$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: vDtEo3JpkAYKyjH3u4ubV3C5UuuW22/XosprKRPzIcE= Subject key identifier: 17:C6:4A:AD:9A:9A:C9:8C:03:1E:00:53:13:93:95:1E:30:8D:BE:F4 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 7EA38779D3C40281976ED862F378EF5435322715 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 0122 Signing time: Sat 18 Oct 2025 20:21:53 +0000 Manifest this update: Sat 18 Oct 2025 20:16:53 +0000 Manifest next update: Wed 22 Oct 2025 01:55:53 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: SHLfpj1n7+UCrbcKEq5/UyJVarLimNOpYpk7V5pkykk=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 01:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a3:87:79:d3:c4:02:81:97:6e:d8:62:f3:78:ef:54:35:32:27:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Oct 18 20:16:53 2025 GMT Not After : Oct 22 01:55:53 2025 GMT Subject: CN=17C64AAD9A9AC98C031E00531393951E308DBEF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:32:b5:d0:d3:32:98:38:37:4e:9a:16:9f:f4: f1:3e:16:39:f7:c2:e7:60:b7:0a:03:33:19:4b:d3: f0:9a:a7:e3:36:76:57:43:34:f2:50:a1:79:e5:cc: c7:be:46:3f:fb:31:a7:cc:ea:8e:06:3b:3f:58:44: 31:60:7f:cf:b9:b2:d4:0a:b2:aa:8b:e6:56:9e:70: b7:80:66:4a:f8:78:2f:6f:e8:48:74:fc:1d:bb:37: 38:c7:09:47:db:b7:3f:c8:1d:04:f6:7e:f9:16:ad: ce:d7:28:13:e8:6e:0f:3b:38:6f:5d:e2:0d:12:83: 18:d1:64:7c:b1:50:61:cc:07:8a:4a:19:bb:05:ad: 16:66:f1:18:54:f2:23:2f:77:36:3f:c5:fc:92:dd: ce:b0:7f:d2:d9:8c:66:cf:a3:56:db:bb:11:bb:ed: fd:e6:e6:ac:f8:a2:f5:bb:c6:2f:d6:05:3d:f5:03: d2:da:12:82:92:56:84:2e:c2:7e:e5:8f:2f:d4:c9: cd:aa:1d:79:e2:38:40:43:92:6d:2c:11:f8:98:a6: 47:6f:23:d2:36:44:56:a8:ae:30:37:66:ba:63:76: f5:35:b4:00:53:cf:e3:b8:5e:c1:f5:67:4d:d8:e6: 15:8b:50:dd:b3:63:75:dc:01:f5:89:b1:ad:3a:ae: 17:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C6:4A:AD:9A:9A:C9:8C:03:1E:00:53:13:93:95:1E:30:8D:BE:F4 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:d1:fa:8f:ff:dc:f1:3e:f4:85:d4:fb:35:0e:f3:8b:83:59: e1:de:30:c5:0e:7d:c4:f7:89:41:d6:64:92:06:e7:cc:30:a6: b8:d3:94:5d:dc:6c:50:2f:e1:f7:0c:bb:cc:50:0a:e4:9d:6a: 29:ec:78:60:89:21:02:b3:25:7d:88:13:05:ce:37:4a:fe:5c: d9:07:05:e0:b1:19:8e:a5:28:11:4c:65:70:6f:e6:b7:fc:04: 53:b2:d5:55:37:3e:ca:63:0f:ca:0b:48:cd:00:ec:ee:bf:75: 75:5e:45:7a:8c:87:ad:e2:8d:24:a1:e3:bd:35:9a:8f:6b:2f: 10:78:1d:3f:70:72:88:94:27:78:21:f5:06:2a:50:a0:2e:a7: 9c:6b:1f:4f:f7:bc:90:bf:ef:11:8d:3f:23:ea:1e:d3:c9:e9: d7:37:40:19:0f:a1:73:2b:97:ef:01:bf:da:44:f8:66:80:07: 85:a8:36:89:7d:c1:73:7f:27:2e:52:a0:ad:95:37:94:91:f9: a2:5f:34:12:b2:3b:68:fd:71:e3:c3:f5:63:7b:31:c4:63:c2: f1:06:e6:38:fc:e5:89:c8:95:05:13:bf:e5:d8:c9:a7:e8:f6: e0:4a:27:d0:be:3b:59:36:f7:c2:7f:51:cc:66:57:be:3e:ce: 0f:82:5f:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfqOHedPEAoGXbthi83jvVDUyJxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTEwMTgyMDE2NTNaFw0yNTEwMjIwMTU1NTNaMDMxMTAvBgNV BAMTKDE3QzY0QUFEOUE5QUM5OEMwMzFFMDA1MzEzOTM5NTFFMzA4REJFRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4MrXQ0zKYODdOmhaf9PE+Fjn3 wudgtwoDMxlL0/Cap+M2dldDNPJQoXnlzMe+Rj/7MafM6o4GOz9YRDFgf8+5stQK sqqL5laecLeAZkr4eC9v6Eh0/B27NzjHCUfbtz/IHQT2fvkWrc7XKBPobg87OG9d 4g0SgxjRZHyxUGHMB4pKGbsFrRZm8RhU8iMvdzY/xfyS3c6wf9LZjGbPo1bbuxG7 7f3m5qz4ovW7xi/WBT31A9LaEoKSVoQuwn7ljy/Uyc2qHXniOEBDkm0sEfiYpkdv I9I2RFaorjA3ZrpjdvU1tABTz+O4XsH1Z03Y5hWLUN2zY3XcAfWJsa06rhdBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF8ZKrZqayYwDHgBTE5OVHjCNvvQwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIHR+o//3PE+9IXU+zUO84uDWeHeMMUOfcT3 iUHWZJIG58wwprjTlF3cbFAv4fcMu8xQCuSdainseGCJIQKzJX2IEwXON0r+XNkH BeCxGY6lKBFMZXBv5rf8BFOy1VU3PspjD8oLSM0A7O6/dXVeRXqMh63ijSSh4701 mo9rLxB4HT9wcoiUJ3gh9QYqUKAup5xrH0/3vJC/7xGNPyPqHtPJ6dc3QBkPoXMr l+8Bv9pE+GaAB4WoNol9wXN/Jy5SoK2VN5SR+aJfNBKyO2j9cePD9WN7McRjwvEG 5jj85YnIlQUTv+XYyafo9uBKJ9C+O1k298J/UcxmV74+zg+CX7k= -----END CERTIFICATE-----Generated at Mon Oct 20 16:12:27 2025 by rpki-client