$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: Tv+SD+ThPUa9EHGyTkX2hyW0VAEtZy07dmvSnka1s0U= Subject key identifier: 7D:86:C4:50:3F:82:55:03:C6:E1:25:BA:0C:8E:71:1F:88:D4:DB:6C Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 3CA07E0FD397BA9BCA6853326B82F0F7A56EE3F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 050A Signing time: Tue 09 Sep 2025 07:10:38 +0000 Manifest this update: Tue 09 Sep 2025 07:05:38 +0000 Manifest next update: Fri 12 Sep 2025 14:54:38 +0000 Files and hashes: 1: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 2: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 3: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 4: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 5: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 6: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 7: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 8: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 9: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: rkdVkbpSQcB9r0LwBRgg/kwO+6anQgRsr9+mv2+y0qs=) 10: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 14:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a0:7e:0f:d3:97:ba:9b:ca:68:53:32:6b:82:f0:f7:a5:6e:e3:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Sep 9 07:05:38 2025 GMT Not After : Sep 12 14:54:38 2025 GMT Subject: CN=7D86C4503F825503C6E125BA0C8E711F88D4DB6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e1:35:96:d8:6e:c6:6a:0d:5b:8e:96:d5:95: d7:86:3e:c1:bc:96:84:75:c7:d2:74:4d:50:fc:fa: a6:cd:7d:8a:d4:2e:0d:8b:09:ff:1c:a3:77:a8:bb: 7f:cc:39:34:96:b8:8a:97:21:90:5e:27:e2:75:de: bb:6d:f8:aa:fb:9e:a6:d5:2d:4d:94:bb:a0:ee:c9: ef:b9:5f:99:33:15:d8:a1:95:eb:da:95:5a:0f:62: 03:52:7e:b1:22:4a:0d:5e:1f:37:70:d9:d5:26:c8: db:73:a4:4d:3d:a0:5b:df:7a:45:ca:49:6c:e0:e9: 04:5e:cb:11:18:f8:c8:5f:07:4c:3e:43:70:3e:dd: c3:cf:19:d6:5c:cc:2b:8d:7f:85:ae:c6:1f:b1:fb: 2e:98:d9:90:48:af:c0:8f:81:6c:f5:e2:72:32:6a: 06:78:4a:36:24:00:50:94:ac:f6:57:0a:27:45:de: 06:b1:58:7e:5a:6e:87:0b:93:8d:34:22:35:e0:b8: 5e:68:18:94:a3:ca:38:32:12:31:48:21:3d:4c:24: c6:29:1a:e0:e9:51:9e:51:3c:68:02:74:60:59:8a: fb:6d:c6:7b:96:11:53:1b:c5:fd:d7:52:22:39:ac: 64:c6:6e:44:b6:aa:d4:69:19:f4:8b:37:86:76:69: 22:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:86:C4:50:3F:82:55:03:C6:E1:25:BA:0C:8E:71:1F:88:D4:DB:6C X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:f3:10:2c:45:32:c5:cb:03:1a:f3:05:2c:3e:7f:6f:40:c7: 56:5e:41:2e:cf:1a:76:79:fd:43:66:76:61:24:32:66:75:2d: b5:4b:fe:1a:62:0f:c1:b9:da:56:f1:11:95:d4:a3:41:a9:b9: e3:ff:46:b5:65:78:cd:1d:6e:4e:28:67:38:b9:8e:71:7c:a3: 3d:f3:70:45:3a:62:4c:8a:43:cb:12:20:87:0a:71:b5:b2:28: 44:3b:69:a1:4b:53:82:66:bc:3f:5e:b2:09:14:4b:0e:09:6c: de:98:a0:08:d9:57:37:28:fb:57:85:b1:8f:7f:4b:c7:3f:e8: 42:5e:36:a0:6c:7f:14:fd:d0:00:a0:ad:60:84:8f:22:8a:5e: 49:12:e1:05:b6:6a:31:af:84:d6:4d:0f:35:50:8f:1c:4c:7e: d5:be:39:a6:69:ae:7b:e9:b1:c8:40:22:98:2a:55:7a:a7:93: a1:4e:96:e0:05:59:b0:e2:6d:33:b4:6b:64:30:dd:df:e6:3b: d9:b1:36:9f:e4:fa:bc:0f:e5:bf:d0:e8:d0:79:c8:90:b3:92: 3f:51:54:25:86:77:f1:e4:6d:1d:d8:2d:40:95:ce:97:4f:f3: a4:40:76:a1:57:5c:47:5f:c5:7c:08:d7:db:4f:6d:b6:0d:06: ef:69:b4:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPKB+D9OXupvKaFMya4Lw96Vu4/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA5MDkwNzA1MzhaFw0yNTA5MTIxNDU0MzhaMDMxMTAvBgNV BAMTKDdEODZDNDUwM0Y4MjU1MDNDNkUxMjVCQTBDOEU3MTFGODhENERCNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT4TWW2G7Gag1bjpbVldeGPsG8 loR1x9J0TVD8+qbNfYrULg2LCf8co3eou3/MOTSWuIqXIZBeJ+J13rtt+Kr7nqbV LU2Uu6Duye+5X5kzFdihlevalVoPYgNSfrEiSg1eHzdw2dUmyNtzpE09oFvfekXK SWzg6QReyxEY+MhfB0w+Q3A+3cPPGdZczCuNf4Wuxh+x+y6Y2ZBIr8CPgWz14nIy agZ4SjYkAFCUrPZXCidF3gaxWH5abocLk400IjXguF5oGJSjyjgyEjFIIT1MJMYp GuDpUZ5RPGgCdGBZivttxnuWEVMbxf3XUiI5rGTGbkS2qtRpGfSLN4Z2aSLLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfYbEUD+CVQPG4SW6DI5xH4jU22wwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABjzECxFMsXLAxrzBSw+f29Ax1ZeQS7PGnZ5 /UNmdmEkMmZ1LbVL/hpiD8G52lbxEZXUo0GpueP/RrVleM0dbk4oZzi5jnF8oz3z cEU6YkyKQ8sSIIcKcbWyKEQ7aaFLU4JmvD9esgkUSw4JbN6YoAjZVzco+1eFsY9/ S8c/6EJeNqBsfxT90ACgrWCEjyKKXkkS4QW2ajGvhNZNDzVQjxxMftW+OaZprnvp schAIpgqVXqnk6FOluAFWbDibTO0a2Qw3d/mO9mxNp/k+rwP5b/Q6NB5yJCzkj9R VCWGd/HkbR3YLUCVzpdP86RAdqFXXEdfxXwI19tPbbYNBu9ptPY= -----END CERTIFICATE-----Generated at Tue Sep 9 14:04:05 2025 by rpki-client