$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft File: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft (raw, json) Hash identifier: q/EczuZxdrr6HV83XytObtHSZFDp1SD1JomIW7irWG4= Subject key identifier: 84:7C:BE:39:10:E3:75:10:FC:4F:B0:4C:3D:27:EA:63:96:1E:56:80 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 4E32279ED95E083A1953FE1B157BF23A480B440C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft Manifest number: 01F9 Signing time: Thu 21 Aug 2025 16:30:58 +0000 Manifest this update: Thu 21 Aug 2025 16:25:58 +0000 Manifest next update: Mon 25 Aug 2025 01:55:58 +0000 Files and hashes: 1: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl (hash: 51LuJdd+x5xPUWCVTFnddOx1imF36vo9P96ovLPDLs4=) 2: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (hash: YfWdCVoIH1DQu9Nb8zknsBq3gjAx6STdl7+GflAiVVY=) 3: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (hash: 6pWVSpFXVKH6EqJrCt3rmPa2Bj+n9pO/wL1SNQ2qvtg=) 4: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (hash: 5ODCvpJsl+XnXZcZjU6a9g5frNriLFm4lEWGxVY15JQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 01:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:32:27:9e:d9:5e:08:3a:19:53:fe:1b:15:7b:f2:3a:48:0b:44:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Aug 21 16:25:58 2025 GMT Not After : Aug 25 01:55:58 2025 GMT Subject: CN=847CBE3910E37510FC4FB04C3D27EA63961E5680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cf:eb:ad:bc:fb:e6:55:ac:fb:dc:4b:4d:9a: eb:0f:71:47:fc:b0:0c:1c:fd:f0:27:ed:33:e7:f7: 24:f3:50:b1:a7:f0:5f:a6:a9:37:d3:89:3c:a3:b6: 09:5a:b9:08:6a:6c:c3:9e:81:99:8b:74:cd:20:1a: 34:98:b9:f2:66:68:ca:60:4d:e5:53:dc:68:92:77: 1b:bf:96:55:40:c2:a0:83:ec:be:45:3e:4c:08:91: a7:d8:84:0a:1b:83:24:00:23:8b:dd:70:ff:6f:47: 8a:7c:8f:8b:16:ed:9d:b5:aa:c7:8f:f0:34:5a:22: 77:b0:d6:2a:8a:06:69:4b:b4:f9:0b:62:f4:08:19: e2:5f:77:bc:8c:2a:f4:2c:53:84:9d:24:c1:16:90: 23:fb:33:91:ac:a4:77:19:7e:81:1b:ae:79:97:20: 34:24:93:4c:b7:21:c7:5b:b1:14:66:3d:3f:c0:03: 87:bb:21:fa:b4:a0:ef:c4:31:0e:eb:7e:fc:43:7e: e2:e0:e5:f0:f9:41:30:51:4a:ac:16:06:2d:95:dd: d9:e0:9b:74:00:1b:5f:1e:81:8c:d2:7d:ad:0a:7e: 2c:2e:c0:d1:de:60:30:e4:87:d1:b9:09:9b:62:65: 84:62:3e:54:32:dc:0d:36:3c:91:4b:c5:54:b8:b1: e6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:7C:BE:39:10:E3:75:10:FC:4F:B0:4C:3D:27:EA:63:96:1E:56:80 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:19:de:70:48:8e:b5:d1:27:4e:61:f5:67:4e:8a:75:42:2b: cf:10:c6:f8:23:ec:dd:c0:e9:6e:43:1b:60:57:1a:6f:e9:49: 30:bc:35:c8:b6:08:87:2c:63:c9:1c:27:98:ea:56:71:50:7f: 7f:14:41:3d:77:4f:e7:34:5e:55:74:a3:8a:cc:b5:e4:bd:59: 94:b0:74:47:46:29:9c:1f:b1:4a:36:a8:1d:6e:f4:4f:d9:4a: f7:ba:ab:ee:a2:50:10:1e:5c:61:d5:80:18:10:1e:c2:a1:b8: fa:ee:6e:46:4c:7b:32:15:b5:39:16:f8:03:b8:e0:de:24:8d: 6b:4f:06:dd:60:9c:b9:f7:d2:10:ff:66:e8:91:6e:04:b5:8f: d9:13:32:5b:68:b7:0b:fd:65:40:7d:ce:b8:be:5a:4d:e6:50: d6:2e:8d:05:30:db:0a:88:c1:9f:57:5d:f4:58:5f:de:6d:5c: b3:1e:a9:95:df:a2:76:dd:a8:a4:2b:1e:28:d7:02:ec:59:42: 91:35:04:76:9c:e9:42:91:ce:46:85:1a:16:c3:26:87:49:46: d6:ff:fb:31:96:12:5e:45:ed:41:f9:5f:bb:81:84:ca:16:b4: 24:09:36:6a:a7:f8:7b:a2:e0:f0:7f:84:62:85:27:20:47:b8: 6b:70:90:0d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTjInntleCDoZU/4bFXvyOkgLRAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNTA4MjExNjI1NThaFw0yNTA4MjUwMTU1NThaMDMxMTAvBgNV BAMTKDg0N0NCRTM5MTBFMzc1MTBGQzRGQjA0QzNEMjdFQTYzOTYxRTU2ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnz+utvPvmVaz73EtNmusPcUf8 sAwc/fAn7TPn9yTzULGn8F+mqTfTiTyjtglauQhqbMOegZmLdM0gGjSYufJmaMpg TeVT3GiSdxu/llVAwqCD7L5FPkwIkafYhAobgyQAI4vdcP9vR4p8j4sW7Z21qseP 8DRaInew1iqKBmlLtPkLYvQIGeJfd7yMKvQsU4SdJMEWkCP7M5GspHcZfoEbrnmX IDQkk0y3IcdbsRRmPT/AA4e7Ifq0oO/EMQ7rfvxDfuLg5fD5QTBRSqwWBi2V3dng m3QAG18egYzSfa0KfiwuwNHeYDDkh9G5CZtiZYRiPlQy3A02PJFLxVS4seaJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhHy+ORDjdRD8T7BMPSfqY5YeVoAwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTIyOWNhNTAtZTk1Yy00NWJiLTlj MzAtNjNlMTJhZjdhNWUxLzAvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRC OUZCQTBCMzlCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHcZ3nBIjrXRJ05h9WdOinVCK88Qxvgj7N3A 6W5DG2BXGm/pSTC8Nci2CIcsY8kcJ5jqVnFQf38UQT13T+c0XlV0o4rMteS9WZSw dEdGKZwfsUo2qB1u9E/ZSve6q+6iUBAeXGHVgBgQHsKhuPrubkZMezIVtTkW+AO4 4N4kjWtPBt1gnLn30hD/ZuiRbgS1j9kTMltotwv9ZUB9zri+Wk3mUNYujQUw2wqI wZ9XXfRYX95tXLMeqZXfonbdqKQrHijXAuxZQpE1BHac6UKRzkaFGhbDJodJRtb/ +zGWEl5F7UH5X7uBhMoWtCQJNmqn+Hui4PB/hGKFJyBHuGtwkA0= -----END CERTIFICATE-----Generated at Sat Aug 23 14:02:46 2025 by rpki-client