$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft File: 535D46F4044E2CC21293CC061A2783074BDF7AE7.mft (raw, json) Hash identifier: sIqdUck3Tc4gmUYPuUsdLLrSUBp1hcSlbl79KUg8pwY= Subject key identifier: 45:8F:5E:52:C3:1B:5E:EC:97:30:0D:22:C6:A9:B3:78:D3:8E:51:3D Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 03CF838821ABB9D18EAF2B21EDA49196344DE9C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft Manifest number: 0116 Signing time: Sun 07 Sep 2025 11:41:22 +0000 Manifest this update: Sun 07 Sep 2025 11:36:22 +0000 Manifest next update: Wed 10 Sep 2025 22:16:22 +0000 Files and hashes: 1: 3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa (hash: ziqyElqA9AWawQsIwtFYhW7vigptCpJYDFMjj4wIn2E=) 2: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (hash: O+DYiMiMwkf2fjBBi2Y0uG1bMY8o2RWfJ3yizKPcbzk=) 3: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (hash: yq265ELsxp0oAlCM/3VQz9AgxchX8BpcvalzRZ4r8Rc=) 4: 535D46F4044E2CC21293CC061A2783074BDF7AE7.crl (hash: MH5XXhqUYExd95JsY5gr7Jd6hWGcsOvlL5YAAkWO9uY=) 5: 3130332e3134332e32322e302f32342d3234203d3e20313339343331.roa (hash: jf5znzRFy2+P6OoEH2nJsLB6FzpE4dX49Aqe9OCR/Ck=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:cf:83:88:21:ab:b9:d1:8e:af:2b:21:ed:a4:91:96:34:4d:e9:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Sep 7 11:36:22 2025 GMT Not After : Sep 10 22:16:22 2025 GMT Subject: CN=458F5E52C31B5EEC97300D22C6A9B378D38E513D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:55:ad:0f:48:65:b6:8a:ad:3c:52:fd:93:77: 7b:7f:27:4f:15:c4:bc:e7:0a:b0:a6:4d:ce:47:6a: d2:41:f2:a0:35:ed:98:85:3d:ad:df:7b:1b:57:c3: fb:77:d4:4e:b0:c0:74:ec:23:c2:68:85:cb:9e:d2: 4e:85:69:ca:4d:3d:ab:78:48:82:08:7a:9f:3d:b8: 4d:59:1b:a8:85:99:0d:33:8d:4d:93:8c:62:53:ea: 09:47:6d:02:3e:ac:28:94:47:04:00:b7:38:75:97: 17:d0:ac:10:82:70:96:bf:02:2d:2e:e5:0b:6b:a9: 22:84:f5:ed:b3:59:6e:f7:03:1f:c3:b0:29:a6:6e: 65:7c:31:a4:b0:3d:85:3d:cc:1f:9a:fa:59:b0:9e: be:e6:7a:d7:49:80:a3:3c:9e:a6:01:a8:d3:e8:0f: 1d:3d:ca:61:ab:1f:1b:cd:da:4c:7c:02:a7:c2:81: de:a3:df:21:d3:85:9d:b3:cd:fa:34:ac:79:f1:4b: 75:2b:9f:7d:8d:cf:27:66:4f:67:fa:e4:a4:26:4a: 68:a2:22:a1:98:8b:dc:79:50:79:e0:db:3e:4c:20: 3f:cd:bc:31:9b:f1:ba:de:74:9b:b1:ab:57:27:a3: b2:d5:54:40:38:a4:bf:25:8e:f7:a4:24:79:a7:2a: b6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8F:5E:52:C3:1B:5E:EC:97:30:0D:22:C6:A9:B3:78:D3:8E:51:3D X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:cb:f0:fc:88:43:0b:be:66:8c:1c:77:3a:6f:06:80:a2:6f: 13:ab:62:1b:41:f8:47:4d:02:17:8c:c1:b7:35:01:28:ee:0b: 16:40:e4:d0:87:a7:ed:ad:ce:0b:07:d0:2d:6e:dc:45:6a:4c: 3a:c9:e3:d4:a6:f0:71:e9:27:84:91:6f:4f:74:d5:9e:10:a9: 49:55:a7:6e:5d:e6:3f:94:ed:5d:2e:2f:7c:e6:96:6a:0f:98: 5c:58:6d:6d:9c:29:73:01:55:99:fa:57:18:b5:d7:30:ea:0c: 03:8c:e9:2a:50:f2:a9:b1:72:21:71:a8:cc:27:0a:22:cd:ac: c4:ea:f8:a1:29:7d:60:e1:63:a2:d7:3f:1c:2a:81:07:3c:89: b6:46:83:09:b6:49:46:83:19:d8:f9:24:45:9d:b5:fe:d5:ad: d0:ea:1a:d5:bc:0d:ab:c6:a2:a4:20:7e:d9:8e:25:fd:e4:f8: 75:4c:b0:ee:4b:01:e8:af:60:65:55:b4:a6:79:ce:aa:c0:91: ca:fe:9a:41:04:2d:f0:67:63:20:0c:ae:e9:a4:64:86:14:cc: 0e:ad:79:ca:3e:30:4e:69:6f:a8:d1:d3:84:05:57:33:59:89: 6b:05:57:6e:af:72:72:bc:c5:63:6f:40:f1:6e:e9:8e:af:28: bd:f9:53:fa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUA8+DiCGrudGOrysh7aSRljRN6cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNTA5MDcxMTM2MjJaFw0yNTA5MTAyMjE2MjJaMDMxMTAvBgNV BAMTKDQ1OEY1RTUyQzMxQjVFRUM5NzMwMEQyMkM2QTlCMzc4RDM4RTUxM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWVa0PSGW2iq08Uv2Td3t/J08V xLznCrCmTc5HatJB8qA17ZiFPa3fextXw/t31E6wwHTsI8Johcue0k6FacpNPat4 SIIIep89uE1ZG6iFmQ0zjU2TjGJT6glHbQI+rCiURwQAtzh1lxfQrBCCcJa/Ai0u 5QtrqSKE9e2zWW73Ax/DsCmmbmV8MaSwPYU9zB+a+lmwnr7metdJgKM8nqYBqNPo Dx09ymGrHxvN2kx8AqfCgd6j3yHThZ2zzfo0rHnxS3Urn32NzydmT2f65KQmSmii IqGYi9x5UHng2z5MID/NvDGb8bredJuxq1cno7LVVEA4pL8ljvekJHmnKrb9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQURY9eUsMbXuyXMA0ixqmzeNOOUT0wHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQ2ZjMzZjItZjA2ZS00ZWI2LWFl NjEtNTUyOWJjYTFjZGNkLzAvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgz MDc0QkRGN0FFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJLL8PyIQwu+ZowcdzpvBoCibxOrYhtB+EdN AheMwbc1ASjuCxZA5NCHp+2tzgsH0C1u3EVqTDrJ49Sm8HHpJ4SRb0901Z4QqUlV p25d5j+U7V0uL3zmlmoPmFxYbW2cKXMBVZn6Vxi11zDqDAOM6SpQ8qmxciFxqMwn CiLNrMTq+KEpfWDhY6LXPxwqgQc8ibZGgwm2SUaDGdj5JEWdtf7VrdDqGtW8DavG oqQgftmOJf3k+HVMsO5LAeivYGVVtKZ5zqrAkcr+mkEELfBnYyAMrumkZIYUzA6t eco+ME5pb6jR04QFVzNZiWsFV26vcnK8xWNvQPFu6Y6vKL35U/o= -----END CERTIFICATE-----Generated at Sun Sep 7 13:59:52 2025 by rpki-client