$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: HYHMKi521TmqrpoY9a2uMSt4WECgoHp6HpR4gjHvh3o= Subject key identifier: F8:EE:00:A7:AD:90:11:64:24:19:C2:F6:DA:1D:65:0C:70:43:5F:D2 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 495410B64202B8E02CE01C923D0501C2194738ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04C4 Signing time: Fri 04 Apr 2025 20:50:37 +0000 Manifest this update: Fri 04 Apr 2025 20:45:37 +0000 Manifest next update: Tue 08 Apr 2025 07:12:37 +0000 Files and hashes: 1: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: CKZqBz5RzUJDxeDRQjwvwDjhTydwwJ4qsh8D2GYetBs=) 2: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 3: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: zzTNZ4xzQEOmQw8ycNtJFjGo6ll3tDYLpBJW9o97EtU=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: 6ejxm/D7fWLYd/jA5kGnDm4Adf1D2VKSxCwudEm22iA=) 5: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: 8Pihm82g70d0YD39AiI0nfOrZFr+2CjjXY243qvfoMg=) 6: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) 7: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: 4cr+QZXigIFKCl/E01HmbmzHPYbUe8iFmoKY3eWNtV8=) 8: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: AGLiUoWAlNJIAtchHSJ4lguvgiblVxmk8bMAMIntFqw=) 9: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: 1qVTvslcryRPIisH1593Mows0ftou/urgxsvtg4aFbk=) 10: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: gM3z/op2YFXyT7g7JtYZFudpoLz5+Bi5Ub/M9drayg4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:54:10:b6:42:02:b8:e0:2c:e0:1c:92:3d:05:01:c2:19:47:38:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Apr 4 20:45:37 2025 GMT Not After : Apr 8 07:12:37 2025 GMT Subject: CN=F8EE00A7AD9011642419C2F6DA1D650C70435FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:51:39:0b:16:0b:8c:22:9b:8d:ac:c1:c7:31: e9:a6:9b:ef:11:69:ea:16:10:a9:13:c5:bf:40:c4: 9b:e9:9f:6f:70:aa:4b:92:8d:a5:b7:be:06:55:52: 7f:e4:8e:19:5b:1e:35:92:e4:94:e7:90:3a:0a:18: 8c:4a:5a:8e:bb:26:0e:20:70:1e:22:de:0c:d5:60: 0a:b6:ac:bf:1b:94:7f:1b:5a:5b:37:3f:6e:ad:f9: df:80:63:5b:d9:76:ac:51:84:83:c7:27:91:d0:7f: a9:e2:64:4e:09:4b:54:ea:64:98:cf:c1:1d:78:81: 7a:13:4b:09:03:98:f7:ca:25:b8:20:0c:4a:a5:c5: bb:f8:b2:74:8a:3b:7b:0d:6e:13:33:66:f6:0a:7b: 24:38:24:09:85:aa:fd:0a:08:7d:05:3c:9e:4d:27: f6:a0:fa:78:3c:d8:a5:0c:e6:a2:e8:98:8a:10:4e: 74:90:2e:a6:e1:8a:f4:70:26:d5:23:c7:e4:23:be: 12:f3:fa:2e:d8:a8:93:e0:f4:06:7e:da:41:3b:93: 5c:c1:ff:be:0e:b5:a7:0d:fe:e0:75:76:dc:a6:63: 3b:9e:11:0d:8c:5d:ed:0e:6b:4f:62:57:f6:f9:20: 47:ea:40:2b:fa:6e:38:fc:8c:1d:69:3f:a7:22:ea: a5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:EE:00:A7:AD:90:11:64:24:19:C2:F6:DA:1D:65:0C:70:43:5F:D2 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f2:a5:e6:6d:52:7b:79:36:22:21:f0:76:13:b2:39:98:33: cc:e8:29:1d:e5:0e:ce:1c:38:35:cd:2f:b2:6e:83:8e:ea:33: 7e:a8:24:e1:42:19:51:2d:5b:7d:d5:8c:26:f2:0e:b6:46:89: 43:bc:e0:11:3f:35:3e:ac:06:b7:1c:be:5c:b2:49:87:1c:d5: 75:39:e8:ff:fa:f7:39:bd:60:b6:4b:50:77:ba:da:3c:e6:51: 94:56:ae:11:f6:ca:77:6b:5d:b7:e7:d8:e6:47:0a:a9:a0:82: 93:19:0d:a4:94:60:74:2c:70:91:79:dd:3b:ae:ef:30:c7:d4: a1:92:3c:d5:1a:bb:9e:48:d0:a5:6c:fa:ed:fd:f1:b2:60:d2: f3:35:24:82:cd:5f:0c:d5:b0:17:57:5f:bf:09:dd:1e:1b:9e: cd:3d:8c:e9:6a:32:87:6f:b2:11:1f:8c:e7:25:89:4c:1e:37: 18:c9:df:00:22:5b:c4:09:91:fa:5e:fe:4b:c0:5e:25:8d:12: d9:b1:2b:14:83:a2:93:05:de:30:e8:97:31:59:e8:72:1c:4b: b9:fe:2a:cd:b7:67:e9:bb:9d:dd:d8:e7:2d:92:5b:b5:dd:12: 4d:67:80:27:9c:f8:5e:a6:df:48:ec:39:4f:c5:54:c1:0e:0c: e7:2a:65:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSVQQtkICuOAs4BySPQUBwhlHOO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA0MDQyMDQ1MzdaFw0yNTA0MDgwNzEyMzdaMDMxMTAvBgNV BAMTKEY4RUUwMEE3QUQ5MDExNjQyNDE5QzJGNkRBMUQ2NTBDNzA0MzVGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfUTkLFguMIpuNrMHHMemmm+8R aeoWEKkTxb9AxJvpn29wqkuSjaW3vgZVUn/kjhlbHjWS5JTnkDoKGIxKWo67Jg4g cB4i3gzVYAq2rL8blH8bWls3P26t+d+AY1vZdqxRhIPHJ5HQf6niZE4JS1TqZJjP wR14gXoTSwkDmPfKJbggDEqlxbv4snSKO3sNbhMzZvYKeyQ4JAmFqv0KCH0FPJ5N J/ag+ng82KUM5qLomIoQTnSQLqbhivRwJtUjx+QjvhLz+i7YqJPg9AZ+2kE7k1zB /74OtacN/uB1dtymYzueEQ2MXe0Oa09iV/b5IEfqQCv6bjj8jB1pP6ci6qUtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+O4Ap62QEWQkGcL22h1lDHBDX9IwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAvypeZtUnt5NiIh8HYTsjmYM8zoKR3lDs4c ODXNL7Jug47qM36oJOFCGVEtW33VjCbyDrZGiUO84BE/NT6sBrccvlyySYcc1XU5 6P/69zm9YLZLUHe62jzmUZRWrhH2yndrXbfn2OZHCqmggpMZDaSUYHQscJF53Tuu 7zDH1KGSPNUau55I0KVs+u398bJg0vM1JILNXwzVsBdXX78J3R4bns09jOlqModv shEfjOcliUweNxjJ3wAiW8QJkfpe/kvAXiWNEtmxKxSDopMF3jDolzFZ6HIcS7n+ Ks23Z+m7nd3Y5y2SW7XdEk1ngCec+F6m30jsOU/FVMEODOcqZVU= -----END CERTIFICATE-----Generated at Sun Apr 6 05:03:05 2025 by rpki-client