$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft File: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft (raw, json) Hash identifier: JB9fRZmwUqcTxdaYuZI85hQ0t/mrm6C7IyyYztJnums= Subject key identifier: 35:9F:63:1D:D1:36:E7:1B:55:29:3F:47:3D:F0:7E:BE:0F:14:C5:B5 Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 587947D02259A04003B1D800DE365BC62432B929 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft Manifest number: 0158 Signing time: Thu 07 Aug 2025 20:51:29 +0000 Manifest this update: Thu 07 Aug 2025 20:46:29 +0000 Manifest next update: Sun 10 Aug 2025 21:40:29 +0000 Files and hashes: 1: 3130332e3232372e3138362e302f32342d3234203d3e20313432333730.roa (hash: Ew2OSWEohUTuvmIQMM4jLPYBjKqzXCpLNwLiyPu5TfM=) 2: 3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa (hash: vmw9bcS7HYiEIqjVICRaVcatSeJQ8ZNuTTgtgTfawew=) 3: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (hash: D5hukbaY+N3AjWmkuBGFFTwqc+CzamYmFL0amMEyMMM=) 4: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl (hash: 6KLATZ775cQeojwr9k//PWldpw4H3JUd8/XascThpL4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 21:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:79:47:d0:22:59:a0:40:03:b1:d8:00:de:36:5b:c6:24:32:b9:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: Aug 7 20:46:29 2025 GMT Not After : Aug 10 21:40:29 2025 GMT Subject: CN=359F631DD136E71B55293F473DF07EBE0F14C5B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:54:d4:7e:86:66:73:81:da:4b:cc:f1:f0:14: 5c:63:d4:18:de:6c:fb:7f:2e:a1:64:9d:89:27:07: 06:5a:f0:ac:f7:9f:70:00:f3:76:ff:31:97:95:84: 02:76:f4:d2:fa:f6:84:4b:87:8b:81:8e:12:73:9f: e4:a0:56:90:c2:95:e8:78:65:98:0e:cc:05:52:bf: 48:5c:40:cc:b2:4b:ec:4b:50:63:ee:a4:9f:94:dd: 68:e8:5c:e1:40:c4:42:22:16:88:72:94:95:19:dc: cc:3a:c7:1d:6a:45:6a:8c:fa:93:89:ad:66:f5:4c: d3:2a:94:57:ef:63:d7:92:d9:0e:27:6a:87:fb:1f: 0b:2b:97:13:69:fa:7d:79:7a:e8:82:6d:61:61:8c: 9a:24:53:e0:a5:dc:e2:a3:a7:b8:a5:f5:67:23:b7: 14:39:21:3e:2a:ac:cd:c0:52:de:4f:ba:45:fc:42: 65:ed:85:bb:16:76:8c:aa:d1:8a:64:a0:19:3c:0d: ba:a7:5e:0b:f7:70:9e:cb:3e:8e:1c:03:6c:e3:8b: 39:a0:f5:61:ac:7b:9d:63:60:39:b2:ac:b3:eb:c9: 5f:21:f2:23:d6:93:b1:52:b7:a6:b2:88:e2:17:7c: e4:18:65:90:63:22:af:65:ac:54:ab:0b:56:07:ed: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:9F:63:1D:D1:36:E7:1B:55:29:3F:47:3D:F0:7E:BE:0F:14:C5:B5 X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:00:28:37:ee:98:6b:41:34:8b:f8:76:7e:f6:43:b4:83:f0: 06:a8:a1:07:e2:3d:ab:5c:3c:43:e0:3e:90:8e:18:f4:35:d2: d6:ba:95:7e:47:91:9f:43:dc:c3:f5:79:f2:a4:75:d9:2b:51: 31:ad:b4:42:00:e6:ae:12:7f:99:09:fa:eb:f8:07:8d:65:e8: 80:88:bf:7e:74:23:3e:5d:ff:de:87:ed:5e:3a:d2:b6:cb:e3: e4:a9:f0:55:7e:7d:4e:ef:b5:44:5c:36:15:c5:f8:06:97:a1: 1b:13:55:50:e3:ce:31:25:fd:94:9d:ee:1c:89:96:b5:54:93: 76:5f:e4:b4:af:b3:86:c8:c0:b6:21:f0:4e:94:70:af:8f:99: a5:d2:40:9b:6c:74:ab:82:50:3e:69:d6:ef:20:f3:53:4d:c1: aa:fe:3c:7d:d5:8d:4c:34:8f:5f:be:8b:7f:cb:62:b4:b9:fc: 38:f0:68:19:28:ff:04:82:2d:e9:9c:e2:cc:19:bb:fe:42:22: 6c:59:f0:fb:2f:3c:da:16:ab:65:8e:ff:d6:0b:f0:35:60:89: 09:34:ee:b2:fd:92:be:c2:87:b2:5f:67:ac:6c:fc:4f:47:bb: af:31:d1:4e:5b:ea:85:65:19:7d:2d:a5:8b:23:bb:36:9f:61: 95:7f:6e:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWHlH0CJZoEADsdgA3jZbxiQyuSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNTA4MDcyMDQ2MjlaFw0yNTA4MTAyMTQwMjlaMDMxMTAvBgNV BAMTKDM1OUY2MzFERDEzNkU3MUI1NTI5M0Y0NzNERjA3RUJFMEYxNEM1QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeVNR+hmZzgdpLzPHwFFxj1Bje bPt/LqFknYknBwZa8Kz3n3AA83b/MZeVhAJ29NL69oRLh4uBjhJzn+SgVpDCleh4 ZZgOzAVSv0hcQMyyS+xLUGPupJ+U3WjoXOFAxEIiFohylJUZ3Mw6xx1qRWqM+pOJ rWb1TNMqlFfvY9eS2Q4naof7HwsrlxNp+n15euiCbWFhjJokU+Cl3OKjp7il9Wcj txQ5IT4qrM3AUt5PukX8QmXthbsWdoyq0YpkoBk8DbqnXgv3cJ7LPo4cA2zjizmg 9WGse51jYDmyrLPryV8h8iPWk7FSt6ayiOIXfOQYZZBjIq9lrFSrC1YH7exrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNZ9jHdE25xtVKT9HPfB+vg8UxbUwHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGIzODhmNmUtOTk3NC00NDU3LWFm NGItNWM5YzgyZjUwZTk3LzAvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFE NEM1MDg1MkE2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHYAKDfumGtBNIv4dn72Q7SD8AaooQfiPatc PEPgPpCOGPQ10ta6lX5HkZ9D3MP1efKkddkrUTGttEIA5q4Sf5kJ+uv4B41l6ICI v350Iz5d/96H7V460rbL4+Sp8FV+fU7vtURcNhXF+AaXoRsTVVDjzjEl/ZSd7hyJ lrVUk3Zf5LSvs4bIwLYh8E6UcK+PmaXSQJtsdKuCUD5p1u8g81NNwar+PH3VjUw0 j1++i3/LYrS5/DjwaBko/wSCLemc4swZu/5CImxZ8PsvPNoWq2WO/9YL8DVgiQk0 7rL9kr7Ch7JfZ6xs/E9Hu68x0U5b6oVlGX0tpYsjuzafYZV/bg8= -----END CERTIFICATE-----Generated at Thu Aug 7 23:56:50 2025 by rpki-client