$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft File: 645C9D445B2796662EE98A03E50C124F3E962CAB.mft (raw, json) Hash identifier: 2D8mv7PFnWKrp9lyGi9QHsBD3mktihTw7lrfKxj76Fk= Subject key identifier: 38:3C:EC:64:6B:9E:9F:E6:A1:31:15:D8:BA:37:47:B2:AC:72:B1:A3 Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 7F130E87811E3D51D9515702A9EB7A27B2B7FDFA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft Manifest number: 039A Signing time: Thu 07 Aug 2025 22:21:05 +0000 Manifest this update: Thu 07 Aug 2025 22:16:05 +0000 Manifest next update: Mon 11 Aug 2025 08:55:05 +0000 Files and hashes: 1: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: ehP408+CXUe13X4F5TvwPj6ddCoH7T+4InUUhWjVyGw=) 2: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: Yo/r10NdHpCyWdp4iTpRbnPv2TKKyCyVTnBiO8AmbDc=) 3: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: pfMM3/ygiEY34vdGoVOYeg8tWN4ZaCnJmX0NJOGEX00=) 4: 645C9D445B2796662EE98A03E50C124F3E962CAB.crl (hash: BQwCt5jw+ENIZ7lJG6m1dFFZ5Zkms20URmpFJAPVgUs=) 5: 323430313a626534303a3a2f33322d3332203d3e20313336383431.roa (hash: fqov0BDCIixBi9VcnBXwyfgiMxOlqrXxcfdLtIYOthI=) 6: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: qbkH1qedbuL2nkb9oW2AlysgwJB8XaNgGrzurioAZP0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 22:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:13:0e:87:81:1e:3d:51:d9:51:57:02:a9:eb:7a:27:b2:b7:fd:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Aug 7 22:16:05 2025 GMT Not After : Aug 11 08:55:05 2025 GMT Subject: CN=383CEC646B9E9FE6A13115D8BA3747B2AC72B1A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ce:3f:56:17:0b:54:1b:bb:3e:ad:9a:49:9c: a6:2f:70:38:f4:dc:da:9b:26:26:03:20:5b:32:ed: 8b:80:12:45:a5:15:01:b3:45:99:25:cc:07:14:b7: 2f:01:57:45:45:db:70:47:49:41:37:bf:ce:78:1d: 8a:31:9c:6e:9a:4d:af:c2:fd:b6:4b:dc:cb:35:e4: 0d:c2:f8:d5:2f:45:67:1c:a4:f2:3a:63:2d:6f:5a: 87:98:70:09:af:40:7b:56:da:90:0d:8c:8e:77:fd: 27:b1:b0:cb:f8:6a:d2:f2:3d:1c:d7:90:08:16:e2: 99:7b:75:2c:9f:86:f7:9a:b7:c2:24:e8:f7:30:5d: e9:a8:50:42:31:f3:b7:07:9e:55:62:57:6f:ca:35: 11:38:a5:19:f8:04:6f:20:4f:34:5c:b8:ad:65:76: 25:b3:88:a6:14:d2:7e:ec:a6:91:b9:db:99:90:08: e9:4e:8c:b3:b2:8b:53:8b:f9:f7:21:e5:f8:88:cb: a3:dd:74:e9:9d:be:7c:51:06:73:70:35:80:e2:4c: e5:5b:a8:dd:4b:bd:2b:9a:95:1a:aa:e1:3e:9a:d2: 1a:48:2d:fd:18:ab:0c:29:ff:f9:b2:ce:04:7c:13: c4:b4:9f:66:1c:76:4b:be:ec:c9:40:b0:24:0b:23: a4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3C:EC:64:6B:9E:9F:E6:A1:31:15:D8:BA:37:47:B2:AC:72:B1:A3 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:69:66:8a:0f:7f:98:8c:84:86:ff:c2:f4:e4:17:50:70:f0: 09:a9:8c:24:b8:82:61:23:20:ec:7f:73:a6:be:c4:b5:d4:79: f9:f3:b9:d1:a8:d8:ed:6b:c2:9a:c6:9b:60:a3:0c:91:65:60: 7c:2f:f2:15:aa:3b:61:ac:e8:e1:1a:79:14:6f:e2:c9:94:fe: 54:82:04:3e:fa:b8:7f:83:26:e2:68:8d:13:26:25:71:84:10: 7d:e5:48:d9:12:f2:13:ab:a8:0b:a0:3e:59:b3:66:6a:53:84: 25:71:e8:7c:cd:cb:4f:c8:e3:7a:ec:e3:b1:d4:8f:90:cf:d2: b1:16:b4:56:28:18:8e:b5:98:ee:e8:82:1c:14:6d:05:a8:7e: f3:86:8e:50:46:cc:62:e9:71:e8:79:1f:2c:f3:68:0f:78:02: 88:d3:a6:ee:72:63:fd:f5:b7:9b:0f:76:3e:a0:71:53:63:60: 81:35:73:8c:c7:50:be:d2:ec:25:05:ac:22:d3:7c:b7:5d:84: a6:13:40:d1:8c:68:5c:e2:1b:f6:01:52:9c:99:67:d4:a4:04: 94:a3:f2:31:ae:d8:8f:ab:16:a3:8a:15:6c:24:ae:3c:eb:00: 8d:11:d9:52:66:07:75:ed:19:25:d8:60:e5:f7:f1:52:1c:28: e8:cb:1a:ef -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfxMOh4EePVHZUVcCqet6J7K3/fowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNTA4MDcyMjE2MDVaFw0yNTA4MTEwODU1MDVaMDMxMTAvBgNV BAMTKDM4M0NFQzY0NkI5RTlGRTZBMTMxMTVEOEJBMzc0N0IyQUM3MkIxQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfzj9WFwtUG7s+rZpJnKYvcDj0 3NqbJiYDIFsy7YuAEkWlFQGzRZklzAcUty8BV0VF23BHSUE3v854HYoxnG6aTa/C /bZL3Ms15A3C+NUvRWccpPI6Yy1vWoeYcAmvQHtW2pANjI53/SexsMv4atLyPRzX kAgW4pl7dSyfhveat8Ik6PcwXemoUEIx87cHnlViV2/KNRE4pRn4BG8gTzRcuK1l diWziKYU0n7sppG525mQCOlOjLOyi1OL+fch5fiIy6PddOmdvnxRBnNwNYDiTOVb qN1LvSualRqq4T6a0hpILf0Yqwwp//myzgR8E8S0n2Ycdku+7MlAsCQLI6TPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUODzsZGuen+ahMRXYujdHsqxysaMwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEy NEYzRTk2MkNBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAVpZooPf5iMhIb/wvTkF1Bw8AmpjCS4gmEj IOx/c6a+xLXUefnzudGo2O1rwprGm2CjDJFlYHwv8hWqO2Gs6OEaeRRv4smU/lSC BD76uH+DJuJojRMmJXGEEH3lSNkS8hOrqAugPlmzZmpThCVx6HzNy0/I43rs47HU j5DP0rEWtFYoGI61mO7oghwUbQWofvOGjlBGzGLpceh5HyzzaA94AojTpu5yY/31 t5sPdj6gcVNjYIE1c4zHUL7S7CUFrCLTfLddhKYTQNGMaFziG/YBUpyZZ9SkBJSj 8jGu2I+rFqOKFWwkrjzrAI0R2VJmB3XtGSXYYOX38VIcKOjLGu8= -----END CERTIFICATE-----Generated at Fri Aug 8 00:18:45 2025 by rpki-client