$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: eymFOA+YUF3YBrcZOtW1g4Hv3tulAe8cwuuJ53DFuyU= Subject key identifier: 93:D9:E9:D8:AD:35:6B:04:BB:71:E7:3A:17:25:91:B0:C7:89:4F:B1 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 6E2044E3AA97167E99B0317A2A63DCA11DF19426 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 010D Signing time: Sun 31 Aug 2025 04:21:51 +0000 Manifest this update: Sun 31 Aug 2025 04:16:51 +0000 Manifest next update: Wed 03 Sep 2025 14:27:51 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: VNqIMN+znXKOrbW9F1lSSttWfiuF/xl13PUhbsEuHss=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Sep 2025 02:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:20:44:e3:aa:97:16:7e:99:b0:31:7a:2a:63:dc:a1:1d:f1:94:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Aug 31 04:16:51 2025 GMT Not After : Sep 3 14:27:51 2025 GMT Subject: CN=93D9E9D8AD356B04BB71E73A172591B0C7894FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:00:13:4c:9c:9b:96:82:e0:e6:5f:03:e4:6d: d4:73:5e:da:ef:1e:e2:75:a4:80:45:90:cb:b6:90: 4a:23:bd:fe:82:51:76:36:ea:63:cc:7a:b8:98:bd: 84:10:9b:ff:87:32:1a:4c:df:4c:e1:2b:bc:80:fb: 1a:6a:a8:b2:c4:a8:e0:01:94:43:e1:87:34:b2:ce: 3f:ad:cd:2f:b8:d8:33:ac:42:75:9e:a0:b2:f2:41: 84:79:2f:e4:ba:54:10:03:91:69:6c:e2:99:b9:c3: b4:9c:79:f0:e6:47:ea:a7:f7:f5:6f:4f:1e:97:90: 74:b0:7b:d5:12:6a:61:f6:f6:54:1c:d2:85:dc:1b: d0:71:21:66:eb:42:fb:51:05:d0:89:a5:2f:7f:15: 5c:62:63:51:94:2f:16:a1:39:4e:fb:f9:ea:a9:37: b3:d7:96:e5:1f:df:9f:45:a9:d5:d2:db:e6:b4:7f: 7e:16:c5:df:02:30:8e:37:82:78:15:17:bd:22:95: a0:01:87:f8:d2:c0:26:cd:89:46:44:78:12:b1:46: 9d:63:bb:28:77:4e:53:5e:a2:21:8a:98:00:f6:fb: 23:81:21:30:cb:ec:21:e9:d5:34:81:c9:df:39:68: 5b:fe:b4:f1:42:7a:17:59:79:47:e8:08:34:0c:5a: 4d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D9:E9:D8:AD:35:6B:04:BB:71:E7:3A:17:25:91:B0:C7:89:4F:B1 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:3f:b6:96:62:ac:4b:5a:1c:5c:40:6b:8b:39:c4:47:10:ba: a5:07:8d:f2:7e:aa:72:71:c9:f6:78:4c:81:ef:03:5b:89:34: 1a:cc:e5:2d:f1:4e:58:11:e5:82:d2:b0:30:69:48:bc:8e:b9: 54:51:3f:5b:9f:18:96:9b:b7:9c:95:88:02:b1:81:9a:c4:92: b9:f7:71:43:17:a7:c9:0c:9f:b1:06:bd:a5:90:19:0c:ef:86: b3:bf:a3:29:de:ab:ae:07:d2:36:e9:25:cd:e1:b5:71:67:27: be:4d:11:02:80:ea:5b:5a:22:72:1f:5b:d5:5a:30:7b:b4:5b: ff:4d:78:b4:30:00:54:0e:24:37:60:c1:90:02:1f:c5:49:00: e7:02:fb:ea:b2:7a:3d:5c:8a:2a:00:c8:13:74:57:b2:b3:e9: e2:c2:c5:7b:46:a7:b0:18:48:18:a3:fd:e1:b2:85:1a:67:b1: 52:17:61:33:d4:0c:da:b4:f7:cd:81:57:f5:a3:a9:e1:68:78: 83:96:88:42:b3:70:44:af:e0:a4:e1:ff:09:95:01:82:91:32: 01:b8:d1:c6:18:7d:59:c8:56:08:80:5e:b7:15:d7:7b:67:92: 4a:db:37:a8:b1:2d:6c:ef:67:12:55:50:4e:99:30:f4:8b:eb: 04:d4:65:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbiBE46qXFn6ZsDF6KmPcoR3xlCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA4MzEwNDE2NTFaFw0yNTA5MDMxNDI3NTFaMDMxMTAvBgNV BAMTKDkzRDlFOUQ4QUQzNTZCMDRCQjcxRTczQTE3MjU5MUIwQzc4OTRGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIABNMnJuWguDmXwPkbdRzXtrv HuJ1pIBFkMu2kEojvf6CUXY26mPMeriYvYQQm/+HMhpM30zhK7yA+xpqqLLEqOAB lEPhhzSyzj+tzS+42DOsQnWeoLLyQYR5L+S6VBADkWls4pm5w7ScefDmR+qn9/Vv Tx6XkHSwe9USamH29lQc0oXcG9BxIWbrQvtRBdCJpS9/FVxiY1GULxahOU77+eqp N7PXluUf359FqdXS2+a0f34Wxd8CMI43gngVF70ilaABh/jSwCbNiUZEeBKxRp1j uyh3TlNeoiGKmAD2+yOBITDL7CHp1TSByd85aFv+tPFCehdZeUfoCDQMWk3fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUk9np2K01awS7cec6FyWRsMeJT7EwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEQ/tpZirEtaHFxAa4s5xEcQuqUHjfJ+qnJx yfZ4TIHvA1uJNBrM5S3xTlgR5YLSsDBpSLyOuVRRP1ufGJabt5yViAKxgZrEkrn3 cUMXp8kMn7EGvaWQGQzvhrO/oyneq64H0jbpJc3htXFnJ75NEQKA6ltaInIfW9Va MHu0W/9NeLQwAFQOJDdgwZACH8VJAOcC++qyej1ciioAyBN0V7Kz6eLCxXtGp7AY SBij/eGyhRpnsVIXYTPUDNq0982BV/WjqeFoeIOWiEKzcESv4KTh/wmVAYKRMgG4 0cYYfVnIVgiAXrcV13tnkkrbN6ixLWzvZxJVUE6ZMPSL6wTUZWY= -----END CERTIFICATE-----Generated at Sun Aug 31 08:18:30 2025 by rpki-client