$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: uF/Uvqpba7R1+FsQKvmlL83+9nX4qaTEuxFVUL7mZss= Subject key identifier: D8:80:41:C5:26:2B:5F:51:E9:0A:56:31:46:5A:63:CF:4C:76:AC:C3 Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 2C17678E9B5C6EF30C40CD92D38B270C17BF85EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 0334 Signing time: Sat 28 Jun 2025 16:20:51 +0000 Manifest this update: Sat 28 Jun 2025 16:15:51 +0000 Manifest next update: Tue 01 Jul 2025 21:15:51 +0000 Files and hashes: 1: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 2: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 3: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 4: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 5: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 6: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 7: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: u/5iAgTwUdv64pcLvxsW2Pb6RkZdVxY3f3jyyS25KlA=) 8: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) 9: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 10: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 21:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:17:67:8e:9b:5c:6e:f3:0c:40:cd:92:d3:8b:27:0c:17:bf:85:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Jun 28 16:15:51 2025 GMT Not After : Jul 1 21:15:51 2025 GMT Subject: CN=D88041C5262B5F51E90A5631465A63CF4C76ACC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b0:ee:10:40:c8:04:e4:b4:b1:a3:f1:5b:7b: a4:d8:90:18:f3:9c:1b:15:c1:87:38:2f:db:a9:a2: f1:00:9d:d6:26:31:ad:0c:4c:bd:0d:aa:be:37:16: 5d:03:3f:8f:46:40:24:67:f1:70:23:74:21:fb:af: c2:e4:3e:87:5b:5e:35:df:1a:29:dc:25:d8:b1:d7: 83:77:b2:73:89:b9:06:12:05:b0:24:41:1b:9a:fa: d8:e2:d5:90:2f:41:d5:59:19:90:8b:d8:74:d0:68: b3:bc:16:7c:99:66:3a:c1:9d:76:d7:49:22:cb:12: bc:7e:59:70:ab:cf:1b:a8:63:d4:03:c5:2e:09:9c: b2:ad:8f:0d:88:38:e6:53:88:06:32:74:26:a6:1a: b0:01:11:0e:e9:80:59:7d:5c:8d:3e:d3:71:c9:ff: e1:2b:e1:e2:18:66:11:80:0d:7f:64:07:84:55:f6: 77:89:cc:77:8d:0c:20:d7:ac:de:c9:ed:3b:36:34: 3c:04:4f:f7:a2:03:48:a3:8f:f0:c3:8d:c7:c5:b3: 43:8d:41:d2:50:c7:fd:66:51:5f:02:bf:53:f2:7b: 5a:f6:54:0d:ae:01:7d:f6:c2:a0:c5:d2:75:4a:21: f7:c3:ec:17:78:70:56:a1:9a:76:ea:2a:87:6b:e3: b6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:80:41:C5:26:2B:5F:51:E9:0A:56:31:46:5A:63:CF:4C:76:AC:C3 X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:93:aa:4a:1c:b4:f6:ed:e8:91:d9:e0:24:bc:45:0e:34:52: 70:fd:d7:c3:4f:fb:ec:71:3d:a5:b4:3d:44:a5:d5:94:9a:64: 95:2e:3c:9b:eb:67:d1:dd:a3:06:86:cb:1b:a6:88:a3:25:45: 8f:97:25:24:f6:a3:e1:41:c0:bf:3b:66:47:03:16:bd:7f:72: 2e:93:e9:2f:01:18:5d:54:3e:b2:26:2c:a9:be:3c:a9:35:ff: cc:4c:6d:f7:94:76:48:50:ff:ce:12:60:e5:15:64:19:39:0c: 28:d2:0a:2c:3d:51:73:42:f3:1a:04:fe:38:0c:1f:5d:fb:84: 2c:b8:ca:47:33:ef:1b:97:f3:bf:5a:66:4d:73:fc:70:8b:a0: b2:49:cc:cf:c7:dc:0e:8b:18:30:ff:28:1d:86:03:9e:1c:f6: 60:a4:e3:8c:7e:30:b7:05:63:bd:1b:82:12:dd:ea:13:c6:de: fe:14:5c:4a:45:46:b7:25:49:5f:02:f4:7c:44:11:03:64:cc: fb:d7:0c:a0:47:7c:e9:ca:8a:a5:71:45:dd:8c:f7:d2:08:f2: 62:06:a5:2e:c8:12:33:c5:4b:fb:81:ec:64:18:86:b8:81:e8: 91:f9:d8:a7:2d:ab:08:fd:16:27:f7:2d:e7:b3:51:f0:20:2b: 95:86:d0:a8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULBdnjptcbvMMQM2S04snDBe/he8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTA2MjgxNjE1NTFaFw0yNTA3MDEyMTE1NTFaMDMxMTAvBgNV BAMTKEQ4ODA0MUM1MjYyQjVGNTFFOTBBNTYzMTQ2NUE2M0NGNEM3NkFDQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNsO4QQMgE5LSxo/Fbe6TYkBjz nBsVwYc4L9upovEAndYmMa0MTL0Nqr43Fl0DP49GQCRn8XAjdCH7r8LkPodbXjXf GincJdix14N3snOJuQYSBbAkQRua+tji1ZAvQdVZGZCL2HTQaLO8FnyZZjrBnXbX SSLLErx+WXCrzxuoY9QDxS4JnLKtjw2IOOZTiAYydCamGrABEQ7pgFl9XI0+03HJ /+Er4eIYZhGADX9kB4RV9neJzHeNDCDXrN7J7Ts2NDwET/eiA0ijj/DDjcfFs0ON QdJQx/1mUV8Cv1Pye1r2VA2uAX32wqDF0nVKIffD7Bd4cFahmnbqKodr47bdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2IBBxSYrX1HpClYxRlpjz0x2rMMwHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABeTqkoctPbt6JHZ4CS8RQ40UnD918NP++xx PaW0PUSl1ZSaZJUuPJvrZ9HdowaGyxumiKMlRY+XJST2o+FBwL87ZkcDFr1/ci6T 6S8BGF1UPrImLKm+PKk1/8xMbfeUdkhQ/84SYOUVZBk5DCjSCiw9UXNC8xoE/jgM H137hCy4ykcz7xuX879aZk1z/HCLoLJJzM/H3A6LGDD/KB2GA54c9mCk44x+MLcF Y70bghLd6hPG3v4UXEpFRrclSV8C9HxEEQNkzPvXDKBHfOnKiqVxRd2M99II8mIG pS7IEjPFS/uB7GQYhriB6JH52Kctqwj9Fif3LeezUfAgK5WG0Kg= -----END CERTIFICATE-----Generated at Mon Jun 30 08:16:16 2025 by rpki-client