$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: yPRkMS/GcKYg5S3kIDq8toffVNlDP/DmV7Cab+onpjs= Subject key identifier: D8:4A:FA:91:98:98:46:6F:EF:FD:87:B6:BE:46:52:1E:B5:61:1A:94 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 1AF51F9D772F827275DF76B030B5A0A32E96307B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02EA Signing time: Thu 18 Sep 2025 14:30:52 +0000 Manifest this update: Thu 18 Sep 2025 14:25:52 +0000 Manifest next update: Sun 21 Sep 2025 14:41:52 +0000 Files and hashes: 1: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 2: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) 3: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 4: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) 5: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: 0svPY9K6LklEqzAPmlsrB/yKp/EONTcPVkmwedbKuRw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 14:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f5:1f:9d:77:2f:82:72:75:df:76:b0:30:b5:a0:a3:2e:96:30:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Sep 18 14:25:52 2025 GMT Not After : Sep 21 14:41:52 2025 GMT Subject: CN=D84AFA919898466FEFFD87B6BE46521EB5611A94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c6:78:66:c1:0d:18:ec:9b:f7:8f:dc:c1:47: 7f:8e:2b:4e:2f:86:de:b9:29:1e:a4:e3:06:a2:5f: c9:0d:44:08:ae:46:7f:f2:30:f4:4e:f6:f9:f8:87: a7:1e:1e:9b:94:69:b4:78:df:d7:05:6a:2f:1c:cb: db:e3:5f:df:4d:8c:61:b4:a7:f8:21:70:3e:e1:a0: 02:70:35:24:24:a4:d7:09:8b:e4:2d:33:cd:03:b5: 48:46:5e:87:b4:33:3a:02:6f:fa:bb:0a:bd:41:d7: fe:dd:27:a6:37:37:3e:91:b3:25:09:c7:3b:59:d5: 05:44:df:5f:69:df:8c:eb:c4:48:59:ea:d3:61:41: f8:5e:19:4a:a6:70:c6:81:f7:0f:22:5f:b7:a2:f3: 6e:e6:b6:07:d9:58:aa:cf:4b:3c:83:8a:be:f0:53: 34:22:2f:b5:34:12:da:76:b8:9d:b1:2d:d2:eb:de: a5:ab:c9:da:2c:ac:88:06:79:54:25:8b:f0:99:e6: 06:fc:61:c9:ab:3e:78:a7:9a:35:cf:61:86:0b:09: c2:2d:20:63:ec:34:ab:8c:0f:3a:57:80:f6:18:8a: 4b:89:08:b8:56:50:19:1a:f0:fd:4c:54:f6:10:07: 34:5c:95:6b:aa:87:90:90:dd:67:21:d5:0d:ff:d6: 40:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:4A:FA:91:98:98:46:6F:EF:FD:87:B6:BE:46:52:1E:B5:61:1A:94 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:cd:26:9c:2e:0b:c2:dc:12:11:6d:25:a3:a8:43:9e:b9:65: e1:48:3e:63:c7:82:99:8c:c2:49:d3:68:fb:f0:14:9b:07:0c: 09:e8:be:33:e6:4f:33:e1:9f:49:29:1b:1a:38:11:b3:e4:8e: b8:a7:a4:9d:4d:08:6b:f7:58:29:8d:ee:e4:ce:05:70:db:e4: 09:69:a2:6e:f7:3c:f7:1a:bd:6c:03:c6:b7:ca:16:c7:99:00: e9:5b:bf:74:93:6b:1e:e6:80:39:18:4c:5e:f3:28:8d:6a:65: 5e:88:c8:2a:79:5a:57:fc:0e:55:d4:8a:76:7d:38:4e:2d:e2: 23:be:88:af:e2:60:80:e6:76:f4:cb:26:04:06:dd:d2:00:49: ab:4f:55:68:99:19:c1:34:14:77:b5:6a:d4:1a:58:2c:1b:c8: d1:81:23:82:c4:05:f7:e0:31:3b:d8:66:5f:38:5a:bf:1c:7b: 4b:d1:e5:2e:36:de:14:b2:f3:6f:99:50:c2:87:05:57:37:34: 66:29:91:1e:98:0d:37:23:f2:79:4e:c7:de:36:05:44:e6:05: ff:3b:20:ca:19:92:e5:c3:ff:5d:6a:a0:f1:ad:c3:e1:16:05: b4:de:a5:8d:62:17:d8:f3:4b:25:2e:3a:57:b3:f9:b0:82:21: a0:4c:a6:65 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGvUfnXcvgnJ133awMLWgoy6WMHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTA5MTgxNDI1NTJaFw0yNTA5MjExNDQxNTJaMDMxMTAvBgNV BAMTKEQ4NEFGQTkxOTg5ODQ2NkZFRkZEODdCNkJFNDY1MjFFQjU2MTFBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpxnhmwQ0Y7Jv3j9zBR3+OK04v ht65KR6k4waiX8kNRAiuRn/yMPRO9vn4h6ceHpuUabR439cFai8cy9vjX99NjGG0 p/ghcD7hoAJwNSQkpNcJi+QtM80DtUhGXoe0MzoCb/q7Cr1B1/7dJ6Y3Nz6RsyUJ xztZ1QVE319p34zrxEhZ6tNhQfheGUqmcMaB9w8iX7ei827mtgfZWKrPSzyDir7w UzQiL7U0Etp2uJ2xLdLr3qWrydosrIgGeVQli/CZ5gb8YcmrPninmjXPYYYLCcIt IGPsNKuMDzpXgPYYikuJCLhWUBka8P1MVPYQBzRclWuqh5CQ3Wch1Q3/1kA/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2Er6kZiYRm/v/Ye2vkZSHrVhGpQwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGnNJpwuC8LcEhFtJaOoQ565ZeFIPmPHgpmM wknTaPvwFJsHDAnovjPmTzPhn0kpGxo4EbPkjrinpJ1NCGv3WCmN7uTOBXDb5Alp om73PPcavWwDxrfKFseZAOlbv3STax7mgDkYTF7zKI1qZV6IyCp5Wlf8DlXUinZ9 OE4t4iO+iK/iYIDmdvTLJgQG3dIASatPVWiZGcE0FHe1atQaWCwbyNGBI4LEBffg MTvYZl84Wr8ce0vR5S423hSy82+ZUMKHBVc3NGYpkR6YDTcj8nlOx942BUTmBf87 IMoZkuXD/11qoPGtw+EWBbTepY1iF9jzSyUuOlez+bCCIaBMpmU= -----END CERTIFICATE-----Generated at Fri Sep 19 12:16:22 2025 by rpki-client