$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: pkJPy3pX1NHaN3X7xLPrDDNhpaF5XQFdxzXTrR6h0Zk= Subject key identifier: 5C:A6:69:FA:0C:75:1E:D3:BF:B4:B2:A9:D4:E1:13:16:54:C3:A6:53 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 57F5AB13649F9B732A6DB785496C614ACEABC394 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04EA Signing time: Mon 30 Jun 2025 01:10:37 +0000 Manifest this update: Mon 30 Jun 2025 01:05:37 +0000 Manifest next update: Thu 03 Jul 2025 05:45:37 +0000 Files and hashes: 1: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 2: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 3: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 4: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 5: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 6: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 7: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: WrzgqvNAtpVY28PtzIG5rM/NoIWdM8JZdNXRGjb2ej8=) 8: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 9: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 10: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f5:ab:13:64:9f:9b:73:2a:6d:b7:85:49:6c:61:4a:ce:ab:c3:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 30 01:05:37 2025 GMT Not After : Jul 3 05:45:37 2025 GMT Subject: CN=5CA669FA0C751ED3BFB4B2A9D4E1131654C3A653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9f:9a:cc:f5:e8:55:c9:51:05:da:27:9a:a3: 09:9a:86:60:61:ad:b8:7d:68:6f:99:f9:87:76:f5: d3:4b:d7:9e:e6:5e:c0:02:0f:ac:45:71:a4:e6:42: 8d:b9:10:77:e4:03:4d:1e:fc:31:a0:e5:a2:e7:22: 03:fd:74:79:62:35:b2:d0:f8:f9:b8:19:2b:9e:55: 8c:fd:e5:f4:12:dc:16:67:11:a7:76:57:df:a8:f5: 55:ba:78:43:c6:e3:4d:e3:56:1a:2a:97:8c:27:a1: ce:64:e1:ae:16:59:85:46:71:18:70:c5:74:ea:ae: 09:4b:f8:9c:e0:b3:c0:45:0a:64:ee:e9:fd:dc:24: e1:50:59:59:73:1d:0e:a1:d2:f7:60:1a:8d:af:4d: d2:88:00:3c:48:9c:42:e5:d2:2f:d5:9e:df:5e:0d: 65:c8:e8:ee:01:de:a9:af:63:ee:49:9f:29:a2:96: 56:e4:d6:ad:b8:a6:e0:cf:fe:cd:33:f7:71:95:8e: 86:45:d7:fc:8e:7e:25:ad:3f:a8:1d:a2:e9:76:5b: 80:60:0d:aa:3e:74:89:6b:f8:e9:01:7d:c8:e7:04: 6c:8f:e3:b7:47:19:c1:42:50:c4:60:4c:e2:be:7b: 33:7d:49:5b:8a:10:33:5f:68:76:39:d9:4e:2a:d7: 63:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A6:69:FA:0C:75:1E:D3:BF:B4:B2:A9:D4:E1:13:16:54:C3:A6:53 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:44:41:ce:62:90:25:5d:d8:a4:ca:50:ff:ff:c3:d7:1e:a8: 8a:3d:78:da:0b:88:4d:7b:59:4c:19:14:b6:98:d3:ed:05:b5: 08:eb:80:ba:57:bb:f8:0e:6c:04:1e:68:69:29:e6:9a:15:01: 40:62:ae:60:03:23:b2:fe:9c:5b:29:19:42:3a:82:ee:23:cc: 14:31:66:11:a9:0e:1b:f4:a3:0c:d1:bd:ec:37:8a:41:dc:4f: 44:8e:27:d6:68:c9:f7:fb:68:76:d6:c6:7c:5a:f7:62:66:07: df:e1:d1:10:03:f4:28:9b:3b:cc:3f:64:5b:13:54:46:b1:78: 03:18:12:71:07:54:56:b4:29:0d:89:f3:d8:a1:8d:3b:0e:79: 25:e4:28:dd:35:90:0f:4b:43:d6:ba:40:b2:ce:44:04:4b:70: df:8c:0c:e4:c3:68:c7:57:09:41:a4:e8:dc:61:70:a5:f4:f6: ac:9a:57:b2:76:79:53:b9:38:36:1d:5d:db:1b:cf:c3:c9:19: 4b:78:4d:9d:82:14:a2:14:d0:f0:67:7c:d2:61:7d:3c:7f:97: e1:fb:e3:fc:a1:5c:e2:7c:75:20:ad:ae:d8:90:54:76:78:cc: 14:4d:0f:d2:ed:a7:2a:35:05:2b:61:0d:f7:4f:08:c9:e3:65: b6:ae:e8:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV/WrE2Sfm3MqbbeFSWxhSs6rw5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MzAwMTA1MzdaFw0yNTA3MDMwNTQ1MzdaMDMxMTAvBgNV BAMTKDVDQTY2OUZBMEM3NTFFRDNCRkI0QjJBOUQ0RTExMzE2NTRDM0E2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1n5rM9ehVyVEF2ieaowmahmBh rbh9aG+Z+Yd29dNL157mXsACD6xFcaTmQo25EHfkA00e/DGg5aLnIgP9dHliNbLQ +Pm4GSueVYz95fQS3BZnEad2V9+o9VW6eEPG403jVhoql4wnoc5k4a4WWYVGcRhw xXTqrglL+Jzgs8BFCmTu6f3cJOFQWVlzHQ6h0vdgGo2vTdKIADxInELl0i/Vnt9e DWXI6O4B3qmvY+5Jnymillbk1q24puDP/s0z93GVjoZF1/yOfiWtP6gdoul2W4Bg Dao+dIlr+OkBfcjnBGyP47dHGcFCUMRgTOK+ezN9SVuKEDNfaHY52U4q12NdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXKZp+gx1HtO/tLKp1OETFlTDplMwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADREQc5ikCVd2KTKUP//w9ceqIo9eNoLiE17 WUwZFLaY0+0FtQjrgLpXu/gObAQeaGkp5poVAUBirmADI7L+nFspGUI6gu4jzBQx ZhGpDhv0owzRvew3ikHcT0SOJ9Zoyff7aHbWxnxa92JmB9/h0RAD9CibO8w/ZFsT VEaxeAMYEnEHVFa0KQ2J89ihjTsOeSXkKN01kA9LQ9a6QLLORARLcN+MDOTDaMdX CUGk6NxhcKX09qyaV7J2eVO5ODYdXdsbz8PJGUt4TZ2CFKIU0PBnfNJhfTx/l+H7 4/yhXOJ8dSCtrtiQVHZ4zBRND9Ltpyo1BSthDfdPCMnjZbau6HE= -----END CERTIFICATE-----Generated at Mon Jun 30 22:29:39 2025 by rpki-client