$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: B7b8t4SuQsy/xSlqe7SV36UGeze2F9TXczQeb/VNNbU= Subject key identifier: A5:0E:73:74:2E:B3:F0:57:60:B4:5A:AB:F4:0B:93:65:E4:63:17:E8 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 78001A430DD60E4DFD6815A5879E849D23099F4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 0198 Signing time: Tue 04 Nov 2025 18:31:08 +0000 Manifest this update: Tue 04 Nov 2025 18:26:08 +0000 Manifest next update: Fri 07 Nov 2025 22:26:08 +0000 Files and hashes: 1: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 2: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: XTrs4RZAdf/E68SJ2NO8QaAfq1hZSq39oCI0MrARARg=) 3: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) 4: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 22:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:00:1a:43:0d:d6:0e:4d:fd:68:15:a5:87:9e:84:9d:23:09:9f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Nov 4 18:26:08 2025 GMT Not After : Nov 7 22:26:08 2025 GMT Subject: CN=A50E73742EB3F05760B45AABF40B9365E46317E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:c9:40:78:fa:51:3d:57:65:d8:55:e1:97: 53:17:fb:4c:88:9d:5b:f6:bf:c5:f4:05:0a:77:12: 63:92:a6:e7:80:49:a8:9c:25:80:2c:07:6b:d5:ce: f3:bb:05:4c:42:37:be:13:59:f3:ee:f3:6a:97:9e: d3:29:2a:a9:91:cd:bc:86:91:7f:80:ae:64:75:b2: 9c:a9:85:4f:1e:ba:30:10:4d:b8:17:93:d3:79:3b: 78:8b:e4:77:42:c9:4a:17:9a:78:ec:9e:da:29:2f: 40:f4:14:bf:32:c5:a3:35:51:5e:ca:9e:de:cb:3a: 87:a8:49:ed:37:22:af:44:68:16:fb:b8:70:71:34: ad:c4:2d:44:fa:b3:c5:5e:d8:43:bb:be:24:c2:8e: a4:df:d1:98:7d:fa:82:f9:62:f5:9c:24:bd:a8:42: ad:f5:15:ab:20:e5:4e:9c:a8:f4:47:de:10:dd:15: 2c:cc:fd:fa:b3:53:db:43:17:9f:6d:f6:99:40:24: d1:84:a6:49:d0:8b:1c:7f:dc:cf:66:20:46:92:93: 3b:23:4b:74:e0:b8:e6:ff:04:26:9a:6c:1e:71:ba: ae:5c:90:86:2c:3c:56:ec:29:a2:47:84:40:8a:bd: 4d:ca:0a:e8:a5:ff:6b:7a:6b:53:58:dc:81:cb:07: 47:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0E:73:74:2E:B3:F0:57:60:B4:5A:AB:F4:0B:93:65:E4:63:17:E8 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:69:9f:7f:93:67:6e:10:ff:40:32:f9:21:89:46:86:e1:6b: a4:42:45:58:5a:68:d8:c2:85:30:29:29:28:61:44:fd:2f:f2: 3c:50:60:d5:d0:df:83:c5:f6:bb:92:da:89:10:6f:eb:67:a1: f6:b4:6f:18:5e:df:4a:71:f7:00:62:00:6d:6b:52:7c:7d:c2: f7:6b:dd:a9:34:6d:cd:14:45:93:bf:90:7c:f2:1d:c5:a6:e1: 12:6e:92:5b:d5:79:f9:c6:41:9c:27:8b:82:5e:98:be:51:f6: c6:d3:80:d6:8e:e5:62:d9:18:bd:2d:c2:51:cc:11:f6:69:b7: 68:45:39:56:07:e6:d6:05:db:49:63:20:98:fe:79:0a:2e:2c: 70:e9:e9:5a:61:98:09:6c:13:6a:4e:91:81:32:48:fd:d9:9a: 9f:c3:c1:b5:2a:aa:15:a9:92:1a:ef:51:cf:0b:90:ba:68:73: ac:38:c8:86:88:2d:a7:c6:eb:1c:bd:ce:53:98:b0:0f:23:1e: 7c:0c:40:da:b7:d2:9a:53:46:38:2f:d2:76:4e:03:be:8c:d4: 87:a4:59:cc:03:4f:ca:f1:5b:28:c6:59:59:3e:e2:10:c7:7a: 99:73:d3:93:60:93:ca:dc:0c:4e:2a:a4:67:c4:ba:cb:8b:51: 55:5e:97:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeAAaQw3WDk39aBWlh56EnSMJn00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTExMDQxODI2MDhaFw0yNTExMDcyMjI2MDhaMDMxMTAvBgNV BAMTKEE1MEU3Mzc0MkVCM0YwNTc2MEI0NUFBQkY0MEI5MzY1RTQ2MzE3RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyNMlAePpRPVdl2FXhl1MX+0yI nVv2v8X0BQp3EmOSpueASaicJYAsB2vVzvO7BUxCN74TWfPu82qXntMpKqmRzbyG kX+ArmR1spyphU8eujAQTbgXk9N5O3iL5HdCyUoXmnjsntopL0D0FL8yxaM1UV7K nt7LOoeoSe03Iq9EaBb7uHBxNK3ELUT6s8Ve2EO7viTCjqTf0Zh9+oL5YvWcJL2o Qq31Fasg5U6cqPRH3hDdFSzM/fqzU9tDF59t9plAJNGEpknQixx/3M9mIEaSkzsj S3TguOb/BCaabB5xuq5ckIYsPFbsKaJHhECKvU3KCuil/2t6a1NY3IHLB0dlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpQ5zdC6z8FdgtFqr9AuTZeRjF+gwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAJpn3+TZ24Q/0Ay+SGJRobha6RCRVhaaNjC hTApKShhRP0v8jxQYNXQ34PF9ruS2okQb+tnofa0bxhe30px9wBiAG1rUnx9wvdr 3ak0bc0URZO/kHzyHcWm4RJuklvVefnGQZwni4JemL5R9sbTgNaO5WLZGL0twlHM EfZpt2hFOVYH5tYF20ljIJj+eQouLHDp6VphmAlsE2pOkYEySP3Zmp/DwbUqqhWp khrvUc8LkLpoc6w4yIaILafG6xy9zlOYsA8jHnwMQNq30ppTRjgv0nZOA76M1Iek WcwDT8rxWyjGWVk+4hDHeplz05Ngk8rcDE4qpGfEusuLUVVel1s= -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:51 2025 by rpki-client