$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: n1LbZweY6DfOzo49natDkY7wIq5v+fwQcjTw8lxv5Qs= Subject key identifier: BA:61:7D:90:CB:77:8C:42:16:49:A2:9A:EF:60:BD:4E:7D:EB:C8:4C Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 698DA4BC9180425C94B678BE2BD3B6A85B1F68D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01AB Signing time: Mon 30 Jun 2025 11:51:13 +0000 Manifest this update: Mon 30 Jun 2025 11:46:13 +0000 Manifest next update: Thu 03 Jul 2025 14:44:13 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: i1qfaSBetS0+l32IGD6VQqGOQG/XIrgTpeMHj0b2qTg=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: zqT5YWjMd6XfOxSy/65IPLyls5xiXGFCXPoGdWCUauk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:8d:a4:bc:91:80:42:5c:94:b6:78:be:2b:d3:b6:a8:5b:1f:68:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Jun 30 11:46:13 2025 GMT Not After : Jul 3 14:44:13 2025 GMT Subject: CN=BA617D90CB778C421649A29AEF60BD4E7DEBC84C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ba:16:96:96:11:5c:0e:19:d4:23:bc:52:cd: 72:a6:4d:b8:fb:17:46:40:ed:81:63:69:d3:ea:1c: d7:2e:06:97:0f:81:88:e5:06:d5:74:c1:a0:a3:7d: 5d:0d:35:fe:5c:0b:08:62:c4:95:30:ab:2e:62:df: d2:18:af:b7:e6:cd:52:cc:ee:ac:32:dc:67:b4:e1: 8d:d5:8c:00:2a:36:aa:19:14:52:26:4e:6b:45:c9: a4:a8:cd:c5:68:91:1c:cb:e8:bf:5d:d4:df:9c:9e: ea:35:25:f2:e1:0a:8e:df:ae:73:9a:be:3d:93:76: 06:0d:47:13:3e:5f:e6:cd:ce:93:b7:aa:91:9a:f6: 2b:3e:01:59:ee:8d:75:36:52:7c:70:5f:bf:7d:b8: 1c:20:c9:66:47:6a:c6:cd:c8:67:7f:a8:f0:bb:27: 11:2b:80:fd:1f:45:0b:33:5e:d9:51:f3:c6:31:ac: 91:c9:68:b2:22:3f:eb:bb:d8:c2:36:4a:d8:2e:00: bf:47:42:48:92:a6:ac:07:27:01:ab:40:b3:34:80: 6c:de:bd:e1:3f:e3:9e:d5:cb:5a:84:05:d0:3b:9f: 5d:5c:82:08:1d:16:7e:18:be:78:f4:ca:60:5a:de: 9c:5e:0b:27:f7:09:39:e0:27:97:9c:51:63:84:31: 9a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:61:7D:90:CB:77:8C:42:16:49:A2:9A:EF:60:BD:4E:7D:EB:C8:4C X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:5c:42:c2:db:2c:24:b6:ff:38:9e:25:dc:f3:0d:d2:81:db: b9:81:ae:2f:98:8c:b0:f5:99:7b:df:57:96:9c:3d:9c:80:4b: 07:43:f9:13:e2:95:a7:76:65:76:6e:54:a8:1e:7d:17:b1:c5: 73:93:4e:08:b3:9e:95:2c:58:7b:93:15:12:0e:7c:0a:29:c5: 48:2b:a2:cb:62:73:ef:10:87:3d:bd:0b:0e:4f:da:f7:d7:46: cf:3a:a6:bf:da:4f:19:8f:09:86:4f:40:1f:1a:63:cf:71:fe: e9:74:db:99:9a:cd:6a:a7:8d:e6:e4:54:db:aa:4e:1b:5e:54: 36:63:aa:9a:7c:58:28:22:f5:5d:9a:46:a7:3b:a8:b7:79:37: 22:a3:54:a6:38:59:41:53:1c:e4:66:e3:cd:f0:c2:a0:8f:2a: 83:67:ad:da:95:11:61:ea:fd:08:e6:61:d2:6b:5c:9b:56:95: 7f:08:98:cd:38:f1:41:69:eb:b8:ab:79:2e:7a:8a:9a:ea:6b: 0e:f8:e9:99:7a:e9:b5:01:5c:2f:24:db:4d:b6:22:5c:76:45: 14:18:cb:7c:04:1a:63:8e:a0:66:ec:2c:9d:13:14:62:ab:df: 35:49:71:ba:b6:26:59:b4:2c:f0:b4:93:53:30:80:d1:71:60: 2c:af:b5:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaY2kvJGAQlyUtni+K9O2qFsfaNUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTA2MzAxMTQ2MTNaFw0yNTA3MDMxNDQ0MTNaMDMxMTAvBgNV BAMTKEJBNjE3RDkwQ0I3NzhDNDIxNjQ5QTI5QUVGNjBCRDRFN0RFQkM4NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwuhaWlhFcDhnUI7xSzXKmTbj7 F0ZA7YFjadPqHNcuBpcPgYjlBtV0waCjfV0NNf5cCwhixJUwqy5i39IYr7fmzVLM 7qwy3Ge04Y3VjAAqNqoZFFImTmtFyaSozcVokRzL6L9d1N+cnuo1JfLhCo7frnOa vj2TdgYNRxM+X+bNzpO3qpGa9is+AVnujXU2UnxwX799uBwgyWZHasbNyGd/qPC7 JxErgP0fRQszXtlR88YxrJHJaLIiP+u72MI2StguAL9HQkiSpqwHJwGrQLM0gGze veE/457Vy1qEBdA7n11cgggdFn4Yvnj0ymBa3pxeCyf3CTngJ5ecUWOEMZoHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUumF9kMt3jEIWSaKa72C9Tn3ryEwwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA9cQsLbLCS2/zieJdzzDdKB27mBri+YjLD1 mXvfV5acPZyASwdD+RPilad2ZXZuVKgefRexxXOTTgiznpUsWHuTFRIOfAopxUgr ostic+8Qhz29Cw5P2vfXRs86pr/aTxmPCYZPQB8aY89x/ul025mazWqnjebkVNuq ThteVDZjqpp8WCgi9V2aRqc7qLd5NyKjVKY4WUFTHORm483wwqCPKoNnrdqVEWHq /QjmYdJrXJtWlX8ImM048UFp67ireS56iprqaw746Zl66bUBXC8k2022Ilx2RRQY y3wEGmOOoGbsLJ0TFGKr3zVJcbq2Jlm0LPC0k1MwgNFxYCyvtSU= -----END CERTIFICATE-----Generated at Tue Jul 1 23:27:24 2025 by rpki-client