$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: lofKfP3itXFo9ErROUw0eX0S3PJR9RmtVxWn8FDaGNg= Subject key identifier: AB:82:A8:0F:43:B1:A8:8D:21:29:EF:F0:79:C8:57:F5:1A:A0:91:43 Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 0BD5B2E238B1F1B3B0461FEB7B377BB8270BB98D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 034C Signing time: Thu 21 Aug 2025 20:20:56 +0000 Manifest this update: Thu 21 Aug 2025 20:15:56 +0000 Manifest next update: Mon 25 Aug 2025 07:45:56 +0000 Files and hashes: 1: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) 2: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 3: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 4: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 5: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 6: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 7: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 8: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 9: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: GgCVEYKQSpzkRVzChVKfGGclY914VxW5boPsIkdL2CA=) 10: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 07:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d5:b2:e2:38:b1:f1:b3:b0:46:1f:eb:7b:37:7b:b8:27:0b:b9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Aug 21 20:15:56 2025 GMT Not After : Aug 25 07:45:56 2025 GMT Subject: CN=AB82A80F43B1A88D2129EFF079C857F51AA09143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cd:81:28:35:16:64:c4:05:8b:bf:2e:0b:53: 7b:3d:ed:fe:53:45:e2:ec:18:7a:f9:a6:c2:c1:75: 2f:b0:81:26:7f:16:87:1b:10:81:92:3f:c1:7e:f1: 66:22:5c:a0:4f:6a:28:0f:b3:9c:8c:e6:92:50:39: 25:10:a0:94:b2:94:f8:43:8d:ba:18:0a:4f:d2:a5: 0c:9d:96:18:5f:ca:23:c5:43:6d:47:18:f3:0f:e5: 55:9a:f1:e7:4a:8b:0c:be:f2:5c:ba:8e:03:8a:3f: 50:7a:e1:a5:cb:7c:d0:43:ee:ff:0a:12:fc:33:8e: 40:21:8e:64:3f:e6:fc:e7:5c:23:e7:ea:aa:2d:f8: e3:a8:73:86:5c:47:88:af:e9:80:d7:30:98:66:78: 93:f0:ef:28:78:64:b4:b5:42:96:3a:a1:88:9b:6c: e2:00:93:4b:3b:d8:2a:dc:06:4f:24:42:e9:b5:60: 4b:36:65:df:ab:53:dc:98:29:d7:1e:a7:19:64:f7: 58:13:42:22:cb:3a:3e:16:ff:40:18:90:df:38:91: fd:49:78:0c:5c:69:8b:5a:1e:96:26:f6:31:1d:c1: b5:af:1d:f9:89:c5:fd:71:97:00:74:9d:f8:6b:a8: 09:0a:cb:ef:4f:b3:6b:43:bf:be:14:87:22:e9:f5: 88:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:82:A8:0F:43:B1:A8:8D:21:29:EF:F0:79:C8:57:F5:1A:A0:91:43 X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:31:e3:9e:ee:db:37:51:f1:07:df:90:72:d0:b6:c9:b9:17: 95:e5:fe:0d:5c:11:a3:39:40:91:3d:59:3d:4a:4c:fb:75:b9: ac:cb:49:b1:52:af:24:47:f9:0c:8b:91:cb:9e:2d:44:84:1e: f9:43:33:1a:e5:e9:40:1b:75:b0:dd:80:26:4b:9a:fb:58:cb: b5:5d:0e:48:b4:fc:37:80:68:a9:85:6e:f9:e1:08:50:f7:68: 49:e1:10:a3:28:35:fd:0a:42:f5:61:12:cd:bd:8d:c3:01:c0: bd:72:9d:e4:5c:f3:ee:d6:0e:e7:fe:e3:c1:e4:7a:8a:f1:97: 75:10:2a:c3:82:ca:76:d9:9b:85:1b:2e:29:11:67:24:27:fd: 8f:84:41:26:a6:44:5f:b4:19:f6:26:30:2c:4e:11:79:d7:2a: 73:3c:3b:0c:75:8c:7b:f5:e4:11:14:d2:80:66:e4:8b:9d:1a: 58:97:9d:78:a3:16:96:8c:5e:62:cf:89:e3:f0:2b:77:1f:99: ae:96:07:1b:91:2d:36:e0:28:bd:d0:62:67:28:33:f2:7e:50: 58:c8:7f:c3:3e:9b:29:30:67:b4:a5:0c:df:6a:93:23:51:77: c2:ed:57:8d:b9:24:8f:d3:d6:64:42:f9:a0:f8:55:04:9a:46: d5:4f:5a:fa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC9Wy4jix8bOwRh/rezd7uCcLuY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTA4MjEyMDE1NTZaFw0yNTA4MjUwNzQ1NTZaMDMxMTAvBgNV BAMTKEFCODJBODBGNDNCMUE4OEQyMTI5RUZGMDc5Qzg1N0Y1MUFBMDkxNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCczYEoNRZkxAWLvy4LU3s97f5T ReLsGHr5psLBdS+wgSZ/FocbEIGSP8F+8WYiXKBPaigPs5yM5pJQOSUQoJSylPhD jboYCk/SpQydlhhfyiPFQ21HGPMP5VWa8edKiwy+8ly6jgOKP1B64aXLfNBD7v8K EvwzjkAhjmQ/5vznXCPn6qot+OOoc4ZcR4iv6YDXMJhmeJPw7yh4ZLS1QpY6oYib bOIAk0s72CrcBk8kQum1YEs2Zd+rU9yYKdcepxlk91gTQiLLOj4W/0AYkN84kf1J eAxcaYtaHpYm9jEdwbWvHfmJxf1xlwB0nfhrqAkKy+9Ps2tDv74UhyLp9YgNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUq4KoD0OxqI0hKe/wechX9RqgkUMwHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH0x457u2zdR8QffkHLQtsm5F5Xl/g1cEaM5 QJE9WT1KTPt1uazLSbFSryRH+QyLkcueLUSEHvlDMxrl6UAbdbDdgCZLmvtYy7Vd Dki0/DeAaKmFbvnhCFD3aEnhEKMoNf0KQvVhEs29jcMBwL1yneRc8+7WDuf+48Hk eorxl3UQKsOCynbZm4UbLikRZyQn/Y+EQSamRF+0GfYmMCxOEXnXKnM8Owx1jHv1 5BEU0oBm5IudGliXnXijFpaMXmLPiePwK3cfma6WBxuRLTbgKL3QYmcoM/J+UFjI f8M+mykwZ7SlDN9qkyNRd8LtV425JI/T1mRC+aD4VQSaRtVPWvo= -----END CERTIFICATE-----Generated at Sat Aug 23 12:59:52 2025 by rpki-client