$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft File: 535D46F4044E2CC21293CC061A2783074BDF7AE7.mft (raw, json) Hash identifier: tjKkCDVQHMa4fQMOlzlnrMe5OtSdAis1tuwckkan60w= Subject key identifier: 0C:83:82:25:19:54:1F:39:C5:6A:B0:38:52:D4:80:7F:74:4A:F8:08 Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 13B5F527C9CACF7D84942CEDB93BF4D20A33FCE9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft Manifest number: ED Signing time: Fri 06 Jun 2025 10:51:22 +0000 Manifest this update: Fri 06 Jun 2025 10:46:22 +0000 Manifest next update: Mon 09 Jun 2025 21:31:22 +0000 Files and hashes: 1: 3130332e3134332e32322e302f32342d3234203d3e20313339343331.roa (hash: jf5znzRFy2+P6OoEH2nJsLB6FzpE4dX49Aqe9OCR/Ck=) 2: 3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa (hash: ziqyElqA9AWawQsIwtFYhW7vigptCpJYDFMjj4wIn2E=) 3: 535D46F4044E2CC21293CC061A2783074BDF7AE7.crl (hash: tTefSeOILFgxenSNjJ+ZWmWJAA086fLg1mDB3BD+YWo=) 4: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (hash: yq265ELsxp0oAlCM/3VQz9AgxchX8BpcvalzRZ4r8Rc=) 5: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (hash: O+DYiMiMwkf2fjBBi2Y0uG1bMY8o2RWfJ3yizKPcbzk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b5:f5:27:c9:ca:cf:7d:84:94:2c:ed:b9:3b:f4:d2:0a:33:fc:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Jun 6 10:46:22 2025 GMT Not After : Jun 9 21:31:22 2025 GMT Subject: CN=0C83822519541F39C56AB03852D4807F744AF808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a3:cf:0e:67:d0:b5:7c:b2:9d:83:83:f5:e3: 2d:cf:84:0f:7b:b7:22:f4:ed:7d:dc:c9:8a:9c:42: e4:ce:ed:bc:77:a0:e7:7a:d2:5f:26:0b:01:62:0e: c3:31:43:4e:c2:be:b2:d3:ac:d1:db:00:f7:86:53: 0f:80:dd:59:5a:5f:aa:be:53:c5:81:be:ca:dc:ab: 2a:ea:20:af:51:eb:85:59:4f:81:8b:e9:0d:a2:f8: 34:a5:1c:7a:65:6f:05:6a:da:bf:71:31:c1:9c:95: 85:96:06:cd:fd:5d:c0:f8:0f:6c:0a:e9:14:7d:9c: db:32:20:07:ae:cb:96:a5:79:9c:56:c0:cf:83:c1: bf:45:a5:ec:f2:a3:a7:bf:3d:77:17:4b:42:c2:86: 41:d1:0f:d4:c2:c8:2f:d2:79:e0:95:36:34:04:40: 19:bc:7f:7b:64:27:cd:9c:ab:10:94:9b:d1:cc:e5: 6e:5c:0e:80:dc:16:ad:a6:3e:dd:0e:a8:f3:05:37: f9:25:ad:c5:5f:b2:db:97:d5:04:cc:6c:4f:b0:0a: 10:ec:08:88:3c:4e:eb:c1:cc:91:1b:26:9a:fa:c2: e4:5b:83:48:b4:f6:7b:e7:2a:fa:57:d6:f7:96:64: fa:e5:c2:c1:49:36:bc:98:9a:be:6e:6f:99:79:40: 5e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:83:82:25:19:54:1F:39:C5:6A:B0:38:52:D4:80:7F:74:4A:F8:08 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:cb:f0:89:39:13:3c:96:f1:02:dc:86:4b:f8:7b:b3:a9:10: 60:ad:d1:10:a8:02:bb:d5:51:27:e8:64:85:19:5d:84:ad:66: d3:44:de:8e:c4:85:c5:2a:41:89:bc:44:4e:b4:bb:66:2b:02: 07:ec:e2:a2:f2:bf:50:72:60:77:fb:8d:9d:0b:4c:72:4e:9e: d1:32:c5:cd:da:43:db:1c:dd:56:4b:9f:31:62:d8:39:f5:d0: 71:54:e3:47:86:cb:8b:f9:4b:33:04:2d:72:f4:9a:41:c1:35: c2:06:51:2c:f0:74:89:89:32:69:83:15:ee:ae:13:64:86:4b: 38:02:d9:4c:42:f4:b6:29:92:9b:84:cc:10:fc:b2:93:2f:ce: e4:c9:06:be:cf:52:80:82:66:fd:a0:ba:48:dd:9d:e3:2e:a2: ec:55:60:bf:55:b0:95:3c:74:50:03:7e:7e:7f:d3:ca:2c:4d: 22:b8:e1:fa:42:ff:91:9f:96:4d:91:13:58:34:66:8d:33:a7: 3f:c1:26:14:1e:8b:53:c4:a3:3c:6a:11:5e:4f:83:4d:74:26: f0:ab:ff:23:e0:78:4c:9a:8f:8f:a3:dc:89:83:3f:69:51:ea: 52:7a:1c:86:ed:eb:8d:3b:5b:bc:53:4f:10:09:11:d2:ca:fa: dc:4a:e4:d8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE7X1J8nKz32ElCztuTv00goz/OkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNTA2MDYxMDQ2MjJaFw0yNTA2MDkyMTMxMjJaMDMxMTAvBgNV BAMTKDBDODM4MjI1MTk1NDFGMzlDNTZBQjAzODUyRDQ4MDdGNzQ0QUY4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoo88OZ9C1fLKdg4P14y3PhA97 tyL07X3cyYqcQuTO7bx3oOd60l8mCwFiDsMxQ07CvrLTrNHbAPeGUw+A3VlaX6q+ U8WBvsrcqyrqIK9R64VZT4GL6Q2i+DSlHHplbwVq2r9xMcGclYWWBs39XcD4D2wK 6RR9nNsyIAeuy5aleZxWwM+Dwb9Fpezyo6e/PXcXS0LChkHRD9TCyC/SeeCVNjQE QBm8f3tkJ82cqxCUm9HM5W5cDoDcFq2mPt0OqPMFN/klrcVfstuX1QTMbE+wChDs CIg8TuvBzJEbJpr6wuRbg0i09nvnKvpX1veWZPrlwsFJNryYmr5ub5l5QF4hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDIOCJRlUHznFarA4UtSAf3RK+AgwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQ2ZjMzZjItZjA2ZS00ZWI2LWFl NjEtNTUyOWJjYTFjZGNkLzAvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgz MDc0QkRGN0FFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALnL8Ik5EzyW8QLchkv4e7OpEGCt0RCoArvV USfoZIUZXYStZtNE3o7EhcUqQYm8RE60u2YrAgfs4qLyv1ByYHf7jZ0LTHJOntEy xc3aQ9sc3VZLnzFi2Dn10HFU40eGy4v5SzMELXL0mkHBNcIGUSzwdImJMmmDFe6u E2SGSzgC2UxC9LYpkpuEzBD8spMvzuTJBr7PUoCCZv2gukjdneMuouxVYL9VsJU8 dFADfn5/08osTSK44fpC/5Gflk2RE1g0Zo0zpz/BJhQei1PEozxqEV5Pg010JvCr /yPgeEyaj4+j3ImDP2lR6lJ6HIbt6407W7xTTxAJEdLK+txK5Ng= -----END CERTIFICATE-----Generated at Sun Jun 8 02:02:57 2025 by rpki-client