$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: TrEsTQePQy66a2Mvyi5qEGDDPLg72+etD+zvRaqPM5U= Subject key identifier: 61:AA:F5:04:43:B1:E6:2D:35:EA:9C:EF:29:2C:9D:A0:C2:B9:4D:24 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 5AFD2D1834019B3DFC65C1CAB963CC02FF2F139A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 015A Signing time: Thu 19 Jun 2025 04:12:33 +0000 Manifest this update: Thu 19 Jun 2025 04:07:33 +0000 Manifest next update: Sun 22 Jun 2025 14:20:33 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: gkIGP8rMSHc/9sXflGbgPFijUbszBpiByIC3Fnoj7Zs=) 2: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) 3: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 4: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 14:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:fd:2d:18:34:01:9b:3d:fc:65:c1:ca:b9:63:cc:02:ff:2f:13:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Jun 19 04:07:33 2025 GMT Not After : Jun 22 14:20:33 2025 GMT Subject: CN=61AAF50443B1E62D35EA9CEF292C9DA0C2B94D24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:04:a8:cd:be:7a:00:94:26:5f:58:35:5d:34: 30:e1:22:42:3e:35:e3:6e:35:9f:85:75:5f:65:f8: e5:63:5b:86:c6:77:d1:3b:48:03:a8:cd:39:8f:7d: 6b:b9:bf:ee:ef:ae:f5:21:db:ac:32:80:c3:34:29: 53:a9:89:e4:95:11:8a:ba:6a:df:67:05:cc:d0:16: 22:69:da:4d:c9:cb:28:79:8d:7e:5e:e2:d6:b8:eb: 1e:8f:c0:65:da:d4:7f:e7:16:e4:5a:ee:71:ba:1a: ac:b8:18:78:3e:9c:79:94:a3:e1:bf:d8:b8:49:9f: 5e:a8:f8:3a:43:79:84:df:d4:28:f8:59:71:ef:fc: 16:eb:19:07:a7:fa:4a:f1:8a:2f:61:e8:f9:4e:1d: 60:b5:2d:d6:3b:64:fe:e6:f2:9c:5a:bd:0c:51:f8: 63:55:27:ec:00:1b:51:3b:9a:11:68:42:e1:d5:1d: 3c:d7:c4:af:e0:ea:4b:fd:b2:4f:7d:21:8e:57:70: 83:ab:3e:cb:09:61:06:b3:ae:db:ab:a3:49:f3:6a: 78:41:5f:2d:ed:1e:73:cb:89:4c:a1:c0:c1:df:77: 0a:8c:ff:fa:e8:f5:8b:6a:0a:03:02:9a:e0:f8:62: 9a:37:d6:97:ea:68:8c:21:b9:e5:4b:70:b3:22:ab: ff:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AA:F5:04:43:B1:E6:2D:35:EA:9C:EF:29:2C:9D:A0:C2:B9:4D:24 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b6:59:b3:87:f0:71:88:31:4a:fa:5f:7c:31:88:f7:29:d8: 6d:a7:14:72:55:a9:66:de:0e:54:ad:de:87:ca:47:f9:0d:7c: f9:32:0c:3b:c9:b1:5b:de:4a:99:40:24:09:f0:99:dc:67:cb: a5:c4:85:52:0d:11:57:2e:fd:83:83:a4:d9:a0:ac:6c:77:ba: 3b:e6:bc:f3:b2:62:97:de:48:03:e8:16:04:79:0c:81:1b:6a: fe:a5:5d:b1:2f:c2:bc:c9:cd:49:fa:66:ce:84:3e:d6:d2:5d: 75:4f:df:a0:de:54:76:03:36:b0:b9:5a:85:4c:f6:f7:76:46: 01:1d:3f:c5:bb:eb:60:a5:d0:fc:59:14:24:fa:77:e7:bd:01: ce:ef:58:28:ab:08:dd:db:16:ac:b2:f4:cd:79:d7:e5:88:a8: 1a:a5:32:74:1f:b6:7c:42:22:12:ff:43:b3:5d:38:a4:20:cb: cd:8e:d1:1d:e7:6d:f7:6e:7c:ca:32:d5:57:3e:5d:72:9c:67: 42:6c:0b:78:b5:46:db:7b:f7:89:22:ec:34:0b:68:73:b2:b0: 16:16:65:8d:c8:74:aa:7d:83:46:49:b2:c8:3d:e5:2e:93:3b: f4:a7:77:56:0f:02:45:91:43:7c:5d:ca:ba:34:7d:00:2e:b4: e1:8c:f1:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWv0tGDQBmz38ZcHKuWPMAv8vE5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTA2MTkwNDA3MzNaFw0yNTA2MjIxNDIwMzNaMDMxMTAvBgNV BAMTKDYxQUFGNTA0NDNCMUU2MkQzNUVBOUNFRjI5MkM5REEwQzJCOTREMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpBKjNvnoAlCZfWDVdNDDhIkI+ NeNuNZ+FdV9l+OVjW4bGd9E7SAOozTmPfWu5v+7vrvUh26wygMM0KVOpieSVEYq6 at9nBczQFiJp2k3Jyyh5jX5e4ta46x6PwGXa1H/nFuRa7nG6Gqy4GHg+nHmUo+G/ 2LhJn16o+DpDeYTf1Cj4WXHv/BbrGQen+krxii9h6PlOHWC1LdY7ZP7m8pxavQxR +GNVJ+wAG1E7mhFoQuHVHTzXxK/g6kv9sk99IY5XcIOrPssJYQazrturo0nzanhB Xy3tHnPLiUyhwMHfdwqM//ro9YtqCgMCmuD4Ypo31pfqaIwhueVLcLMiq/9HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYar1BEOx5i016pzvKSydoMK5TSQwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIq2WbOH8HGIMUr6X3wxiPcp2G2nFHJVqWbe DlSt3ofKR/kNfPkyDDvJsVveSplAJAnwmdxny6XEhVINEVcu/YODpNmgrGx3ujvm vPOyYpfeSAPoFgR5DIEbav6lXbEvwrzJzUn6Zs6EPtbSXXVP36DeVHYDNrC5WoVM 9vd2RgEdP8W762Cl0PxZFCT6d+e9Ac7vWCirCN3bFqyy9M151+WIqBqlMnQftnxC IhL/Q7NdOKQgy82O0R3nbfdufMoy1Vc+XXKcZ0JsC3i1Rtt794ki7DQLaHOysBYW ZY3IdKp9g0ZJssg95S6TO/Snd1YPAkWRQ3xdyro0fQAutOGM8UQ= -----END CERTIFICATE-----Generated at Fri Jun 20 04:30:22 2025 by rpki-client