef:31:45:ac:b3:af:74:97: 6c:45:d6:60:80:7e:ee:ae:f8:52:30:1e:3e:84:82:fb:04:8d: 7b:8c:fa:81:4d:6e:54:24:c8:35:63:b7:c3:6b:a6:52:a2:aa: 35:92:55:44:48:31:2f:ef:6c:21:b1:66:93:d0:b8:e9:32:e5: 39:58:bc:49:8f:76:e4:09:22:29:9e:6d:93:60:f9:95:7b:78: ee:1f:11:f7:50:6d:e2:6a:6f:46:4f:df:3d:69:2a:0d:5f:83: a4:92:37:d4:bc:ef:17:17:5a:51:26:9c:e8:a4:e4:35:57:fb: 59:d1:33:46:54:49:d4:21:6e:ec:b8:85:de:09:f5:6b:88:f5: bf:b6:eb:15 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOHptV+sb32I9Xm+tKH749gdT6REwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNTEwMjQxOTE2MzFaFw0yNTEwMjgwNzE1MzFaMDMxMTAvBgNV BAMTKDdFMTcyNkNBNUE4QkRBOTgwMDM0Qzg4OTk4MzlFMkUyRDUzMTA0QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo1hmUaWkI+9oyg2x26CG32rcg D+bLLfHjs55KROwCMBBYsm+Xxlsi6+m9XDj49CtmAPMU8exkTA0dWYRjejO2GHzb 7Eh/AoOxcsBpXF1MBCKvVzx2g5KtCd6IXfPPK2o+nTj5BIXyBqxaL0H4ovoI08PC GVajBOsgT9Kl5XxztO3RMaULwt5XE93TJbbOTDyQYfSJU+vAbi0izGNLatre2cM/ 3qyjSZ6ZdDu1YGr0bbKD6D5ZopvkyM5+xxdEAcXxhLRBVwELlUHfuTnC+coU4mz0 fnQRCwtl+4J/VBFiDzldCYCFgjXaNt9uSoIiu/SXJXtf6yX+aIcv9IiLBGVLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfhcmylqL2pgANMiJmDni4tUxBMcwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmEzYWU0ODUtYTY1OC00YzVjLWFi ZTItMWU3ZmQ4YjAzOGEwLzAvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0 RTcwMzEyQUQ1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABkN9fO6//qr/oSQflZQY+Wk/zOKY7nnAeyd v2ugBWU246QP2Vp7BdyDvaMeTT/iNb3C/+otU3YTqPSKV6c+znBvVxKazYB0FV0N COZMZIqjZcRfkapI1q1raQ1vVfzXRQkXhywR34Ax++A3wXtHo1pVIb9B2kbvMUWs s690l2xF1mCAfu6u+FIwHj6EgvsEjXuM+oFNblQkyDVjt8NrplKiqjWSVURIMS/v bCGxZpPQuOky5TlYvEmPduQJIimebZNg+ZV7eO4fEfdQbeJqb0ZP3z1pKg1fg6SS N9S87xcXWlEmnOik5DVX+1nRM0ZUSdQhbuy4hd4J9WuI9b+26xU= -----END CERTIFICATE-----Generated at Sun Oct 26 08:13:00 2025 by rpki-client