$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: grLjO1yqYm5hqH2iTPJFjfoxgSdVMRMe5nKIpYeofD8= Subject key identifier: B3:86:68:A3:5C:BE:F7:EA:A2:A9:7E:77:C4:D1:50:9C:D2:4D:09:36 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 05DC123F1B3A933088C4EA5AC3B2C699C81E1EB8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 0191 Signing time: Mon 20 Oct 2025 02:21:05 +0000 Manifest this update: Mon 20 Oct 2025 02:16:05 +0000 Manifest next update: Thu 23 Oct 2025 05:13:05 +0000 Files and hashes: 1: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 2: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) 3: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 4: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: GE4URNZePI3bniMWUT/RgIbthQD+2ti7i03MObsmPAY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 05:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:dc:12:3f:1b:3a:93:30:88:c4:ea:5a:c3:b2:c6:99:c8:1e:1e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Oct 20 02:16:05 2025 GMT Not After : Oct 23 05:13:05 2025 GMT Subject: CN=B38668A35CBEF7EAA2A97E77C4D1509CD24D0936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:29:3d:17:a4:12:aa:d3:68:30:60:3b:1a: a6:f2:a2:7b:7c:a6:a4:03:67:08:c1:00:0e:ad:b3: 4d:e7:58:64:e0:a6:04:0d:b4:1b:da:17:3b:75:47: 82:e8:a4:07:e2:7c:fb:ca:5c:a4:1f:7d:07:0d:01: 65:ba:99:56:4f:be:72:d5:bc:ba:48:c8:50:94:31: c1:13:23:ac:bc:97:ba:60:64:e7:9b:08:8b:d1:64: 0c:02:42:74:2b:9c:0b:04:21:af:08:37:28:c8:e8: e9:50:bf:e4:05:65:31:5d:9f:ad:aa:2d:88:dd:be: ef:50:30:61:79:86:e5:1c:b8:3c:fb:46:65:80:cf: 81:95:07:24:d6:67:05:fe:20:fd:71:06:c0:db:06: ac:f5:1e:fa:af:50:70:c2:65:7e:c6:b4:0a:f4:61: f0:2e:19:80:d5:74:36:5f:ae:ba:93:be:30:4b:cf: 98:cc:a9:13:07:b6:d8:14:d0:ae:86:71:43:d6:76: d7:e3:58:01:54:81:77:69:b1:b6:97:93:1a:5c:80: 99:e0:89:55:1c:7c:b0:a2:67:b9:5e:f7:5b:79:9b: 72:aa:f8:11:b0:2e:55:75:f5:b6:a5:b8:ec:7d:4a: 83:5c:7c:dc:19:81:59:48:03:d7:09:84:1d:44:78: 29:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:86:68:A3:5C:BE:F7:EA:A2:A9:7E:77:C4:D1:50:9C:D2:4D:09:36 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:95:88:44:84:bc:9d:5a:33:9d:29:4a:15:0a:44:79:a2:a2: fc:2d:5c:51:2e:27:74:c4:9c:88:f7:24:15:0f:35:fd:73:0d: 06:fd:b8:ee:f2:d4:a7:fc:f7:98:09:d0:5a:0a:a1:00:37:84: 85:ad:74:1e:51:32:9a:ef:6e:9e:31:f8:f8:6b:8f:d4:5d:e5: d1:b4:45:15:a6:eb:71:e1:8f:53:c5:f1:f9:dd:a5:d3:40:1e: a1:3a:7a:29:14:0e:6a:a2:1f:56:ee:b0:70:ae:6a:08:d7:e0: b8:97:96:bb:56:cf:53:62:58:b6:26:e4:a3:f8:a4:48:4f:46: 2c:f7:88:c0:f3:2c:3f:86:13:b3:d1:09:6e:d8:b9:e9:20:da: 3d:7f:b2:89:74:1e:91:15:ec:e0:38:63:2a:de:81:6b:05:96: 67:0a:f8:f6:d7:de:b2:e6:c8:ed:af:0c:58:a6:4c:99:a7:86: a9:6a:93:ee:7a:4d:92:24:b9:a5:e3:d6:dd:57:3b:32:32:ad: b3:63:60:7c:26:c4:ca:44:2e:5d:35:0c:93:fe:56:21:aa:3a: 87:8c:a5:ce:f0:2c:e5:b3:b9:9c:17:0d:3b:ac:41:a3:99:d7: 15:aa:d0:43:32:69:05:a0:95:0e:6a:9c:4c:d0:7c:50:53:08: 30:e7:d9:d9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBdwSPxs6kzCIxOpaw7LGmcgeHrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTEwMjAwMjE2MDVaFw0yNTEwMjMwNTEzMDVaMDMxMTAvBgNV BAMTKEIzODY2OEEzNUNCRUY3RUFBMkE5N0U3N0M0RDE1MDlDRDI0RDA5MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0oyk9F6QSqtNoMGA7Gqbyont8 pqQDZwjBAA6ts03nWGTgpgQNtBvaFzt1R4LopAfifPvKXKQffQcNAWW6mVZPvnLV vLpIyFCUMcETI6y8l7pgZOebCIvRZAwCQnQrnAsEIa8INyjI6OlQv+QFZTFdn62q LYjdvu9QMGF5huUcuDz7RmWAz4GVByTWZwX+IP1xBsDbBqz1HvqvUHDCZX7GtAr0 YfAuGYDVdDZfrrqTvjBLz5jMqRMHttgU0K6GcUPWdtfjWAFUgXdpsbaXkxpcgJng iVUcfLCiZ7le91t5m3Kq+BGwLlV19baluOx9SoNcfNwZgVlIA9cJhB1EeCnhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs4Zoo1y+9+qiqX53xNFQnNJNCTYwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA2ViESEvJ1aM50pShUKRHmiovwtXFEuJ3TE nIj3JBUPNf1zDQb9uO7y1Kf895gJ0FoKoQA3hIWtdB5RMprvbp4x+Phrj9Rd5dG0 RRWm63Hhj1PF8fndpdNAHqE6eikUDmqiH1busHCuagjX4LiXlrtWz1NiWLYm5KP4 pEhPRiz3iMDzLD+GE7PRCW7Yuekg2j1/sol0HpEV7OA4YyregWsFlmcK+PbX3rLm yO2vDFimTJmnhqlqk+56TZIkuaXj1t1XOzIyrbNjYHwmxMpELl01DJP+ViGqOoeM pc7wLOWzuZwXDTusQaOZ1xWq0EMyaQWglQ5qnEzQfFBTCDDn2dk= -----END CERTIFICATE-----Generated at Mon Oct 20 22:24:38 2025 by rpki-client