$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: qxcON99D2KDquILqsouf9cUHTpX39LU/fg8x54KuaHw= Subject key identifier: 94:8D:43:AE:0E:B1:63:49:1C:56:DC:0C:CA:31:C1:0A:79:7E:D1:CF Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 1213E50E070DF15B6E299564B8C4BF1295E05B8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01B4 Signing time: Sun 20 Jul 2025 12:51:12 +0000 Manifest this update: Sun 20 Jul 2025 12:46:12 +0000 Manifest next update: Wed 23 Jul 2025 17:11:12 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: 6LIZ6Z/idKvfczeD9pIMees5Wd0wS8yff57UnZ+BPAs=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: zqT5YWjMd6XfOxSy/65IPLyls5xiXGFCXPoGdWCUauk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 17:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:13:e5:0e:07:0d:f1:5b:6e:29:95:64:b8:c4:bf:12:95:e0:5b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Jul 20 12:46:12 2025 GMT Not After : Jul 23 17:11:12 2025 GMT Subject: CN=948D43AE0EB163491C56DC0CCA31C10A797ED1CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:56:bb:ab:90:f4:5b:8c:ae:cb:2f:df:dc:94: 22:f3:b3:f3:1f:50:19:c0:0a:9d:a9:bf:3d:18:db: bc:1a:b6:73:fb:cc:51:95:2b:2e:61:2f:83:6d:d2: 64:8e:3a:53:16:d7:ab:ed:65:09:52:14:04:62:27: 3f:ec:73:27:43:8d:f2:a5:f1:c3:e2:3a:4d:9c:bf: 9b:c4:7f:7d:e9:2e:3d:c9:e0:45:f0:fb:6c:ee:48: 9b:1c:25:84:e1:52:77:2d:cc:f5:32:fd:45:99:05: d5:38:5f:2e:b8:94:99:21:93:f6:d3:6e:d9:39:a2: ab:c5:6c:0d:84:a2:b2:83:7b:68:04:d3:ac:b9:8c: bd:56:48:31:de:67:13:42:c5:d0:58:8b:c1:8c:09: c7:df:10:cb:0c:d9:5d:9d:b6:9a:df:46:4b:20:56: 1a:db:80:85:3e:97:0b:29:12:85:6b:71:0e:c7:5a: 83:92:44:7b:f1:5a:b0:2c:82:29:1b:da:ef:f1:f1: 4c:29:a1:4e:22:1c:96:5b:89:d6:55:30:96:8e:17: 20:79:95:45:22:74:40:9d:97:5e:6c:aa:e2:42:56: 63:1b:1e:c8:6d:5c:06:b7:bc:46:b0:ae:f5:07:88: 9e:fd:25:c2:f4:42:d4:d8:83:1a:12:6f:cc:c3:bb: 8d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8D:43:AE:0E:B1:63:49:1C:56:DC:0C:CA:31:C1:0A:79:7E:D1:CF X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ac:c0:db:25:07:c4:21:6b:3f:e1:5b:5c:93:2d:a1:61:f6: a1:1e:eb:25:0c:a1:96:ec:ba:1b:fd:28:a0:a9:4c:99:ba:29: 35:df:3e:4e:e2:41:2a:02:e2:d0:1a:6f:f2:89:e6:61:b3:63: 8f:ff:44:b5:6d:5b:2f:c0:d4:0f:6c:71:00:17:f8:b4:28:9f: af:64:8a:f6:d8:ab:69:0a:ac:fc:0d:5f:5f:66:9e:a8:77:72: a9:a2:1c:0f:3b:49:da:44:b3:42:ae:ca:13:da:db:d5:93:00: 4d:3d:1b:95:3f:13:e6:c5:82:e0:6f:69:e8:88:19:01:18:38: 59:6b:76:b0:9f:99:f3:a7:3c:9b:73:05:04:a4:cb:af:06:cb: 48:94:80:d2:12:79:d1:14:a3:ea:66:b5:30:47:6d:97:b8:95: aa:e4:a9:27:64:8f:d6:f3:ce:b2:cb:d4:bf:4f:6f:ab:fe:95: 8c:45:ac:f8:e5:94:56:bd:3c:b6:1a:05:6b:ed:14:e4:d3:10: 6f:8f:5f:46:5d:bf:25:c5:cf:9e:af:71:24:c1:2d:1d:fa:d1: 1c:b4:16:87:d2:ef:84:84:cd:d1:89:53:d0:f9:5c:b3:22:4b: 67:3b:e1:ae:dc:7c:83:58:ca:ce:c6:83:4d:8c:8c:b2:de:cc: 0d:fe:83:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEhPlDgcN8VtuKZVkuMS/EpXgW48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTA3MjAxMjQ2MTJaFw0yNTA3MjMxNzExMTJaMDMxMTAvBgNV BAMTKDk0OEQ0M0FFMEVCMTYzNDkxQzU2REMwQ0NBMzFDMTBBNzk3RUQxQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjVrurkPRbjK7LL9/clCLzs/Mf UBnACp2pvz0Y27watnP7zFGVKy5hL4Nt0mSOOlMW16vtZQlSFARiJz/scydDjfKl 8cPiOk2cv5vEf33pLj3J4EXw+2zuSJscJYThUnctzPUy/UWZBdU4Xy64lJkhk/bT btk5oqvFbA2EorKDe2gE06y5jL1WSDHeZxNCxdBYi8GMCcffEMsM2V2dtprfRksg VhrbgIU+lwspEoVrcQ7HWoOSRHvxWrAsgikb2u/x8UwpoU4iHJZbidZVMJaOFyB5 lUUidECdl15squJCVmMbHshtXAa3vEawrvUHiJ79JcL0QtTYgxoSb8zDu42VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlI1Drg6xY0kcVtwMyjHBCnl+0c8wHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG2swNslB8Qhaz/hW1yTLaFh9qEe6yUMoZbs uhv9KKCpTJm6KTXfPk7iQSoC4tAab/KJ5mGzY4//RLVtWy/A1A9scQAX+LQon69k ivbYq2kKrPwNX19mnqh3cqmiHA87SdpEs0KuyhPa29WTAE09G5U/E+bFguBvaeiI GQEYOFlrdrCfmfOnPJtzBQSky68Gy0iUgNISedEUo+pmtTBHbZe4larkqSdkj9bz zrLL1L9Pb6v+lYxFrPjllFa9PLYaBWvtFOTTEG+PX0ZdvyXFz56vcSTBLR360Ry0 FofS74SEzdGJU9D5XLMiS2c74a7cfINYys7Gg02MjLLezA3+g+Y= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:18 2025 by rpki-client