$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: L65Y2RDXI+KpFX/PiAbpENZNpPICCd6G11wRfz91J+0= Subject key identifier: 3E:33:3B:4C:1A:8B:4E:8F:3B:28:05:A1:41:AD:6C:88:EC:F6:78:96 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 172A3C32010CF2CBCA3FB52428F997E7598969DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: AA Signing time: Thu 08 May 2025 01:52:16 +0000 Manifest this update: Thu 08 May 2025 01:47:16 +0000 Manifest next update: Sun 11 May 2025 09:56:16 +0000 Files and hashes: 1: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: MASv1CiG7HxG+FoTOqWecvL56pBW5CtFRKxvVckLyz4=) 2: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 09:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2a:3c:32:01:0c:f2:cb:ca:3f:b5:24:28:f9:97:e7:59:89:69:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: May 8 01:47:16 2025 GMT Not After : May 11 09:56:16 2025 GMT Subject: CN=3E333B4C1A8B4E8F3B2805A141AD6C88ECF67896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:42:34:13:e6:cf:52:b8:6e:c1:1c:ef:14:b7: 18:94:ed:e0:9b:79:01:1f:b4:57:e4:d4:19:91:03: 0a:47:d8:84:b0:52:c2:84:cb:4f:55:2e:a7:9d:e4: 17:bc:7f:bb:5c:d7:e4:2e:09:be:09:c5:9b:4d:76: 88:da:4c:91:11:d6:00:70:ca:3a:f3:6b:ab:30:d8: e2:57:59:49:d6:07:43:23:66:a2:97:9a:3c:39:5f: e1:62:02:59:93:74:3c:38:f1:c3:c4:60:e3:a4:09: 67:ad:2c:81:9e:10:da:55:aa:2f:1c:99:a9:72:d1: 26:18:8a:e1:6d:ba:44:e1:71:ec:b4:72:96:7d:9a: 4d:09:cc:60:09:9a:65:49:c1:21:a2:09:b5:b8:74: 2f:02:be:11:98:8d:70:51:8a:c0:83:a0:66:52:ae: 26:02:b6:7d:ee:0c:a5:38:6c:b5:0f:94:aa:ec:68: 17:00:58:fe:3d:de:89:b8:08:4d:0d:62:59:6a:44: 54:cb:8b:1f:4c:c6:38:5e:c5:08:6e:27:63:17:66: ce:1f:d6:fc:4f:c4:eb:75:1e:1a:27:69:c4:5d:5f: bf:bb:d0:52:e4:8b:e7:82:5c:7b:18:f4:7f:99:8e: 2f:ac:df:62:fd:d2:a8:c2:8b:16:91:73:d1:1e:b6: 20:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:33:3B:4C:1A:8B:4E:8F:3B:28:05:A1:41:AD:6C:88:EC:F6:78:96 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:5b:85:d4:ae:d6:ca:44:7d:2a:83:f9:c8:f3:c5:be:bd:3c: ba:63:f6:1e:96:ce:72:db:8a:88:fa:6a:64:b2:00:7c:f3:cb: f7:2d:bf:d3:a8:d0:0e:97:0a:0e:22:fd:f3:78:db:ee:84:b7: a5:8a:22:ca:40:17:1a:81:59:98:75:70:3a:6a:aa:f4:e6:3b: 1b:45:dd:9e:a2:27:1d:f8:8b:0e:34:01:5f:a0:8a:4d:ce:3f: d4:51:ff:ec:11:ab:0a:3a:e7:8f:86:07:07:0b:7f:9d:30:61: 9c:2f:63:f9:8d:d7:8e:a5:8a:eb:09:75:b4:1c:c4:b2:63:96: 71:c3:3d:6f:7f:af:be:4f:1c:37:94:2d:ec:7c:c7:31:81:cc: f1:dd:4e:c7:50:ec:ea:42:0d:49:0a:6c:c9:ca:67:f8:00:72: 13:8b:64:1b:4d:6b:f9:11:54:37:60:90:5b:c5:1a:45:35:ab: 7e:c8:50:67:36:46:ef:34:78:ea:71:40:70:2d:b7:5d:3c:89: 52:47:b8:96:30:53:ea:eb:c9:94:53:59:9a:0a:ec:85:8f:45: dc:b9:4f:14:01:cf:85:30:bd:50:03:39:63:d3:0d:6b:16:cd: a4:f2:91:6c:64:f7:3c:f1:4d:2b:f6:51:60:ac:8e:0b:91:37: 10:bd:2c:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFyo8MgEM8svKP7UkKPmX51mJadwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTA1MDgwMTQ3MTZaFw0yNTA1MTEwOTU2MTZaMDMxMTAvBgNV BAMTKDNFMzMzQjRDMUE4QjRFOEYzQjI4MDVBMTQxQUQ2Qzg4RUNGNjc4OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnQjQT5s9SuG7BHO8UtxiU7eCb eQEftFfk1BmRAwpH2ISwUsKEy09VLqed5Be8f7tc1+QuCb4JxZtNdojaTJER1gBw yjrza6sw2OJXWUnWB0MjZqKXmjw5X+FiAlmTdDw48cPEYOOkCWetLIGeENpVqi8c maly0SYYiuFtukThcey0cpZ9mk0JzGAJmmVJwSGiCbW4dC8CvhGYjXBRisCDoGZS riYCtn3uDKU4bLUPlKrsaBcAWP493om4CE0NYllqRFTLix9MxjhexQhuJ2MXZs4f 1vxPxOt1HhonacRdX7+70FLki+eCXHsY9H+Zji+s32L90qjCixaRc9EetiDRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPjM7TBqLTo87KAWhQa1siOz2eJYwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFNbhdSu1spEfSqD+cjzxb69PLpj9h6WznLb ioj6amSyAHzzy/ctv9Oo0A6XCg4i/fN42+6Et6WKIspAFxqBWZh1cDpqqvTmOxtF 3Z6iJx34iw40AV+gik3OP9RR/+wRqwo654+GBwcLf50wYZwvY/mN146liusJdbQc xLJjlnHDPW9/r75PHDeULex8xzGBzPHdTsdQ7OpCDUkKbMnKZ/gAchOLZBtNa/kR VDdgkFvFGkU1q37IUGc2Ru80eOpxQHAtt108iVJHuJYwU+rryZRTWZoK7IWPRdy5 TxQBz4UwvVADOWPTDWsWzaTykWxk9zzxTSv2UWCsjguRNxC9LDw= -----END CERTIFICATE-----Generated at Fri May 9 02:06:42 2025 by rpki-client