$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft File: 88BD1AAEA16D8A24550416CDB95E232152249B3E.mft (raw, json) Hash identifier: yWPlp6Keu83n488M8/pqmM4B95lVJ3Nf/hjDhDFcnmE= Subject key identifier: 99:5C:D2:EC:9D:FD:F4:F1:38:DF:D9:8A:34:CF:F3:FE:69:B4:FB:CA Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 17A5BB20D9444E7FF354BF192D6B3CFBB8283A70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft Manifest number: 0317 Signing time: Sun 16 Nov 2025 18:32:28 +0000 Manifest this update: Sun 16 Nov 2025 18:27:28 +0000 Manifest next update: Thu 20 Nov 2025 00:31:28 +0000 Files and hashes: 1: 3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa (hash: fYqB3hAfKrlAMalkQPBsDTPyMiJqV+nU7PcLz8QhSAc=) 2: 323430343a636534303a3a2f34382d3438203d3e20313338383834.roa (hash: 7RaKUkFBeMAENsKDT1lo2zKa045TKNeXWhBxokU48NQ=) 3: 323430343a636534303a3a2f33322d3332203d3e20313338383834.roa (hash: DcgpR3dumYc3Eoce65U1RiuqJ3FJu3j4JD+CZ1GSu4U=) 4: 88BD1AAEA16D8A24550416CDB95E232152249B3E.crl (hash: kHeJgAetghA2Sob5E2ogJRPQMWKoCLi1sfZBdll8QHQ=) 5: 323430343a636534303a313030303a3a2f33362d3336203d3e20313338383834.roa (hash: Y5QaBXK/Lu/qym2uqPJsRL5ONo2Cq+L5YI+KATzLWJk=) 6: 3130332e3133382e37302e302f32332d3233203d3e20313338383834.roa (hash: 0oC6hCIX4duxQdOJVzVwn+akSK/l98G+66CJXryC3ns=) 7: 323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa (hash: 8AOTqJ8wKe1VrrD+kHmDVYLYfYVsdRhBzkd1nXnFves=) 8: 323430343a636534303a313a3a2f34382d3438203d3e20313338383834.roa (hash: Svxu0NqHa+wHzLIVUZs9pIJtQr2JGvA1Prp0dp6pQO8=) 9: 323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa (hash: m0iy4uxEorD8+ndIDexanwH0s76m+P4rdZZH08lw8gk=) 10: 3130332e3133382e37302e302f32342d3234203d3e20313338383834.roa (hash: k0M2XXKfU9k9Nif7dWEUq5fC7OBAzB0Ygp6xrywPUqs=) 11: 323430343a636534303a3a2f33362d3336203d3e20313338383834.roa (hash: Qn8e6r99j+EuTQtrHbDbOQqJz+jY/ebvh6ZX3n1vOEk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Nov 2025 00:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a5:bb:20:d9:44:4e:7f:f3:54:bf:19:2d:6b:3c:fb:b8:28:3a:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Nov 16 18:27:28 2025 GMT Not After : Nov 20 00:31:28 2025 GMT Subject: CN=995CD2EC9DFDF4F138DFD98A34CFF3FE69B4FBCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4d:47:82:4c:35:5c:b1:6b:87:88:a2:f3:7f: e3:6f:84:fe:96:0f:7b:84:55:5b:98:47:4a:50:1c: 83:28:f8:84:c2:a5:34:e7:60:f5:92:56:33:29:c5: fb:1c:01:68:04:80:51:62:2f:e5:35:8a:21:10:62: b7:e7:d0:94:71:9c:a0:c5:90:a3:71:12:19:86:16: 1f:88:5d:6c:ba:68:d1:f0:bd:91:c3:d8:74:43:bf: a0:41:04:c5:4d:eb:1e:fa:ec:68:e0:9c:b9:9f:63: d8:5f:ff:1b:d2:9c:a1:6e:fe:53:a3:e3:89:65:1e: 82:08:39:0d:ba:a3:7c:42:db:92:fb:91:77:0c:f7: c0:76:06:ff:75:15:56:5d:74:1f:a7:8b:b9:9a:ea: 76:88:63:8d:30:cc:fe:85:7f:7b:24:94:ce:f2:12: 1a:03:27:ef:f7:2d:6f:21:04:1a:6b:3c:b6:b0:ad: d4:56:47:5f:e1:3e:cd:0e:07:66:2c:39:ff:62:26: 09:ca:a1:41:1c:de:9a:b3:70:c3:a8:b6:35:0f:8b: ca:e9:84:13:09:e5:0f:a2:6f:7d:18:55:67:87:65: c3:cc:fb:38:69:47:fd:77:3c:25:e3:49:6a:16:b5: 8d:d1:de:a6:1f:1e:74:03:31:1c:fb:ec:48:3a:af: d6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5C:D2:EC:9D:FD:F4:F1:38:DF:D9:8A:34:CF:F3:FE:69:B4:FB:CA X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:a6:7a:06:44:01:c3:44:cb:67:47:a6:e6:47:fc:5a:f9:d6: e4:78:3a:23:0e:6a:92:e1:aa:47:af:97:a9:56:df:9f:58:50: 44:0c:39:ae:78:8e:86:41:43:e2:bd:b0:ab:af:1d:86:a5:2a: 4e:44:68:5b:87:07:5d:85:03:8e:3f:d2:28:59:b6:68:1d:79: 61:aa:b3:8a:19:57:99:7b:8c:9e:4b:c3:64:77:2f:84:fc:2f: 07:95:5b:3a:f5:51:45:36:8e:81:b9:b9:39:cd:31:1e:0f:90: bd:e5:ba:83:1d:e8:2a:3d:fc:83:e9:14:52:38:ef:3f:4a:a9: 3f:97:44:a1:d2:12:91:d1:59:9a:58:81:95:ad:ff:e3:b9:45: 04:3c:dd:91:4b:1d:6e:2f:4b:99:29:47:d0:6c:da:7f:8e:08: ba:78:f5:42:40:28:f3:80:5a:e3:81:6b:9c:e6:cd:48:c4:bc: 54:59:23:6d:0b:99:f9:99:33:90:28:4a:d8:0a:98:4b:b4:c4: 1a:25:f5:b4:f2:a3:03:cb:9c:a7:ed:77:f9:c4:fe:ff:fd:3f: 22:c3:b0:d1:c5:68:e2:da:ed:af:d1:ae:f8:30:d8:32:86:58: 3e:fb:31:84:f0:84:1a:e3:44:8b:ef:07:ee:02:54:e6:89:cd: 9c:02:db:37 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF6W7INlETn/zVL8ZLWs8+7goOnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTExMTYxODI3MjhaFw0yNTExMjAwMDMxMjhaMDMxMTAvBgNV BAMTKDk5NUNEMkVDOURGREY0RjEzOERGRDk4QTM0Q0ZGM0ZFNjlCNEZCQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDTUeCTDVcsWuHiKLzf+NvhP6W D3uEVVuYR0pQHIMo+ITCpTTnYPWSVjMpxfscAWgEgFFiL+U1iiEQYrfn0JRxnKDF kKNxEhmGFh+IXWy6aNHwvZHD2HRDv6BBBMVN6x767GjgnLmfY9hf/xvSnKFu/lOj 44llHoIIOQ26o3xC25L7kXcM98B2Bv91FVZddB+ni7ma6naIY40wzP6Ff3sklM7y EhoDJ+/3LW8hBBprPLawrdRWR1/hPs0OB2YsOf9iJgnKoUEc3pqzcMOotjUPi8rp hBMJ5Q+ib30YVWeHZcPM+zhpR/13PCXjSWoWtY3R3qYfHnQDMRz77Eg6r9b1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmVzS7J399PE439mKNM/z/mm0+8owHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjIwYzZkNjktNjI5MC00MDJmLWE4 NGUtZDI4OWM2ZTkzYTczLzAvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIz MjE1MjI0OUIzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALumegZEAcNEy2dHpuZH/Fr51uR4OiMOapLh qkevl6lW359YUEQMOa54joZBQ+K9sKuvHYalKk5EaFuHB12FA44/0ihZtmgdeWGq s4oZV5l7jJ5Lw2R3L4T8LweVWzr1UUU2joG5uTnNMR4PkL3luoMd6Co9/IPpFFI4 7z9KqT+XRKHSEpHRWZpYgZWt/+O5RQQ83ZFLHW4vS5kpR9Bs2n+OCLp49UJAKPOA WuOBa5zmzUjEvFRZI20LmfmZM5AoStgKmEu0xBol9bTyowPLnKftd/nE/v/9PyLD sNHFaOLa7a/Rrvgw2DKGWD77MYTwhBrjRIvvB+4CVOaJzZwC2zc= -----END CERTIFICATE-----Generated at Mon Nov 17 19:26:13 2025 by rpki-client