$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: dKT1wZaj4LVLFPFg/g5yCdZt2+1riUgQYe7l9XKIrNY= Subject key identifier: C0:F5:66:60:55:00:F6:6B:8B:3C:E6:74:D6:8C:94:74:D5:06:54:97 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 4172CDB9A117D1F342BB666BEE7617D37E6894C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 0109 Signing time: Thu 21 Aug 2025 22:51:57 +0000 Manifest this update: Thu 21 Aug 2025 22:46:57 +0000 Manifest next update: Mon 25 Aug 2025 09:23:57 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: dlYNHa+Erd6f+Dqv83Q+sVihxcChwDt/DZmecPxCnT0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 09:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:72:cd:b9:a1:17:d1:f3:42:bb:66:6b:ee:76:17:d3:7e:68:94:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Aug 21 22:46:57 2025 GMT Not After : Aug 25 09:23:57 2025 GMT Subject: CN=C0F566605500F66B8B3CE674D68C9474D5065497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5c:9c:a1:12:bf:a1:8e:bc:fa:2e:ad:89:1f: f7:aa:e1:99:95:5e:81:eb:d0:8b:dd:61:46:7a:a7: af:09:38:05:06:78:c5:1d:4d:67:5a:1f:9e:47:aa: a6:be:69:3a:db:bd:18:49:ca:b4:d2:eb:57:16:7c: 51:d3:0a:6e:df:5a:06:7f:60:f7:b2:ae:2d:6b:6d: 75:02:fb:e4:f0:72:52:fc:9b:00:50:3c:1f:32:2c: c1:c2:80:54:7b:f1:db:21:ee:d4:9a:a1:f8:4c:a2: 25:ea:d4:6e:59:48:dd:a4:be:d2:2d:06:48:1e:39: 53:ea:db:d1:29:04:16:2d:95:f0:c2:5f:7e:ca:53: fd:39:7c:1c:62:c3:9b:9c:85:ae:57:fd:4c:88:70: 86:9b:7d:bf:54:6a:3e:b4:c7:22:3e:2c:ed:98:92: c9:aa:ac:36:34:55:e9:66:6e:1a:08:40:4b:e6:82: 64:87:ce:e3:c8:84:06:3c:fc:9c:42:45:75:27:15: 16:c6:80:91:49:0e:a1:d6:11:38:33:ad:cb:ca:a3: ab:cf:71:de:9d:94:4b:08:38:5a:62:e7:d8:61:6b: ee:ed:39:ba:78:d0:78:5a:dd:83:a0:48:ce:ec:65: 92:94:d9:d0:71:cb:46:db:65:db:f9:9a:86:ac:4f: 17:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F5:66:60:55:00:F6:6B:8B:3C:E6:74:D6:8C:94:74:D5:06:54:97 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:93:12:47:76:54:56:b3:66:0e:7a:9c:5a:29:72:44:5a:df: d4:e4:81:79:24:c7:5a:47:de:16:57:ef:04:0a:64:2f:01:28: c0:9e:af:45:68:86:9e:d8:46:7a:ca:14:95:4f:00:de:e6:2a: cd:6d:6f:94:2f:2b:d7:1b:64:70:56:1f:3d:d4:b2:da:10:df: db:0e:2d:f8:4d:d3:e5:78:c9:4c:0e:f5:4f:e7:0f:81:2a:a5: 30:e1:07:9e:36:60:c2:6a:14:21:fd:ed:e1:f4:d5:3d:e9:ee: 89:ef:b7:3f:69:af:f9:ca:4b:fa:8a:8a:d6:95:fd:d7:46:d4: 15:d8:c2:7e:f7:cb:d5:d7:69:d9:62:81:85:99:e1:45:44:19: 93:61:f5:79:6a:29:54:23:25:e0:84:8c:b4:41:e0:44:31:3d: 60:37:bb:61:45:10:b2:9f:1e:12:c2:87:a8:7d:f4:07:10:60: d9:be:41:49:78:82:6f:a3:46:d9:b9:8b:29:6a:1a:2d:83:0c: dd:0f:2b:b8:65:2f:0d:59:4f:02:c1:2b:d7:79:09:ac:ee:71: 5b:bb:c8:f9:1e:8e:98:2b:12:de:e3:59:0f:cf:9c:4d:fd:cb: b8:65:c1:18:8b:dc:2b:e0:6b:44:26:5e:09:68:75:b7:8e:c5: 1d:91:35:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQXLNuaEX0fNCu2Zr7nYX035olMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA4MjEyMjQ2NTdaFw0yNTA4MjUwOTIzNTdaMDMxMTAvBgNV BAMTKEMwRjU2NjYwNTUwMEY2NkI4QjNDRTY3NEQ2OEM5NDc0RDUwNjU0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3XJyhEr+hjrz6Lq2JH/eq4ZmV XoHr0IvdYUZ6p68JOAUGeMUdTWdaH55Hqqa+aTrbvRhJyrTS61cWfFHTCm7fWgZ/ YPeyri1rbXUC++TwclL8mwBQPB8yLMHCgFR78dsh7tSaofhMoiXq1G5ZSN2kvtIt BkgeOVPq29EpBBYtlfDCX37KU/05fBxiw5ucha5X/UyIcIabfb9Uaj60xyI+LO2Y ksmqrDY0VelmbhoIQEvmgmSHzuPIhAY8/JxCRXUnFRbGgJFJDqHWETgzrcvKo6vP cd6dlEsIOFpi59hha+7tObp40Hha3YOgSM7sZZKU2dBxy0bbZdv5moasTxfJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwPVmYFUA9muLPOZ01oyUdNUGVJcwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACqTEkd2VFazZg56nFopckRa39TkgXkkx1pH 3hZX7wQKZC8BKMCer0Vohp7YRnrKFJVPAN7mKs1tb5QvK9cbZHBWHz3UstoQ39sO LfhN0+V4yUwO9U/nD4EqpTDhB542YMJqFCH97eH01T3p7onvtz9pr/nKS/qKitaV /ddG1BXYwn73y9XXadligYWZ4UVEGZNh9XlqKVQjJeCEjLRB4EQxPWA3u2FFELKf HhLCh6h99AcQYNm+QUl4gm+jRtm5iylqGi2DDN0PK7hlLw1ZTwLBK9d5CazucVu7 yPkejpgrEt7jWQ/PnE39y7hlwRiL3Cvga0QmXglodbeOxR2RNQM= -----END CERTIFICATE-----Generated at Sun Aug 24 04:30:23 2025 by rpki-client