$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: mFv058GHVQb0aTa9geAEVJMlEjRGtL6Aeb6gfPzSkHE= Subject key identifier: 97:97:8F:B8:62:B9:E0:28:FB:43:10:7F:E2:84:07:B7:FE:5E:CE:B0 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 1AB3D4CCA62924942A8E21243026E29C85E55CB6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: C1 Signing time: Sun 29 Jun 2025 19:32:16 +0000 Manifest this update: Sun 29 Jun 2025 19:27:16 +0000 Manifest next update: Thu 03 Jul 2025 04:38:16 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: a3q7FDbk8tns+IK81OMG7scTNMHpcXB3e4SMsGoeVbE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b3:d4:cc:a6:29:24:94:2a:8e:21:24:30:26:e2:9c:85:e5:5c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Jun 29 19:27:16 2025 GMT Not After : Jul 3 04:38:16 2025 GMT Subject: CN=97978FB862B9E028FB43107FE28407B7FE5ECEB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:90:4b:57:5c:2e:91:84:67:db:6a:c6:fa:8e: 23:42:6f:97:9a:99:b6:ed:c2:e1:27:8c:1f:e9:f7: 15:77:2a:d6:80:90:97:18:98:5f:c4:97:10:e1:48: 05:6b:a7:72:ca:e6:26:6f:32:4a:52:35:d4:2d:70: 14:75:83:20:9f:16:36:5a:45:34:c4:7c:da:a7:fa: 9f:6d:04:d0:38:cb:0a:14:da:9f:fe:87:1c:1a:5f: eb:48:20:00:a4:42:b0:dc:34:47:84:e2:36:b7:a9: c5:2b:c5:b7:94:c3:90:d3:3f:c5:35:b8:33:f9:59: e8:84:89:df:06:7f:d3:1a:ea:34:f6:50:4f:a2:51: cc:ff:e9:d3:3e:9d:76:d0:0e:32:76:8b:10:b2:74: 52:18:fd:76:c4:1c:40:f9:e0:40:06:ac:19:ce:95: 7b:b5:3b:2e:98:a6:39:9f:6a:7c:ca:c5:cf:79:82: 2c:4c:d0:8d:58:b7:f0:a1:60:82:46:21:f3:fd:7c: 63:ec:b1:ae:28:58:93:69:2a:19:3c:76:a6:49:4c: 35:30:22:54:65:26:ef:50:d9:d7:97:c9:11:f8:5f: f3:39:82:77:18:86:79:2f:68:7c:07:0a:47:95:13: 88:e2:f6:a2:85:1b:55:d2:e8:ca:51:19:2a:d8:d4: 37:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:97:8F:B8:62:B9:E0:28:FB:43:10:7F:E2:84:07:B7:FE:5E:CE:B0 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:7c:27:87:f6:a6:da:b9:23:ad:44:e3:27:ef:78:ea:00:ee: a5:91:4d:59:09:dd:8b:5c:84:2f:10:e4:18:f4:13:61:74:d5: f8:51:36:6a:f7:8c:59:a6:ef:9e:e8:54:db:a9:f2:3b:4e:47: 8e:78:48:7e:fe:c4:69:5e:42:e8:15:58:65:87:e7:90:90:38: 3f:25:81:87:5c:b9:03:47:8a:85:c7:c1:7a:37:53:57:ec:69: f1:49:43:f1:dd:f4:0f:14:21:ba:92:0a:b5:47:6a:5f:e6:cf: 04:2e:3f:2a:e2:ba:af:c3:ae:50:97:a3:35:49:b0:b6:46:e1: cb:3e:3d:0f:3a:ef:f4:63:ee:1d:0c:65:71:8c:28:83:30:64: d2:aa:a7:c0:fa:76:f4:93:bd:3d:23:fe:7f:a1:b8:77:71:39: fb:ae:74:9e:ef:0b:2d:60:bd:20:df:93:17:9a:e2:98:f2:1f: 17:7d:a0:d4:bd:a5:a1:a7:a3:8a:43:4d:3e:c1:d4:90:9b:f0: 01:d9:d0:f7:ba:d2:4b:51:f9:85:46:49:c4:28:08:38:69:22: fc:1d:81:59:04:44:86:f9:a6:6d:e6:1a:a7:89:d5:87:f7:cc: d7:22:36:ca:d9:70:be:11:41:37:68:e7:b2:2d:a2:1f:55:a6: 11:4b:70:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGrPUzKYpJJQqjiEkMCbinIXlXLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTA2MjkxOTI3MTZaFw0yNTA3MDMwNDM4MTZaMDMxMTAvBgNV BAMTKDk3OTc4RkI4NjJCOUUwMjhGQjQzMTA3RkUyODQwN0I3RkU1RUNFQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKkEtXXC6RhGfbasb6jiNCb5ea mbbtwuEnjB/p9xV3KtaAkJcYmF/ElxDhSAVrp3LK5iZvMkpSNdQtcBR1gyCfFjZa RTTEfNqn+p9tBNA4ywoU2p/+hxwaX+tIIACkQrDcNEeE4ja3qcUrxbeUw5DTP8U1 uDP5WeiEid8Gf9Ma6jT2UE+iUcz/6dM+nXbQDjJ2ixCydFIY/XbEHED54EAGrBnO lXu1Oy6YpjmfanzKxc95gixM0I1Yt/ChYIJGIfP9fGPssa4oWJNpKhk8dqZJTDUw IlRlJu9Q2deXyRH4X/M5gncYhnkvaHwHCkeVE4ji9qKFG1XS6MpRGSrY1DcrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUl5ePuGK54Cj7QxB/4oQHt/5ezrAwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJB8J4f2ptq5I61E4yfveOoA7qWRTVkJ3Ytc hC8Q5Bj0E2F01fhRNmr3jFmm757oVNup8jtOR454SH7+xGleQugVWGWH55CQOD8l gYdcuQNHioXHwXo3U1fsafFJQ/Hd9A8UIbqSCrVHal/mzwQuPyriuq/DrlCXozVJ sLZG4cs+PQ867/Rj7h0MZXGMKIMwZNKqp8D6dvSTvT0j/n+huHdxOfuudJ7vCy1g vSDfkxea4pjyHxd9oNS9paGno4pDTT7B1JCb8AHZ0Pe60ktR+YVGScQoCDhpIvwd gVkERIb5pm3mGqeJ1Yf3zNciNsrZcL4RQTdo57Itoh9VphFLcEs= -----END CERTIFICATE-----Generated at Mon Jun 30 13:34:37 2025 by rpki-client