$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: ZhifO9MA84ICgdYzzeZSO1lBK21ZxlcZuB8lAQaLL9o= Subject key identifier: A7:4B:59:6C:55:D1:9D:3A:BB:0E:5D:31:A8:05:5A:49:D4:67:F6:56 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 5F74B97A60692F95B77F49DABA517E30B7633799 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 0160 Signing time: Wed 02 Jul 2025 19:11:10 +0000 Manifest this update: Wed 02 Jul 2025 19:06:10 +0000 Manifest next update: Sun 06 Jul 2025 04:09:10 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: LNWuJW8aNnU3E1RUCIQHqTqqIq2NeFlvpSQZxSmtcOM=) 2: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 3: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) 4: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 04:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:74:b9:7a:60:69:2f:95:b7:7f:49:da:ba:51:7e:30:b7:63:37:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Jul 2 19:06:10 2025 GMT Not After : Jul 6 04:09:10 2025 GMT Subject: CN=A74B596C55D19D3ABB0E5D31A8055A49D467F656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b9:0f:5d:d2:b3:5e:21:e2:3f:bf:75:e9:12: 59:a8:10:27:9f:b9:8a:28:97:d7:6b:3d:1c:f2:74: f5:52:1b:b3:de:8d:7a:5e:49:40:54:1a:10:34:da: cb:02:0a:b4:7b:f1:5d:7a:34:6a:23:7a:0d:ab:8f: ab:45:6e:52:7d:95:e3:b5:a2:af:1a:83:a6:1c:ad: ef:62:f4:56:63:e6:49:dd:b5:e9:6f:1c:0f:cb:49: 84:92:63:0b:2f:e0:a9:b7:0d:19:95:ae:31:e6:34: 42:54:bb:43:7d:48:e6:ec:ed:d0:32:fc:49:86:c8: 09:05:ad:10:90:cd:a0:99:ad:7b:55:1b:5d:10:2b: 96:05:e4:99:b3:fa:d3:d0:c7:71:84:89:b6:fe:0e: a9:d6:4e:2a:a4:e5:07:e5:ef:27:a0:ac:59:c5:cb: de:1e:48:72:c0:8c:a3:f1:0d:7f:4e:b1:8a:30:33: e5:13:36:45:46:4f:21:f1:64:c4:5d:6c:45:4a:ff: 32:fe:39:05:a3:03:aa:a4:e5:15:b2:ef:17:58:78: 1f:0d:14:6c:ca:31:77:52:4e:54:ad:d4:9d:86:0d: 38:82:ee:63:e9:95:d2:d9:a5:f8:61:cb:61:0c:dd: 9e:6d:89:26:9f:62:ff:34:63:f3:2f:39:25:33:55: 9c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:4B:59:6C:55:D1:9D:3A:BB:0E:5D:31:A8:05:5A:49:D4:67:F6:56 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:e4:61:7b:4a:bf:c0:96:17:eb:cc:63:41:9c:89:23:f6:ab: e0:5b:73:9a:55:18:d5:00:85:22:08:3b:eb:95:39:3b:1e:3f: 81:bf:b5:57:28:5d:3d:8d:dd:d9:32:60:70:42:a6:10:2a:e1: 21:23:4f:27:23:93:a0:93:36:0f:3d:23:e0:4c:24:a8:7c:c1: ce:13:eb:69:32:c7:90:6d:56:9a:70:88:dc:f4:af:1e:24:82: 9e:8e:1d:19:0f:de:d6:1b:a0:d3:b8:77:dc:cd:95:26:5e:86: a8:2f:26:b3:19:86:c9:dc:36:d7:f6:40:44:dd:37:9d:7a:e7: 69:bf:3d:d1:39:ea:75:34:d0:18:10:36:7d:1a:25:8d:c9:9f: e9:42:0c:ed:b5:fb:5c:1b:33:38:3f:32:87:26:65:12:b4:c3: 18:38:be:65:dd:b5:a2:c4:07:dd:2a:f6:fa:63:ab:f8:18:2d: de:0a:ce:45:4c:8d:33:e4:2b:f1:83:c7:d8:a5:0e:d7:1d:32: fa:88:a2:da:fe:69:3f:1c:29:8b:7a:2c:60:eb:77:49:bb:34: da:fa:35:53:0b:63:93:f6:fc:fe:bd:12:fa:b6:a5:2b:ad:e3: 0d:a6:77:59:1e:91:5e:1e:08:23:c7:71:dd:b9:f6:0f:5f:bd: 59:3e:1a:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX3S5emBpL5W3f0naulF+MLdjN5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTA3MDIxOTA2MTBaFw0yNTA3MDYwNDA5MTBaMDMxMTAvBgNV BAMTKEE3NEI1OTZDNTVEMTlEM0FCQjBFNUQzMUE4MDU1QTQ5RDQ2N0Y2NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCquQ9d0rNeIeI/v3XpElmoECef uYool9drPRzydPVSG7PejXpeSUBUGhA02ssCCrR78V16NGojeg2rj6tFblJ9leO1 oq8ag6Ycre9i9FZj5kndtelvHA/LSYSSYwsv4Km3DRmVrjHmNEJUu0N9SObs7dAy /EmGyAkFrRCQzaCZrXtVG10QK5YF5Jmz+tPQx3GEibb+DqnWTiqk5Qfl7yegrFnF y94eSHLAjKPxDX9OsYowM+UTNkVGTyHxZMRdbEVK/zL+OQWjA6qk5RWy7xdYeB8N FGzKMXdSTlSt1J2GDTiC7mPpldLZpfhhy2EM3Z5tiSafYv80Y/MvOSUzVZx5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUp0tZbFXRnTq7Dl0xqAVaSdRn9lYwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJbkYXtKv8CWF+vMY0GciSP2q+Bbc5pVGNUA hSIIO+uVOTseP4G/tVcoXT2N3dkyYHBCphAq4SEjTycjk6CTNg89I+BMJKh8wc4T 62kyx5BtVppwiNz0rx4kgp6OHRkP3tYboNO4d9zNlSZehqgvJrMZhsncNtf2QETd N51652m/PdE56nU00BgQNn0aJY3Jn+lCDO21+1wbMzg/MocmZRK0wxg4vmXdtaLE B90q9vpjq/gYLd4KzkVMjTPkK/GDx9ilDtcdMvqIotr+aT8cKYt6LGDrd0m7NNr6 NVMLY5P2/P69Evq2pSut4w2md1kekV4eCCPHcd259g9fvVk+Gks= -----END CERTIFICATE-----Generated at Thu Jul 3 14:16:34 2025 by rpki-client