$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: 5VvhCGB/I/kCiI8grq9D+R8cgQG4ukvSZj7vnYkC++8= Subject key identifier: 19:7A:44:5D:2D:3E:B7:94:30:16:2A:A8:3D:A3:88:D0:79:24:A3:F4 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 64DEFD438E75C63F18A4FB98C594FCD2A1A2BF9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04F4 Signing time: Tue 22 Jul 2025 13:40:38 +0000 Manifest this update: Tue 22 Jul 2025 13:35:38 +0000 Manifest next update: Fri 25 Jul 2025 18:18:38 +0000 Files and hashes: 1: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 2: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 3: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 4: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 5: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 6: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 7: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 8: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 9: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 10: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: SC92hGbOyfwkuPvUQ3sifUwLApOvAUVPnO3/W2lrNAs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:de:fd:43:8e:75:c6:3f:18:a4:fb:98:c5:94:fc:d2:a1:a2:bf:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jul 22 13:35:38 2025 GMT Not After : Jul 25 18:18:38 2025 GMT Subject: CN=197A445D2D3EB79430162AA83DA388D07924A3F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1e:95:eb:7f:01:22:26:75:18:78:89:41:bd: e6:74:b2:fc:30:05:d2:99:06:cf:35:29:85:7b:1e: a6:26:39:87:ed:2e:25:0a:81:af:94:21:7b:82:a9: 73:23:c2:5c:d2:37:94:fe:ae:c5:1b:9f:b7:7e:9d: 8c:de:34:48:a9:8a:44:a1:cc:67:74:e3:48:53:9c: 82:4a:40:dc:f8:b0:45:57:06:80:8d:2b:80:bf:ff: 19:90:96:30:8e:9d:c9:e8:9e:11:2c:3e:5e:c3:2a: 74:48:c1:a5:b8:15:9a:e6:b9:fc:f7:d1:90:67:cc: 45:3f:ed:ca:8b:d2:ec:81:88:bc:34:69:b5:bf:c2: 7c:5d:82:f8:1f:c5:d5:71:25:78:88:42:0c:70:2a: b9:d2:31:cc:ca:33:ce:9b:76:70:4c:6f:2e:19:b9: 15:8c:0e:cb:c9:a9:c2:8f:b1:db:bf:78:88:3d:7a: 57:24:8e:58:fd:ed:39:3d:b3:c3:c2:11:4e:64:b6: 99:14:45:71:ce:f1:a1:4c:ef:06:07:c6:51:2f:ac: bc:d5:36:f0:bc:4d:06:c3:21:bf:ec:29:fe:b5:81: db:31:2d:6e:ca:b5:97:19:c4:4c:84:c4:7b:32:23: 1e:14:64:d7:df:5a:4d:58:29:8c:89:c8:04:79:90: c4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:7A:44:5D:2D:3E:B7:94:30:16:2A:A8:3D:A3:88:D0:79:24:A3:F4 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:a6:bd:4f:9c:3c:0b:94:ef:99:07:f1:3c:08:16:d8:9a:b0: 71:af:c0:e4:d9:0d:ed:8b:fb:79:c8:65:04:9e:cd:7e:54:42: 2e:f9:58:6a:49:a0:59:4c:74:bb:28:d9:3d:06:8d:ed:8a:a2: aa:91:a0:1e:81:0a:2b:e6:e9:e4:e4:23:47:3a:03:cc:a4:0a: 43:f7:97:44:67:71:9f:af:3b:e5:44:e3:35:cf:2b:d9:84:f4: 5a:c3:65:24:9f:d3:bb:d6:15:37:a3:01:d2:da:33:f3:ad:f9: e9:1b:17:7d:17:93:62:81:4f:45:24:0c:af:ab:40:55:4b:f5: 72:65:a0:b0:07:44:c9:d2:7a:75:4c:de:ad:7e:f6:69:9d:7a: 40:34:9d:88:7d:d1:59:cb:e4:17:9e:52:9d:3c:e2:50:81:d6: 0e:0e:e8:90:63:65:ba:c9:b6:9b:ef:6c:b4:c7:63:27:a4:e1: 72:d8:89:b2:3c:40:a0:dd:db:52:4f:7c:10:71:0d:72:af:43: 00:88:b9:33:46:77:d7:35:93:e0:bc:f8:ae:bc:05:50:bb:ae: b6:df:f9:a4:bc:dc:59:88:aa:e3:0e:7a:47:04:84:03:51:dc: eb:7d:30:e5:29:cc:6c:71:9a:5e:13:10:f5:c1:6b:43:7d:01: 4a:73:47:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZN79Q451xj8YpPuYxZT80qGiv58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA3MjIxMzM1MzhaFw0yNTA3MjUxODE4MzhaMDMxMTAvBgNV BAMTKDE5N0E0NDVEMkQzRUI3OTQzMDE2MkFBODNEQTM4OEQwNzkyNEEzRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGHpXrfwEiJnUYeIlBveZ0svww BdKZBs81KYV7HqYmOYftLiUKga+UIXuCqXMjwlzSN5T+rsUbn7d+nYzeNEipikSh zGd040hTnIJKQNz4sEVXBoCNK4C//xmQljCOncnonhEsPl7DKnRIwaW4FZrmufz3 0ZBnzEU/7cqL0uyBiLw0abW/wnxdgvgfxdVxJXiIQgxwKrnSMczKM86bdnBMby4Z uRWMDsvJqcKPsdu/eIg9elckjlj97Tk9s8PCEU5ktpkURXHO8aFM7wYHxlEvrLzV NvC8TQbDIb/sKf61gdsxLW7KtZcZxEyExHsyIx4UZNffWk1YKYyJyAR5kMRbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGXpEXS0+t5QwFiqoPaOI0Hkko/QwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJumvU+cPAuU75kH8TwIFtiasHGvwOTZDe2L +3nIZQSezX5UQi75WGpJoFlMdLso2T0Gje2KoqqRoB6BCivm6eTkI0c6A8ykCkP3 l0RncZ+vO+VE4zXPK9mE9FrDZSSf07vWFTejAdLaM/Ot+ekbF30Xk2KBT0UkDK+r QFVL9XJloLAHRMnSenVM3q1+9mmdekA0nYh90VnL5BeeUp084lCB1g4O6JBjZbrJ tpvvbLTHYyek4XLYibI8QKDd21JPfBBxDXKvQwCIuTNGd9c1k+C8+K68BVC7rrbf +aS83FmIquMOekcEhANR3Ot9MOUpzGxxml4TEPXBa0N9AUpzRyI= -----END CERTIFICATE-----Generated at Wed Jul 23 02:01:57 2025 by rpki-client