$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: UcMOK0KYkt0L1No0OQvQD++hZZq6aAHvvWp13kys+Vk= Subject key identifier: 4B:1E:56:20:07:08:C3:1B:43:13:61:DF:8B:51:2E:CC:A1:BB:7B:72 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 5631E5331533EDC403736009018F70F8529AED33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 04E6 Signing time: Sun 29 Jun 2025 11:30:55 +0000 Manifest this update: Sun 29 Jun 2025 11:25:55 +0000 Manifest next update: Wed 02 Jul 2025 20:43:55 +0000 Files and hashes: 1: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=) 2: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=) 3: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=) 4: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=) 5: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: kYwVwVzx2unRKuyEv/RiRcdF25XNK2yDoNHj8EGbHiA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:31:e5:33:15:33:ed:c4:03:73:60:09:01:8f:70:f8:52:9a:ed:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jun 29 11:25:55 2025 GMT Not After : Jul 2 20:43:55 2025 GMT Subject: CN=4B1E56200708C31B431361DF8B512ECCA1BB7B72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4d:79:8f:5a:6c:ca:a3:c5:6f:b8:0e:e2:3c: 09:05:a9:d2:5d:5b:e7:79:db:91:56:16:66:9f:dd: b0:8f:56:5a:68:41:f5:c5:8f:1e:8f:a9:c3:29:79: 6e:97:f6:f2:70:a4:c2:87:b1:f4:50:91:61:90:e9: 12:8e:0c:20:0f:8b:07:4e:0d:b1:b1:f1:07:72:30: f3:45:18:2f:75:4e:b5:3c:d2:97:3c:d9:f5:42:0f: 8d:a3:1f:f0:d9:2b:ff:e1:c3:6b:e5:b4:9e:e5:fc: 8c:e2:a9:f0:62:0b:77:ff:62:5d:b9:b8:0c:4c:e9: a5:31:75:bc:96:a5:c7:b8:f6:87:6d:26:b7:de:5f: a0:5d:fb:ca:9d:b9:a0:ee:ce:54:81:9f:34:9d:91: 1c:1c:88:95:19:d3:a9:69:72:05:29:15:ad:b2:d6: 74:a8:41:e8:bf:c0:f0:03:2e:de:ed:a6:ad:e8:26: 5b:5e:8b:60:8f:f5:53:a5:1c:9e:dc:a0:15:86:f2: 82:13:b6:0e:16:44:5a:fd:ba:f5:3e:fd:f8:dd:bb: 7c:b1:d6:76:db:e2:1d:59:6b:a5:b4:99:be:a9:b6: 5b:f2:88:c6:97:61:0d:09:bc:96:5f:ff:fb:9e:6e: 1f:93:2e:65:53:8c:a8:41:cd:14:ff:77:bd:ad:b7: 79:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1E:56:20:07:08:C3:1B:43:13:61:DF:8B:51:2E:CC:A1:BB:7B:72 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:82:28:86:74:af:1c:48:90:29:ec:61:81:7d:fd:c2:f3:29: 6c:cd:cd:93:da:90:c6:32:0a:a6:91:b0:bc:43:71:0f:b3:97: 0c:4b:fb:08:5e:99:71:17:cb:a8:af:2f:52:49:4c:20:9e:ab: eb:0b:77:3b:1e:ed:f9:13:0c:d1:1b:88:61:c8:a9:78:18:a2: ed:95:fd:f3:88:a7:92:1c:18:bd:ed:6d:bb:ae:62:87:7e:13: c5:0c:d0:e0:a6:41:0f:c0:ca:fe:27:74:2d:e7:17:a2:6d:64: ab:d2:55:46:2e:81:c9:29:d8:a1:d8:d3:e6:e6:b7:e5:50:b6: 79:68:eb:04:28:26:4f:88:ec:3e:ef:9a:71:9f:7e:a8:3e:67: 04:ed:92:60:b2:43:47:78:6f:32:ed:8b:58:cf:1d:3b:5c:46: 00:fb:9d:ee:b8:75:ea:df:9a:e3:fd:fc:fe:9c:f9:c4:1f:d8: 48:56:93:e4:89:3d:da:43:65:81:fd:d0:77:f0:53:bd:41:4e: 07:cb:db:88:c6:41:11:80:ec:ff:80:3f:82:91:a1:bc:3f:01: 83:9b:f8:10:15:fc:a7:8e:dd:6a:ef:d8:24:a7:8e:2e:67:dc: e4:fe:b7:20:91:bd:f0:35:26:80:81:51:82:80:cb:f5:e8:48: bd:bb:2f:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVjHlMxUz7cQDc2AJAY9w+FKa7TMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTA2MjkxMTI1NTVaFw0yNTA3MDIyMDQzNTVaMDMxMTAvBgNV BAMTKDRCMUU1NjIwMDcwOEMzMUI0MzEzNjFERjhCNTEyRUNDQTFCQjdCNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaTXmPWmzKo8VvuA7iPAkFqdJd W+d525FWFmaf3bCPVlpoQfXFjx6PqcMpeW6X9vJwpMKHsfRQkWGQ6RKODCAPiwdO DbGx8QdyMPNFGC91TrU80pc82fVCD42jH/DZK//hw2vltJ7l/IziqfBiC3f/Yl25 uAxM6aUxdbyWpce49odtJrfeX6Bd+8qduaDuzlSBnzSdkRwciJUZ06lpcgUpFa2y 1nSoQei/wPADLt7tpq3oJltei2CP9VOlHJ7coBWG8oITtg4WRFr9uvU+/fjdu3yx 1nbb4h1Za6W0mb6ptlvyiMaXYQ0JvJZf//uebh+TLmVTjKhBzRT/d72tt3lJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSx5WIAcIwxtDE2Hfi1EuzKG7e3IwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAuCKIZ0rxxIkCnsYYF9/cLzKWzNzZPakMYy CqaRsLxDcQ+zlwxL+whemXEXy6ivL1JJTCCeq+sLdzse7fkTDNEbiGHIqXgYou2V /fOIp5IcGL3tbbuuYod+E8UM0OCmQQ/Ayv4ndC3nF6JtZKvSVUYugckp2KHY0+bm t+VQtnlo6wQoJk+I7D7vmnGffqg+ZwTtkmCyQ0d4bzLti1jPHTtcRgD7ne64derf muP9/P6c+cQf2EhWk+SJPdpDZYH90HfwU71BTgfL24jGQRGA7P+AP4KRobw/AYOb +BAV/KeO3Wrv2CSnji5n3OT+tyCRvfA1JoCBUYKAy/XoSL27L4g= -----END CERTIFICATE-----Generated at Sun Jun 29 18:54:31 2025 by rpki-client