$ rpki-client -vvf repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft File: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft (raw, json) Hash identifier: kJqspa7T1v6F9iWLqDtrfKs17MFXiM9NSludKD1f5QQ= Subject key identifier: C5:00:3A:49:D3:8D:C0:86:55:CF:8C:D0:F4:B4:AD:85:AE:6A:6D:6F Authority key identifier: 52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 Certificate issuer: /CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Certificate serial: 773F894E0704F490C929471C01B2DCC2FE9A6343 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft Manifest number: 0272 Signing time: Sat 18 Oct 2025 13:01:11 +0000 Manifest this update: Sat 18 Oct 2025 12:56:11 +0000 Manifest next update: Tue 21 Oct 2025 16:05:11 +0000 Files and hashes: 1: 3130332e3138302e3136352e302f32342d3234203d3e20313338313331.roa (hash: UDP5vaqP++IAcM6lMBhTtGhgbdITohHwdo+pbRZf5tI=) 2: 3130332e3138302e3136342e302f32342d3234203d3e20313338313331.roa (hash: fKMeJeAwMbkwf1kmZ/AB9YQDJH0OhHULVGJWeX+RPu0=) 3: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl (hash: YJvoW/93Ue/756p9l4iKLZ2CLIcIKVpp7sriqAbHK6s=) 4: 3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa (hash: YBihOSXIj0+TsV9w8FB5TlmuTjj67BcUuD5PWZy4luk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 16:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3f:89:4e:07:04:f4:90:c9:29:47:1c:01:b2:dc:c2:fe:9a:63:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Validity Not Before: Oct 18 12:56:11 2025 GMT Not After : Oct 21 16:05:11 2025 GMT Subject: CN=C5003A49D38DC08655CF8CD0F4B4AD85AE6A6D6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:82:38:96:e8:1a:f5:5f:01:ba:cb:4a:38:c6: 6c:09:1d:e1:af:15:da:1d:5f:83:bd:64:14:c2:39: 77:92:d4:97:83:c7:ee:b7:5f:a9:ee:c6:7d:64:75: 20:6a:1c:39:91:3e:29:7c:b6:f4:2b:05:13:3b:31: a1:ae:5c:a6:e0:80:0f:ae:6e:44:d9:b3:25:f0:a5: 53:27:36:bd:ed:0c:36:e8:f3:6e:60:ff:96:80:90: 70:41:f4:7d:ce:01:bb:c6:30:1e:4c:87:07:19:05: 3a:6d:2c:1c:b1:b5:e0:70:8d:86:0b:1c:a3:ba:20: 9d:f4:82:a8:4f:f5:e9:c2:fa:73:d7:b0:a7:d0:7a: 96:20:b4:44:4c:b8:da:1f:54:63:94:31:57:8e:a6: da:dd:85:b2:e6:1a:53:6c:0d:84:d7:77:ed:92:12: dc:68:75:87:0e:77:61:74:c5:ab:f4:33:c1:eb:85: 64:7a:4f:40:e1:a7:a5:e5:f0:35:33:61:44:d9:99: 66:df:9c:c6:58:f5:93:83:7b:7f:04:82:6d:29:e2: 9f:db:ee:61:62:c2:82:d5:fd:6b:3d:53:24:dc:15: 1a:32:b2:9e:f3:bf:5c:7a:64:25:3c:e1:5e:27:9f: 01:f2:2d:73:2d:e3:69:db:cf:5e:4f:96:1e:68:3f: 08:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:00:3A:49:D3:8D:C0:86:55:CF:8C:D0:F4:B4:AD:85:AE:6A:6D:6F X509v3 Authority Key Identifier: keyid:52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:d4:78:ce:fc:17:fd:c0:d5:3e:ec:50:13:7a:74:f6:56:2b: e3:00:b6:e4:0e:eb:72:4f:d6:bf:70:63:b1:02:4e:8d:12:3b: cf:79:79:e8:5f:c3:69:74:c9:29:df:b8:51:e9:5e:a9:28:e8: b1:22:40:e6:22:18:15:bf:86:46:8a:c0:d7:87:11:6a:ec:19: 2b:63:f4:f0:44:72:ca:df:23:b1:2f:57:6c:c8:cc:53:0b:b8: 7e:14:46:c4:98:e1:c6:d6:8d:d4:01:d1:cc:ea:b4:d6:ac:b7: 9c:8b:93:60:70:33:b2:54:af:94:e0:d0:6b:78:71:8c:75:63: 98:44:b8:6b:b5:65:3c:05:36:f7:10:8a:e6:d5:a8:42:3c:9f: 81:5e:6c:a1:12:49:d0:c7:38:eb:79:86:6d:b3:a5:fb:86:5d: 6c:61:07:c0:9d:c6:8c:bb:a3:f3:76:ac:9a:ae:d8:84:69:9e: ad:ee:8c:4f:ef:25:cb:6b:2b:a7:7a:f7:47:bf:43:8a:27:b4: 5c:f0:e5:2a:28:41:12:77:03:3c:59:79:ac:a5:2f:dc:b6:7e: 01:2a:df:e0:e1:b6:8f:cb:47:ac:bf:b8:97:d8:2b:f0:3b:a8: 6e:24:3b:6e:cd:fa:cf:37:3a:94:1b:b3:f0:c7:6c:0b:5b:89: 67:bf:56:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdz+JTgcE9JDJKUccAbLcwv6aY0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZD QjhBQTI0NTAeFw0yNTEwMTgxMjU2MTFaFw0yNTEwMjExNjA1MTFaMDMxMTAvBgNV BAMTKEM1MDAzQTQ5RDM4REMwODY1NUNGOENEMEY0QjRBRDg1QUU2QTZENkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGgjiW6Br1XwG6y0o4xmwJHeGv FdodX4O9ZBTCOXeS1JeDx+63X6nuxn1kdSBqHDmRPil8tvQrBRM7MaGuXKbggA+u bkTZsyXwpVMnNr3tDDbo825g/5aAkHBB9H3OAbvGMB5MhwcZBTptLByxteBwjYYL HKO6IJ30gqhP9enC+nPXsKfQepYgtERMuNofVGOUMVeOptrdhbLmGlNsDYTXd+2S EtxodYcOd2F0xav0M8HrhWR6T0Dhp6Xl8DUzYUTZmWbfnMZY9ZODe38Egm0p4p/b 7mFiwoLV/Ws9UyTcFRoysp7zv1x6ZCU84V4nnwHyLXMt42nbz15Plh5oPwjDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxQA6SdONwIZVz4zQ9LStha5qbW8wHwYDVR0j BBgwFoAUUud7BrwmkcYTx6mHLuHij8uKokUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzkwODc4Mi00NTIwLTQ1YjQtOTllZC0xOTNlNTFkZjUxYzMvMC81MkU3N0IwNkJD MjY5MUM2MTNDN0E5ODcyRUUxRTI4RkNCOEFBMjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZDQjhB QTI0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDM5MDg3ODItNDUyMC00NWI0LTk5 ZWQtMTkzZTUxZGY1MWMzLzAvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUy OEZDQjhBQTI0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjUeM78F/3A1T7sUBN6dPZWK+MAtuQO63JP 1r9wY7ECTo0SO895eehfw2l0ySnfuFHpXqko6LEiQOYiGBW/hkaKwNeHEWrsGStj 9PBEcsrfI7EvV2zIzFMLuH4URsSY4cbWjdQB0czqtNast5yLk2BwM7JUr5Tg0Gt4 cYx1Y5hEuGu1ZTwFNvcQiubVqEI8n4FebKESSdDHOOt5hm2zpfuGXWxhB8Cdxoy7 o/N2rJqu2IRpnq3ujE/vJctrK6d690e/Q4ontFzw5SooQRJ3AzxZeaylL9y2fgEq 3+Dhto/LR6y/uJfYK/A7qG4kO27N+s83OpQbs/DHbAtbiWe/Vsw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:04:48 2025 by rpki-client