$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: IBZJYGx5e56zayn3dDib9BTdMFv2th10UvD6aiTy8fk= Subject key identifier: 5E:EA:F4:79:11:5D:88:3C:A4:13:E6:70:BF:CD:08:FC:C3:40:66:2B Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 485D306D4F3F79861C8FBC547BBB88210369FF86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 0502 Signing time: Sun 07 Sep 2025 06:40:58 +0000 Manifest this update: Sun 07 Sep 2025 06:35:58 +0000 Manifest next update: Wed 10 Sep 2025 07:42:58 +0000 Files and hashes: 1: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: lkXuNQmP8Qms/YTBNjkg5nEMI2S9Zf5oA+Q0tBtnsH0=) 2: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: dHAXVvHNWN3lX3SmokQ/UCj86xJ8/z2lq2nv43vYPc0=) 3: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: vyo5RypkFQEnVHU24LrFw7oPwATfGzPKn/kBk5If2Fc=) 4: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: wHpTffZ2nuWlAhlZXWgWT5vAarjhnzHKQ1BNdqdBZLA=) 5: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: jGoXC4NtMGtzcx+R9/Q81p54SI3SY8CoW+n8Kb2SzRU=) 6: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 0DSPPC3eIjICQ1QgbLgmjGB64GhEc/FiJxgxZMMi2rw=) 7: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: i8E531bAACF/do6q7C690HP7ycKInzio0QMeynldjVQ=) 8: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: YHgchxUowX4afg18dRitbsm1i2Jr1bcDLdOROkNe9ds=) 9: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: tAs35Xh9PvYdZJSIW4FLCQe0rvv+Ua53CMSGfgCNFT4=) 10: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: LSvRzZKZqA3NwdEC9iho4W4LPDyE6x1z3v9TKwhHRg0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:5d:30:6d:4f:3f:79:86:1c:8f:bc:54:7b:bb:88:21:03:69:ff:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Sep 7 06:35:58 2025 GMT Not After : Sep 10 07:42:58 2025 GMT Subject: CN=5EEAF479115D883CA413E670BFCD08FCC340662B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7d:12:16:8c:66:3e:c0:c3:c8:31:90:80:7d: d6:d3:6c:c5:e2:52:a3:bf:d1:c9:27:52:cb:ce:1d: dc:5d:35:bb:50:81:c2:4d:db:dc:4a:51:8f:ce:d6: 13:b1:35:eb:20:8a:7b:a9:d3:3e:ba:ee:d7:ac:ae: 54:ec:fe:e5:77:d0:d8:4e:c6:cb:09:fc:7b:84:81: 0e:2d:16:87:e7:1d:c8:6d:49:ba:cc:6c:4f:45:7f: a4:97:ed:24:3f:53:35:0f:2a:92:27:5a:e2:a3:53: c7:ad:ef:7b:73:af:c0:04:d8:ec:11:f7:5d:fe:d6: 17:86:ec:e2:7d:c6:0e:d1:90:cb:05:d2:ba:a4:2d: 79:34:9e:39:e4:16:4b:30:1b:94:0d:d6:b8:46:c7: 3a:3f:57:b3:be:a3:25:ca:39:33:1b:db:c0:09:15: 96:48:c4:57:3c:dd:93:8c:d7:af:96:38:28:37:df: 9f:2d:de:9b:be:08:ba:28:75:cc:16:cb:61:e6:5a: 7b:51:95:9f:73:e6:5b:ff:10:b0:f9:83:9b:84:d7: c6:27:2d:16:03:72:a3:0a:bf:d4:4b:66:16:d9:38: 94:33:f8:66:12:55:c0:01:6f:59:b5:c9:ae:12:c4: f2:58:1d:06:cb:f6:97:f6:83:4a:0a:39:96:e0:c4: 29:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EA:F4:79:11:5D:88:3C:A4:13:E6:70:BF:CD:08:FC:C3:40:66:2B X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:02:4a:51:d7:1f:14:93:c3:1c:27:e2:ff:9e:51:8e:ac:7a: 44:5e:25:0a:5d:48:a3:7a:57:68:8c:97:23:17:c1:3b:a8:a7: 90:58:1f:45:11:09:fa:fc:b8:95:1e:ae:01:b7:5b:c2:92:6d: 63:56:8b:a1:0d:ed:f1:fc:01:72:f7:a4:fb:4e:ad:ed:ed:17: ee:05:fb:31:de:64:21:1e:25:0d:3f:3b:8e:8d:8a:41:0d:d2: c4:0b:98:58:d2:c0:d9:08:f7:e5:2f:80:69:77:71:70:eb:d5: 18:e5:5b:19:c5:3f:34:20:f6:30:09:d0:ee:f2:44:ea:37:a7: e8:9a:1f:f9:20:d2:ce:f4:ee:2f:da:50:1c:a3:10:1d:a3:f6: 65:5f:d9:8a:16:b4:35:c7:47:3d:9c:65:0d:52:d5:70:90:4a: 94:f3:6d:08:2f:cb:73:25:cb:f4:0a:17:8b:40:7a:4e:b2:26: 0f:bd:64:e8:d1:d8:94:c8:b8:d9:65:fc:3a:99:34:63:2f:58: db:d1:eb:98:a4:42:f3:05:c4:ae:be:67:46:de:37:3a:e2:17: c0:51:57:00:75:53:b3:45:25:55:73:21:3a:6f:1c:1c:e0:2e: 0e:2e:3f:e8:4a:8c:41:53:00:c0:7e:5a:8d:1a:54:c2:05:32: c9:b3:2a:9f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSF0wbU8/eYYcj7xUe7uIIQNp/4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTA5MDcwNjM1NThaFw0yNTA5MTAwNzQyNThaMDMxMTAvBgNV BAMTKDVFRUFGNDc5MTE1RDg4M0NBNDEzRTY3MEJGQ0QwOEZDQzM0MDY2MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5fRIWjGY+wMPIMZCAfdbTbMXi UqO/0cknUsvOHdxdNbtQgcJN29xKUY/O1hOxNesginup0z667tesrlTs/uV30NhO xssJ/HuEgQ4tFofnHchtSbrMbE9Ff6SX7SQ/UzUPKpInWuKjU8et73tzr8AE2OwR 913+1heG7OJ9xg7RkMsF0rqkLXk0njnkFkswG5QN1rhGxzo/V7O+oyXKOTMb28AJ FZZIxFc83ZOM16+WOCg3358t3pu+CLoodcwWy2HmWntRlZ9z5lv/ELD5g5uE18Yn LRYDcqMKv9RLZhbZOJQz+GYSVcABb1m1ya4SxPJYHQbL9pf2g0oKOZbgxCmFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXur0eRFdiDykE+Zwv80I/MNAZiswHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGsCSlHXHxSTwxwn4v+eUY6sekReJQpdSKN6 V2iMlyMXwTuop5BYH0URCfr8uJUergG3W8KSbWNWi6EN7fH8AXL3pPtOre3tF+4F +zHeZCEeJQ0/O46NikEN0sQLmFjSwNkI9+UvgGl3cXDr1RjlWxnFPzQg9jAJ0O7y ROo3p+iaH/kg0s707i/aUByjEB2j9mVf2YoWtDXHRz2cZQ1S1XCQSpTzbQgvy3Ml y/QKF4tAek6yJg+9ZOjR2JTIuNll/DqZNGMvWNvR65ikQvMFxK6+Z0beNzriF8BR VwB1U7NFJVVzITpvHBzgLg4uP+hKjEFTAMB+Wo0aVMIFMsmzKp8= -----END CERTIFICATE-----Generated at Sun Sep 7 13:59:14 2025 by rpki-client