$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: xfW4lcjKxmDf2Afi4J9E4G7QJT7+oIVIVPheWEK5IaE= Subject key identifier: 86:E2:28:54:08:C0:A5:0A:60:78:2E:A8:74:E8:DA:7C:35:2E:03:B2 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 1A99C3DF25C36BFD7D5DB86E0DA76BCFCE23B81E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 014A Signing time: Wed 14 May 2025 04:51:03 +0000 Manifest this update: Wed 14 May 2025 04:46:03 +0000 Manifest next update: Sat 17 May 2025 13:47:03 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: 5asog/qHsQw1jk/gk+94SuOTyth7b7Mj/rF4jgPVv+o=) 2: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 3: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 4: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 13:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:99:c3:df:25:c3:6b:fd:7d:5d:b8:6e:0d:a7:6b:cf:ce:23:b8:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: May 14 04:46:03 2025 GMT Not After : May 17 13:47:03 2025 GMT Subject: CN=86E2285408C0A50A60782EA874E8DA7C352E03B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:86:a2:d5:62:67:17:62:18:63:59:6c:ec:ba: ef:fe:7a:ac:4d:9d:9b:34:5e:90:85:70:88:0c:15: 4a:96:53:fe:d5:91:ab:c1:42:f3:8a:ab:1f:80:96: 4f:f8:68:c7:92:81:d9:97:ea:ca:3d:d2:1a:c8:df: fe:01:b2:13:18:85:a5:bd:f3:e9:8b:5e:01:19:54: db:a8:35:7f:20:60:e5:15:31:90:37:37:d0:5b:4b: 3d:a8:46:9b:c7:0e:00:89:f5:64:b0:4c:97:98:d6: 71:b8:4c:db:54:05:5b:41:07:e2:e3:91:be:f4:61: 30:55:3e:67:fc:e9:13:a4:98:d2:68:cf:07:29:c5: 7e:e9:16:c4:60:aa:2f:cf:6b:c4:7a:f3:1f:ac:ad: 26:f2:42:98:40:26:81:1a:73:6a:22:8c:83:b7:d7: 8b:08:9c:68:0e:f3:32:a2:d6:5f:a8:b4:3f:98:a5: f0:24:fa:79:b4:6b:62:c9:ac:61:82:71:64:43:e5: 2c:35:19:da:9f:cf:36:71:e5:a0:a1:22:be:98:ea: b6:71:73:07:3a:d8:00:72:f4:99:0e:4a:7b:3e:0c: bc:13:69:7b:d9:32:1f:e6:12:00:fb:79:93:bc:7c: 24:c3:ce:d3:a5:a1:81:21:ed:ea:a0:ea:9e:a1:32: 50:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E2:28:54:08:C0:A5:0A:60:78:2E:A8:74:E8:DA:7C:35:2E:03:B2 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:cd:72:d3:2b:32:83:ab:d5:b2:1d:35:3a:8f:71:b1:ef:ee: e8:63:56:d9:83:d0:7c:a9:11:3a:35:62:11:4a:d4:7f:69:28: 0f:ab:1c:de:8f:c8:90:31:86:74:c3:8c:f3:4e:9d:70:93:57: 94:26:c8:06:67:17:ea:e5:d7:27:9c:d6:95:5c:bd:0f:13:f8: b3:07:42:0f:75:d4:39:5a:2d:1d:6f:2a:ae:6c:37:67:36:c0: d7:55:9f:ee:79:59:25:7f:0a:ba:db:36:ff:7c:8e:38:9f:6f: c6:c7:0d:b0:b1:13:ed:d9:da:0a:10:85:8b:8e:47:de:03:5c: 89:31:1b:57:eb:d9:50:79:37:1d:6a:7d:6e:cb:ee:79:1d:29: 22:3a:f3:bc:99:96:96:72:67:c0:15:50:d4:5c:23:14:58:22: 91:6a:d0:e7:27:57:78:2a:41:8d:b1:7f:63:9d:ec:90:0e:c1: 35:59:1f:c8:ea:7c:8c:10:37:0a:7d:ce:9a:a0:e3:20:90:8f: 93:d0:dd:fd:ca:4e:99:89:90:50:e5:4a:b5:fa:f3:53:cc:3e: 7b:b3:d5:2a:dd:a5:b6:2e:6d:34:d7:2e:a3:c6:96:d9:48:ec: 20:07:e3:a3:4e:1b:e4:05:06:3a:b3:f4:01:77:76:94:71:41: 0f:03:57:47 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGpnD3yXDa/19XbhuDadrz84juB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTA1MTQwNDQ2MDNaFw0yNTA1MTcxMzQ3MDNaMDMxMTAvBgNV BAMTKDg2RTIyODU0MDhDMEE1MEE2MDc4MkVBODc0RThEQTdDMzUyRTAzQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmhqLVYmcXYhhjWWzsuu/+eqxN nZs0XpCFcIgMFUqWU/7VkavBQvOKqx+Alk/4aMeSgdmX6so90hrI3/4BshMYhaW9 8+mLXgEZVNuoNX8gYOUVMZA3N9BbSz2oRpvHDgCJ9WSwTJeY1nG4TNtUBVtBB+Lj kb70YTBVPmf86ROkmNJozwcpxX7pFsRgqi/Pa8R68x+srSbyQphAJoEac2oijIO3 14sInGgO8zKi1l+otD+YpfAk+nm0a2LJrGGCcWRD5Sw1GdqfzzZx5aChIr6Y6rZx cwc62ABy9JkOSns+DLwTaXvZMh/mEgD7eZO8fCTDztOloYEh7eqg6p6hMlATAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhuIoVAjApQpgeC6odOjafDUuA7IwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB7NctMrMoOr1bIdNTqPcbHv7uhjVtmD0Hyp ETo1YhFK1H9pKA+rHN6PyJAxhnTDjPNOnXCTV5QmyAZnF+rl1yec1pVcvQ8T+LMH Qg911DlaLR1vKq5sN2c2wNdVn+55WSV/CrrbNv98jjifb8bHDbCxE+3Z2goQhYuO R94DXIkxG1fr2VB5Nx1qfW7L7nkdKSI687yZlpZyZ8AVUNRcIxRYIpFq0OcnV3gq QY2xf2Od7JAOwTVZH8jqfIwQNwp9zpqg4yCQj5PQ3f3KTpmJkFDlSrX681PMPnuz 1SrdpbYubTTXLqPGltlI7CAH46NOG+QFBjqz9AF3dpRxQQ8DV0c= -----END CERTIFICATE-----Generated at Thu May 15 12:23:03 2025 by rpki-client