$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: wSqPw6zXQ6piCiSLFARPz2HyYX5QI3DDbFyn1Q7tsjM= Subject key identifier: A7:C2:65:BA:D1:1B:03:36:C6:C2:14:90:1B:93:70:44:B9:09:DA:D6 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 530FB5D328830DD4833CF7CBD2F7666C89CD34CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 9E Signing time: Fri 11 Apr 2025 10:22:12 +0000 Manifest this update: Fri 11 Apr 2025 10:17:12 +0000 Manifest next update: Mon 14 Apr 2025 16:24:12 +0000 Files and hashes: 1: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: O9Pf36Dcp99mAPP/rfCCXTJvfr7LhkOPxCGWTSNu+xk=) 2: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 12:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:0f:b5:d3:28:83:0d:d4:83:3c:f7:cb:d2:f7:66:6c:89:cd:34:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Apr 11 10:17:12 2025 GMT Not After : Apr 14 16:24:12 2025 GMT Subject: CN=A7C265BAD11B0336C6C214901B937044B909DAD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a9:df:fb:8d:7b:a2:87:01:eb:b4:75:b3:eb: f8:08:ae:cc:24:c0:53:54:aa:49:74:fd:cc:e8:3f: a5:6d:37:ae:9b:41:2d:5d:cd:45:18:6c:11:78:9b: d5:f5:41:73:cb:9e:98:e8:fc:9f:a2:c6:90:6f:43: 17:39:a7:c7:bc:b6:23:e9:8a:35:6f:7d:93:66:39: ac:f6:c8:42:f6:75:ef:71:71:52:ef:24:c5:69:3c: c4:2f:ec:35:0d:04:7e:3a:17:41:ce:9c:2e:2d:12: bc:21:0c:cd:61:03:a2:54:3e:53:f2:d0:1e:74:37: 72:59:14:b8:f3:2a:a4:a0:f2:f6:7c:66:dd:a0:b8: d9:55:59:c3:3d:39:dd:d0:99:9d:31:3f:00:07:e9: ac:1b:7d:28:e9:63:af:59:56:52:80:38:00:f0:c1: 1c:14:3c:0c:60:37:0d:43:04:0f:f0:e1:95:fb:9f: 6d:a8:ca:34:b7:c5:0b:68:bd:e2:61:df:13:70:c1: db:78:d3:c5:aa:d7:f5:52:5c:df:e5:ac:b7:cc:45: 83:c4:1e:09:b6:c1:ff:12:7d:64:22:59:95:fe:75: 2d:b9:33:85:d6:eb:88:44:20:c0:8e:06:e5:b6:5b: 36:59:fd:76:a1:a8:6e:4a:67:f9:aa:d9:81:6e:72: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C2:65:BA:D1:1B:03:36:C6:C2:14:90:1B:93:70:44:B9:09:DA:D6 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:7b:a7:4b:71:56:bf:c1:33:0f:32:6f:d1:30:d7:68:b3:56: 2a:a3:a2:16:81:86:48:f4:c7:70:bb:f3:b4:ae:70:b4:2a:46: 4d:f8:f5:02:d1:ce:1a:65:e6:eb:cc:62:86:27:01:4e:3a:90: 6d:08:68:19:0c:93:39:45:bd:3d:69:c5:51:99:d9:d5:97:9c: 58:1a:e2:83:7c:9b:16:b7:b9:f3:53:29:f0:8e:d0:ae:cf:4a: 83:a4:cc:fc:33:14:4b:4a:fe:e4:f1:32:dc:61:0a:47:4c:eb: f9:58:f1:e5:f8:06:9e:cf:6b:3e:79:1e:6d:2f:ea:f7:b6:d6: 32:c5:e4:fb:37:b9:85:8b:2d:50:99:23:bd:3f:6c:66:a4:7b: 45:47:ac:36:bc:18:bb:65:68:c7:f3:83:a2:f2:d0:6e:e8:bd: a3:d1:70:a7:eb:75:20:8a:88:ed:cf:60:fb:a1:b6:72:8c:89: 29:b5:84:3d:c6:a5:48:08:0d:43:9e:35:f5:bb:f8:56:2a:30: 03:cd:a9:5e:7b:12:eb:8d:11:bb:8f:8f:90:a2:c3:e4:d5:e7: 08:9c:59:18:55:d2:1b:21:0a:a5:50:6d:09:9f:f9:1f:6a:29: aa:d6:8d:8f:4e:7d:3c:b8:19:c1:6e:a5:b1:5d:62:59:8b:21: d8:14:3f:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUw+10yiDDdSDPPfL0vdmbInNNMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTA0MTExMDE3MTJaFw0yNTA0MTQxNjI0MTJaMDMxMTAvBgNV BAMTKEE3QzI2NUJBRDExQjAzMzZDNkMyMTQ5MDFCOTM3MDQ0QjkwOURBRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJqd/7jXuihwHrtHWz6/gIrswk wFNUqkl0/czoP6VtN66bQS1dzUUYbBF4m9X1QXPLnpjo/J+ixpBvQxc5p8e8tiPp ijVvfZNmOaz2yEL2de9xcVLvJMVpPMQv7DUNBH46F0HOnC4tErwhDM1hA6JUPlPy 0B50N3JZFLjzKqSg8vZ8Zt2guNlVWcM9Od3QmZ0xPwAH6awbfSjpY69ZVlKAOADw wRwUPAxgNw1DBA/w4ZX7n22oyjS3xQtoveJh3xNwwdt408Wq1/VSXN/lrLfMRYPE Hgm2wf8SfWQiWZX+dS25M4XW64hEIMCOBuW2WzZZ/XahqG5KZ/mq2YFucsQpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUp8JlutEbAzbGwhSQG5NwRLkJ2tYwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAl7p0txVr/BMw8yb9Ew12izViqjohaBhkj0 x3C787SucLQqRk349QLRzhpl5uvMYoYnAU46kG0IaBkMkzlFvT1pxVGZ2dWXnFga 4oN8mxa3ufNTKfCO0K7PSoOkzPwzFEtK/uTxMtxhCkdM6/lY8eX4Bp7Paz55Hm0v 6ve21jLF5Ps3uYWLLVCZI70/bGake0VHrDa8GLtlaMfzg6Ly0G7ovaPRcKfrdSCK iO3PYPuhtnKMiSm1hD3GpUgIDUOeNfW7+FYqMAPNqV57EuuNEbuPj5Ciw+TV5wic WRhV0hshCqVQbQmf+R9qKarWjY9OfTy4GcFupbFdYlmLIdgUP8U= -----END CERTIFICATE-----Generated at Fri Apr 11 21:24:15 2025 by rpki-client