$ rpki-client -vvf repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft File: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft (raw, json) Hash identifier: xYtGI/OEJbKhe5ZkRFySZ2h2lRhqXh0bPnzt6wPYTRk= Subject key identifier: 17:8A:3E:D9:7D:EE:B5:92:89:FF:F6:4C:9E:BB:9D:3E:FD:45:9E:D1 Authority key identifier: 38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C Certificate issuer: /CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Certificate serial: 45DCA9CB3D1CFD9EE99063874648B4D161A19397 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft Manifest number: 04E9 Signing time: Wed 02 Jul 2025 00:02:03 +0000 Manifest this update: Tue 01 Jul 2025 23:57:03 +0000 Manifest next update: Sat 05 Jul 2025 02:54:03 +0000 Files and hashes: 1: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl (hash: vuAhnKsfaDgITxHViaDw8m+Rb30PTzhx2QiJsUxjSAQ=) 2: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: +5ArSDkm8nFNY2pJsCcc5rpBFK1QZi3XeCjPa44v8Qg=) 3: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: 7gyXsXhXbz+5Y778CqurXCGCsFoCA1QhjfVs/TUp3oQ=) 4: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: lX37Ym1HtH8/+BNNZ7vVVvmLTRPAVgTV6qXoJU01xNo=) 5: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: /yhg5qr+BfUwCEkWIHjx5Xurv6fbCx8q1w5UII3HZ8w=) 6: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: ShEOWvu/KCYTTrKo5vrKeCwlexfHyDbC4uTV8yZtzEM=) 7: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: wlegEJoNWqrWT2tySFrwLRqLsXDXFl0OFT0Nuvvp7LI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 02:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:dc:a9:cb:3d:1c:fd:9e:e9:90:63:87:46:48:b4:d1:61:a1:93:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Validity Not Before: Jul 1 23:57:03 2025 GMT Not After : Jul 5 02:54:03 2025 GMT Subject: CN=178A3ED97DEEB59289FFF64C9EBB9D3EFD459ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5a:89:99:ef:c0:fc:60:30:8c:07:e4:11:bb: eb:c9:27:14:49:f0:d2:5e:4c:eb:b6:9f:a9:36:1d: fc:bb:7e:a0:dc:d6:24:f0:af:94:ba:db:04:db:67: b8:9a:6b:a0:4d:a3:da:1f:5a:b4:22:ef:39:aa:35: bd:b8:2f:64:81:12:33:a9:3e:a3:d5:48:5c:cc:b4: aa:47:e0:4f:ed:49:86:ec:be:21:1f:dd:c6:0d:be: 49:5f:f5:b6:e8:e3:96:f9:d5:31:32:74:0c:ed:d3: 38:59:86:b4:ef:af:0c:ee:46:2b:c9:b3:5e:06:47: 69:d5:13:d6:a6:e0:b9:59:28:dd:97:96:62:94:ab: 45:8d:36:b3:29:92:c9:f6:74:8f:98:78:4a:19:b9: bb:96:85:71:b0:7f:02:50:0a:e3:f6:4e:96:c9:07: d4:69:1e:a2:d1:51:82:9b:3d:93:e3:22:ac:2f:10: 4e:05:3d:99:88:13:bb:57:09:6e:ec:79:77:f6:46: 45:c8:e0:c6:25:cf:67:7a:71:2c:2a:85:89:af:87: 68:e8:be:ed:7d:71:2a:8e:b7:bb:5b:3a:a3:4a:3d: 57:ba:07:b6:fa:45:78:9d:40:01:ce:0d:bd:23:84: 2c:15:de:9e:8a:20:a0:8f:cc:4c:fb:82:a0:63:87: 2e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:8A:3E:D9:7D:EE:B5:92:89:FF:F6:4C:9E:BB:9D:3E:FD:45:9E:D1 X509v3 Authority Key Identifier: keyid:38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:d2:f2:9d:5d:ea:95:68:3a:ac:fb:b3:17:4e:0c:8d:23:f4: 00:73:c7:1b:f6:cb:ac:5e:be:48:f3:f0:99:a7:ce:a4:3a:f6: db:7c:9d:0d:ad:23:0c:0a:14:61:63:15:a0:be:90:33:8b:d8: b3:da:62:ed:73:02:3c:82:6d:d6:0e:93:6f:4e:44:ea:0d:a6: a7:41:e7:4b:8b:4c:89:ee:06:70:b3:6b:93:71:f5:c1:54:64: 1e:8d:19:e6:47:d1:70:4d:01:27:9b:99:dc:90:0a:bb:30:95: 2a:b1:bf:f1:5d:9c:f5:26:f7:73:ed:37:76:7e:25:94:fd:5e: d3:2c:d7:f6:4e:25:34:ae:a2:5f:3a:8f:a3:da:37:3e:01:bf: 48:9c:8c:cb:52:38:a4:cc:74:b2:00:23:55:c5:e2:df:8a:b9: ed:30:78:66:5b:a5:0e:94:21:1a:81:41:27:5f:f4:7e:8c:6c: d8:b4:a0:a8:d4:ff:c4:e3:9e:8d:18:1e:0d:80:66:25:ac:39: 3d:ea:6c:ce:7e:92:a2:b8:1c:4c:1a:9e:d1:7c:20:30:9d:30: 0f:bd:f5:e3:a8:da:d1:98:ef:68:8c:f2:22:45:12:03:f5:45: 90:ed:a0:46:f0:e8:f0:67:0b:3a:ec:44:91:1b:fa:67:64:a5: f7:d5:c8:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURdypyz0c/Z7pkGOHRki00WGhk5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQw MTI1MkE1QzAeFw0yNTA3MDEyMzU3MDNaFw0yNTA3MDUwMjU0MDNaMDMxMTAvBgNV BAMTKDE3OEEzRUQ5N0RFRUI1OTI4OUZGRjY0QzlFQkI5RDNFRkQ0NTlFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvWomZ78D8YDCMB+QRu+vJJxRJ 8NJeTOu2n6k2Hfy7fqDc1iTwr5S62wTbZ7iaa6BNo9ofWrQi7zmqNb24L2SBEjOp PqPVSFzMtKpH4E/tSYbsviEf3cYNvklf9bbo45b51TEydAzt0zhZhrTvrwzuRivJ s14GR2nVE9am4LlZKN2XlmKUq0WNNrMpksn2dI+YeEoZubuWhXGwfwJQCuP2TpbJ B9RpHqLRUYKbPZPjIqwvEE4FPZmIE7tXCW7seXf2RkXI4MYlz2d6cSwqhYmvh2jo vu19cSqOt7tbOqNKPVe6B7b6RXidQAHODb0jhCwV3p6KIKCPzEz7gqBjhy61AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF4o+2X3utZKJ//ZMnrudPv1FntEwHwYDVR0j BBgwFoAUOJ58E89jRK65MAHNTFrHlAElKlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjAzMmJjOS02MDVhLTQyNTMtYTRjZC02MmYxMjQxMjZlYWMvMC8zODlFN0MxM0NG NjM0NEFFQjkzMDAxQ0Q0QzVBQzc5NDAxMjUyQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQwMTI1 MkE1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3 OTQwMTI1MkE1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFTS8p1d6pVoOqz7sxdODI0j9ABzxxv2y6xe vkjz8JmnzqQ69tt8nQ2tIwwKFGFjFaC+kDOL2LPaYu1zAjyCbdYOk29OROoNpqdB 50uLTInuBnCza5Nx9cFUZB6NGeZH0XBNASebmdyQCrswlSqxv/FdnPUm93PtN3Z+ JZT9XtMs1/ZOJTSuol86j6PaNz4Bv0icjMtSOKTMdLIAI1XF4t+Kue0weGZbpQ6U IRqBQSdf9H6MbNi0oKjU/8Tjno0YHg2AZiWsOT3qbM5+kqK4HEwantF8IDCdMA+9 9eOo2tGY72iM8iJFEgP1RZDtoEbw6PBnCzrsRJEb+mdkpffVyA8= -----END CERTIFICATE-----Generated at Thu Jul 3 06:30:23 2025 by rpki-client