$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft File: 26425B70294F98035D38788E597A4A6CEB9C9CE5.mft (raw, json) Hash identifier: NVnG+vWlgdhG8o/g+o9eNhCpa6vMVP0gm62xG4rHOek= Subject key identifier: D3:C6:57:1F:3F:93:F6:71:82:91:4D:8B:3B:F6:26:5E:19:86:AD:DD Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 67708807555B78FE383C70551ECADC8AA2BC01EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft Manifest number: 0509 Signing time: Wed 17 Sep 2025 10:10:01 +0000 Manifest this update: Wed 17 Sep 2025 10:05:01 +0000 Manifest next update: Sat 20 Sep 2025 20:55:01 +0000 Files and hashes: 1: 35382e3134352e3137352e302f32342d3234203d3e203436303534.roa (hash: sSjIG0LDeS5saZQ8C2CVyK81s+5ejD72CH0is00YDY4=) 2: 35382e3134352e3137322e302f32342d3234203d3e203436303534.roa (hash: GllxH/PgbP6S2bfFvEpAEeVFKqOz04XhxUteJc/lpd0=) 3: 35382e3134352e3137312e302f32342d3234203d3e203436303534.roa (hash: pPJorPhtoURcHfFuZaHPY1347QHf/vc9r8CP1wzserg=) 4: 35382e3134352e3136382e302f32342d3234203d3e203436303534.roa (hash: N6AEmETFQ4NGMx3FYjWNV2pifT99NOMKn0cAzmtwEPs=) 5: 35382e3134352e3137332e302f32342d3234203d3e203436303534.roa (hash: OH7ZCJTwnLCxXMNsgmtlP1c6T2EBORCMxpBSErbjzUQ=) 6: 35382e3134352e3136392e302f32342d3234203d3e203436303534.roa (hash: FphOhbOvD7rhQc2k+v+l+2rQkAehuLUzPlPUYQrzCzw=) 7: 35382e3134352e3136382e302f32312d3231203d3e203436303534.roa (hash: Lu9azehLR4chvFlJHbgACl9g/2sKz1G6TYe/wHO70OY=) 8: 35382e3134352e3137302e302f32342d3234203d3e203436303534.roa (hash: Hb5P0TDeMBn1cOFH2oq3loUzifYWvfep94RtX5Q9BTY=) 9: 26425B70294F98035D38788E597A4A6CEB9C9CE5.crl (hash: mYuKgfwJYf8TZGH07BkAiDXDx+DvdX5dBxsbP01hZAs=) 10: 35382e3134352e3137342e302f32342d3234203d3e203436303534.roa (hash: JNMmXBJmRLeZ0v7hbRMvuNCKgvK7sZzrdM1QwWkvKok=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Sep 2025 20:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:70:88:07:55:5b:78:fe:38:3c:70:55:1e:ca:dc:8a:a2:bc:01:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: Sep 17 10:05:01 2025 GMT Not After : Sep 20 20:55:01 2025 GMT Subject: CN=D3C6571F3F93F67182914D8B3BF6265E1986ADDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:61:6a:35:d6:3e:85:29:1a:9a:c8:75:24: b0:3c:e4:fb:17:e4:fe:8e:aa:86:13:a2:0d:37:1f: e5:b8:cb:ec:f9:f7:ab:78:79:32:9f:3c:d7:cb:53: 25:ea:2d:af:d2:09:89:90:0d:39:ea:93:41:75:91: 18:79:bf:ac:b5:c7:5c:29:c4:a0:ad:20:e6:ea:d0: b5:33:3b:4c:86:4d:79:5e:b6:5e:8f:67:99:0b:f2: 7c:43:51:e7:81:25:d7:7e:b4:4a:77:13:7f:dc:98: 57:60:17:3a:b1:99:a6:2d:fe:6b:e1:3f:cd:42:96: 28:47:aa:83:87:52:0a:b7:65:a6:da:8f:a3:a3:54: 18:9b:35:04:44:e0:dd:e0:1f:51:95:20:7c:56:91: c3:60:82:a4:2b:a5:db:bd:d1:c7:9f:86:74:26:03: 19:d2:2c:5a:e1:1e:70:91:d9:25:c2:8c:e7:72:26: bd:ac:4a:8e:a2:4f:83:66:18:f7:b5:3a:43:f8:38: 06:8b:ff:2f:98:71:80:6d:af:16:ac:2c:05:c7:5e: 70:3c:5e:8a:e1:b9:84:df:5e:10:4c:ff:47:3c:ad: 04:93:a4:44:20:4e:71:5b:e5:be:4a:89:45:a9:48: 67:a7:58:12:c3:3d:7e:1f:ec:d2:cc:29:e5:b7:14: 74:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C6:57:1F:3F:93:F6:71:82:91:4D:8B:3B:F6:26:5E:19:86:AD:DD X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:97:a9:a3:11:32:2b:ab:38:58:4d:d6:a0:e7:82:fc:15:69: 3b:ee:9b:3e:62:7d:6f:b4:eb:fe:76:31:a9:6a:c9:b0:0a:ce: b6:43:50:cb:0e:3d:de:f0:fb:0f:b5:82:e3:e4:07:5c:9a:1e: 59:45:74:9e:f1:8d:e0:08:87:e9:3c:7e:30:57:a3:f1:ea:88: f8:94:e5:0f:14:d3:f7:45:95:3f:2f:39:55:3b:68:3d:85:f7: bd:8c:8d:7a:7d:97:cb:27:30:64:57:38:5e:18:4d:fb:99:11: 32:96:36:65:14:05:b7:71:ea:0f:f4:4b:c4:ab:cb:2a:c0:eb: 09:d2:0a:4a:b2:da:3f:c5:63:17:d9:09:04:21:5a:ae:19:a8: 25:48:66:81:cf:a6:01:e1:6a:59:ce:b5:33:fb:1b:24:7a:f3: 41:59:60:4e:27:3b:21:c8:12:ae:77:fe:70:fb:4e:c1:fb:3f: b5:b6:34:b8:74:e7:ac:67:2f:78:53:81:ce:67:68:98:6e:39: e5:1a:14:b8:e1:38:d3:0a:cc:ba:0f:4f:df:ec:9c:6b:e6:f4: 79:fc:45:aa:28:e0:00:b1:51:b9:53:7c:f3:00:ea:7c:42:8b: ce:b7:f9:20:75:bb:c5:bc:57:16:c0:3b:82:9e:91:73:b0:5f: 6b:5b:7f:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ3CIB1VbeP44PHBVHsrciqK8AeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yNTA5MTcxMDA1MDFaFw0yNTA5MjAyMDU1MDFaMDMxMTAvBgNV BAMTKEQzQzY1NzFGM0Y5M0Y2NzE4MjkxNEQ4QjNCRjYyNjVFMTk4NkFEREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBkWFqNdY+hSkamsh1JLA85PsX 5P6OqoYTog03H+W4y+z596t4eTKfPNfLUyXqLa/SCYmQDTnqk0F1kRh5v6y1x1wp xKCtIObq0LUzO0yGTXletl6PZ5kL8nxDUeeBJdd+tEp3E3/cmFdgFzqxmaYt/mvh P81ClihHqoOHUgq3Zabaj6OjVBibNQRE4N3gH1GVIHxWkcNggqQrpdu90cefhnQm AxnSLFrhHnCR2SXCjOdyJr2sSo6iT4NmGPe1OkP4OAaL/y+YcYBtrxasLAXHXnA8 XorhuYTfXhBM/0c8rQSTpEQgTnFb5b5KiUWpSGenWBLDPX4f7NLMKeW3FHQ3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU08ZXHz+T9nGCkU2LO/YmXhmGrd0wHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NmMzA5MzYtYzc1MC00MzNiLTlj MmEtOGZmNWYzOGU2M2Q0LzAvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRB NkNFQjlDOUNFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAuXqaMRMiurOFhN1qDngvwVaTvumz5ifW+0 6/52MalqybAKzrZDUMsOPd7w+w+1guPkB1yaHllFdJ7xjeAIh+k8fjBXo/HqiPiU 5Q8U0/dFlT8vOVU7aD2F972MjXp9l8snMGRXOF4YTfuZETKWNmUUBbdx6g/0S8Sr yyrA6wnSCkqy2j/FYxfZCQQhWq4ZqCVIZoHPpgHhalnOtTP7GyR680FZYE4nOyHI Eq53/nD7TsH7P7W2NLh056xnL3hTgc5naJhuOeUaFLjhONMKzLoPT9/snGvm9Hn8 Raoo4ACxUblTfPMA6nxCi863+SB1u8W8VxbAO4KekXOwX2tbf9s= -----END CERTIFICATE-----Generated at Wed Sep 17 23:53:49 2025 by rpki-client