$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft File: 523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json) Hash identifier: APKZU/SPvoX15lz0XM7OC4Y3A0BwpQS0UPbrL2lI4Pc= Subject key identifier: 53:7C:00:26:CA:4C:06:15:8B:A0:52:DC:A5:E2:97:D8:EF:75:99:FC Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 0733900E86BCD0791E94675E4A00049EEDB5E304 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft Manifest number: B6 Signing time: Sat 23 Aug 2025 03:30:37 +0000 Manifest this update: Sat 23 Aug 2025 03:25:37 +0000 Manifest next update: Tue 26 Aug 2025 07:44:37 +0000 Files and hashes: 1: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: H0hxzRE1P/k0NGsIoy/0kaAKznrWHPdRQxgiRW4T5Qo=) 2: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: zP2/XdcDOhp440RXruEyN+zWviJE7i53kBfkBKlQJ0I=) 3: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: B4Z8suV+dgITwewc0XAMZzGWLUeBD4COYz1DNhZwMsY=) 4: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: YEDjMiqzXqQQzIDtWpx+jx5Bn+2TYkAiFHsRj0775yM=) 5: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: z0HZjcHieRuZ5HHeSmTqSUrJvHMtgbLp6o8sJVRupVI=) 6: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: jWc0sz86L+eDtr+nDMgQgH+2S7uRf5Y8Wu7u8v4zz0Q=) 7: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:33:90:0e:86:bc:d0:79:1e:94:67:5e:4a:00:04:9e:ed:b5:e3:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: Aug 23 03:25:37 2025 GMT Not After : Aug 26 07:44:37 2025 GMT Subject: CN=537C0026CA4C06158BA052DCA5E297D8EF7599FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3b:bd:ea:17:0b:10:24:37:1c:8d:cb:b0:74: f4:e8:66:d2:2d:77:64:d2:cd:ea:af:03:62:b7:79: 5a:d1:72:fc:c8:ef:60:11:b6:10:7a:69:04:3f:46: ac:54:ab:c2:5e:24:6d:45:b8:b1:c7:82:dc:e0:6c: 20:91:df:7f:e1:e7:d5:4a:a1:84:f4:49:61:17:9c: c7:2d:1a:ce:84:e3:7b:41:ed:ab:3e:29:c4:76:fc: 0f:85:b3:96:be:6f:59:60:d6:a9:b6:2e:62:f3:c5: 04:6f:e9:fe:40:f3:64:66:e4:6f:1f:e5:ef:4a:8f: f4:da:3e:e3:ab:3a:91:c5:01:4b:bd:0d:30:4e:bb: 02:f2:f1:77:c7:64:08:99:56:3f:c1:21:93:4e:9c: 01:43:e6:60:7d:78:a9:32:3e:55:c7:de:cf:4c:04: cd:25:5c:49:da:a0:c1:f7:5e:b3:77:8b:bb:c1:42: a5:83:53:63:ae:99:4b:6f:42:e0:92:2e:6b:72:2e: e0:09:54:42:8c:cf:fa:1b:bf:ee:8a:0a:e5:74:4c: a4:42:56:5f:07:80:10:fe:c9:95:8a:be:34:55:bc: e7:63:1f:b5:d1:c0:bc:cc:0b:d5:c6:0c:84:21:a1: f9:9a:a7:a4:3c:4b:ef:51:be:fa:4a:28:a6:02:7e: 6f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7C:00:26:CA:4C:06:15:8B:A0:52:DC:A5:E2:97:D8:EF:75:99:FC X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:68:a9:a9:3c:1d:3e:c0:e4:49:55:ab:1f:4f:b6:19:96:1a: 16:e6:5e:5e:c6:03:3b:51:9a:2b:ac:6f:0b:6d:b7:1e:4a:a7: 25:2f:0a:4a:6b:1a:15:68:dd:2f:56:3f:03:9e:fd:03:9a:5e: 4c:ed:fa:98:d2:54:06:1a:5b:6d:85:72:a1:e4:45:b5:1c:1e: 98:2d:d6:cf:fe:c0:5a:f4:c8:78:e9:f6:3e:c0:6b:c2:ec:0e: 74:67:c7:23:ed:69:ee:1f:fb:09:a0:05:d4:04:d7:26:ce:6a: f1:ef:3b:2b:4a:ed:53:8c:0a:c9:3d:0b:d2:15:9c:d5:3c:27: 99:ac:97:2a:6f:f7:66:83:e7:13:46:77:e0:11:fb:1c:85:7f: e2:c5:1d:91:39:57:74:0d:43:4f:2c:eb:b0:97:5c:5c:42:80: d9:3f:ea:a3:70:62:64:af:77:0d:ef:f2:d2:f4:38:ec:91:c0: db:e1:1c:36:13:36:e0:4b:3c:20:42:36:ee:b9:11:d8:8b:02: 25:3a:aa:78:c8:41:cf:69:ab:ea:0c:03:0f:17:ba:c5:4f:da: d2:cd:3b:4b:33:40:a8:0f:f0:45:6b:4c:bf:92:0b:2e:d1:63: 84:a7:2f:d7:d2:bf:b2:b7:39:25:24:44:38:1b:e2:dc:55:dc: 3c:97:14:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBzOQDoa80HkelGdeSgAEnu214wQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNTA4MjMwMzI1MzdaFw0yNTA4MjYwNzQ0MzdaMDMxMTAvBgNV BAMTKDUzN0MwMDI2Q0E0QzA2MTU4QkEwNTJEQ0E1RTI5N0Q4RUY3NTk5RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClO73qFwsQJDccjcuwdPToZtIt d2TSzeqvA2K3eVrRcvzI72ARthB6aQQ/RqxUq8JeJG1FuLHHgtzgbCCR33/h59VK oYT0SWEXnMctGs6E43tB7as+KcR2/A+Fs5a+b1lg1qm2LmLzxQRv6f5A82Rm5G8f 5e9Kj/TaPuOrOpHFAUu9DTBOuwLy8XfHZAiZVj/BIZNOnAFD5mB9eKkyPlXH3s9M BM0lXEnaoMH3XrN3i7vBQqWDU2OumUtvQuCSLmtyLuAJVEKMz/obv+6KCuV0TKRC Vl8HgBD+yZWKvjRVvOdjH7XRwLzMC9XGDIQhofmap6Q8S+9RvvpKKKYCfm/ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUU3wAJspMBhWLoFLcpeKX2O91mfwwHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmFhNDI3NDItODlkMi00OWJiLThh M2UtMjk0YzM2ODk3MWY1LzAvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEw MjlCMTAxMzE0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANoqak8HT7A5ElVqx9PthmWGhbmXl7GAztR miusbwtttx5KpyUvCkprGhVo3S9WPwOe/QOaXkzt+pjSVAYaW22FcqHkRbUcHpgt 1s/+wFr0yHjp9j7Aa8LsDnRnxyPtae4f+wmgBdQE1ybOavHvOytK7VOMCsk9C9IV nNU8J5mslypv92aD5xNGd+AR+xyFf+LFHZE5V3QNQ08s67CXXFxCgNk/6qNwYmSv dw3v8tL0OOyRwNvhHDYTNuBLPCBCNu65EdiLAiU6qnjIQc9pq+oMAw8XusVP2tLN O0szQKgP8EVrTL+SCy7RY4SnL9fSv7K3OSUkRDgb4txV3DyXFOQ= -----END CERTIFICATE-----Generated at Sat Aug 23 15:44:35 2025 by rpki-client