$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft File: 99A17325620A243689E32E6074D5CFCA91D915EB.mft (raw, json) Hash identifier: wrQYHyTH3RpetUqWMtk+37muBs2AkoLXGyvQPKXMN3o= Subject key identifier: 36:14:66:35:E4:6A:A5:9F:57:73:43:ED:C3:16:2E:40:FF:07:1C:DA Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB Certificate serial: 37030A0341C9CD4960F87ADB30E7143D59D40DDD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft Manifest number: FF Signing time: Sun 19 Oct 2025 17:51:45 +0000 Manifest this update: Sun 19 Oct 2025 17:46:45 +0000 Manifest next update: Wed 22 Oct 2025 17:53:45 +0000 Files and hashes: 1: 99A17325620A243689E32E6074D5CFCA91D915EB.crl (hash: b+1pSJo4DoYwXi5/bcOWYQgj0b+5Y/USiA5GVmaFDhY=) 2: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (hash: W4T3x6W6F80SSirpXVn9D/iy5Cn3YHJGBUQbdlxcTEY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:03:0a:03:41:c9:cd:49:60:f8:7a:db:30:e7:14:3d:59:d4:0d:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB Validity Not Before: Oct 19 17:46:45 2025 GMT Not After : Oct 22 17:53:45 2025 GMT Subject: CN=36146635E46AA59F577343EDC3162E40FF071CDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:4c:a0:d7:3f:c5:6b:be:cf:7b:e5:33:4b: 07:91:e9:4e:7f:7b:d2:02:72:c5:b6:fc:a5:0f:ae: 93:eb:33:48:2d:4d:a3:08:cf:61:42:7e:78:f9:2a: 5f:9b:43:96:3b:d7:cf:a5:5f:78:c9:fb:de:dc:f7: 97:5d:4e:ed:db:c4:83:69:3e:db:50:cd:70:46:de: 99:cf:8e:a8:2a:a9:c5:22:ff:4c:69:ad:cc:6b:ec: 74:f1:5e:56:c4:ab:98:33:1a:24:49:9f:ad:62:ec: 7c:79:19:fe:8e:20:a0:59:0c:3e:34:51:f1:7d:7e: d4:ae:77:de:77:12:75:77:38:2a:39:26:81:b5:c2: 9b:c1:b8:ec:ec:97:89:4b:a1:12:d1:1e:c1:79:b4: e9:e7:dd:4f:51:e3:53:d5:20:7b:2d:a7:2a:a9:5b: d0:ea:f5:3b:b1:db:55:d7:fd:b9:40:92:0b:de:cd: 4b:83:1c:ff:8f:fe:be:8d:28:b1:5e:bc:dc:60:34: ea:39:ce:eb:31:88:c6:9e:78:04:4c:3d:7b:49:3c: cc:c1:3f:d8:49:69:b3:c6:1a:f1:84:ec:a0:3f:e6: 89:04:73:d5:f1:54:72:bd:98:65:b1:6d:05:a0:e0: 5d:bf:7d:e2:68:ea:de:4b:c2:ce:f4:55:14:06:97: 1e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:14:66:35:E4:6A:A5:9F:57:73:43:ED:C3:16:2E:40:FF:07:1C:DA X509v3 Authority Key Identifier: keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:1b:a4:32:88:8f:8d:26:5d:69:7b:f5:ce:33:ce:5b:8a:00: b4:3b:17:6f:1b:b3:2d:4b:c9:0f:8e:c9:fd:4d:20:5f:cf:af: 19:5c:be:4d:07:a0:38:e0:9e:38:03:56:5a:ae:a8:48:79:e9: 5d:89:6a:dc:e8:df:04:e6:ea:a9:e7:d0:7c:29:24:a6:8b:8a: 4f:15:f0:2b:d9:9c:23:60:fe:c7:f6:3b:de:af:31:24:4b:01: 0b:33:d3:7c:0b:a4:f5:6d:61:6c:a0:c9:8c:ba:f7:74:ff:e4: 64:e2:ab:30:23:48:29:99:79:b4:48:66:99:fa:8b:1d:2f:47: 3f:d2:8e:0b:e1:2a:94:fe:4c:e7:8a:bd:72:47:84:d5:a3:72: 6f:aa:77:f1:c2:f0:f0:f4:f0:67:cb:af:6a:53:f0:64:82:85: 9f:c7:29:b6:7e:8f:46:f4:9d:78:be:2c:2b:51:77:50:65:93: 03:43:45:85:b0:02:04:a8:a3:02:39:e6:dc:91:0b:54:bd:51: 13:47:cc:07:fd:2e:3d:4b:9b:3e:65:0e:f9:db:10:35:1b:f8: 6e:a1:9a:8c:d7:52:f4:05:53:75:04:30:82:f8:10:88:23:53: 85:73:50:df:aa:58:1f:59:f3:aa:b3:a9:58:7b:34:26:d7:de: 6b:c6:ed:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNwMKA0HJzUlg+HrbMOcUPVnUDd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5 MUQ5MTVFQjAeFw0yNTEwMTkxNzQ2NDVaFw0yNTEwMjIxNzUzNDVaMDMxMTAvBgNV BAMTKDM2MTQ2NjM1RTQ2QUE1OUY1NzczNDNFREMzMTYyRTQwRkYwNzFDREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCswEyg1z/Fa77Pe+UzSweR6U5/ e9ICcsW2/KUPrpPrM0gtTaMIz2FCfnj5Kl+bQ5Y718+lX3jJ+97c95ddTu3bxINp PttQzXBG3pnPjqgqqcUi/0xprcxr7HTxXlbEq5gzGiRJn61i7Hx5Gf6OIKBZDD40 UfF9ftSud953EnV3OCo5JoG1wpvBuOzsl4lLoRLRHsF5tOnn3U9R41PVIHstpyqp W9Dq9Tux21XX/blAkgvezUuDHP+P/r6NKLFevNxgNOo5zusxiMaeeARMPXtJPMzB P9hJabPGGvGE7KA/5okEc9XxVHK9mGWxbQWg4F2/feJo6t5Lws70VRQGlx7NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNhRmNeRqpZ9Xc0PtwxYuQP8HHNowHwYDVR0j BBgwFoAUmaFzJWIKJDaJ4y5gdNXPypHZFeswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDU5YjgyMi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC85OUExNzMyNTYy MEEyNDM2ODlFMzJFNjA3NEQ1Q0ZDQTkxRDkxNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5MUQ5 MTVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWQ1OWI4MjItNWMwOC00NmYxLWIy NWUtNzU4ZGMxOGU5OTA1LzAvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNG Q0E5MUQ5MTVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALQbpDKIj40mXWl79c4zzluKALQ7F28bsy1L yQ+Oyf1NIF/Prxlcvk0HoDjgnjgDVlquqEh56V2Jatzo3wTm6qnn0HwpJKaLik8V 8CvZnCNg/sf2O96vMSRLAQsz03wLpPVtYWygyYy693T/5GTiqzAjSCmZebRIZpn6 ix0vRz/SjgvhKpT+TOeKvXJHhNWjcm+qd/HC8PD08GfLr2pT8GSChZ/HKbZ+j0b0 nXi+LCtRd1BlkwNDRYWwAgSoowI55tyRC1S9URNHzAf9Lj1Lmz5lDvnbEDUb+G6h mozXUvQFU3UEMIL4EIgjU4VzUN+qWB9Z86qzqVh7NCbX3mvG7eg= -----END CERTIFICATE-----Generated at Tue Oct 21 04:44:51 2025 by rpki-client