$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: mt9GTOqo+VxdUcQbT0+m5kE4EhaezPMPOAIIupzZTUU= Subject key identifier: DA:85:D1:AD:66:FC:89:2C:63:74:96:CE:4B:B9:9E:56:23:01:8D:20 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 461493ADFBFAC2533DA5C251157FABF9866CC416 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 018C Signing time: Tue 05 Aug 2025 08:41:26 +0000 Manifest this update: Tue 05 Aug 2025 08:36:26 +0000 Manifest next update: Fri 08 Aug 2025 15:26:26 +0000 Files and hashes: 1: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: RbJkotiAtcGAz/X/4fMxCRReBEYK6ZI39CQ4Uu7mC8E=) 2: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: ZdMkDOnx4hNOB8b2y8v2461HT/U2gmm0V9h3DP50AsM=) 3: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: LouFVQS92MfkBpVtQICKdn8aXdcYjsyvaO8Dk+Em+rM=) 4: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: woqtXJ7tvZtaqT4bT+mvntSsCYpQhJCgghI0AwY59dM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 15:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:14:93:ad:fb:fa:c2:53:3d:a5:c2:51:15:7f:ab:f9:86:6c:c4:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Aug 5 08:36:26 2025 GMT Not After : Aug 8 15:26:26 2025 GMT Subject: CN=DA85D1AD66FC892C637496CE4BB99E5623018D20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a2:fe:08:56:fa:1b:15:7e:ea:2b:2c:47:8e: be:73:02:b0:46:40:0f:cd:98:fd:3a:38:2a:3a:9b: 73:94:c7:82:8e:b0:50:cf:6a:47:d2:08:25:57:09: 64:e0:0c:d4:67:3f:95:80:e1:5e:19:a1:17:f5:e6: dd:12:80:73:47:30:4d:7c:70:2b:d2:04:c3:8c:b5: e7:f6:bb:2e:e0:fd:9e:bc:74:a5:14:dc:34:a1:45: 3f:b0:e8:e4:94:40:f8:1e:d8:99:56:2d:30:61:f0: df:f3:de:fc:94:a9:5c:17:49:99:61:b0:a1:34:69: 04:f2:5b:6d:4d:4c:6c:19:af:49:41:ef:06:07:21: 5c:23:fe:7c:7b:11:d7:6d:ea:cc:70:87:07:a2:f8: 04:b0:f2:89:05:2a:3f:83:80:6b:10:cb:43:75:1f: 24:a3:4e:e0:42:82:48:24:c1:77:5f:c9:c4:3f:a1: be:66:29:cb:fb:26:ae:88:41:f7:53:b2:54:15:bf: 06:2d:64:b6:85:d2:4c:6e:10:74:4e:80:97:8c:85: 4e:00:d6:24:5b:1b:18:71:4e:78:de:1b:03:1e:ba: b3:33:98:0b:b3:ae:e3:1c:03:cf:c1:d5:dc:8e:3f: 47:85:1d:74:bd:0b:22:86:1c:fe:99:eb:27:fe:22: 0b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:85:D1:AD:66:FC:89:2C:63:74:96:CE:4B:B9:9E:56:23:01:8D:20 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:0e:41:b3:7e:c4:12:0e:0f:47:d4:29:d1:df:58:70:53:9a: ea:e6:40:03:6f:ff:36:ea:1b:15:9d:9f:28:43:2f:f6:de:af: 18:d9:13:2c:c8:ee:b1:fa:15:be:83:33:60:36:68:7d:f5:74: 56:2a:eb:2a:f1:6c:3f:cc:92:84:c5:ce:b9:f6:68:84:77:47: 30:4b:a2:2b:a2:86:ed:eb:f0:b8:81:45:ae:11:db:35:ec:9b: 6c:b5:8a:1f:55:95:c2:8c:11:6d:26:ee:0f:82:1a:72:58:3a: 9c:ff:ac:59:94:54:48:bc:5a:1f:bf:83:f8:52:c7:83:8a:3b: 8c:96:9b:6a:a3:ac:29:d8:a8:7f:dc:28:03:cb:2d:5d:32:d8: 9b:29:8f:8a:0a:3b:1a:f2:1a:f8:bb:07:dd:02:fe:49:d9:b7: 52:4d:fd:91:56:41:79:e8:49:f4:d6:12:ec:41:ee:b3:e7:0a: 00:78:d2:14:db:7d:89:fa:46:ed:d7:24:1c:70:36:81:ae:b0: 54:ff:30:3e:9a:a4:8e:ee:a7:29:a3:6e:e8:33:5f:12:4a:43: 07:3d:20:64:8c:e8:98:10:5f:9a:1d:df:f7:0e:49:68:1e:0e: b9:f8:db:80:f5:4c:45:85:67:48:41:64:52:33:8e:0d:27:bb: f4:c9:60:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURhSTrfv6wlM9pcJRFX+r+YZsxBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTA4MDUwODM2MjZaFw0yNTA4MDgxNTI2MjZaMDMxMTAvBgNV BAMTKERBODVEMUFENjZGQzg5MkM2Mzc0OTZDRTRCQjk5RTU2MjMwMThEMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVov4IVvobFX7qKyxHjr5zArBG QA/NmP06OCo6m3OUx4KOsFDPakfSCCVXCWTgDNRnP5WA4V4ZoRf15t0SgHNHME18 cCvSBMOMtef2uy7g/Z68dKUU3DShRT+w6OSUQPge2JlWLTBh8N/z3vyUqVwXSZlh sKE0aQTyW21NTGwZr0lB7wYHIVwj/nx7Eddt6sxwhwei+ASw8okFKj+DgGsQy0N1 HySjTuBCgkgkwXdfycQ/ob5mKcv7Jq6IQfdTslQVvwYtZLaF0kxuEHROgJeMhU4A 1iRbGxhxTnjeGwMeurMzmAuzruMcA8/B1dyOP0eFHXS9CyKGHP6Z6yf+IgvLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2oXRrWb8iSxjdJbOS7meViMBjSAwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJEOQbN+xBIOD0fUKdHfWHBTmurmQANv/zbq GxWdnyhDL/berxjZEyzI7rH6Fb6DM2A2aH31dFYq6yrxbD/MkoTFzrn2aIR3RzBL oiuihu3r8LiBRa4R2zXsm2y1ih9VlcKMEW0m7g+CGnJYOpz/rFmUVEi8Wh+/g/hS x4OKO4yWm2qjrCnYqH/cKAPLLV0y2Jspj4oKOxryGvi7B90C/knZt1JN/ZFWQXno SfTWEuxB7rPnCgB40hTbfYn6Ru3XJBxwNoGusFT/MD6apI7upymjbugzXxJKQwc9 IGSM6JgQX5od3/cOSWgeDrn424D1TEWFZ0hBZFIzjg0nu/TJYL8= -----END CERTIFICATE-----Generated at Thu Aug 7 13:10:40 2025 by rpki-client