$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: KsbaV/OGrCpvzHYnCpwSP9YaOkjBOhJvmAQlwgMXE4s= Subject key identifier: C4:83:94:C4:5E:1E:9A:CB:9D:B2:8B:53:1F:75:15:1D:76:63:91:89 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 14B60C7BCDBDA0165D581125F672D393CB100734 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01DD Signing time: Sat 18 Oct 2025 09:01:16 +0000 Manifest this update: Sat 18 Oct 2025 08:56:16 +0000 Manifest next update: Tue 21 Oct 2025 17:34:16 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: l5GFC8w49GIBq20L9GDV5bQPPkWEdBPVVIX8d+dJw8E=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 17:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b6:0c:7b:cd:bd:a0:16:5d:58:11:25:f6:72:d3:93:cb:10:07:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Oct 18 08:56:16 2025 GMT Not After : Oct 21 17:34:16 2025 GMT Subject: CN=C48394C45E1E9ACB9DB28B531F75151D76639189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8a:0a:79:64:fb:a9:ba:4d:6f:ae:92:8f:22: 28:23:ac:04:74:67:34:c0:df:53:ff:2a:6a:bf:1e: de:8b:88:80:fa:be:a3:72:d6:0d:db:4f:66:a3:7e: f8:a6:6a:ec:ca:cd:3e:c6:ee:b9:2f:58:20:5b:46: 75:3e:81:0d:7d:af:b0:dc:f0:ec:0a:48:cd:5d:02: 64:d3:70:22:47:a4:08:86:90:7f:31:9a:c6:d0:37: 6e:e2:fc:bd:ba:e4:cf:dd:d9:89:1d:43:93:ec:00: 87:3e:6c:78:b3:d2:b2:0a:54:9f:ff:56:cb:82:53: e3:3c:0e:db:03:9f:e7:97:6d:5e:3a:18:0c:6b:d1: 86:7f:c9:9f:b3:5e:17:b3:a6:77:dd:4b:64:8b:25: cc:28:27:12:4c:f2:6f:4f:20:76:22:ab:cd:5b:81: c3:29:8c:da:04:53:0a:de:72:c1:fe:d9:3e:71:94: c2:e9:28:85:94:44:14:a5:f5:4c:e7:54:8c:a1:3f: 11:3c:f9:34:eb:f2:8d:e4:55:59:89:e0:fb:7a:2b: cd:32:cb:08:71:07:bc:d9:42:41:39:b3:75:ff:7b: f6:f3:39:44:f0:75:16:db:d1:1d:40:28:30:08:b4: 2c:02:9e:db:0c:2d:33:88:6a:e3:f4:2d:e9:04:55: c4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:83:94:C4:5E:1E:9A:CB:9D:B2:8B:53:1F:75:15:1D:76:63:91:89 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:37:06:b9:79:2b:9f:d8:88:f2:be:4e:e6:df:18:25:1b:b6: 7c:4a:8a:cd:7a:9a:11:53:73:49:a3:05:b1:50:40:f6:40:67: 5d:82:b7:67:5c:6a:04:7a:2c:b3:c9:a9:47:b8:86:df:5f:86: cb:5c:35:e3:77:ad:06:e8:b4:85:bb:4d:98:ce:aa:57:d8:8f: 27:70:1c:1a:00:bd:4c:c5:4f:7d:e0:54:f6:e9:d7:f6:ce:18: de:fa:56:6a:47:1f:79:13:22:07:0a:09:33:fe:bd:f6:54:7d: c3:a9:29:c9:a7:28:1b:ee:3a:01:c6:ad:31:7d:cc:7f:8b:aa: c6:42:36:18:25:d5:8b:aa:f0:cc:13:0b:1a:40:ce:94:1e:89: 97:ab:a5:ad:34:21:f4:bd:18:f1:9e:57:30:f5:8f:e3:04:02: cb:cc:44:56:3c:f4:2a:f0:c0:df:75:fe:51:80:a9:69:13:f9: a2:9c:1f:f5:53:13:6c:d3:1d:c6:61:70:84:c3:3f:5c:b6:11: da:31:82:b0:ea:2b:93:bd:dd:2f:57:bc:c3:d9:77:bb:7a:40: 99:52:66:b1:bf:d3:7c:96:a2:a0:af:32:18:15:e4:73:5c:1b: fb:a1:a5:7e:40:ee:c8:56:45:5b:2f:05:ab:61:75:ca:5b:e5: a8:e1:26:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFLYMe829oBZdWBEl9nLTk8sQBzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTEwMTgwODU2MTZaFw0yNTEwMjExNzM0MTZaMDMxMTAvBgNV BAMTKEM0ODM5NEM0NUUxRTlBQ0I5REIyOEI1MzFGNzUxNTFENzY2MzkxODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmigp5ZPupuk1vrpKPIigjrAR0 ZzTA31P/Kmq/Ht6LiID6vqNy1g3bT2ajfvimauzKzT7G7rkvWCBbRnU+gQ19r7Dc 8OwKSM1dAmTTcCJHpAiGkH8xmsbQN27i/L265M/d2YkdQ5PsAIc+bHiz0rIKVJ// VsuCU+M8DtsDn+eXbV46GAxr0YZ/yZ+zXhezpnfdS2SLJcwoJxJM8m9PIHYiq81b gcMpjNoEUwrecsH+2T5xlMLpKIWURBSl9UznVIyhPxE8+TTr8o3kVVmJ4Pt6K80y ywhxB7zZQkE5s3X/e/bzOUTwdRbb0R1AKDAItCwCntsMLTOIauP0LekEVcTnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxIOUxF4emsudsotTH3UVHXZjkYkwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ43Brl5K5/YiPK+TubfGCUbtnxKis16mhFT c0mjBbFQQPZAZ12Ct2dcagR6LLPJqUe4ht9fhstcNeN3rQbotIW7TZjOqlfYjydw HBoAvUzFT33gVPbp1/bOGN76VmpHH3kTIgcKCTP+vfZUfcOpKcmnKBvuOgHGrTF9 zH+LqsZCNhgl1Yuq8MwTCxpAzpQeiZerpa00IfS9GPGeVzD1j+MEAsvMRFY89Crw wN91/lGAqWkT+aKcH/VTE2zTHcZhcITDP1y2EdoxgrDqK5O93S9XvMPZd7t6QJlS ZrG/03yWoqCvMhgV5HNcG/uhpX5A7shWRVsvBathdcpb5ajhJko= -----END CERTIFICATE-----Generated at Mon Oct 20 12:39:21 2025 by rpki-client