$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: zCamPtpps/jkHXdBCgNODGRPF1uGqg86rk0e0dWIJHU= Subject key identifier: A7:1F:94:F8:AC:56:96:CA:B8:A9:86:3C:8B:95:0A:42:F5:C0:A7:E7 Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 32D8BEB24C7FD2907C5D52076D360B76CD007A3A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 0284 Signing time: Thu 21 Aug 2025 12:20:51 +0000 Manifest this update: Thu 21 Aug 2025 12:15:51 +0000 Manifest next update: Sun 24 Aug 2025 19:17:51 +0000 Files and hashes: 1: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) 2: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: 2QpG+zcJxjxUnTtPhPQVEELskcbnR7rv2a6doiBjW30=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d8:be:b2:4c:7f:d2:90:7c:5d:52:07:6d:36:0b:76:cd:00:7a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Aug 21 12:15:51 2025 GMT Not After : Aug 24 19:17:51 2025 GMT Subject: CN=A71F94F8AC5696CAB8A9863C8B950A42F5C0A7E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:01:e6:7a:10:34:06:56:ad:fc:2a:39:1b:66: e2:31:a5:88:75:3e:24:cb:c6:69:b6:28:d7:67:06: c0:ff:40:5f:b4:78:f0:03:06:e9:15:e9:60:b7:c9: aa:b4:da:31:ff:a3:e4:68:c6:53:dc:29:74:8e:d0: 12:5c:ea:de:d0:6d:4b:f3:e3:88:be:82:86:19:0b: 52:db:20:12:42:ad:3d:0f:da:4d:26:35:af:78:58: e4:51:34:47:4e:dd:f3:74:f9:f3:85:3b:ca:fa:c0: 67:63:9b:5b:3c:f3:dd:d7:df:ea:52:f0:c8:26:17: ea:aa:26:2a:f7:8c:b2:ef:4b:6c:96:ac:b9:ea:bc: 72:6c:75:2a:87:fa:a9:27:92:ab:38:3f:f0:29:68: b4:a3:1a:a9:7e:5f:58:a7:13:36:a2:85:9a:37:6e: 10:b3:ba:b2:81:a4:a8:53:f0:6f:6b:8b:bb:02:92: c2:11:3a:f5:1b:68:7c:f5:4a:88:da:0f:fb:aa:82: 80:00:c8:56:00:ec:48:28:31:d8:e2:87:bd:3b:5d: 77:f1:22:24:58:0b:90:fb:5f:1b:60:fd:ea:d7:ee: b2:9c:e0:a1:1b:e2:14:cd:2e:6e:0f:25:7d:c8:52: b0:1c:fe:0f:bb:0e:45:7e:9e:80:75:0c:65:7f:3d: ca:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:1F:94:F8:AC:56:96:CA:B8:A9:86:3C:8B:95:0A:42:F5:C0:A7:E7 X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:1a:37:be:0b:bd:31:bf:b5:50:d3:a2:a2:dd:d0:59:55:c3: 67:c6:36:6b:1e:b1:61:7d:5f:d2:26:e4:e0:8a:2b:96:67:51: 8e:a1:65:a3:36:bd:9e:1d:99:cc:3b:9a:63:d2:11:9a:6a:37: 5c:17:4b:a6:1b:3f:11:be:b1:e7:27:c0:29:1e:c4:5d:81:2b: 8c:9c:6f:5e:11:cf:a2:88:f0:e6:08:82:6b:6c:05:ac:82:b9: 4a:44:1f:21:28:88:18:76:33:43:f8:73:57:83:9c:b3:2e:a2: 93:72:d1:94:d7:cd:b3:14:04:4c:d8:36:45:97:be:8b:39:9d: 3c:47:7e:36:a1:0a:e0:9e:62:b9:54:23:9f:ae:85:7a:8b:6c: aa:94:f4:b7:2d:ce:0d:0d:d2:54:a1:1e:4c:54:01:f6:12:62: da:55:86:cc:dd:1a:58:a5:5c:5f:c5:7a:75:7c:35:ed:e5:6b: a1:d2:ee:25:76:46:ee:53:63:50:2e:c4:11:14:db:95:fc:66: 59:92:15:bd:4d:85:00:b9:09:02:e7:a3:c9:43:3a:6a:88:c6: 3a:e5:b5:8f:ae:a9:f3:39:bd:ea:cd:fc:dd:17:4a:12:2c:f1: f1:fd:83:10:6d:4b:02:27:bc:2d:5a:b8:cc:56:6b:f0:56:6d: a9:65:da:b4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMti+skx/0pB8XVIHbTYLds0AejowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNTA4MjExMjE1NTFaFw0yNTA4MjQxOTE3NTFaMDMxMTAvBgNV BAMTKEE3MUY5NEY4QUM1Njk2Q0FCOEE5ODYzQzhCOTUwQTQyRjVDMEE3RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeAeZ6EDQGVq38KjkbZuIxpYh1 PiTLxmm2KNdnBsD/QF+0ePADBukV6WC3yaq02jH/o+RoxlPcKXSO0BJc6t7QbUvz 44i+goYZC1LbIBJCrT0P2k0mNa94WORRNEdO3fN0+fOFO8r6wGdjm1s8893X3+pS 8MgmF+qqJir3jLLvS2yWrLnqvHJsdSqH+qknkqs4P/ApaLSjGql+X1inEzaihZo3 bhCzurKBpKhT8G9ri7sCksIROvUbaHz1SojaD/uqgoAAyFYA7EgoMdjih707XXfx IiRYC5D7Xxtg/erX7rKc4KEb4hTNLm4PJX3IUrAc/g+7DkV+noB1DGV/PcrbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpx+U+KxWlsq4qYY8i5UKQvXAp+cwHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADMaN74LvTG/tVDToqLd0FlVw2fGNmsesWF9 X9Im5OCKK5ZnUY6hZaM2vZ4dmcw7mmPSEZpqN1wXS6YbPxG+secnwCkexF2BK4yc b14Rz6KI8OYIgmtsBayCuUpEHyEoiBh2M0P4c1eDnLMuopNy0ZTXzbMUBEzYNkWX vos5nTxHfjahCuCeYrlUI5+uhXqLbKqU9Lctzg0N0lShHkxUAfYSYtpVhszdGlil XF/FenV8Ne3la6HS7iV2Ru5TY1AuxBEU25X8ZlmSFb1NhQC5CQLno8lDOmqIxjrl tY+uqfM5verN/N0XShIs8fH9gxBtSwInvC1auMxWa/BWball2rQ= -----END CERTIFICATE-----Generated at Sat Aug 23 12:28:35 2025 by rpki-client