$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft File: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft (raw, json) Hash identifier: 5GOijjtqnoSd6CbvuwnhkoWICG1Jf9yd0jf8XPbNDpY= Subject key identifier: C4:2F:AA:18:88:2B:32:49:64:C5:AF:36:F4:A4:01:E7:13:B9:42:36 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 01BA50FEF88F1E71EBDD5A5941D37E391BF6DD8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft Manifest number: 01E1 Signing time: Sat 28 Jun 2025 07:20:57 +0000 Manifest this update: Sat 28 Jun 2025 07:15:57 +0000 Manifest next update: Tue 01 Jul 2025 16:16:57 +0000 Files and hashes: 1: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (hash: YfWdCVoIH1DQu9Nb8zknsBq3gjAx6STdl7+GflAiVVY=) 2: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (hash: 6pWVSpFXVKH6EqJrCt3rmPa2Bj+n9pO/wL1SNQ2qvtg=) 3: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl (hash: 8LvHwb46HAg3wZqzUVwYpfzaJyuyLw2cEMJkQU5CZPs=) 4: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (hash: 5ODCvpJsl+XnXZcZjU6a9g5frNriLFm4lEWGxVY15JQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 16:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ba:50:fe:f8:8f:1e:71:eb:dd:5a:59:41:d3:7e:39:1b:f6:dd:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Jun 28 07:15:57 2025 GMT Not After : Jul 1 16:16:57 2025 GMT Subject: CN=C42FAA18882B324964C5AF36F4A401E713B94236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:21:88:3c:42:86:f4:b3:0c:2b:38:7a:f6:ff: 12:5d:9a:51:08:9d:5c:2d:86:16:ae:b2:f2:0e:c3: c5:d5:ca:cd:c4:bc:44:c9:7d:ea:44:e0:a4:00:24: 82:d5:3d:77:a9:c7:96:d4:7f:93:7d:5d:3c:6e:a2: 39:ac:ed:a5:c6:da:42:4b:8d:e3:7d:8f:83:bd:cb: 95:7e:59:c7:16:c0:9d:8a:a4:10:80:62:a3:cd:99: bb:e4:94:3d:28:c2:d2:1a:e0:b4:37:41:60:63:da: 30:01:c4:37:59:e1:78:70:ad:81:a0:c1:70:65:e0: fd:16:a5:20:04:69:4d:e0:6d:76:d9:9f:97:dd:13: c3:91:69:e2:46:b8:99:5e:b3:cc:43:76:38:7b:f3: a3:7f:bf:15:38:7d:ad:58:dd:bf:59:d6:c5:00:0a: 4c:e3:62:97:78:c6:c8:a0:71:57:c9:63:24:dd:b1: ad:a0:c1:16:0b:79:2f:47:d9:98:e8:15:be:dd:e3: f2:f0:72:41:ed:0b:81:f2:0b:9a:62:df:12:fc:44: d2:84:f0:02:0f:af:3f:be:6b:a0:b4:e4:52:55:8d: 14:47:3b:96:8c:70:bf:94:ba:06:25:e6:07:8a:5c: 9d:ee:be:bc:75:2e:e1:3e:73:12:37:42:77:2f:a8: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2F:AA:18:88:2B:32:49:64:C5:AF:36:F4:A4:01:E7:13:B9:42:36 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:26:9f:19:c2:e1:8e:db:2f:f6:86:10:1e:04:3e:40:76:f3: 34:0b:1e:ee:54:2b:4f:55:1b:e5:2c:bb:4a:0f:f5:9e:1c:06: be:71:6d:0e:56:27:51:9f:d5:d6:ca:02:c5:c4:48:22:18:a0: d9:be:e2:10:e3:39:1f:3f:58:c5:f7:ba:52:13:dc:00:fa:54: e9:20:02:46:c0:85:55:be:9a:35:06:10:36:81:63:ed:95:a5: d5:ed:60:c2:68:ca:b3:88:45:00:25:16:e2:de:dc:65:ca:c6: 89:3b:a6:2d:7b:d0:49:ab:2c:e6:f0:1b:2a:e0:a0:58:c9:bb: da:33:57:5e:de:ba:49:11:d1:04:16:57:ef:10:75:b5:91:a4: 1c:2f:b3:6a:fc:79:8b:cf:85:62:7d:03:d1:92:11:8e:36:04: 90:e9:52:fe:4d:c1:dd:14:7d:88:11:d4:bd:08:63:5f:aa:c4: 26:5e:40:a6:43:91:2c:3c:3d:ef:e4:62:73:ac:ef:20:de:ab: e9:7c:ef:78:40:1e:91:a9:44:0f:3e:ce:e0:07:b4:69:05:78: 1f:ac:6d:2a:40:20:ef:d2:dd:40:12:7a:4a:80:0f:d4:7a:a7: a2:3b:12:42:0c:63:f0:4f:10:12:31:1a:4a:bb:f3:e8:9e:25: 73:e1:37:45 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAbpQ/viPHnHr3VpZQdN+ORv23YswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNTA2MjgwNzE1NTdaFw0yNTA3MDExNjE2NTdaMDMxMTAvBgNV BAMTKEM0MkZBQTE4ODgyQjMyNDk2NEM1QUYzNkY0QTQwMUU3MTNCOTQyMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoIYg8Qob0swwrOHr2/xJdmlEI nVwthhausvIOw8XVys3EvETJfepE4KQAJILVPXepx5bUf5N9XTxuojms7aXG2kJL jeN9j4O9y5V+WccWwJ2KpBCAYqPNmbvklD0owtIa4LQ3QWBj2jABxDdZ4XhwrYGg wXBl4P0WpSAEaU3gbXbZn5fdE8ORaeJGuJles8xDdjh786N/vxU4fa1Y3b9Z1sUA CkzjYpd4xsigcVfJYyTdsa2gwRYLeS9H2ZjoFb7d4/LwckHtC4HyC5pi3xL8RNKE 8AIPrz++a6C05FJVjRRHO5aMcL+UugYl5geKXJ3uvrx1LuE+cxI3QncvqCOxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxC+qGIgrMklkxa829KQB5xO5QjYwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTIyOWNhNTAtZTk1Yy00NWJiLTlj MzAtNjNlMTJhZjdhNWUxLzAvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRC OUZCQTBCMzlCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEomnxnC4Y7bL/aGEB4EPkB28zQLHu5UK09V G+Usu0oP9Z4cBr5xbQ5WJ1Gf1dbKAsXESCIYoNm+4hDjOR8/WMX3ulIT3AD6VOkg AkbAhVW+mjUGEDaBY+2VpdXtYMJoyrOIRQAlFuLe3GXKxok7pi170EmrLObwGyrg oFjJu9ozV17eukkR0QQWV+8QdbWRpBwvs2r8eYvPhWJ9A9GSEY42BJDpUv5Nwd0U fYgR1L0IY1+qxCZeQKZDkSw8Pe/kYnOs7yDeq+l873hAHpGpRA8+zuAHtGkFeB+s bSpAIO/S3UASekqAD9R6p6I7EkIMY/BPEBIxGkq78+ieJXPhN0U= -----END CERTIFICATE-----Generated at Sun Jun 29 20:07:13 2025 by rpki-client