$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft File: CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft (raw, json) Hash identifier: Hseupi1M8p++x/K3i8ffLO5BaAmj1QDcs6/L2P4f3zM= Subject key identifier: A6:8C:46:90:23:24:E5:58:91:EE:5C:7C:D9:0E:E0:F5:A8:C0:FE:0E Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 7FAA8DD9597E1321C1F1E9BF970810DD3D454C21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft Manifest number: 0541 Signing time: Mon 20 Oct 2025 03:11:48 +0000 Manifest this update: Mon 20 Oct 2025 03:06:48 +0000 Manifest next update: Thu 23 Oct 2025 14:28:48 +0000 Files and hashes: 1: 3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa (hash: SHObZCSyQ759rOoQJ/JZR3beQgRHBAmiHG/b7NwBiWM=) 2: 3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa (hash: 0r1qT8I3KYKeRC/g+vu3+beTQV2dYBEegiYAXFw3fs8=) 3: 3230322e36352e3132342e302f32322d3234203d3e203436303531.roa (hash: nCRffZlynF4CiEOh2iuotIMhJ1K47T3UdPYWHYFk4iY=) 4: 3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa (hash: iGsP4VUogsadbwnWd/AM/1aXy+hpua+BCk1eWXzoRzA=) 5: 3230322e36352e3131322e302f32302d3231203d3e203233393531.roa (hash: la3Lo26Aa17Lz+dfnwUc2WZ/Zq7gWX7qsfEvtWc9abY=) 6: 3230322e36352e3131322e302f32312d3231203d3e203233393531.roa (hash: YMkK1MNXH2D6eByawSLr2fAy1YjJp/Nm5M4Ucze1b40=) 7: 3230322e36352e3131322e302f32312d3234203d3e203233393531.roa (hash: 42OUxulwbAB1CTRXrAGVc4itTg6RD7nCc12Z/wbxKk0=) 8: 3230322e36352e3132322e302f32342d3234203d3e203233393531.roa (hash: 09wWxPVAnpsug3YZq5fezhFaG7QDA9T1Mjs7NiJLE+g=) 9: 3230322e36352e3132302e302f32342d3234203d3e203233393531.roa (hash: HWfHUrPU0i0A++2BYGkQMMOMjrzhDkKb6wybSU/0t9A=) 10: 3230322e36352e3131322e302f32342d3234203d3e203233393531.roa (hash: G3BDF4TZ5GKx7Jq6M6FOl3lpCmK1xcIVdoD+jUyf4vU=) 11: 323430313a656530303a3a2f33322d3438203d3e203233393531.roa (hash: NzMEm3c3sVacQZSWsj7eCdzP+65DR1/M0h04y+5YJYE=) 12: 3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa (hash: 8QPIleK9jMxRrZo8MGpSwWvTnJ7WLwlPDZ1i0haixbA=) 13: 3230322e36352e3132302e302f32332d3234203d3e203233393531.roa (hash: C1WvxvbH5IPUep7eQYoHGhXLqRMtWOqOKZMr05i/OjU=) 14: 3131372e32302e34382e302f32302d3234203d3e203233393531.roa (hash: jzYSflbMwJIU7OJmfhxLLNRmLBX8xfDaE+EvcpXWcPM=) 15: 3230322e36352e3132312e302f32342d3234203d3e203233393531.roa (hash: W+avD/27cuz8u7PAdTFS+byjySE6cCdTL/goNcaSuQ0=) 16: 3230322e36352e3132332e302f32342d3234203d3e203233393531.roa (hash: uYljhWPFI38b1Nx1UtlQJyqp8X7WWWNXDKkB58nW4HI=) 17: 3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa (hash: gYdjbrllcxVsFjz+69ccDbd/xh/3XuSos0MpuObt62I=) 18: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (hash: bHw7ucEbh58xjruyf4VXXtftgFiKqgJhqbjayjPsTrs=) 19: 3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa (hash: 4xDh+QQ3DjVG3ZsJTKYXeue+iML5/d6SNSBZf74CI44=) 20: CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl (hash: CAHJpS4FN2u0egD5DG9ePcx1b+Wi2ZHne/j2LWzXn3g=) 21: 3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa (hash: 6WhqetXB0Qru1Hk4/GxM3BsbsVKsqVduKrzOxiby6RM=) 22: 3230322e36352e3132322e302f32332d3233203d3e203233393531.roa (hash: uySOy+S8Xsy4H4ygVfn9FFZSJNP2ZKNqDsizB5B+qv8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:aa:8d:d9:59:7e:13:21:c1:f1:e9:bf:97:08:10:dd:3d:45:4c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Oct 20 03:06:48 2025 GMT Not After : Oct 23 14:28:48 2025 GMT Subject: CN=A68C46902324E55891EE5C7CD90EE0F5A8C0FE0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7a:97:2c:63:d8:c3:b7:cc:d8:5a:f8:5a:de: e9:e8:c8:52:ef:47:f6:e6:b1:3b:ff:08:55:95:04: 37:54:47:ee:50:f8:6d:a2:a7:bb:dc:ea:21:96:a7: 41:66:85:31:3e:b9:be:44:07:7f:22:54:23:9b:6a: 34:fe:97:53:00:f6:cc:6a:55:4a:13:06:ca:d3:bd: 00:a5:6c:09:50:3d:ed:8a:92:57:9c:b0:9d:ca:02: 3a:6b:ab:ba:86:e6:94:fc:b5:ca:9f:f4:e2:85:ba: e8:17:0b:2b:40:bb:92:62:15:81:b0:41:70:e8:8e: 0c:0b:e9:3c:eb:0d:e4:e3:47:7b:c1:53:c9:38:21: 89:3a:9f:bc:c6:32:0e:e3:50:20:d6:f4:be:4d:c8: 90:dd:9c:b6:ee:ba:10:05:a6:8c:f9:29:fa:3f:49: dc:98:ed:b5:06:15:aa:ca:0e:ef:31:aa:52:3b:bb: 6b:de:ab:eb:7a:9b:d2:3a:82:87:db:df:3c:1b:26: e2:19:15:01:b1:07:74:c4:56:e5:fc:8d:9c:85:25: 1e:6b:9d:46:23:9c:f7:76:e3:b0:6a:5e:2b:24:8a: fd:a7:18:fd:40:e4:e0:90:8b:73:80:17:5f:79:ce: fd:a9:85:75:f5:75:de:45:99:79:de:51:d0:6c:dc: 1e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8C:46:90:23:24:E5:58:91:EE:5C:7C:D9:0E:E0:F5:A8:C0:FE:0E X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:7c:1c:f9:f3:c5:d6:54:35:b5:b3:6a:77:54:20:a9:f5:43: f4:a4:0c:4f:b8:21:a9:5e:51:3e:4c:ed:84:9d:ee:84:ae:45: bc:e3:62:97:6f:07:c8:0c:dd:09:48:28:d7:c5:bf:bf:1a:ca: 1d:83:a4:a9:09:9c:87:9f:ea:c2:91:11:0d:f5:a1:8e:a0:ee: c5:7e:d6:2b:7c:3b:89:11:6e:aa:61:09:9c:6d:e2:9e:0d:a9: f6:65:ae:70:2c:03:5c:ff:90:7b:e4:05:9f:80:a0:b9:e0:06: 07:7e:6f:9a:0b:b9:47:02:0c:fd:07:9c:c4:cc:7c:11:af:4a: 37:60:cc:04:b7:9c:5e:bf:d8:d7:c5:e3:ea:b4:32:88:69:96: 4d:d9:12:1b:cd:0c:9f:9e:f7:72:40:b7:05:84:6d:40:8c:2f: 0c:02:58:24:79:ab:b6:71:2d:ce:34:dd:fc:b5:ee:6b:d4:94: e8:ca:89:8a:6c:2d:01:8a:19:a3:0d:cb:29:48:43:cb:b5:e4: a1:e8:ff:32:8a:45:17:e3:f4:82:48:85:7c:55:c9:c6:b6:f5: db:7f:bc:fa:01:96:13:44:b2:67:49:dd:7a:83:14:8a:6f:80: 36:e0:23:9d:e4:c6:34:6b:84:28:fb:a0:f1:f1:20:1e:e2:5c: 89:9b:d3:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf6qN2Vl+EyHB8em/lwgQ3T1FTCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTEwMjAwMzA2NDhaFw0yNTEwMjMxNDI4NDhaMDMxMTAvBgNV BAMTKEE2OEM0NjkwMjMyNEU1NTg5MUVFNUM3Q0Q5MEVFMEY1QThDMEZFMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlepcsY9jDt8zYWvha3unoyFLv R/bmsTv/CFWVBDdUR+5Q+G2ip7vc6iGWp0FmhTE+ub5EB38iVCObajT+l1MA9sxq VUoTBsrTvQClbAlQPe2KklecsJ3KAjprq7qG5pT8tcqf9OKFuugXCytAu5JiFYGw QXDojgwL6TzrDeTjR3vBU8k4IYk6n7zGMg7jUCDW9L5NyJDdnLbuuhAFpoz5Kfo/ SdyY7bUGFarKDu8xqlI7u2veq+t6m9I6gofb3zwbJuIZFQGxB3TEVuX8jZyFJR5r nUYjnPd247BqXiskiv2nGP1A5OCQi3OAF195zv2phXX1dd5FmXneUdBs3B4/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpoxGkCMk5ViR7lx82Q7g9ajA/g4wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWU2YTdlNDYtYjZhZC00YTdkLWI5 MzAtMWFiMGJmMDJkZDVkLzAvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRG MkUxNDNDOEU4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAd8HPnzxdZUNbWzandUIKn1Q/SkDE+4Iale UT5M7YSd7oSuRbzjYpdvB8gM3QlIKNfFv78ayh2DpKkJnIef6sKREQ31oY6g7sV+ 1it8O4kRbqphCZxt4p4NqfZlrnAsA1z/kHvkBZ+AoLngBgd+b5oLuUcCDP0HnMTM fBGvSjdgzAS3nF6/2NfF4+q0Mohplk3ZEhvNDJ+e93JAtwWEbUCMLwwCWCR5q7Zx Lc403fy17mvUlOjKiYpsLQGKGaMNyylIQ8u15KHo/zKKRRfj9IJIhXxVyca29dt/ vPoBlhNEsmdJ3XqDFIpvgDbgI53kxjRrhCj7oPHxIB7iXImb08I= -----END CERTIFICATE-----Generated at Mon Oct 20 12:03:13 2025 by rpki-client