$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: SOUFysmHLr2zBEOb41Kr++iDRB8OI1Iler9OUvQjlos= Subject key identifier: 0F:52:D8:37:C9:1E:61:7B:A9:03:A6:E9:A3:31:77:FB:5F:AB:58:37 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 140099C8788EACD7C94066451C4693F9503D15B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 0177 Signing time: Fri 22 Aug 2025 18:22:02 +0000 Manifest this update: Fri 22 Aug 2025 18:17:02 +0000 Manifest next update: Tue 26 Aug 2025 00:11:02 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: m72S//vAdwlf00xWv0vaWHLbyE+FW7+6EltgXffqu3I=) 2: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 3: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 4: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 00:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:00:99:c8:78:8e:ac:d7:c9:40:66:45:1c:46:93:f9:50:3d:15:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Aug 22 18:17:02 2025 GMT Not After : Aug 26 00:11:02 2025 GMT Subject: CN=0F52D837C91E617BA903A6E9A33177FB5FAB5837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c5:1a:62:8c:17:b5:84:1b:7f:3b:a7:85:b4: b7:46:b4:09:58:d2:9e:6b:87:76:85:7a:5e:e8:ce: 8e:dc:0d:0a:21:20:fb:63:de:d8:58:95:9e:25:6c: 26:7b:6a:1b:51:84:fb:d0:58:65:75:5d:26:d2:f0: a9:f1:83:93:42:ee:4c:cc:82:46:a1:95:ce:2a:e1: e2:f6:fe:c2:c8:13:db:45:cc:9d:e6:26:f6:d0:ca: 9c:78:1e:83:3f:8b:93:84:72:40:26:ed:21:e5:4d: 9c:8b:55:d8:82:25:fa:f6:fa:ad:11:e5:46:45:8b: 04:81:03:61:71:76:a5:df:7a:a1:76:8e:cf:64:ac: 2e:68:a1:73:e4:a2:c9:14:d3:1c:8e:79:c6:34:2a: 15:3f:86:6e:ba:85:4c:df:fd:85:59:54:ce:2b:98: 1a:1e:09:98:21:1e:96:75:12:c3:ec:c2:6b:95:14: 2a:3a:b0:97:81:44:dc:6e:9b:45:e1:78:e1:7e:6c: 05:27:95:ba:c1:7d:23:44:c7:dd:b6:6d:58:29:da: db:8f:86:e4:8a:be:99:8e:6b:6c:c1:f2:ae:86:c0: 0f:0d:61:2c:7c:bd:1c:52:4d:b4:54:a8:f8:c1:90: 02:b1:05:c2:2f:f7:a4:27:ad:4b:29:86:76:c0:df: 04:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:52:D8:37:C9:1E:61:7B:A9:03:A6:E9:A3:31:77:FB:5F:AB:58:37 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:65:31:04:2a:c1:98:46:94:c4:7d:e3:f6:b2:48:ca:06:a5: 2b:ab:6c:45:67:5a:df:d2:eb:c8:28:d6:89:01:99:5f:2b:d4: 32:46:13:66:b7:d9:b1:86:52:9e:e7:03:7e:0c:43:b3:d0:9c: a3:d3:88:04:30:f2:6e:e7:ca:0a:2b:dc:42:d4:c6:09:ad:60: 6c:3a:55:d6:55:cb:16:33:4b:7c:63:89:e5:ed:f9:a0:9e:a1: a2:69:6b:00:c5:cb:13:59:5e:68:48:7f:25:94:8d:6b:06:22: a9:94:62:e3:78:39:74:d6:f0:ed:d9:16:0a:fe:61:40:d2:f9: b6:46:63:b5:44:a3:b4:4c:c6:6f:ef:ff:08:54:91:54:6a:ea: f7:cc:6f:2e:de:e6:27:01:41:7d:02:f0:4e:2f:a3:6c:d8:00: 3a:f0:b4:f1:20:9a:3b:b0:bc:cd:7a:9d:bc:ee:c6:47:72:9c: 51:3d:bd:e9:0d:99:98:dc:c2:7d:c9:51:e3:f2:af:9e:a9:4b: e0:c9:54:1e:cf:33:0d:6a:65:6a:f4:fa:64:3a:22:3b:99:a2: ee:71:87:f1:7b:94:77:c4:4e:3f:64:a3:f0:1f:0a:2a:08:02: f7:69:f2:9d:b3:1b:72:a7:d1:58:7f:fd:cd:41:57:ba:1b:92: 0b:31:66:99 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFACZyHiOrNfJQGZFHEaT+VA9FbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTA4MjIxODE3MDJaFw0yNTA4MjYwMDExMDJaMDMxMTAvBgNV BAMTKDBGNTJEODM3QzkxRTYxN0JBOTAzQTZFOUEzMzE3N0ZCNUZBQjU4MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWxRpijBe1hBt/O6eFtLdGtAlY 0p5rh3aFel7ozo7cDQohIPtj3thYlZ4lbCZ7ahtRhPvQWGV1XSbS8Knxg5NC7kzM gkahlc4q4eL2/sLIE9tFzJ3mJvbQypx4HoM/i5OEckAm7SHlTZyLVdiCJfr2+q0R 5UZFiwSBA2FxdqXfeqF2js9krC5ooXPkoskU0xyOecY0KhU/hm66hUzf/YVZVM4r mBoeCZghHpZ1EsPswmuVFCo6sJeBRNxum0XheOF+bAUnlbrBfSNEx922bVgp2tuP huSKvpmOa2zB8q6GwA8NYSx8vRxSTbRUqPjBkAKxBcIv96QnrUsphnbA3wRtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUD1LYN8keYXupA6bpozF3+1+rWDcwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAItlMQQqwZhGlMR94/aySMoGpSurbEVnWt/S 68go1okBmV8r1DJGE2a32bGGUp7nA34MQ7PQnKPTiAQw8m7nygor3ELUxgmtYGw6 VdZVyxYzS3xjieXt+aCeoaJpawDFyxNZXmhIfyWUjWsGIqmUYuN4OXTW8O3ZFgr+ YUDS+bZGY7VEo7RMxm/v/whUkVRq6vfMby7e5icBQX0C8E4vo2zYADrwtPEgmjuw vM16nbzuxkdynFE9vekNmZjcwn3JUePyr56pS+DJVB7PMw1qZWr0+mQ6IjuZou5x h/F7lHfETj9ko/AfCioIAvdp8p2zG3Kn0Vh//c1BV7obkgsxZpk= -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:27 2025 by rpki-client