$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: 389PIZyjj4AYyGkuR1SFEZtg5Dn2hVQfH2M1HLtIKZA= Subject key identifier: DB:D2:CF:E9:29:54:78:60:78:F7:D3:5B:DF:0D:7C:05:C8:A7:1D:79 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 142E57E7D54A1FAAA8BC6CDD23609A7054BB7895 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01C4 Signing time: Sat 23 Aug 2025 04:00:51 +0000 Manifest this update: Sat 23 Aug 2025 03:55:51 +0000 Manifest next update: Tue 26 Aug 2025 06:41:51 +0000 Files and hashes: 1: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) 2: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: Skl5c+pcRVKD2+sFEAIc83RHgiXHH0q4Xj7BSNigd3s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 06:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:2e:57:e7:d5:4a:1f:aa:a8:bc:6c:dd:23:60:9a:70:54:bb:78:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Aug 23 03:55:51 2025 GMT Not After : Aug 26 06:41:51 2025 GMT Subject: CN=DBD2CFE92954786078F7D35BDF0D7C05C8A71D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b1:5e:43:a1:a3:37:71:23:43:e8:e4:55:31: 8b:f1:61:0b:37:ec:94:86:86:54:db:96:f3:59:a4: 80:43:f0:16:62:ba:51:89:1f:38:c1:22:9a:0f:c0: df:2c:50:d5:92:a8:80:e1:1d:77:e2:b2:1f:89:18: c1:9c:ee:af:19:4c:b4:5c:9a:fe:b3:54:4f:aa:10: d6:34:d0:14:42:9f:df:f7:d4:64:20:6f:62:2b:a5: 4b:02:f9:d7:3d:22:32:1b:97:53:5e:29:80:6b:e3: 6f:16:2e:de:8f:3c:d7:93:f2:36:4c:03:64:fe:92: f8:37:e0:6c:2d:24:b5:02:19:64:b5:da:2a:d7:55: 3f:52:8d:6e:69:cc:f5:e2:8c:00:9d:c1:50:cb:b8: b7:77:a7:df:4c:2a:f1:b8:75:d7:b1:8e:63:13:3c: 1a:2a:b2:77:f9:17:df:1f:51:d5:35:75:b3:f2:2f: a9:68:4f:fd:ae:82:f3:14:0d:fd:db:3f:d6:9f:54: d2:fe:01:40:04:7c:99:ba:c4:59:1b:5c:37:9f:1f: d9:26:4b:bc:28:c8:8a:5f:b2:a7:52:9e:f5:94:94: 0c:45:81:94:c1:44:b5:2f:8e:a0:dd:eb:b9:a2:99: c9:94:3c:1c:f0:3f:e0:43:d0:64:85:fc:74:eb:b5: 53:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D2:CF:E9:29:54:78:60:78:F7:D3:5B:DF:0D:7C:05:C8:A7:1D:79 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:87:e0:81:76:bf:96:5b:ea:39:12:6e:87:76:83:5d:e2:fb: e5:5b:63:5b:6b:22:db:01:fe:b8:f7:2e:81:55:81:1c:2c:11: 40:01:71:0f:b0:6b:99:74:bc:6c:03:1f:70:52:15:f1:56:b2: ce:5c:d1:88:4b:48:f3:85:9f:ff:32:c9:e1:42:74:a3:a9:87: 38:74:6c:80:df:ec:b3:fd:ea:69:74:89:5c:18:ea:23:d2:dc: 6b:1a:f5:87:d5:b5:f6:0a:13:9b:50:3d:51:c5:4e:a6:82:73: bc:bc:3e:44:06:ff:11:d5:df:e2:2c:de:f7:9b:c8:16:6f:9f: 93:8e:23:de:73:71:80:7c:e8:b5:60:61:ba:73:5d:f6:32:e8: c4:e2:4e:7e:28:96:96:7d:df:06:df:94:5e:71:c7:3b:02:27: 78:54:cb:af:d9:67:a4:eb:fb:a1:f2:30:71:f7:68:02:8b:e1: 40:4f:64:8e:46:b4:2f:d0:af:c8:97:14:be:05:01:fd:df:1f: f7:72:30:ed:19:43:dc:e7:5a:06:2f:3f:1f:73:ef:c0:d0:46: bb:19:10:77:d8:e8:87:3e:79:fc:99:43:89:ff:fb:59:c0:dd: 33:50:91:2e:b2:3c:5c:27:aa:28:dd:f1:9f:32:ce:05:8c:c0: d8:63:8d:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFC5X59VKH6qovGzdI2CacFS7eJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTA4MjMwMzU1NTFaFw0yNTA4MjYwNjQxNTFaMDMxMTAvBgNV BAMTKERCRDJDRkU5Mjk1NDc4NjA3OEY3RDM1QkRGMEQ3QzA1QzhBNzFENzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmsV5DoaM3cSND6ORVMYvxYQs3 7JSGhlTblvNZpIBD8BZiulGJHzjBIpoPwN8sUNWSqIDhHXfish+JGMGc7q8ZTLRc mv6zVE+qENY00BRCn9/31GQgb2IrpUsC+dc9IjIbl1NeKYBr428WLt6PPNeT8jZM A2T+kvg34GwtJLUCGWS12irXVT9SjW5pzPXijACdwVDLuLd3p99MKvG4ddexjmMT PBoqsnf5F98fUdU1dbPyL6loT/2ugvMUDf3bP9afVNL+AUAEfJm6xFkbXDefH9km S7woyIpfsqdSnvWUlAxFgZTBRLUvjqDd67mimcmUPBzwP+BD0GSF/HTrtVNbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU29LP6SlUeGB499Nb3w18BcinHXkwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ+H4IF2v5Zb6jkSbod2g13i++VbY1trItsB /rj3LoFVgRwsEUABcQ+wa5l0vGwDH3BSFfFWss5c0YhLSPOFn/8yyeFCdKOphzh0 bIDf7LP96ml0iVwY6iPS3Gsa9YfVtfYKE5tQPVHFTqaCc7y8PkQG/xHV3+Is3veb yBZvn5OOI95zcYB86LVgYbpzXfYy6MTiTn4olpZ93wbflF5xxzsCJ3hUy6/ZZ6Tr +6HyMHH3aAKL4UBPZI5GtC/Qr8iXFL4FAf3fH/dyMO0ZQ9znWgYvPx9z78DQRrsZ EHfY6Ic+efyZQ4n/+1nA3TNQkS6yPFwnqijd8Z8yzgWMwNhjjVg= -----END CERTIFICATE-----Generated at Sat Aug 23 10:21:24 2025 by rpki-client