$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: ULRkPnvqVRfyJKjeDlwMzlpegIdl30WFngqNr4ycRJs= Subject key identifier: EC:23:FC:70:F4:80:B7:6A:7A:41:27:1A:94:A6:8A:21:F5:EE:D2:AD Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 1DB0D70CD2297632025217EF90DA0D6CA6622E98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02FE Signing time: Sun 02 Nov 2025 03:50:52 +0000 Manifest this update: Sun 02 Nov 2025 03:45:52 +0000 Manifest next update: Wed 05 Nov 2025 10:29:52 +0000 Files and hashes: 1: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: +k/Y14eJe9jaVGohIcJyg0OllST/0jnjUFUA/xrrxqo=) 2: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 3: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 4: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 10:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b0:d7:0c:d2:29:76:32:02:52:17:ef:90:da:0d:6c:a6:62:2e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Nov 2 03:45:52 2025 GMT Not After : Nov 5 10:29:52 2025 GMT Subject: CN=EC23FC70F480B76A7A41271A94A68A21F5EED2AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9a:b3:c5:1d:3b:5d:3c:fe:1a:6c:91:78:54: e5:af:8a:f1:f6:6e:5a:b2:52:94:51:fd:68:a3:46: 2d:0d:e6:c5:6d:a6:59:de:cb:b8:59:6a:2d:c7:0c: b9:c1:5d:c9:d2:6e:f0:6a:21:f9:a5:02:03:cd:92: 60:5f:c8:76:f9:1d:aa:6a:02:80:f4:91:ae:e7:a2: 02:d3:f9:d1:d9:e1:5b:ce:71:51:ad:56:e5:a6:9a: 70:84:f6:ef:56:0d:a7:b7:a3:b8:79:86:b6:08:28: 8c:f0:0d:26:55:2b:b5:6a:ae:c8:60:23:7b:c4:07: 7f:84:ba:7b:ae:59:dc:64:85:f2:ed:ec:99:6d:a6: 8b:90:be:18:76:7c:7f:b8:f4:e6:8f:f6:a3:31:c6: 70:89:a9:d8:ee:a6:11:9b:ac:2c:84:ce:61:a1:b4: 0c:66:e8:65:91:e0:64:d6:e4:b2:31:01:a7:94:1e: 7a:3b:7e:36:86:72:24:b2:62:4a:74:a5:a5:f0:21: bf:38:8c:2a:c0:74:fa:a4:b1:7d:56:75:ac:6a:e1: ae:9e:84:1c:f3:e3:e4:5e:af:3f:91:4b:b3:dd:7b: 94:c9:53:19:57:92:b9:67:38:a9:4f:63:95:34:9e: 32:bd:59:2a:4c:47:9e:68:51:72:af:ef:10:3c:c1: 1e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:23:FC:70:F4:80:B7:6A:7A:41:27:1A:94:A6:8A:21:F5:EE:D2:AD X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:7e:23:d2:9e:50:db:19:eb:bd:71:ad:77:7b:1c:a3:15:3b: 58:30:8c:3a:8e:1b:a2:23:65:77:4f:de:ad:bd:7e:48:d6:2a: 5a:31:49:62:51:c8:e5:68:3a:92:57:28:42:ed:73:9e:65:db: b5:1d:dd:db:24:36:34:1f:ff:6b:d7:9e:f7:87:51:cd:7f:83: 4d:4b:59:99:f7:00:c3:62:93:f4:1f:e8:9b:02:94:4b:08:bc: a4:87:d0:f4:29:5f:a1:e7:5a:2b:9c:95:d3:a4:b4:61:60:05: d8:1d:d9:c8:ae:ea:e9:ec:83:7a:35:6a:0e:f7:52:03:98:ff: 8b:eb:f7:31:4a:c3:2f:69:14:b6:da:1d:7f:22:15:26:d8:dc: a2:b6:3f:0f:e6:9b:19:70:39:23:7a:eb:eb:b6:ad:ca:e8:c3: d2:1d:87:14:5c:9a:53:e8:e9:0c:89:49:a0:32:79:55:1f:05: f3:92:f9:e5:ce:48:8a:f0:12:60:04:2c:84:a1:4e:3b:76:22: 47:81:2b:59:0b:c8:f3:b3:83:3f:63:3b:ba:51:4d:a1:7e:7b: 31:e3:1d:81:23:24:62:52:c3:84:49:72:cc:0d:f4:e1:b0:3c: 7f:b4:fe:11:7c:2a:86:36:70:53:1d:b8:2b:08:e1:53:b2:34: 18:9f:d6:64 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHbDXDNIpdjICUhfvkNoNbKZiLpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTExMDIwMzQ1NTJaFw0yNTExMDUxMDI5NTJaMDMxMTAvBgNV BAMTKEVDMjNGQzcwRjQ4MEI3NkE3QTQxMjcxQTk0QTY4QTIxRjVFRUQyQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDimrPFHTtdPP4abJF4VOWvivH2 blqyUpRR/WijRi0N5sVtplney7hZai3HDLnBXcnSbvBqIfmlAgPNkmBfyHb5Hapq AoD0ka7nogLT+dHZ4VvOcVGtVuWmmnCE9u9WDae3o7h5hrYIKIzwDSZVK7Vqrshg I3vEB3+EunuuWdxkhfLt7JltpouQvhh2fH+49OaP9qMxxnCJqdjuphGbrCyEzmGh tAxm6GWR4GTW5LIxAaeUHno7fjaGciSyYkp0paXwIb84jCrAdPqksX1Wdaxq4a6e hBzz4+Rerz+RS7Pde5TJUxlXkrlnOKlPY5U0njK9WSpMR55oUXKv7xA8wR7TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7CP8cPSAt2p6QScalKaKIfXu0q0wHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHt+I9KeUNsZ671xrXd7HKMVO1gwjDqOG6Ij ZXdP3q29fkjWKloxSWJRyOVoOpJXKELtc55l27Ud3dskNjQf/2vXnveHUc1/g01L WZn3AMNik/Qf6JsClEsIvKSH0PQpX6HnWiucldOktGFgBdgd2ciu6unsg3o1ag73 UgOY/4vr9zFKwy9pFLbaHX8iFSbY3KK2Pw/mmxlwOSN66+u2rcrow9IdhxRcmlPo 6QyJSaAyeVUfBfOS+eXOSIrwEmAELIShTjt2IkeBK1kLyPOzgz9jO7pRTaF+ezHj HYEjJGJSw4RJcswN9OGwPH+0/hF8KoY2cFMduCsI4VOyNBif1mQ= -----END CERTIFICATE-----Generated at Tue Nov 4 04:01:16 2025 by rpki-client