$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: MHsJb8DGTAxMLOmN3+pR/WJnSlWvFXxM6qhInz0IVsY= Subject key identifier: D2:A7:50:44:69:B9:66:7C:6A:E1:9D:4F:91:C0:E7:C3:D3:63:FF:D8 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 0448FC62405F0656F0354B9C5EF93856D2FA516C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: D8 Signing time: Thu 21 Aug 2025 14:52:19 +0000 Manifest this update: Thu 21 Aug 2025 14:47:19 +0000 Manifest next update: Sun 24 Aug 2025 22:28:19 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: 6ZCLKysVq0iU8gWVUEb4+BFwUZeHS5I4bXoVRZ/k5aA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:48:fc:62:40:5f:06:56:f0:35:4b:9c:5e:f9:38:56:d2:fa:51:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Aug 21 14:47:19 2025 GMT Not After : Aug 24 22:28:19 2025 GMT Subject: CN=D2A7504469B9667C6AE19D4F91C0E7C3D363FFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:bd:92:30:a9:d0:21:26:f2:b4:55:30:18: aa:d1:f6:91:57:b5:a3:99:a2:98:e9:27:39:09:1b: 9e:41:22:d5:81:dc:64:c1:63:cc:0c:64:a5:6d:f9: a5:86:cb:9d:e3:07:53:e8:fd:b6:f3:b8:35:ae:0f: 3a:c7:f3:02:22:e6:da:09:6f:61:4e:5c:fa:ce:2e: c0:d3:c6:34:ce:d3:a8:f3:57:5b:e5:68:b4:0c:d9: 32:40:8a:39:61:1d:12:1e:d8:36:88:c3:a1:4b:2b: 79:8f:ef:ae:60:10:29:aa:02:6d:da:ec:99:54:df: 81:06:1a:70:79:f0:23:f0:c8:35:bc:6f:b5:12:3a: 19:cd:7c:8a:d0:12:34:10:04:1d:4d:f9:0d:20:35: be:ca:b1:84:75:ff:aa:0d:be:1a:72:6b:ee:12:be: ca:f9:5a:22:a9:3b:00:d3:60:7b:05:87:0c:9e:93: 05:53:52:98:a0:cb:31:27:fb:8d:b7:e7:dc:a7:7b: 93:d5:85:92:2d:70:27:ed:81:e5:20:50:d8:52:95: 93:b2:69:30:07:f8:59:4e:a8:05:35:9d:41:52:83: 61:2e:52:23:a1:61:e0:fc:5a:30:9c:64:c6:3b:63: 3e:4b:6c:e5:6c:e4:01:b1:d3:a9:e7:73:58:60:55: ec:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A7:50:44:69:B9:66:7C:6A:E1:9D:4F:91:C0:E7:C3:D3:63:FF:D8 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:8a:22:43:0a:70:b1:39:70:a6:68:37:1a:2a:e8:1e:1f:f8: c3:ec:44:ff:eb:61:c2:4b:98:fe:9f:71:50:a2:93:e1:43:d7: 6c:fd:df:bf:d7:ae:1e:1f:90:19:b5:1e:a5:4a:98:58:bb:82: 81:44:9d:f1:56:d8:65:a0:fb:32:7f:72:c2:fa:59:9e:68:41: 98:da:90:4b:ac:b5:c8:38:8f:71:32:e7:74:46:7f:d8:cb:c9: c8:09:74:8a:e3:57:02:cf:2b:7b:28:2a:7b:36:f0:53:39:ec: 96:91:e9:77:b7:be:12:82:c4:30:c9:54:a5:d6:82:02:4d:1c: 7f:d7:68:7a:9f:e7:d3:1f:fb:b2:e3:b0:3d:23:5a:f8:50:af: 42:99:fc:20:a3:8a:4f:f6:d6:7d:68:74:89:52:33:7e:ef:3f: 9e:d4:27:73:b1:70:7e:9f:35:a4:66:e9:50:59:df:88:e5:31: 71:0e:22:a1:5e:60:31:13:26:82:25:df:73:a3:ed:6b:27:ed: a6:9a:5c:ad:a5:82:b6:de:17:52:e2:ca:e6:b2:e9:38:2f:4f: ef:ef:0b:10:4b:5b:8a:6d:ad:72:2f:9b:e9:fd:cb:94:cc:27: 67:30:7d:cb:e9:43:d2:a6:66:89:76:c9:f6:c3:ca:57:0e:a8: 59:a6:d8:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBEj8YkBfBlbwNUucXvk4VtL6UWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTA4MjExNDQ3MTlaFw0yNTA4MjQyMjI4MTlaMDMxMTAvBgNV BAMTKEQyQTc1MDQ0NjlCOTY2N0M2QUUxOUQ0RjkxQzBFN0MzRDM2M0ZGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM3b2SMKnQISbytFUwGKrR9pFX taOZopjpJzkJG55BItWB3GTBY8wMZKVt+aWGy53jB1Po/bbzuDWuDzrH8wIi5toJ b2FOXPrOLsDTxjTO06jzV1vlaLQM2TJAijlhHRIe2DaIw6FLK3mP765gECmqAm3a 7JlU34EGGnB58CPwyDW8b7USOhnNfIrQEjQQBB1N+Q0gNb7KsYR1/6oNvhpya+4S vsr5WiKpOwDTYHsFhwyekwVTUpigyzEn+42359yne5PVhZItcCftgeUgUNhSlZOy aTAH+FlOqAU1nUFSg2EuUiOhYeD8WjCcZMY7Yz5LbOVs5AGx06nnc1hgVezPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0qdQRGm5Znxq4Z1PkcDnw9Nj/9gwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB2KIkMKcLE5cKZoNxoq6B4f+MPsRP/rYcJL mP6fcVCik+FD12z937/Xrh4fkBm1HqVKmFi7goFEnfFW2GWg+zJ/csL6WZ5oQZja kEustcg4j3Ey53RGf9jLycgJdIrjVwLPK3soKns28FM57JaR6Xe3vhKCxDDJVKXW ggJNHH/XaHqf59Mf+7LjsD0jWvhQr0KZ/CCjik/21n1odIlSM37vP57UJ3OxcH6f NaRm6VBZ34jlMXEOIqFeYDETJoIl33Oj7Wsn7aaaXK2lgrbeF1Liyuay6TgvT+/v CxBLW4ptrXIvm+n9y5TMJ2cwfcvpQ9KmZol2yfbDylcOqFmm2GA= -----END CERTIFICATE-----Generated at Sat Aug 23 17:54:22 2025 by rpki-client