$ rpki-client -vvf repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft File: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft (raw, json) Hash identifier: V0lDD1++Ax1DBpUSDmXIFfvuxxZhtGFwan7cSlrzwI0= Subject key identifier: 48:C2:78:9E:85:78:22:A8:EE:E6:0A:40:3F:A8:AB:C7:AC:44:92:29 Authority key identifier: 52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 Certificate issuer: /CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Certificate serial: 28836545ABAD9BEFAE7933F05451092190273777 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft Manifest number: 0258 Signing time: Fri 22 Aug 2025 12:50:54 +0000 Manifest this update: Fri 22 Aug 2025 12:45:54 +0000 Manifest next update: Mon 25 Aug 2025 13:16:54 +0000 Files and hashes: 1: 3130332e3138302e3136352e302f32342d3234203d3e20313338313331.roa (hash: UDP5vaqP++IAcM6lMBhTtGhgbdITohHwdo+pbRZf5tI=) 2: 3130332e3138302e3136342e302f32342d3234203d3e20313338313331.roa (hash: fKMeJeAwMbkwf1kmZ/AB9YQDJH0OhHULVGJWeX+RPu0=) 3: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl (hash: ZInBZxeAbHn2CtetNxwVjMoD1dVoyCWYqFaAbTKOqx4=) 4: 3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa (hash: itO8sihFgXMUbSQlwLdSsBmvziIF/OpyE/yJGtrY67A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 13:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:83:65:45:ab:ad:9b:ef:ae:79:33:f0:54:51:09:21:90:27:37:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Validity Not Before: Aug 22 12:45:54 2025 GMT Not After : Aug 25 13:16:54 2025 GMT Subject: CN=48C2789E857822A8EEE60A403FA8ABC7AC449229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:80:04:9b:77:98:02:05:91:c9:01:ff:15:0f: 98:08:62:f9:94:8b:72:8f:d7:04:27:e4:90:89:10: ca:87:ae:d7:4b:53:ac:dd:83:56:65:e3:b1:f0:9a: ee:72:db:d4:a6:1b:c3:a3:b3:62:82:4d:36:da:fa: 7c:53:b9:f0:d0:df:b3:13:29:47:cf:1a:55:c0:1c: c6:3d:e1:25:e4:bc:59:90:87:70:a4:73:c1:19:81: 25:13:9e:a0:4f:f6:d8:16:30:f6:b9:94:da:e5:c8: 46:21:86:c9:16:f0:40:10:be:34:42:3a:bf:41:64: 36:66:09:6c:58:10:fd:c3:a0:ac:d4:e8:4a:92:72: 69:1d:f5:82:9f:61:32:4d:0a:08:b2:41:9a:02:59: 63:38:4a:01:8a:dc:a4:ae:75:45:b5:87:ad:15:f8: 9e:66:e4:89:86:26:c2:b4:11:65:3e:06:c6:a7:71: 25:db:74:c2:1e:85:e5:97:f4:37:e2:c7:6a:c6:19: 65:0f:36:42:cf:d5:9a:10:ef:ff:d4:c2:e8:35:12: 70:dd:61:52:cc:23:6e:68:ce:9e:ac:a8:1a:7a:61: a6:b5:7f:c2:83:c0:ab:34:de:9f:f1:a6:cc:c9:c0: 56:f9:81:e7:8b:f0:25:21:0c:35:b4:4f:db:8f:bf: 83:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C2:78:9E:85:78:22:A8:EE:E6:0A:40:3F:A8:AB:C7:AC:44:92:29 X509v3 Authority Key Identifier: keyid:52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:b6:43:6c:6a:da:0f:7d:6f:18:a0:14:bd:d4:b3:b0:68:1c: f6:1c:a0:19:c2:cc:8c:e2:d6:2d:ee:17:35:61:aa:18:1e:f6: 3b:54:48:d2:c0:ee:55:dd:be:bf:57:02:87:08:32:63:d7:e0: c7:50:22:89:b3:40:de:5c:83:5a:0a:4b:71:b7:27:b2:95:72: e8:d1:6e:ff:f1:e2:d8:d6:be:52:fb:4e:71:78:03:1d:d5:40: a5:ef:21:49:66:9e:ae:fa:0c:46:ba:43:d3:fa:ba:57:de:4e: cf:ec:85:96:bc:e0:75:d9:55:6a:24:23:85:5c:6a:32:86:56: c7:4e:7f:9f:bd:0d:28:f8:8e:fa:a0:cf:3d:a1:f5:70:70:9d: c8:af:02:03:04:26:c2:a0:d1:e2:95:7b:1e:84:d3:52:b2:99: 08:a8:5a:13:09:6a:8d:74:1b:eb:9f:c4:73:32:3d:35:48:56: 4f:4d:e7:7a:89:9a:7e:8f:e4:ea:d7:51:57:f2:f5:7a:0e:2d: 2e:a2:5a:69:2a:53:b8:a8:67:cc:63:0b:e0:0b:2d:3a:5a:68: f4:36:fb:f8:cc:3b:be:7d:7e:26:a5:93:83:c7:61:5f:ab:95: f4:2d:99:48:9f:cc:ae:05:df:c2:57:6b:a5:a0:4b:3d:ae:51: 48:a5:8b:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKINlRautm++ueTPwVFEJIZAnN3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZD QjhBQTI0NTAeFw0yNTA4MjIxMjQ1NTRaFw0yNTA4MjUxMzE2NTRaMDMxMTAvBgNV BAMTKDQ4QzI3ODlFODU3ODIyQThFRUU2MEE0MDNGQThBQkM3QUM0NDkyMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtgASbd5gCBZHJAf8VD5gIYvmU i3KP1wQn5JCJEMqHrtdLU6zdg1Zl47Hwmu5y29SmG8Ojs2KCTTba+nxTufDQ37MT KUfPGlXAHMY94SXkvFmQh3Ckc8EZgSUTnqBP9tgWMPa5lNrlyEYhhskW8EAQvjRC Or9BZDZmCWxYEP3DoKzU6EqScmkd9YKfYTJNCgiyQZoCWWM4SgGK3KSudUW1h60V +J5m5ImGJsK0EWU+BsancSXbdMIeheWX9Dfix2rGGWUPNkLP1ZoQ7//Uwug1EnDd YVLMI25ozp6sqBp6Yaa1f8KDwKs03p/xpszJwFb5geeL8CUhDDW0T9uPv4NdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSMJ4noV4Iqju5gpAP6irx6xEkikwHwYDVR0j BBgwFoAUUud7BrwmkcYTx6mHLuHij8uKokUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzkwODc4Mi00NTIwLTQ1YjQtOTllZC0xOTNlNTFkZjUxYzMvMC81MkU3N0IwNkJD MjY5MUM2MTNDN0E5ODcyRUUxRTI4RkNCOEFBMjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZDQjhB QTI0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDM5MDg3ODItNDUyMC00NWI0LTk5 ZWQtMTkzZTUxZGY1MWMzLzAvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUy OEZDQjhBQTI0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALO2Q2xq2g99bxigFL3Us7BoHPYcoBnCzIzi 1i3uFzVhqhge9jtUSNLA7lXdvr9XAocIMmPX4MdQIomzQN5cg1oKS3G3J7KVcujR bv/x4tjWvlL7TnF4Ax3VQKXvIUlmnq76DEa6Q9P6ulfeTs/shZa84HXZVWokI4Vc ajKGVsdOf5+9DSj4jvqgzz2h9XBwncivAgMEJsKg0eKVex6E01KymQioWhMJao10 G+ufxHMyPTVIVk9N53qJmn6P5OrXUVfy9XoOLS6iWmkqU7ioZ8xjC+ALLTpaaPQ2 +/jMO759fialk4PHYV+rlfQtmUifzK4F38JXa6WgSz2uUUili3E= -----END CERTIFICATE-----Generated at Sat Aug 23 16:16:42 2025 by rpki-client