$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: os7GbifGaqPW7oiXbDQKCz0j0e2HgJ6vvzFc6O+kg18= Subject key identifier: F1:7E:F3:FB:6D:FA:B7:F9:FB:98:37:D7:CB:2D:8B:E2:3A:23:F3:3D Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 5A09C7559B38EDAD26319438C0739754C1AB8955 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 051C Signing time: Sun 19 Oct 2025 14:00:39 +0000 Manifest this update: Sun 19 Oct 2025 13:55:39 +0000 Manifest next update: Wed 22 Oct 2025 17:33:39 +0000 Files and hashes: 1: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 2: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 3: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 5: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 6: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 7: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 8: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: 8rVL/z/R6/RU/HQNlg/dougMR1fFSE0obBc/+nr7C6Q=) 9: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 10: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:09:c7:55:9b:38:ed:ad:26:31:94:38:c0:73:97:54:c1:ab:89:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Oct 19 13:55:39 2025 GMT Not After : Oct 22 17:33:39 2025 GMT Subject: CN=F17EF3FB6DFAB7F9FB9837D7CB2D8BE23A23F33D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:c4:74:a8:74:fa:cd:32:d1:ca:3e:7e:8f: 06:07:a1:78:3e:52:de:13:fd:e1:47:66:aa:90:f9: 63:db:fa:af:99:00:56:13:66:49:e3:4e:db:a3:a6: 19:44:20:66:08:0d:1e:cd:c0:e8:93:6b:9f:32:63: 11:45:6a:e5:84:01:51:52:ad:df:30:f8:fe:7e:39: 06:49:45:4b:f3:6d:b8:a1:7b:85:04:93:22:4a:58: 7c:5e:bc:bc:5a:00:af:17:95:79:e1:00:9e:53:97: d7:78:74:4d:75:07:9b:a2:c7:f5:4f:1d:8c:27:bb: 5c:c6:29:46:60:2a:e8:19:52:a0:72:0e:26:24:58: 00:8a:2c:05:49:79:08:c3:14:0f:64:8c:a2:46:66: 9c:cf:29:24:89:61:c1:6e:91:54:b5:60:f9:f2:15: fd:50:b8:1c:61:18:4b:5b:88:ef:cd:a5:c7:77:2d: 70:f3:16:40:a3:57:bf:74:11:59:da:c3:c8:b5:07: da:38:88:af:d8:e7:6d:09:53:ba:96:1e:26:c1:a4: 4c:17:91:62:eb:7e:ec:f5:5d:5d:d1:3b:62:dd:e9: 48:a1:11:65:24:39:87:ba:e7:d6:bf:07:d5:1c:50: 2b:06:d0:c2:b3:ef:00:aa:86:24:19:22:f4:82:ee: 0d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7E:F3:FB:6D:FA:B7:F9:FB:98:37:D7:CB:2D:8B:E2:3A:23:F3:3D X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:11:52:a0:55:4b:67:74:fb:03:9c:32:83:7f:f8:65:ab:92: 8a:97:e5:1d:a8:58:e8:71:2f:9d:95:7a:6b:ef:f9:0e:8e:21: 59:f5:df:da:de:20:cd:e1:22:c1:97:da:6c:85:1c:61:b5:3a: 3d:6b:cd:68:b1:99:97:24:1f:66:a7:53:8b:42:0f:48:b5:b7: be:f1:87:01:6f:f8:e6:0b:35:c5:85:f3:94:78:15:56:a1:31: af:9b:ed:ea:69:3e:c1:d4:93:c2:84:64:d7:cc:b0:46:98:29: 17:79:2a:45:73:53:03:d6:ce:9c:69:cb:a0:14:3b:8a:c8:b1: 6e:39:9f:3e:2b:b6:aa:bd:c3:09:b2:70:49:f3:8e:00:79:68: 2b:48:98:66:2b:d6:64:a3:cd:17:30:7c:51:43:23:3a:63:ad: 28:5b:14:7e:67:d4:58:2d:b8:2e:98:a9:74:2f:e8:78:b5:f5: 19:f7:38:33:39:b6:4e:3e:77:35:a2:fc:3a:eb:3c:da:63:3c: df:85:58:d6:aa:df:f5:f2:29:af:bd:69:0a:3f:3f:dc:e0:44: 2c:ef:cf:b8:2e:09:94:fa:b7:d1:9d:28:23:8c:8e:81:64:0f: 74:9e:2c:b7:10:c8:81:b1:9c:9d:01:9e:78:42:55:be:c7:d6: 04:c2:d4:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWgnHVZs47a0mMZQ4wHOXVMGriVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTEwMTkxMzU1MzlaFw0yNTEwMjIxNzMzMzlaMDMxMTAvBgNV BAMTKEYxN0VGM0ZCNkRGQUI3RjlGQjk4MzdEN0NCMkQ4QkUyM0EyM0YzM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/S8R0qHT6zTLRyj5+jwYHoXg+ Ut4T/eFHZqqQ+WPb+q+ZAFYTZknjTtujphlEIGYIDR7NwOiTa58yYxFFauWEAVFS rd8w+P5+OQZJRUvzbbihe4UEkyJKWHxevLxaAK8XlXnhAJ5Tl9d4dE11B5uix/VP HYwnu1zGKUZgKugZUqByDiYkWACKLAVJeQjDFA9kjKJGZpzPKSSJYcFukVS1YPny Ff1QuBxhGEtbiO/Npcd3LXDzFkCjV790EVnaw8i1B9o4iK/Y520JU7qWHibBpEwX kWLrfuz1XV3RO2Ld6UihEWUkOYe659a/B9UcUCsG0MKz7wCqhiQZIvSC7g2bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8X7z+236t/n7mDfXyy2L4joj8z0wHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIQRUqBVS2d0+wOcMoN/+GWrkoqX5R2oWOhx L52Vemvv+Q6OIVn139reIM3hIsGX2myFHGG1Oj1rzWixmZckH2anU4tCD0i1t77x hwFv+OYLNcWF85R4FVahMa+b7eppPsHUk8KEZNfMsEaYKRd5KkVzUwPWzpxpy6AU O4rIsW45nz4rtqq9wwmycEnzjgB5aCtImGYr1mSjzRcwfFFDIzpjrShbFH5n1Fgt uC6YqXQv6Hi19Rn3ODM5tk4+dzWi/DrrPNpjPN+FWNaq3/XyKa+9aQo/P9zgRCzv z7guCZT6t9GdKCOMjoFkD3SeLLcQyIGxnJ0BnnhCVb7H1gTC1Kw= -----END CERTIFICATE-----Generated at Mon Oct 20 17:01:39 2025 by rpki-client