$ rpki-client -vvf repo-rpki.idnic.net/repo/0450f0f5-b883-4b24-9792-7e957af88bf8/0/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.mft File: 322B7BBC7BE2A84D8D644A6B68333963517CAFFA.mft (raw, json) Hash identifier: w/Wy+9/O9l67i4bRvgbbeG+HJK1oMMznLScxWh1RdP8= Subject key identifier: 1C:E9:D9:08:FE:59:BB:95:E8:A0:E0:BD:A9:44:79:2E:65:2E:05:62 Authority key identifier: 32:2B:7B:BC:7B:E2:A8:4D:8D:64:4A:6B:68:33:39:63:51:7C:AF:FA Certificate issuer: /CN=322B7BBC7BE2A84D8D644A6B68333963517CAFFA Certificate serial: 4395AFA0D448C278563B504FE269DE56C9022939 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0450f0f5-b883-4b24-9792-7e957af88bf8/0/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.mft Manifest number: 01E0 Signing time: Sat 19 Jul 2025 11:52:20 +0000 Manifest this update: Sat 19 Jul 2025 11:47:20 +0000 Manifest next update: Tue 22 Jul 2025 22:39:20 +0000 Files and hashes: 1: 322B7BBC7BE2A84D8D644A6B68333963517CAFFA.crl (hash: rTffydVaxIEuw0SJ4lcquMt7mTQxIvf2hfxcL5bkSwg=) 2: 3130332e3138372e38382e302f32332d3233203d3e20313439393439.roa (hash: XbN3LxifTwY+vVTUMpMOqOr29jBN2u/bmUS0N8LyhH0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0450f0f5-b883-4b24-9792-7e957af88bf8/0/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.crl rsync://repo-rpki.idnic.net/repo/0450f0f5-b883-4b24-9792-7e957af88bf8/0/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:95:af:a0:d4:48:c2:78:56:3b:50:4f:e2:69:de:56:c9:02:29:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=322B7BBC7BE2A84D8D644A6B68333963517CAFFA Validity Not Before: Jul 19 11:47:20 2025 GMT Not After : Jul 22 22:39:20 2025 GMT Subject: CN=1CE9D908FE59BB95E8A0E0BDA944792E652E0562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cb:34:ae:9f:d6:35:df:60:20:ad:55:1c:1f: d8:02:bc:8a:5e:37:e3:b5:93:be:3d:f7:47:3d:ba: a6:a2:ba:5c:4a:e9:9f:a9:3e:d4:76:91:40:16:08: 50:dc:5c:0f:be:4d:d7:47:23:df:76:b6:83:be:1e: ff:3b:ac:03:cc:83:a3:9b:9b:d6:f9:01:4d:6c:d1: 8d:10:4c:ea:31:7c:7b:e3:6a:8e:81:94:6b:b7:c5: aa:7d:4f:52:37:cc:88:07:17:58:4e:1a:2e:77:dd: 5b:a9:bb:0c:3b:66:19:a2:6d:51:11:fc:92:be:a6: e2:9e:32:3f:07:3e:bc:fc:26:9a:3a:df:f1:98:46: d2:ef:3e:27:83:14:ac:7c:5d:11:e9:b5:ec:38:d6: 08:9b:74:be:09:7b:0e:cf:c9:58:f0:f6:c2:ad:bc: a6:27:f3:bc:32:d7:03:68:6e:2b:da:2a:3d:2e:52: 21:2e:0a:c6:03:21:10:9e:52:53:e7:8e:2f:bb:35: a8:2e:60:81:5d:3d:a3:05:fd:ca:39:fe:84:b4:15: 09:64:c7:26:b4:6f:ea:c2:dc:78:89:87:ba:b1:87: 64:51:90:92:47:4c:25:00:07:7e:94:1b:85:4e:78: 03:82:fc:96:60:9a:82:ca:3b:04:db:e4:75:07:5f: ef:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E9:D9:08:FE:59:BB:95:E8:A0:E0:BD:A9:44:79:2E:65:2E:05:62 X509v3 Authority Key Identifier: keyid:32:2B:7B:BC:7B:E2:A8:4D:8D:64:4A:6B:68:33:39:63:51:7C:AF:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0450f0f5-b883-4b24-9792-7e957af88bf8/0/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0450f0f5-b883-4b24-9792-7e957af88bf8/0/322B7BBC7BE2A84D8D644A6B68333963517CAFFA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:dc:eb:5e:d3:01:b9:e4:76:77:59:e8:df:bf:21:66:60:41: 71:cf:81:54:5f:15:a4:e2:dd:75:cf:e7:88:b8:af:4f:d2:b4: 1a:57:d3:90:cd:9c:51:c9:7e:15:57:57:bc:69:83:7c:b1:b0: d9:29:d2:79:27:fd:fb:8f:f3:65:78:58:38:80:0f:6f:4e:d3: 7b:69:7c:01:d9:15:86:a2:37:4c:80:81:ed:45:75:f8:e0:0e: df:da:b5:c2:89:0c:a3:fc:25:0e:78:f9:3b:dc:78:f1:94:db: 2f:c7:77:f7:c1:52:98:74:89:b5:1f:ab:79:fc:65:d9:6d:51: ee:bb:91:3c:cf:9b:24:39:b6:22:b0:df:8b:eb:f8:1f:3f:6b: 40:2d:ee:10:c4:49:08:80:39:d2:e3:10:bd:63:be:d1:d1:96: d4:10:df:63:4d:6b:41:2b:03:78:22:94:7b:77:88:5c:72:30: 50:0f:31:5b:85:17:63:a4:68:9b:78:42:0d:8e:b7:9d:f4:77: 0e:51:f9:c6:f7:22:e3:3c:a0:2d:d0:82:ca:f9:df:d6:e7:20: 1e:ea:05:3a:4b:bd:d7:59:76:b7:62:ad:f7:95:9f:1a:ef:43: 37:70:66:23:77:2c:60:35:28:53:d7:0c:eb:f0:d2:92:21:30: f9:05:3f:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ5WvoNRIwnhWO1BP4mneVskCKTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzIyQjdCQkM3QkUyQTg0RDhENjQ0QTZCNjgzMzM5NjM1 MTdDQUZGQTAeFw0yNTA3MTkxMTQ3MjBaFw0yNTA3MjIyMjM5MjBaMDMxMTAvBgNV BAMTKDFDRTlEOTA4RkU1OUJCOTVFOEEwRTBCREE5NDQ3OTJFNjUyRTA1NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpyzSun9Y132AgrVUcH9gCvIpe N+O1k74990c9uqaiulxK6Z+pPtR2kUAWCFDcXA++TddHI992toO+Hv87rAPMg6Ob m9b5AU1s0Y0QTOoxfHvjao6BlGu3xap9T1I3zIgHF1hOGi533Vupuww7ZhmibVER /JK+puKeMj8HPrz8Jpo63/GYRtLvPieDFKx8XRHptew41gibdL4Jew7PyVjw9sKt vKYn87wy1wNobivaKj0uUiEuCsYDIRCeUlPnji+7NaguYIFdPaMF/co5/oS0FQlk xya0b+rC3HiJh7qxh2RRkJJHTCUAB36UG4VOeAOC/JZgmoLKOwTb5HUHX+8nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHOnZCP5Zu5XooOC9qUR5LmUuBWIwHwYDVR0j BBgwFoAUMit7vHviqE2NZEpraDM5Y1F8r/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDUwZjBmNS1iODgzLTRiMjQtOTc5Mi03ZTk1N2FmODhiZjgvMC8zMjJCN0JCQzdC RTJBODREOEQ2NDRBNkI2ODMzMzk2MzUxN0NBRkZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzIyQjdCQkM3QkUyQTg0RDhENjQ0QTZCNjgzMzM5NjM1MTdD QUZGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQ1MGYwZjUtYjg4My00YjI0LTk3 OTItN2U5NTdhZjg4YmY4LzAvMzIyQjdCQkM3QkUyQTg0RDhENjQ0QTZCNjgzMzM5 NjM1MTdDQUZGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKPc617TAbnkdndZ6N+/IWZgQXHPgVRfFaTi 3XXP54i4r0/StBpX05DNnFHJfhVXV7xpg3yxsNkp0nkn/fuP82V4WDiAD29O03tp fAHZFYaiN0yAge1FdfjgDt/atcKJDKP8JQ54+TvcePGU2y/Hd/fBUph0ibUfq3n8 ZdltUe67kTzPmyQ5tiKw34vr+B8/a0At7hDESQiAOdLjEL1jvtHRltQQ32NNa0Er A3gilHt3iFxyMFAPMVuFF2OkaJt4Qg2Ot530dw5R+cb3IuM8oC3Qgsr539bnIB7q BTpLvddZdrdirfeVnxrvQzdwZiN3LGA1KFPXDOvw0pIhMPkFP3s= -----END CERTIFICATE-----Generated at Mon Jul 21 02:05:05 2025 by rpki-client