$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: zxbTBVmnGXJ2z7B1WPEPfPkmo46ACsMru/VXj7yp8X0= Subject key identifier: D8:A7:1A:94:2E:15:CA:1B:0D:9F:82:9F:73:FA:E6:E0:90:8A:B8:DB Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 1042193F1ED5C59513EC1D8FCC8A2FDEBB562D92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04DF Signing time: Wed 04 Jun 2025 13:40:37 +0000 Manifest this update: Wed 04 Jun 2025 13:35:37 +0000 Manifest next update: Sat 07 Jun 2025 23:32:37 +0000 Files and hashes: 1: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 2: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 3: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 4: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 5: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 6: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 7: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: F8lwrZCDhfByF2EBXl2/C1YNavDn0YTs4Do4xgNI5sc=) 8: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 9: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) 10: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:42:19:3f:1e:d5:c5:95:13:ec:1d:8f:cc:8a:2f:de:bb:56:2d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 4 13:35:37 2025 GMT Not After : Jun 7 23:32:37 2025 GMT Subject: CN=D8A71A942E15CA1B0D9F829F73FAE6E0908AB8DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:83:55:14:85:bd:c0:85:b6:7e:d4:dd:c9:d7: 22:02:97:6e:78:24:ce:94:7b:e1:7f:99:6c:d5:55: d7:99:a9:65:a0:64:9c:4e:4f:8c:56:ec:4d:c8:20: 71:0f:11:cb:df:a9:cf:1f:f0:ce:6a:68:e8:d2:9e: 4f:de:1a:a7:1a:ca:6b:de:40:d8:9d:e5:d4:dc:41: 79:c1:2b:1c:c3:e1:a4:b4:00:7a:5f:71:97:71:fe: 65:29:8e:30:72:00:43:39:9a:60:f0:79:e5:b0:45: 6d:9d:22:11:c9:a4:32:21:c7:8d:77:0a:d1:1e:69: 52:61:bd:d9:4d:64:7e:a6:ee:71:f6:fd:a6:91:bc: 2a:90:73:a1:30:b5:a4:fc:62:36:1a:30:42:f0:59: 59:8f:1b:1f:39:d1:87:06:be:49:fc:a7:17:73:36: ba:e8:e8:d7:ff:a3:ac:04:c8:8a:f1:6e:e1:81:9e: 5e:7a:71:0e:3c:f6:78:e9:89:42:8b:95:42:15:b0: 91:8a:5d:2c:aa:3f:4a:b4:2a:5a:3a:d1:bd:44:d1: a9:9a:12:eb:37:62:36:d2:c7:4e:86:ed:31:2d:94: e5:cc:96:ab:b7:01:83:7f:cc:ad:46:57:a3:e0:85: e7:7a:0b:d5:d0:b4:c3:0c:d5:d2:04:78:7d:44:51: 65:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A7:1A:94:2E:15:CA:1B:0D:9F:82:9F:73:FA:E6:E0:90:8A:B8:DB X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:68:77:7a:44:f3:da:64:b5:68:f4:d1:f2:31:c8:e4:07:e4: 9a:3a:9e:88:58:a4:89:47:c7:0d:e9:50:13:2b:3e:72:f2:d9: 9f:da:32:09:c7:67:96:dd:c2:2d:c5:99:09:36:f6:2c:8f:a9: 0e:ef:40:2c:e1:04:98:69:f1:83:ed:67:68:25:78:a4:e2:28: 8b:ec:40:13:43:5c:da:8f:d9:5b:0a:b1:12:01:65:b9:04:5f: 02:99:2d:9d:14:ad:98:23:8b:38:04:f3:b6:1c:05:7c:bb:58: f5:13:44:c4:28:03:91:1d:0a:d8:88:c4:78:27:14:78:ad:31: 25:60:9a:57:35:97:7d:01:26:86:be:53:50:37:6b:bd:43:38: 0b:00:37:21:ac:53:7e:69:fc:59:5a:c4:bb:26:91:95:7b:80: c8:4f:56:7b:ee:d1:f2:64:e8:a5:3c:23:30:d2:e8:fc:d5:28: 89:52:6a:a9:ad:53:b7:a7:08:b1:f6:3c:ac:2a:9a:78:bf:51: 4d:86:f1:30:d9:af:e5:11:dd:ca:08:86:18:6f:ef:62:56:3b: ef:67:d3:7e:60:e7:02:74:36:0e:a4:46:64:ca:b0:e1:89:70: 79:6f:54:99:da:e2:79:42:09:80:0e:02:f5:9b:80:03:b2:05: 35:17:d4:74 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEEIZPx7VxZUT7B2PzIov3rtWLZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MDQxMzM1MzdaFw0yNTA2MDcyMzMyMzdaMDMxMTAvBgNV BAMTKEQ4QTcxQTk0MkUxNUNBMUIwRDlGODI5RjczRkFFNkUwOTA4QUI4REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcg1UUhb3AhbZ+1N3J1yICl254 JM6Ue+F/mWzVVdeZqWWgZJxOT4xW7E3IIHEPEcvfqc8f8M5qaOjSnk/eGqcaymve QNid5dTcQXnBKxzD4aS0AHpfcZdx/mUpjjByAEM5mmDweeWwRW2dIhHJpDIhx413 CtEeaVJhvdlNZH6m7nH2/aaRvCqQc6EwtaT8YjYaMELwWVmPGx850YcGvkn8pxdz Nrro6Nf/o6wEyIrxbuGBnl56cQ489njpiUKLlUIVsJGKXSyqP0q0Klo60b1E0ama Eus3YjbSx06G7TEtlOXMlqu3AYN/zK1GV6Pghed6C9XQtMMM1dIEeH1EUWWbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2KcalC4VyhsNn4Kfc/rm4JCKuNswHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANod3pE89pktWj00fIxyOQH5Jo6nohYpIlH xw3pUBMrPnLy2Z/aMgnHZ5bdwi3FmQk29iyPqQ7vQCzhBJhp8YPtZ2gleKTiKIvs QBNDXNqP2VsKsRIBZbkEXwKZLZ0UrZgjizgE87YcBXy7WPUTRMQoA5EdCtiIxHgn FHitMSVgmlc1l30BJoa+U1A3a71DOAsANyGsU35p/FlaxLsmkZV7gMhPVnvu0fJk 6KU8IzDS6PzVKIlSaqmtU7enCLH2PKwqmni/UU2G8TDZr+UR3coIhhhv72JWO+9n 035g5wJ0Ng6kRmTKsOGJcHlvVJna4nlCCYAOAvWbgAOyBTUX1HQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:22 2025 by rpki-client