$ rpki-client -vvf repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft (raw, json) Hash identifier: d7d1V6Xd0mojqQ0EvjVA5RF590+89jbONrC2UHoy7Nk= Subject key identifier: E0:F1:84:7F:82:C6:D1:D2:CF:4C:36:81:72:58:08:3F:CC:64:67:19 Authority key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Certificate issuer: /CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Certificate serial: 70ED0B6787EBB461F82011CB87BE7E40B5D40774 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft Manifest number: 85 Signing time: Wed 06 Aug 2025 00:00:48 +0000 Manifest this update: Tue 05 Aug 2025 23:55:48 +0000 Manifest next update: Sat 09 Aug 2025 00:40:48 +0000 Files and hashes: 1: 3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa (hash: 55sjufMqiAUVQEWT+QA1EUsxab9EOoQxItI4+DBt3EA=) 2: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl (hash: aDbyMebA3LoDzDK07WBPfvtzCBXAzDDyvu6fe85SPSY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 00:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ed:0b:67:87:eb:b4:61:f8:20:11:cb:87:be:7e:40:b5:d4:07:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Validity Not Before: Aug 5 23:55:48 2025 GMT Not After : Aug 9 00:40:48 2025 GMT Subject: CN=E0F1847F82C6D1D2CF4C36817258083FCC646719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:91:15:01:66:ae:b7:31:71:ba:1d:f4:4c:ac: 53:64:c3:4a:58:ec:9f:5b:4a:e2:31:64:63:92:f6: 3b:03:6f:36:c7:59:73:6a:9a:f0:01:16:f9:1e:5e: fb:61:60:39:45:85:bd:1e:8b:fd:46:c7:ce:14:9e: 80:9d:44:7d:20:cb:e3:e2:bc:50:60:89:5c:01:46: 34:a5:63:96:c0:f4:f5:98:07:6d:21:e6:5f:c8:50: 53:54:c1:2c:9c:d9:27:c4:ff:5b:68:01:a7:18:83: bd:3b:3d:03:f3:f2:2b:32:f3:66:f1:5c:f5:80:00: a7:ef:f2:ea:0e:0e:9d:db:5c:65:1c:dc:a8:b4:d7: 26:49:70:fe:2c:c8:ca:46:7c:ee:5c:82:1f:33:a1: 4c:cb:c8:e8:fd:a6:0e:4d:e6:b9:a2:38:2c:db:6d: fd:bc:4f:ed:97:84:67:7b:9e:66:ce:23:4f:85:06: 3b:01:ff:3b:5d:fb:ef:c3:f1:cd:59:2c:c3:c7:28: 8f:c0:fb:32:40:31:76:7d:ab:66:d6:61:62:51:f2: 0a:4b:51:78:95:a4:23:81:f9:25:ef:04:cc:ef:52: 3b:24:30:9d:c6:d3:8d:d8:bf:6b:fd:52:53:0e:75: bc:a8:f5:06:3d:9d:ec:96:9f:69:7b:3f:73:c2:b0: 0e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F1:84:7F:82:C6:D1:D2:CF:4C:36:81:72:58:08:3F:CC:64:67:19 X509v3 Authority Key Identifier: keyid:52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:71:b5:16:e3:d1:f7:49:36:ac:02:67:27:5d:c6:79:6e:cc: 84:f8:7d:e9:11:43:c9:98:43:60:66:e9:41:b5:4e:f9:0f:08: ca:ee:7c:71:a1:d1:8a:60:ba:55:25:25:51:6f:02:dc:1d:1d: 84:e0:78:7e:e7:9a:bf:47:a5:a4:22:8e:02:4f:27:08:82:68: a1:b2:b8:d7:02:ef:4e:68:d2:5b:b4:35:90:d8:22:3c:62:51: 2f:a2:1b:0e:bb:19:5c:5c:81:a7:35:75:77:8e:7e:1d:74:7a: 90:4f:be:b9:64:ac:fa:cf:b9:42:ff:07:08:9a:4a:e7:67:68: 68:4b:1b:1d:23:05:67:6d:c9:d2:ad:d9:4c:47:77:64:bf:03: 6e:9a:c0:91:a4:f3:d2:c2:4d:cc:38:bd:98:68:52:12:96:bf: ee:6d:5b:4a:da:1e:b2:95:9d:73:4c:d3:a0:22:8a:2c:e4:3b: 0a:18:40:88:1f:5e:97:07:83:cb:80:d4:e0:50:cd:89:fb:16: 01:68:be:f2:29:2b:b4:0f:15:7b:af:61:ee:3b:37:93:3e:00: 9e:b1:35:13:2d:9c:c0:5d:8a:ee:38:f3:ec:51:65:77:0b:e9: 3c:70:8e:18:8c:13:7c:0d:c2:6f:97:b4:44:58:82:29:1d:fb: 19:e8:d8:34 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcO0LZ4frtGH4IBHLh75+QLXUB3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0Iz OUU1Q0YzQTAeFw0yNTA4MDUyMzU1NDhaFw0yNTA4MDkwMDQwNDhaMDMxMTAvBgNV BAMTKEUwRjE4NDdGODJDNkQxRDJDRjRDMzY4MTcyNTgwODNGQ0M2NDY3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+kRUBZq63MXG6HfRMrFNkw0pY 7J9bSuIxZGOS9jsDbzbHWXNqmvABFvkeXvthYDlFhb0ei/1Gx84UnoCdRH0gy+Pi vFBgiVwBRjSlY5bA9PWYB20h5l/IUFNUwSyc2SfE/1toAacYg707PQPz8isy82bx XPWAAKfv8uoODp3bXGUc3Ki01yZJcP4syMpGfO5cgh8zoUzLyOj9pg5N5rmiOCzb bf28T+2XhGd7nmbOI0+FBjsB/ztd++/D8c1ZLMPHKI/A+zJAMXZ9q2bWYWJR8gpL UXiVpCOB+SXvBMzvUjskMJ3G043Yv2v9UlMOdbyo9QY9neyWn2l7P3PCsA4fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4PGEf4LG0dLPTDaBclgIP8xkZxkwHwYDVR0j BBgwFoAUUrnB5fC680XEDy55ZpxjyznlzzowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMC81MkI5QzFFNUYw QkFGMzQ1QzQwRjJFNzk2NjlDNjNDQjM5RTVDRjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0IzOUU1 Q0YzQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTBhODU5MGUtZTRkYy00NDE2LWE2 ZmEtZmI3OGQ2ZGQxMmQ3LzAvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYz Q0IzOUU1Q0YzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHhxtRbj0fdJNqwCZyddxnluzIT4fekRQ8mY Q2Bm6UG1TvkPCMrufHGh0YpgulUlJVFvAtwdHYTgeH7nmr9HpaQijgJPJwiCaKGy uNcC705o0lu0NZDYIjxiUS+iGw67GVxcgac1dXeOfh10epBPvrlkrPrPuUL/Bwia SudnaGhLGx0jBWdtydKt2UxHd2S/A26awJGk89LCTcw4vZhoUhKWv+5tW0raHrKV nXNM06AiiizkOwoYQIgfXpcHg8uA1OBQzYn7FgFovvIpK7QPFXuvYe47N5M+AJ6x NRMtnMBdiu448+xRZXcL6TxwjhiME3wNwm+XtERYgikd+xno2DQ= -----END CERTIFICATE-----Generated at Thu Aug 7 07:16:32 2025 by rpki-client