$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: ku3bWO1ZeScLuKKBTYiNxMXmKb7qkeChZIiA2k3zb50= Subject key identifier: 63:2D:86:FB:7E:B9:4A:86:91:C1:7D:B8:68:85:5A:9D:94:FE:5A:D7 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 4CC7F46B1C0FAFEA59F7079678BD3A6C29092C42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04D3 Signing time: Thu 08 May 2025 12:00:38 +0000 Manifest this update: Thu 08 May 2025 11:55:38 +0000 Manifest next update: Sun 11 May 2025 20:52:38 +0000 Files and hashes: 1: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: zzTNZ4xzQEOmQw8ycNtJFjGo6ll3tDYLpBJW9o97EtU=) 2: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 3: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: 6ejxm/D7fWLYd/jA5kGnDm4Adf1D2VKSxCwudEm22iA=) 4: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: CKZqBz5RzUJDxeDRQjwvwDjhTydwwJ4qsh8D2GYetBs=) 5: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: gzDipvkfkmuzf6cMtsktGR6IG4XE271eIy/l0q14RNE=) 6: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: 8Pihm82g70d0YD39AiI0nfOrZFr+2CjjXY243qvfoMg=) 7: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: gM3z/op2YFXyT7g7JtYZFudpoLz5+Bi5Ub/M9drayg4=) 8: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: 4cr+QZXigIFKCl/E01HmbmzHPYbUe8iFmoKY3eWNtV8=) 9: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) 10: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: AGLiUoWAlNJIAtchHSJ4lguvgiblVxmk8bMAMIntFqw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c7:f4:6b:1c:0f:af:ea:59:f7:07:96:78:bd:3a:6c:29:09:2c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: May 8 11:55:38 2025 GMT Not After : May 11 20:52:38 2025 GMT Subject: CN=632D86FB7EB94A8691C17DB868855A9D94FE5AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ed:88:a1:8f:d5:4c:3c:4f:cf:98:d6:99:54: 75:5d:d7:d7:c2:f5:bc:23:41:84:1d:c2:0b:85:91: 5e:47:c7:1f:24:a8:ec:42:b7:28:81:aa:ae:3e:91: 76:00:c1:9e:d2:df:7e:b7:b2:98:8b:94:fc:e3:29: 09:64:27:f8:2b:88:b1:9a:f6:fb:96:25:47:1d:79: 30:0a:e5:5b:d7:71:bd:4a:29:9d:55:42:77:37:99: fa:db:94:3f:d0:df:39:09:66:ab:15:be:22:bd:cd: be:86:e4:5a:e6:d0:a9:04:aa:e0:65:f4:be:59:a3: 00:b8:0c:92:c6:7e:6a:58:41:3a:53:5e:02:30:4c: 81:8a:53:77:6c:63:44:79:07:c0:4d:42:2a:c7:28: 16:de:5d:b9:db:ed:9b:68:55:3e:13:12:64:88:92: 03:7c:ae:be:7d:2f:02:2c:8e:44:0d:cc:8c:e6:0f: 60:85:fb:67:9d:85:3e:2a:9c:41:b4:e7:fb:cf:81: 75:f9:aa:74:54:12:5a:ec:fe:d4:31:17:37:53:59: b9:f7:78:be:de:92:c1:16:c3:c7:36:05:1d:e9:73: d2:80:e6:e6:b1:44:be:31:bf:a3:e0:ad:52:49:01: 79:7c:02:82:f2:51:12:42:64:f0:16:12:9f:f3:fe: 77:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2D:86:FB:7E:B9:4A:86:91:C1:7D:B8:68:85:5A:9D:94:FE:5A:D7 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:6f:e6:22:39:1e:14:9f:1a:2a:a8:a3:ad:1b:e7:58:1b:e3: 50:1f:8d:f0:9f:38:9d:25:fc:66:51:eb:9b:fc:0a:65:10:b7: b4:f0:4a:b9:2c:aa:83:35:30:7a:16:2d:97:e7:96:f8:9b:b2: dd:63:b0:0f:af:ca:0e:66:cd:81:8f:c8:22:95:3d:65:33:49: b7:20:18:63:8d:77:8f:19:f2:92:e1:f9:2f:98:f0:c1:67:91: 82:0c:dd:2b:da:1f:d5:c9:e7:2d:2f:a8:82:cf:c9:85:80:9a: fe:f8:14:4c:8e:16:69:65:c7:b7:23:b1:7f:b2:63:be:70:d2: 23:f6:7a:81:f7:75:50:39:78:89:84:49:1b:68:fd:c5:38:66: e8:df:2d:20:31:ff:4b:bb:ce:b4:e9:0d:92:aa:f0:22:5c:f6: f0:e9:f3:b0:70:0b:11:34:92:49:0d:7f:c0:06:16:84:2d:79: a8:56:2e:c2:6a:2a:37:be:26:03:b2:33:84:e6:8f:83:8c:39: bc:7a:b6:ad:d5:82:14:f7:04:aa:f1:07:af:b7:2e:d3:c5:91: c1:b4:c5:63:48:10:dd:74:e7:ef:90:05:93:d0:9f:8d:64:de: 45:fb:d5:3e:b4:43:72:98:44:4f:c1:36:fe:74:61:64:b9:d9: ce:cd:dd:31 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTMf0axwPr+pZ9weWeL06bCkJLEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA1MDgxMTU1MzhaFw0yNTA1MTEyMDUyMzhaMDMxMTAvBgNV BAMTKDYzMkQ4NkZCN0VCOTRBODY5MUMxN0RCODY4ODU1QTlEOTRGRTVBRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt7Yihj9VMPE/PmNaZVHVd19fC 9bwjQYQdwguFkV5Hxx8kqOxCtyiBqq4+kXYAwZ7S3363spiLlPzjKQlkJ/griLGa 9vuWJUcdeTAK5VvXcb1KKZ1VQnc3mfrblD/Q3zkJZqsVviK9zb6G5Frm0KkEquBl 9L5ZowC4DJLGfmpYQTpTXgIwTIGKU3dsY0R5B8BNQirHKBbeXbnb7ZtoVT4TEmSI kgN8rr59LwIsjkQNzIzmD2CF+2edhT4qnEG05/vPgXX5qnRUElrs/tQxFzdTWbn3 eL7eksEWw8c2BR3pc9KA5uaxRL4xv6PgrVJJAXl8AoLyURJCZPAWEp/z/ne1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYy2G+365SoaRwX24aIVanZT+WtcwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAtv5iI5HhSfGiqoo60b51gb41AfjfCfOJ0l /GZR65v8CmUQt7TwSrksqoM1MHoWLZfnlvibst1jsA+vyg5mzYGPyCKVPWUzSbcg GGONd48Z8pLh+S+Y8MFnkYIM3SvaH9XJ5y0vqILPyYWAmv74FEyOFmllx7cjsX+y Y75w0iP2eoH3dVA5eImESRto/cU4ZujfLSAx/0u7zrTpDZKq8CJc9vDp87BwCxE0 kkkNf8AGFoQteahWLsJqKje+JgOyM4Tmj4OMObx6tq3VghT3BKrxB6+3LtPFkcG0 xWNIEN105++QBZPQn41k3kX71T60Q3KYRE/BNv50YWS52c7N3TE= -----END CERTIFICATE-----Generated at Fri May 9 02:45:10 2025 by rpki-client