$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: nPbDJ/rdyWHHhPkHxwFm1gaJvr2ORE5mw7anSSERExg= Subject key identifier: 56:AA:18:40:16:85:0C:06:63:1B:5E:D3:48:DD:62:F9:0F:E9:E6:AA Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 59B46D9DA072C82DBBD4507D6AFE635ACE0E72B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0502 Signing time: Fri 22 Aug 2025 00:10:39 +0000 Manifest this update: Fri 22 Aug 2025 00:05:39 +0000 Manifest next update: Mon 25 Aug 2025 12:09:39 +0000 Files and hashes: 1: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 2: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 3: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 4: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 5: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: 1zlP8SUbQRbja5GgEFPb3ex5Gj9nv8LGb9sEJ9DRanY=) 6: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 7: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 8: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 9: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 10: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 12:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b4:6d:9d:a0:72:c8:2d:bb:d4:50:7d:6a:fe:63:5a:ce:0e:72:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Aug 22 00:05:39 2025 GMT Not After : Aug 25 12:09:39 2025 GMT Subject: CN=56AA184016850C06631B5ED348DD62F90FE9E6AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f4:de:81:d1:ca:b5:85:f9:c0:f3:21:8d:83: 05:55:9a:f4:21:84:34:f3:f0:ba:39:16:c5:3a:08: a9:d5:84:fc:e2:e5:00:a6:06:99:b9:0d:98:e0:51: d8:e4:da:33:06:be:71:d9:f9:58:d5:e4:0f:05:bf: c1:65:33:be:56:8b:df:7c:24:38:c9:e9:60:6e:3c: 43:0d:e6:49:60:eb:ca:0a:e8:99:8b:d2:26:26:a4: 9c:7a:c6:5a:f1:4f:b4:b3:8e:5c:0c:0c:71:ae:26: 8a:3e:7d:2b:2a:4b:f7:78:1b:0a:55:27:42:61:aa: d2:60:9b:a3:f1:38:03:1e:e5:08:24:96:a2:3a:92: d1:2b:bd:61:8e:62:8a:0d:d0:3d:dd:da:3e:3f:3d: 67:cc:44:87:d8:c6:95:2d:3c:09:16:ee:4c:28:c1: 56:2b:11:51:42:25:ea:83:69:40:23:79:d5:53:70: e7:83:6e:28:6a:d8:97:4b:28:85:73:08:a0:65:6f: 33:a8:73:23:7f:99:92:49:15:31:57:e9:4f:f5:8c: 3c:73:91:ad:b8:b9:e1:fe:57:9d:34:fa:ae:73:0b: 6f:2a:c6:03:9d:02:b0:4b:fe:5b:a4:3c:2a:20:f4: 0e:6b:a3:4e:9b:3b:58:d9:9d:22:93:68:db:f4:60: 7f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:AA:18:40:16:85:0C:06:63:1B:5E:D3:48:DD:62:F9:0F:E9:E6:AA X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:57:85:f4:dc:a1:da:c5:17:8e:8b:64:1b:1b:11:32:95:6e: d1:ac:d9:d0:98:95:53:0c:ca:2f:42:da:3c:8b:6f:08:4b:7b: db:45:5f:48:1e:09:70:e1:bd:a9:25:d6:f3:a7:5c:77:c2:43: 7d:bc:64:81:02:10:7a:28:98:4d:f9:9f:95:ad:91:da:68:0f: 1e:5d:87:49:cd:38:c6:71:b6:f1:2b:ef:4b:17:8f:c5:ce:9b: e1:30:8b:cd:3a:90:fa:cc:96:d4:e6:57:6a:84:6b:c1:6f:3d: 20:b4:e2:24:39:6b:df:e8:30:3a:fb:55:37:f9:cd:67:c6:4c: 35:16:0f:85:86:c3:0c:bc:e0:f7:dd:f8:1f:b9:94:f0:6c:96: 8f:4a:bc:cf:d8:9d:9d:8c:9f:28:3d:90:b9:61:36:85:7f:34: 08:ce:06:2f:5a:50:d0:f0:e1:0d:46:fb:a5:76:d5:88:09:61: 48:87:d9:0b:58:30:19:75:3a:a0:42:c2:e7:3a:5f:a7:d3:62: 8e:fc:f3:28:73:a2:c2:d6:b5:9c:1d:81:f0:b1:09:72:24:16: 45:4f:b0:12:d4:ef:19:39:21:c5:f7:3e:85:49:76:a3:ca:33: 5d:0c:d8:8d:7e:e9:72:0f:38:c2:d1:e7:c0:e8:4e:6b:0d:fa: 3e:d5:0b:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWbRtnaByyC271FB9av5jWs4OcrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA4MjIwMDA1MzlaFw0yNTA4MjUxMjA5MzlaMDMxMTAvBgNV BAMTKDU2QUExODQwMTY4NTBDMDY2MzFCNUVEMzQ4REQ2MkY5MEZFOUU2QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ9N6B0cq1hfnA8yGNgwVVmvQh hDTz8Lo5FsU6CKnVhPzi5QCmBpm5DZjgUdjk2jMGvnHZ+VjV5A8Fv8FlM75Wi998 JDjJ6WBuPEMN5klg68oK6JmL0iYmpJx6xlrxT7SzjlwMDHGuJoo+fSsqS/d4GwpV J0JhqtJgm6PxOAMe5QgklqI6ktErvWGOYooN0D3d2j4/PWfMRIfYxpUtPAkW7kwo wVYrEVFCJeqDaUAjedVTcOeDbihq2JdLKIVzCKBlbzOocyN/mZJJFTFX6U/1jDxz ka24ueH+V500+q5zC28qxgOdArBL/lukPCog9A5ro06bO1jZnSKTaNv0YH+bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVqoYQBaFDAZjG17TSN1i+Q/p5qowHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJVXhfTcodrFF46LZBsbETKVbtGs2dCYlVMM yi9C2jyLbwhLe9tFX0geCXDhvakl1vOnXHfCQ328ZIECEHoomE35n5WtkdpoDx5d h0nNOMZxtvEr70sXj8XOm+Ewi806kPrMltTmV2qEa8FvPSC04iQ5a9/oMDr7VTf5 zWfGTDUWD4WGwwy84Pfd+B+5lPBslo9KvM/YnZ2Mnyg9kLlhNoV/NAjOBi9aUNDw 4Q1G+6V21YgJYUiH2QtYMBl1OqBCwuc6X6fTYo788yhzosLWtZwdgfCxCXIkFkVP sBLU7xk5IcX3PoVJdqPKM10M2I1+6XIPOMLR58DoTmsN+j7VC7I= -----END CERTIFICATE-----Generated at Sat Aug 23 18:43:23 2025 by rpki-client