$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: rTcl5vcRIr7cSIm2cuzV4qoC+3+UNkvsWpT7gjKhslE= Subject key identifier: 7D:A5:EA:72:57:B9:2D:3E:B3:B7:B3:62:26:46:7D:17:D1:95:3E:BD Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 07F3ADB5822D1BF78893C8E33C561BCC3BCEC34C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: F2 Signing time: Sat 18 Oct 2025 09:02:21 +0000 Manifest this update: Sat 18 Oct 2025 08:57:21 +0000 Manifest next update: Tue 21 Oct 2025 17:02:21 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: 2yx9SG8hw7GmfpTi6l2rhYRKPgv3Qv7L2Cst3QY4n30=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 17:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:f3:ad:b5:82:2d:1b:f7:88:93:c8:e3:3c:56:1b:cc:3b:ce:c3:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Oct 18 08:57:21 2025 GMT Not After : Oct 21 17:02:21 2025 GMT Subject: CN=7DA5EA7257B92D3EB3B7B36226467D17D1953EBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4d:0f:c7:fa:2d:ab:d5:49:1b:89:ae:29:3f: be:5a:2c:e6:c1:9d:6c:f6:79:2b:30:02:28:7b:56: fe:cc:36:db:ec:7c:ab:d2:62:8e:59:b5:bf:5e:ed: 07:18:34:83:40:d9:a0:a3:69:e7:cb:f3:8e:bc:50: 59:63:d3:02:19:1c:4e:b9:a3:37:b9:29:2a:f9:01: e5:dd:47:f7:f2:4b:28:b4:d2:42:d2:c1:18:31:50: a7:28:60:60:b3:12:4e:2a:d0:e7:29:6f:9e:d1:de: 00:5a:06:1a:ba:1d:b0:71:9d:55:19:2a:60:29:2d: 89:36:bf:52:f3:b2:46:4d:de:ef:ad:e2:dd:6d:8f: fe:05:5e:42:70:17:79:33:e1:b6:d2:63:2e:c9:77: f0:4a:b4:1c:b6:95:3e:be:c1:0b:17:ee:d6:22:73: d8:56:73:57:12:25:0e:7f:78:47:9b:ac:db:dc:af: c7:b6:3d:34:1c:5b:ca:ff:2a:5e:e6:10:c9:30:6a: 84:63:a5:16:07:6c:de:f2:33:c4:37:d4:6f:0b:19: 49:9a:71:6d:b6:06:44:b7:84:cf:ae:30:1a:98:1a: dc:67:f0:f5:3a:04:3d:92:e5:f1:df:26:41:41:01: df:41:5c:fa:9a:d1:c9:61:52:f2:82:c1:06:79:ba: 22:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A5:EA:72:57:B9:2D:3E:B3:B7:B3:62:26:46:7D:17:D1:95:3E:BD X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:a0:97:4a:c6:03:17:c6:8d:ff:57:69:2b:f8:a0:71:a3:91: 9a:1e:00:13:52:20:0c:9c:74:17:c3:f1:fb:b4:48:67:ef:b2: 34:c2:19:58:07:8f:e6:7a:8c:cd:94:45:10:cc:3b:62:71:ba: f3:97:be:9a:fd:63:f8:f8:7b:91:80:61:e1:00:83:e5:de:42: 74:cb:a8:88:c4:9c:ab:d9:60:b9:3e:af:e5:dc:0c:71:f7:5e: 10:f4:b3:b9:70:c3:28:8c:71:61:d9:d6:29:01:56:38:be:07: 3a:b9:f7:f5:b7:a7:0c:7e:49:27:fd:75:ef:35:ab:08:a7:6f: af:18:c7:74:14:d2:68:57:26:80:94:9e:3f:66:2a:c6:aa:2d: 3f:74:9a:81:e3:cd:0e:5e:e0:18:f5:74:a8:d4:b7:b5:86:86: 0f:09:68:f8:7c:fb:06:f2:ce:c6:38:5f:7d:27:1f:0b:59:c2: 4c:57:6a:f8:0b:7d:af:1f:1c:96:73:54:33:fa:c5:75:2b:33: 46:48:78:a8:5f:ff:d0:48:49:b3:66:56:e2:7d:4d:1b:0f:91: da:8d:10:c0:ac:ee:8d:35:91:68:07:51:7e:59:ec:f7:82:06: e4:3d:ed:a8:67:7d:e2:15:57:46:78:e4:38:a1:11:0c:3f:6a: f6:aa:ed:31 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB/OttYItG/eIk8jjPFYbzDvOw0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTEwMTgwODU3MjFaFw0yNTEwMjExNzAyMjFaMDMxMTAvBgNV BAMTKDdEQTVFQTcyNTdCOTJEM0VCM0I3QjM2MjI2NDY3RDE3RDE5NTNFQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjTQ/H+i2r1Ukbia4pP75aLObB nWz2eSswAih7Vv7MNtvsfKvSYo5Ztb9e7QcYNINA2aCjaefL8468UFlj0wIZHE65 oze5KSr5AeXdR/fySyi00kLSwRgxUKcoYGCzEk4q0Ocpb57R3gBaBhq6HbBxnVUZ KmApLYk2v1LzskZN3u+t4t1tj/4FXkJwF3kz4bbSYy7Jd/BKtBy2lT6+wQsX7tYi c9hWc1cSJQ5/eEebrNvcr8e2PTQcW8r/Kl7mEMkwaoRjpRYHbN7yM8Q31G8LGUma cW22BkS3hM+uMBqYGtxn8PU6BD2S5fHfJkFBAd9BXPqa0clhUvKCwQZ5uiKdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfaXqcle5LT6zt7NiJkZ9F9GVPr0wHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGCgl0rGAxfGjf9XaSv4oHGjkZoeABNSIAyc dBfD8fu0SGfvsjTCGVgHj+Z6jM2URRDMO2JxuvOXvpr9Y/j4e5GAYeEAg+XeQnTL qIjEnKvZYLk+r+XcDHH3XhD0s7lwwyiMcWHZ1ikBVji+Bzq59/W3pwx+SSf9de81 qwinb68Yx3QU0mhXJoCUnj9mKsaqLT90moHjzQ5e4Bj1dKjUt7WGhg8JaPh8+wby zsY4X30nHwtZwkxXavgLfa8fHJZzVDP6xXUrM0ZIeKhf/9BISbNmVuJ9TRsPkdqN EMCs7o01kWgHUX5Z7PeCBuQ97ahnfeIVV0Z45DihEQw/avaq7TE= -----END CERTIFICATE-----Generated at Mon Oct 20 08:47:04 2025 by rpki-client