$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: qkHrH79+KB41HK0Frj/qCoksl62kixaew84Gi3IH4R8= Subject key identifier: E5:91:53:CB:81:4C:4B:C5:FD:94:47:29:A8:AB:42:18:92:A1:F5:C4 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 2B8E18A78822BC435D308C2E7B0C93C331CC1D3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 0171 Signing time: Sat 09 Aug 2025 05:31:06 +0000 Manifest this update: Sat 09 Aug 2025 05:26:06 +0000 Manifest next update: Tue 12 Aug 2025 09:23:06 +0000 Files and hashes: 1: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 2: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 3: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) 4: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: dOPPxAEGUMH6Jo6DJXae8nBxGHtQu3wThmxmuMLbIsI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 09:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8e:18:a7:88:22:bc:43:5d:30:8c:2e:7b:0c:93:c3:31:cc:1d:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Aug 9 05:26:06 2025 GMT Not After : Aug 12 09:23:06 2025 GMT Subject: CN=E59153CB814C4BC5FD944729A8AB421892A1F5C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b0:14:6b:21:c6:e9:1f:1d:6f:86:6e:80:d5: 9c:4d:17:f7:89:ad:54:a5:6f:79:2d:b4:7c:e9:59: 2f:5a:ec:24:80:ae:5d:d1:00:11:35:15:d7:93:df: 07:84:21:60:74:2e:5e:56:1c:be:39:e1:8c:78:95: 72:06:f0:ac:f6:77:d3:9f:56:98:19:83:96:1a:4d: 87:51:18:fa:ab:81:44:62:af:17:77:10:0c:34:b8: 81:96:83:b8:64:91:af:57:a4:1e:60:b0:54:42:29: 4a:85:78:c5:f7:72:fe:8d:f1:50:24:71:6a:63:d0: 19:b9:22:24:a7:b0:34:cc:8c:b1:1c:cb:b1:ad:8d: ab:39:b1:97:6e:8e:77:7c:18:10:96:df:d2:08:ee: f5:35:a1:f8:ea:5e:2c:17:61:cc:7d:23:b4:b5:92: 4a:58:62:43:7e:7c:f7:dd:a5:85:0a:f1:ad:e9:22: a0:6d:d8:ab:2d:a7:c4:67:93:12:15:f2:05:76:14: d3:24:2c:97:3e:f1:d4:2f:18:39:a6:90:1f:c9:79: 56:67:2a:aa:fb:f0:8e:b8:43:c4:36:dc:3e:b7:38: 76:8c:13:81:a0:9e:23:c9:74:75:a5:f5:5a:99:1d: 4a:91:e7:0e:11:8c:4e:66:81:ec:69:69:bc:8c:49: 18:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:91:53:CB:81:4C:4B:C5:FD:94:47:29:A8:AB:42:18:92:A1:F5:C4 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:d9:0f:2f:ce:88:b4:2c:59:1d:9b:b4:d3:b6:11:8e:4e:bd: 5a:2c:62:a5:c6:0b:10:81:dd:a3:02:f4:e2:b5:b6:e0:52:fd: 50:c7:f0:21:ed:86:1c:78:e0:3e:12:b1:a5:18:d8:65:38:16: e4:a8:ff:6c:e0:ac:e9:7f:bc:78:b3:b0:95:27:df:bb:0e:c9: 9a:fb:28:92:3e:2d:68:91:1b:c2:66:52:8d:aa:16:96:5d:9e: a8:cd:d7:f4:41:3a:b7:e0:ff:ec:85:e8:7c:3c:be:94:8f:f2: 89:fc:7f:86:42:84:73:88:1e:d8:3f:21:97:a7:64:84:80:86: d1:2f:92:94:4d:2c:45:c1:9e:3d:7d:3d:d7:e1:68:50:9c:5c: 95:9b:42:df:75:0f:27:3d:98:55:5e:f3:dd:0e:dd:d7:76:83: 14:ee:d4:45:b2:38:ca:35:b2:c6:4e:82:76:83:de:82:7b:f9: 9d:77:0e:29:1c:e9:2d:cd:df:17:a7:05:47:52:7e:47:55:42: 74:20:fb:5f:9d:91:05:7a:ee:3a:d8:8e:2d:9a:8d:c7:1d:e2: d3:7e:c4:ad:ee:ee:62:29:1d:c6:e1:1a:44:3b:a4:80:0d:7c: 57:84:a0:a3:6d:35:34:cc:01:a2:e5:7a:a9:b1:a0:55:3d:51: ef:85:bb:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK44Yp4givENdMIwuewyTwzHMHT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTA4MDkwNTI2MDZaFw0yNTA4MTIwOTIzMDZaMDMxMTAvBgNV BAMTKEU1OTE1M0NCODE0QzRCQzVGRDk0NDcyOUE4QUI0MjE4OTJBMUY1QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVsBRrIcbpHx1vhm6A1ZxNF/eJ rVSlb3kttHzpWS9a7CSArl3RABE1FdeT3weEIWB0Ll5WHL454Yx4lXIG8Kz2d9Of VpgZg5YaTYdRGPqrgURirxd3EAw0uIGWg7hkka9XpB5gsFRCKUqFeMX3cv6N8VAk cWpj0Bm5IiSnsDTMjLEcy7Gtjas5sZdujnd8GBCW39II7vU1ofjqXiwXYcx9I7S1 kkpYYkN+fPfdpYUK8a3pIqBt2Kstp8RnkxIV8gV2FNMkLJc+8dQvGDmmkB/JeVZn Kqr78I64Q8Q23D63OHaME4GgniPJdHWl9VqZHUqR5w4RjE5mgexpabyMSRj/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5ZFTy4FMS8X9lEcpqKtCGJKh9cQwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIrZDy/OiLQsWR2btNO2EY5OvVosYqXGCxCB 3aMC9OK1tuBS/VDH8CHthhx44D4SsaUY2GU4FuSo/2zgrOl/vHizsJUn37sOyZr7 KJI+LWiRG8JmUo2qFpZdnqjN1/RBOrfg/+yF6Hw8vpSP8on8f4ZChHOIHtg/IZen ZISAhtEvkpRNLEXBnj19PdfhaFCcXJWbQt91Dyc9mFVe890O3dd2gxTu1EWyOMo1 ssZOgnaD3oJ7+Z13Dikc6S3N3xenBUdSfkdVQnQg+1+dkQV67jrYji2ajccd4tN+ xK3u7mIpHcbhGkQ7pIANfFeEoKNtNTTMAaLleqmxoFU9Ue+Fuw8= -----END CERTIFICATE-----Generated at Mon Aug 11 04:13:26 2025 by rpki-client