$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft File: 5B558AD01277C8212C974318B6352FB28BF683AD.mft (raw, json) Hash identifier: tdXixJGjRSx5s0fULgcK9UFNeHGW66U/ZXf6Up9JRiM= Subject key identifier: CA:1B:4A:1F:D8:8B:C3:B9:B7:BD:8E:E7:06:09:93:3D:50:68:9E:EB Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 46F49C6BF274D214B51D2C5E71681EDD91FBD6A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft Manifest number: 01B1 Signing time: Fri 22 Aug 2025 03:50:49 +0000 Manifest this update: Fri 22 Aug 2025 03:45:49 +0000 Manifest next update: Mon 25 Aug 2025 08:59:49 +0000 Files and hashes: 1: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (hash: 2i8HfdlFIHezHTi1m8fyUROS/IcCg2re+ftnVgBoAd4=) 2: 3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa (hash: 0shHIoNgf0pQRXh0UI7r08hqky3s0DThmjqdBQikoVM=) 3: 3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa (hash: 0agQaQqzfkfho9nuxHylitEA2rT2w6YSuj3i1Cy3BUc=) 4: 5B558AD01277C8212C974318B6352FB28BF683AD.crl (hash: Ev3VJ11u4hvze9RK6vcs7J54VrJXZEU6qTQbKGlckd0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f4:9c:6b:f2:74:d2:14:b5:1d:2c:5e:71:68:1e:dd:91:fb:d6:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Aug 22 03:45:49 2025 GMT Not After : Aug 25 08:59:49 2025 GMT Subject: CN=CA1B4A1FD88BC3B9B7BD8EE70609933D50689EEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ae:7a:8b:72:15:2b:a6:5a:b2:1e:17:74:4e: e0:ef:5a:6d:d0:36:e1:82:14:6b:bf:f2:41:37:fa: ca:f6:1d:a0:61:6b:19:ec:24:72:bd:23:dc:03:19: a6:78:34:9f:50:9a:70:fc:a9:bf:53:d5:12:58:4d: 42:8e:43:55:8f:98:9f:78:69:36:0f:b1:94:0a:8c: 27:fe:40:a4:36:7b:82:6c:a6:f7:bb:c9:7f:ea:1d: 8b:e5:01:f7:4e:76:10:3b:93:ce:d6:5f:18:0f:3c: fb:7a:6b:3e:db:3b:e0:b6:6c:82:ce:05:7a:5b:b6: 57:c0:7f:e4:62:28:12:4d:37:09:b8:a4:12:6f:c0: 9f:7c:31:49:83:71:58:14:b3:9e:5a:fe:88:36:1d: ad:e0:dc:05:45:fb:d7:58:56:41:16:6f:9f:5d:23: 60:6b:e9:1b:1d:15:c2:5a:90:c3:a4:1f:30:32:cb: b2:9b:f5:e1:65:e7:57:b8:70:dc:f3:12:c0:df:cc: 5b:50:e8:0f:fb:fd:52:30:53:44:3c:7c:1e:ec:69: b6:3c:47:24:0c:31:45:65:75:9d:b1:c0:ca:0e:60: c5:25:cb:d0:01:88:a9:27:c6:bf:e2:ba:b2:f9:be: fd:5d:12:2d:01:70:77:ce:02:8b:c1:b0:01:62:45: 44:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:1B:4A:1F:D8:8B:C3:B9:B7:BD:8E:E7:06:09:93:3D:50:68:9E:EB X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:e2:ae:5f:2b:42:ef:20:65:ad:fb:fe:a8:c5:05:9d:0a:bb: b4:17:54:af:3c:97:74:72:c5:b3:a6:12:ce:5f:7e:c7:fa:89: 56:b0:e2:66:63:ec:b0:a7:18:a8:07:77:a4:eb:16:81:41:ec: 71:91:b5:ac:c5:57:9f:d0:83:b5:93:8c:36:16:e8:e7:0f:ae: 63:40:42:46:fc:40:b7:13:3a:c8:ad:4c:4c:0b:a5:c8:e6:9f: 50:53:f1:40:4d:3a:d8:a8:ee:52:49:b4:40:b7:74:5e:df:65: 23:a2:39:53:a7:c2:07:5a:63:8e:08:fc:bb:cb:f8:e3:23:99: d8:4b:99:c1:ea:f4:b0:12:2e:fd:a8:a1:54:00:7a:21:86:cc: d1:ff:01:55:d1:b7:b6:69:db:7b:63:88:4c:86:b7:46:00:32: a3:e4:ed:51:05:da:0e:e5:77:46:d3:2b:f1:84:67:c4:5e:ef: 4d:73:9a:c8:39:9c:40:a9:dd:84:44:4c:50:14:eb:ee:6c:b9: 87:fa:96:8f:85:55:e2:37:9b:d4:39:b7:55:8f:76:05:aa:e4: 7d:d2:2f:63:d7:0b:c6:4e:e6:37:9e:9f:da:54:ef:01:23:c4: eb:d9:6a:c5:4a:11:3b:9a:e5:42:3c:bc:f9:e4:b5:02:d8:1e: 39:4e:66:8c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURvSca/J00hS1HSxecWge3ZH71qgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNTA4MjIwMzQ1NDlaFw0yNTA4MjUwODU5NDlaMDMxMTAvBgNV BAMTKENBMUI0QTFGRDg4QkMzQjlCN0JEOEVFNzA2MDk5MzNENTA2ODlFRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRrnqLchUrplqyHhd0TuDvWm3Q NuGCFGu/8kE3+sr2HaBhaxnsJHK9I9wDGaZ4NJ9QmnD8qb9T1RJYTUKOQ1WPmJ94 aTYPsZQKjCf+QKQ2e4Jspve7yX/qHYvlAfdOdhA7k87WXxgPPPt6az7bO+C2bILO BXpbtlfAf+RiKBJNNwm4pBJvwJ98MUmDcVgUs55a/og2Ha3g3AVF+9dYVkEWb59d I2Br6RsdFcJakMOkHzAyy7Kb9eFl51e4cNzzEsDfzFtQ6A/7/VIwU0Q8fB7sabY8 RyQMMUVldZ2xwMoOYMUly9ABiKknxr/iurL5vv1dEi0BcHfOAovBsAFiRURTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyhtKH9iLw7m3vY7nBgmTPVBonuswHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmE1YjRmYTQtMzI4Yy00Y2YyLWFk ZTMtYzg2ODEzMWQ0ZTBkLzAvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJG QjI4QkY2ODNBRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC/irl8rQu8gZa37/qjFBZ0Ku7QXVK88l3Ry xbOmEs5ffsf6iVaw4mZj7LCnGKgHd6TrFoFB7HGRtazFV5/Qg7WTjDYW6OcPrmNA Qkb8QLcTOsitTEwLpcjmn1BT8UBNOtio7lJJtEC3dF7fZSOiOVOnwgdaY44I/LvL +OMjmdhLmcHq9LASLv2ooVQAeiGGzNH/AVXRt7Zp23tjiEyGt0YAMqPk7VEF2g7l d0bTK/GEZ8Re701zmsg5nECp3YRETFAU6+5suYf6lo+FVeI3m9Q5t1WPdgWq5H3S L2PXC8ZO5jeen9pU7wEjxOvZasVKETua5UI8vPnktQLYHjlOZow= -----END CERTIFICATE-----Generated at Sat Aug 23 10:33:44 2025 by rpki-client