$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: 2SUc6R0q/3MtHulWNFFmnw0HeaNVzAXg22FYFh62lLc= Subject key identifier: AC:55:58:81:A5:87:FF:3C:24:14:37:02:0A:27:74:CE:A4:49:A2:0F Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 21A5202FA8B4F0F350EAE686E85F8E269EAE7326 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: B6 Signing time: Wed 04 Jun 2025 07:12:18 +0000 Manifest this update: Wed 04 Jun 2025 07:07:18 +0000 Manifest next update: Sat 07 Jun 2025 17:25:18 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: N9qeMhPJts1KtbWNP9zKuTXp+OPY1uKTFrW76rWtjgY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a5:20:2f:a8:b4:f0:f3:50:ea:e6:86:e8:5f:8e:26:9e:ae:73:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Jun 4 07:07:18 2025 GMT Not After : Jun 7 17:25:18 2025 GMT Subject: CN=AC555881A587FF3C241437020A2774CEA449A20F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:66:db:16:ce:46:e3:06:18:16:ec:3f:e7:d0: 3f:2f:3c:aa:d8:6d:49:c7:c6:81:69:7d:76:ba:82: 31:4a:21:d2:02:59:9e:06:60:30:c8:49:e3:d9:32: 03:7e:a9:a2:e6:aa:36:c1:ed:2d:c0:e1:d2:2d:5d: dd:99:71:29:dd:31:4d:4c:6b:44:3d:a0:cb:1f:81: 86:b7:27:5b:b6:ae:91:8e:d1:2a:95:d5:d5:c4:5e: 96:81:29:2e:70:a1:3d:90:58:51:c8:a2:41:4d:e0: 9c:ce:5f:70:4e:53:e6:4d:10:98:e4:c4:65:70:3b: c5:2d:bb:3f:12:08:c3:ce:a1:89:0c:d5:b9:50:ad: 0b:6b:0d:5f:ad:86:48:dc:f3:54:49:5a:9c:7f:2f: f8:bd:fb:b6:4f:db:c3:ed:4e:5f:5d:24:4b:ad:78: 60:1a:b8:19:ca:96:42:a4:2d:48:d7:a1:d5:21:b3: 12:f8:17:14:7c:8a:04:e7:ee:e4:d2:bb:e4:d3:b4: 86:56:00:83:35:4e:20:c9:5a:01:c2:b7:14:3a:06: 5c:2e:c7:2e:4c:de:9b:38:e7:6f:f6:1d:6e:9f:ab: 3b:10:a2:55:13:65:f2:a3:a4:83:2e:e8:90:0d:d0: d6:c7:e6:70:2a:52:14:6c:9d:9e:e7:49:49:d6:44: a2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:55:58:81:A5:87:FF:3C:24:14:37:02:0A:27:74:CE:A4:49:A2:0F X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:14:68:e8:61:4b:2c:1f:c7:9d:00:ff:56:9f:75:4c:85:18: 28:4c:f7:80:4a:54:93:1f:42:f2:87:b0:3e:05:86:a1:29:2e: fc:68:11:c8:d3:05:f8:00:56:94:46:96:6f:81:52:3f:56:8f: c9:ec:f7:d7:6b:29:7c:d4:1d:57:9e:7b:53:1b:fe:01:3c:79: 82:29:42:89:dd:95:f2:1b:0e:22:af:b8:9b:a3:ef:08:f9:c0: a8:b2:89:ec:7a:31:b2:e9:49:8a:ac:41:28:7d:69:d6:17:98: a2:92:1f:20:11:c0:a4:62:1b:2c:51:7e:d9:4d:78:40:d5:7f: eb:29:4b:4a:70:da:68:a0:4f:c8:bc:ce:23:35:b4:d1:d7:eb: fd:43:dc:b8:c6:9a:a6:0d:cd:61:f2:e0:69:ff:73:9e:48:53: ec:24:fc:21:db:3e:ae:7f:cd:ed:e3:9e:f0:e1:72:c8:2f:93: c4:b7:18:6d:db:dc:6e:7e:e8:55:87:37:b3:5e:18:c1:35:93: e2:5b:75:e0:5d:87:d6:b8:69:10:d7:63:4a:a4:35:2a:d1:31: 55:e1:e7:7f:f5:2d:8c:1e:30:bf:db:be:20:25:e7:31:1c:01: 15:97:1a:0a:e5:fc:ca:e1:f2:bb:7f:9d:d7:ed:e3:da:23:1f: d7:02:1e:0d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIaUgL6i08PNQ6uaG6F+OJp6ucyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTA2MDQwNzA3MThaFw0yNTA2MDcxNzI1MThaMDMxMTAvBgNV BAMTKEFDNTU1ODgxQTU4N0ZGM0MyNDE0MzcwMjBBMjc3NENFQTQ0OUEyMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ZtsWzkbjBhgW7D/n0D8vPKrY bUnHxoFpfXa6gjFKIdICWZ4GYDDISePZMgN+qaLmqjbB7S3A4dItXd2ZcSndMU1M a0Q9oMsfgYa3J1u2rpGO0SqV1dXEXpaBKS5woT2QWFHIokFN4JzOX3BOU+ZNEJjk xGVwO8Utuz8SCMPOoYkM1blQrQtrDV+thkjc81RJWpx/L/i9+7ZP28PtTl9dJEut eGAauBnKlkKkLUjXodUhsxL4FxR8igTn7uTSu+TTtIZWAIM1TiDJWgHCtxQ6Blwu xy5M3ps452/2HW6fqzsQolUTZfKjpIMu6JAN0NbH5nAqUhRsnZ7nSUnWRKJ5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrFVYgaWH/zwkFDcCCid0zqRJog8wHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAsUaOhhSywfx50A/1afdUyFGChM94BKVJMf QvKHsD4FhqEpLvxoEcjTBfgAVpRGlm+BUj9Wj8ns99drKXzUHVeee1Mb/gE8eYIp QondlfIbDiKvuJuj7wj5wKiyiex6MbLpSYqsQSh9adYXmKKSHyARwKRiGyxRftlN eEDVf+spS0pw2migT8i8ziM1tNHX6/1D3LjGmqYNzWHy4Gn/c55IU+wk/CHbPq5/ ze3jnvDhcsgvk8S3GG3b3G5+6FWHN7NeGME1k+JbdeBdh9a4aRDXY0qkNSrRMVXh 53/1LYweML/bviAl5zEcARWXGgrl/Mrh8rt/ndft49ojH9cCHg0= -----END CERTIFICATE-----Generated at Fri Jun 6 18:04:46 2025 by rpki-client