$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft File: 4B35C20AD3085CF1B9FAEA049AD742539E090205.mft (raw, json) Hash identifier: xj5wac7+CEzVVzzmEljIX8lkCsIGBku/bjd27U5jVBM= Subject key identifier: 3D:BD:72:C5:F6:65:EA:56:5A:01:A5:0E:B7:45:06:AE:7F:84:9F:65 Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 77A44CEC0D206C2E85FEBD6ED7C659987CB0ED98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft Manifest number: 0265 Signing time: Sun 07 Sep 2025 10:21:10 +0000 Manifest this update: Sun 07 Sep 2025 10:16:10 +0000 Manifest next update: Wed 10 Sep 2025 16:22:10 +0000 Files and hashes: 1: 4B35C20AD3085CF1B9FAEA049AD742539E090205.crl (hash: dxHm+aWnvwWMGZqBw+ns5sG6Sh52aLd8hK0p7KHm2W4=) 2: 3130332e3137392e36352e302f32342d3234203d3e20313439333335.roa (hash: JkbWHivPhJsD3g1oehsQXHSkUe1IApwcb1eZRN7L4oQ=) 3: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (hash: lOzsBAzFryNZCB+/jSigc4I1GSMJcpM/tHVhQtqL83s=) 4: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (hash: V8A5qvlja2NYXpcRnbKxugWJ4eOJeRmdBpf3sJh4ueQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a4:4c:ec:0d:20:6c:2e:85:fe:bd:6e:d7:c6:59:98:7c:b0:ed:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Sep 7 10:16:10 2025 GMT Not After : Sep 10 16:22:10 2025 GMT Subject: CN=3DBD72C5F665EA565A01A50EB74506AE7F849F65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:86:8f:3f:15:c8:6a:d0:f8:7f:48:cc:53:16: 9e:ed:c5:6f:b1:e4:01:4e:bf:17:d3:b7:55:ea:f3: 79:cf:09:c9:50:9b:10:43:06:9a:da:a4:d9:db:5b: 70:e4:60:9c:da:5b:69:01:fb:47:5c:03:d7:c8:d5: 64:4b:6c:fc:2f:7f:76:b2:88:72:7f:f5:56:98:fe: ea:02:b9:2c:ab:ae:30:a5:a0:7f:30:6b:1c:28:85: ed:d3:63:15:9f:d9:43:de:78:12:82:af:0d:bf:4d: 59:10:02:e9:f7:b9:55:87:c4:37:e3:de:10:71:68: 3a:b8:8d:ea:30:04:28:a4:3f:a4:c5:5d:e7:51:92: 4c:19:a7:a2:d9:e0:41:f3:60:f1:a6:59:e6:6c:1b: 8c:41:44:cc:f1:e5:9b:6f:58:d2:71:70:55:65:45: ef:06:28:a1:80:59:0a:25:81:61:38:24:1b:6a:f1: 25:91:d0:e0:c7:b1:6c:c3:fa:37:ba:cb:fc:1d:84: c5:60:88:c9:bf:f1:5d:02:f5:a8:26:a8:cb:62:30: c6:a0:a7:c0:60:35:6d:8b:76:2b:c3:32:7b:6f:a0: 40:ed:2c:29:a3:86:ad:c9:30:3c:bf:74:5e:22:a1: 0b:22:95:cf:7c:49:e9:49:f3:df:06:93:96:92:35: f9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BD:72:C5:F6:65:EA:56:5A:01:A5:0E:B7:45:06:AE:7F:84:9F:65 X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:d4:b9:0e:fe:03:c3:b9:0d:b0:c6:76:d4:ad:49:9f:89:26: ec:55:61:8c:0e:21:59:48:5a:cf:68:9a:f2:ba:c2:76:22:9b: db:6d:10:ea:28:9f:e5:5b:65:d1:fd:54:2c:ae:c0:bb:d1:67: e0:2e:99:51:71:b3:29:cf:04:6f:bc:d8:1e:f6:99:22:d8:fd: 8b:55:24:0f:9e:85:78:1f:61:80:3a:d6:83:91:40:be:0d:6a: 90:b0:54:51:e2:4e:ed:b6:87:00:18:79:fe:d8:b0:38:c2:87: fb:c8:d7:61:0c:87:e2:bd:f3:00:23:c0:71:41:e7:55:03:6c: d6:54:cf:e7:e4:ee:7b:ff:44:d1:76:d2:fe:0d:7c:c4:43:79: 12:e1:7d:fb:46:78:bc:ea:02:4e:71:7e:29:a3:c4:9d:ee:67: 67:15:c2:ff:0f:7a:79:2d:3c:de:d4:ca:3b:73:11:d1:a4:37: dd:be:70:ba:9c:32:59:e6:b7:25:2a:c9:27:fd:53:41:b7:e3: cd:ac:bf:5d:e6:95:4c:d8:6b:ec:2a:4f:90:ad:cc:7e:96:a0: 57:7a:9a:3f:08:51:ce:0a:96:e5:a5:7b:0e:62:9e:85:54:a0: 29:95:90:af:80:36:9a:ee:58:cb:92:f4:01:59:97:8c:46:a1: b5:78:17:0c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd6RM7A0gbC6F/r1u18ZZmHyw7ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNTA5MDcxMDE2MTBaFw0yNTA5MTAxNjIyMTBaMDMxMTAvBgNV BAMTKDNEQkQ3MkM1RjY2NUVBNTY1QTAxQTUwRUI3NDUwNkFFN0Y4NDlGNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbho8/Fchq0Ph/SMxTFp7txW+x 5AFOvxfTt1Xq83nPCclQmxBDBprapNnbW3DkYJzaW2kB+0dcA9fI1WRLbPwvf3ay iHJ/9VaY/uoCuSyrrjCloH8waxwohe3TYxWf2UPeeBKCrw2/TVkQAun3uVWHxDfj 3hBxaDq4jeowBCikP6TFXedRkkwZp6LZ4EHzYPGmWeZsG4xBRMzx5ZtvWNJxcFVl Re8GKKGAWQolgWE4JBtq8SWR0ODHsWzD+je6y/wdhMVgiMm/8V0C9agmqMtiMMag p8BgNW2LdivDMntvoEDtLCmjhq3JMDy/dF4ioQsilc98SelJ898Gk5aSNfmjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPb1yxfZl6lZaAaUOt0UGrn+En2UwHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzc3ZGUwMTMtOWI1Ni00OWZmLThi NzktMzY2N2EzNDVjYjhkLzAvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQy NTM5RTA5MDIwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL/UuQ7+A8O5DbDGdtStSZ+JJuxVYYwOIVlI Ws9omvK6wnYim9ttEOoon+VbZdH9VCyuwLvRZ+AumVFxsynPBG+82B72mSLY/YtV JA+ehXgfYYA61oORQL4NapCwVFHiTu22hwAYef7YsDjCh/vI12EMh+K98wAjwHFB 51UDbNZUz+fk7nv/RNF20v4NfMRDeRLhfftGeLzqAk5xfimjxJ3uZ2cVwv8Penkt PN7UyjtzEdGkN92+cLqcMlnmtyUqySf9U0G3482sv13mlUzYa+wqT5CtzH6WoFd6 mj8IUc4KluWlew5inoVUoCmVkK+ANpruWMuS9AFZl4xGobV4Fww= -----END CERTIFICATE-----Generated at Sun Sep 7 14:04:39 2025 by rpki-client