$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: aaYkkBKS1Hv+cDzjJgHo5oPsO+TfLK039vG9ynHSELQ= Subject key identifier: 53:BD:FB:D4:BD:EF:0F:4E:64:BE:88:76:32:FB:47:55:7A:70:1A:EF Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 484CD3C6BF32090CFF1E7A34CDD9D195D5FE4939 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: DF Signing time: Sat 06 Sep 2025 07:32:19 +0000 Manifest this update: Sat 06 Sep 2025 07:27:19 +0000 Manifest next update: Tue 09 Sep 2025 11:54:19 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: ByeIcEnMiUSXB67+9upZv3OAYASu41v3+6wP5iSuVWY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 11:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:4c:d3:c6:bf:32:09:0c:ff:1e:7a:34:cd:d9:d1:95:d5:fe:49:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Sep 6 07:27:19 2025 GMT Not After : Sep 9 11:54:19 2025 GMT Subject: CN=53BDFBD4BDEF0F4E64BE887632FB47557A701AEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:09:c4:c7:71:a4:3f:45:29:d6:d9:84:bc:67: 9f:64:43:19:e2:d5:06:d7:da:ea:0a:09:a2:a8:dd: 2d:22:58:41:d6:27:6a:01:84:ce:02:06:a9:24:5b: ac:bb:15:7a:e4:3c:7b:2b:4d:b0:de:3b:fd:f4:86: 53:aa:d8:5b:76:a9:12:5d:3d:8f:f1:fd:ed:14:70: 5b:82:d5:94:75:8d:d0:ce:a4:7d:02:67:82:6e:8b: 40:92:c5:be:01:74:c0:6a:c4:01:e8:8c:39:91:b4: 9a:a4:1a:54:e7:de:6f:ad:2a:83:35:41:ab:5b:ef: 2b:de:ec:df:10:75:8a:f7:76:d3:d2:53:c6:be:03: 82:4b:0d:7a:e5:44:64:e7:4a:b8:f7:4b:de:2d:cd: 94:fd:5f:04:8e:96:09:cb:cf:61:fa:62:57:f0:d5: ec:62:ab:18:5d:ce:5d:bc:3f:b1:97:6c:0e:0c:02: 84:63:f6:55:89:13:fe:2a:61:f1:a6:4c:85:05:51: 6a:c9:94:36:11:cf:33:bd:55:dd:c2:ff:69:75:ea: 37:80:4d:62:f5:58:89:1b:3d:14:54:cd:be:9c:5c: 1e:2d:d3:67:24:74:79:87:fd:91:18:84:92:91:10: de:b9:fb:f4:67:d7:10:d2:72:ff:47:c5:ab:a5:86: 5e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BD:FB:D4:BD:EF:0F:4E:64:BE:88:76:32:FB:47:55:7A:70:1A:EF X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:5e:d8:12:6c:ee:e0:89:a5:16:39:e3:d1:6e:cd:d6:6f:0d: ce:e2:48:df:eb:f4:73:4f:fa:73:f7:29:75:9c:dd:03:5e:e8: 8f:3f:ac:72:bc:0d:ff:4a:cb:01:13:06:38:48:e1:b5:2f:64: 34:8e:a0:d4:b9:ea:c7:3c:1a:75:94:2a:40:25:21:7f:d7:38: cc:e7:ac:99:7f:33:a8:23:2f:83:bd:62:ab:83:46:22:6b:21: 8f:d1:38:66:27:14:aa:94:46:02:9f:05:7b:5a:f2:56:51:23: 9c:34:f0:99:ea:1e:ec:62:6f:48:c3:92:f7:a3:2f:d3:8c:ba: e0:17:1c:6c:59:cf:fb:38:28:5f:af:b4:7b:88:4d:16:7d:9f: b2:b2:17:b0:7f:d6:05:4b:9a:d8:f3:fe:e7:0c:60:8f:5f:4f: bc:8c:a2:74:0c:ef:95:3d:ab:9d:52:82:71:d3:00:35:44:cb: be:3b:5b:29:cd:c2:4a:03:b7:8f:bc:5b:70:a0:8e:31:ef:4b: 22:80:d9:f3:db:29:74:39:59:d7:b0:0c:b8:05:02:08:a1:0b: dd:3b:c1:4f:8b:aa:e7:1d:9a:d7:d3:22:fb:bb:12:ea:bb:92: 63:97:f0:b1:92:99:b4:db:cf:f9:b7:7c:09:51:7a:1b:e4:28: 14:73:1f:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSEzTxr8yCQz/Hno0zdnRldX+STkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTA5MDYwNzI3MTlaFw0yNTA5MDkxMTU0MTlaMDMxMTAvBgNV BAMTKDUzQkRGQkQ0QkRFRjBGNEU2NEJFODg3NjMyRkI0NzU1N0E3MDFBRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5CcTHcaQ/RSnW2YS8Z59kQxni 1QbX2uoKCaKo3S0iWEHWJ2oBhM4CBqkkW6y7FXrkPHsrTbDeO/30hlOq2Ft2qRJd PY/x/e0UcFuC1ZR1jdDOpH0CZ4Jui0CSxb4BdMBqxAHojDmRtJqkGlTn3m+tKoM1 Qatb7yve7N8QdYr3dtPSU8a+A4JLDXrlRGTnSrj3S94tzZT9XwSOlgnLz2H6Ylfw 1exiqxhdzl28P7GXbA4MAoRj9lWJE/4qYfGmTIUFUWrJlDYRzzO9Vd3C/2l16jeA TWL1WIkbPRRUzb6cXB4t02ckdHmH/ZEYhJKREN65+/Rn1xDScv9Hxaulhl4nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUU7371L3vD05kvoh2MvtHVXpwGu8wHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACNe2BJs7uCJpRY549FuzdZvDc7iSN/r9HNP +nP3KXWc3QNe6I8/rHK8Df9KywETBjhI4bUvZDSOoNS56sc8GnWUKkAlIX/XOMzn rJl/M6gjL4O9YquDRiJrIY/ROGYnFKqURgKfBXta8lZRI5w08JnqHuxib0jDkvej L9OMuuAXHGxZz/s4KF+vtHuITRZ9n7KyF7B/1gVLmtjz/ucMYI9fT7yMonQM75U9 q51SgnHTADVEy747WynNwkoDt4+8W3CgjjHvSyKA2fPbKXQ5WdewDLgFAgihC907 wU+LqucdmtfTIvu7Euq7kmOX8LGSmbTbz/m3fAlRehvkKBRzH6c= -----END CERTIFICATE-----Generated at Mon Sep 8 05:11:03 2025 by rpki-client