$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: UAe8RoyV+f0mB4ekJuUP9t8AXxQEtQObtFJZ8erxpqQ= Subject key identifier: 61:57:51:DD:C7:BA:32:21:90:1A:45:D4:5A:83:8D:52:62:54:0F:7D Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 2B8A24620018E5471F4DD4ED89A07840A077D3F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 01B3 Signing time: Sun 02 Nov 2025 00:01:28 +0000 Manifest this update: Sat 01 Nov 2025 23:56:28 +0000 Manifest next update: Wed 05 Nov 2025 03:07:28 +0000 Files and hashes: 1: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: ZdMkDOnx4hNOB8b2y8v2461HT/U2gmm0V9h3DP50AsM=) 2: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: RbJkotiAtcGAz/X/4fMxCRReBEYK6ZI39CQ4Uu7mC8E=) 3: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: c7Au7Xp10rP0ASUm7TeKBW/c9fUoURp8ydQiqAbont0=) 4: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: woqtXJ7tvZtaqT4bT+mvntSsCYpQhJCgghI0AwY59dM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 03:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8a:24:62:00:18:e5:47:1f:4d:d4:ed:89:a0:78:40:a0:77:d3:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Nov 1 23:56:28 2025 GMT Not After : Nov 5 03:07:28 2025 GMT Subject: CN=615751DDC7BA3221901A45D45A838D5262540F7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:00:99:a4:e3:ce:67:77:91:c5:91:75:d5:31: 2f:3b:c3:1c:5b:8e:ab:5a:5d:26:04:cc:3a:c4:d4: a2:6f:35:c3:57:4c:82:ae:a7:45:b2:e4:8a:a4:6e: 30:99:fe:e8:e9:07:65:b5:02:29:0b:91:a8:d4:3b: 46:6f:8a:7c:95:ed:8f:4e:ea:22:ac:29:0d:91:35: 6c:dd:19:50:59:6e:ab:4c:c9:76:c9:99:8b:63:1d: 6a:48:21:f4:57:6b:fb:fc:da:ce:77:4d:4f:b1:f3: 18:43:cc:e5:f9:e2:0c:27:16:24:ab:fe:1e:42:1b: bd:29:51:83:bc:d5:22:3b:df:a5:1b:8d:17:b2:4e: eb:f0:1e:dd:8d:ea:78:fc:fd:b2:40:63:5e:0d:4a: 93:a1:08:3a:c7:c8:c3:99:72:c3:0b:fd:1d:54:33: 3a:03:74:8a:f0:62:32:7c:58:18:80:f3:00:b0:8d: f3:b1:5c:de:91:67:de:be:5f:36:b3:7b:2f:96:ab: d6:ad:a5:d8:8f:75:35:3a:9d:16:e9:14:77:9b:bf: 09:5b:9a:3d:0b:81:29:bd:c4:a3:8e:80:8f:cf:52: 77:14:99:21:1a:c5:84:15:95:d2:42:95:94:6c:65: 58:68:9e:ed:0b:89:6d:86:0a:50:b2:2e:fa:ee:21: 67:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:57:51:DD:C7:BA:32:21:90:1A:45:D4:5A:83:8D:52:62:54:0F:7D X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6c:3e:72:6a:69:63:52:26:a4:48:e7:3a:21:ca:b6:b9:23: f7:3b:22:09:8c:5f:8a:9d:f7:1e:b2:a8:b5:35:39:d7:09:2f: 32:e8:2c:97:c9:55:e0:68:4e:05:8b:c0:a5:6c:1c:d6:94:49: c9:7f:7d:35:9f:9b:c8:76:41:08:0c:bc:0a:a5:3a:78:d8:a9: 62:79:8c:b4:8b:f1:1b:33:de:35:2b:95:4f:7b:db:96:3d:aa: b1:da:e6:53:85:01:86:b5:6f:37:f2:f9:ab:00:d8:66:98:dc: 11:1c:9e:8a:ed:e4:f6:fc:f4:a9:d7:8b:3d:ec:0f:fb:3a:e0: 67:7b:45:e5:31:7d:f5:df:b0:8f:d6:7e:a9:03:7d:94:12:30: 5f:94:2a:c9:4f:e1:6a:31:d4:3d:c5:ef:ed:ef:c1:14:c7:3d: d9:0f:72:80:c9:db:2c:22:73:c4:ac:2d:2b:00:1f:ab:a5:4a: f4:97:c0:e1:58:a2:58:91:8c:a2:3a:03:17:93:a6:86:17:59: 9b:05:cb:67:d6:ab:61:1c:f7:78:5f:83:3e:3d:ea:29:ce:12: d1:f5:f2:f5:13:b6:6d:ca:94:af:ae:ce:12:bf:c2:8c:ab:35: 0a:8a:75:ec:5f:e1:31:70:f5:f1:d4:76:cd:9c:5e:15:07:d4: 5d:9a:a8:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK4okYgAY5UcfTdTtiaB4QKB30/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTExMDEyMzU2MjhaFw0yNTExMDUwMzA3MjhaMDMxMTAvBgNV BAMTKDYxNTc1MUREQzdCQTMyMjE5MDFBNDVENDVBODM4RDUyNjI1NDBGN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGAJmk485nd5HFkXXVMS87wxxb jqtaXSYEzDrE1KJvNcNXTIKup0Wy5IqkbjCZ/ujpB2W1AikLkajUO0ZvinyV7Y9O 6iKsKQ2RNWzdGVBZbqtMyXbJmYtjHWpIIfRXa/v82s53TU+x8xhDzOX54gwnFiSr /h5CG70pUYO81SI736UbjReyTuvwHt2N6nj8/bJAY14NSpOhCDrHyMOZcsML/R1U MzoDdIrwYjJ8WBiA8wCwjfOxXN6RZ96+Xzazey+Wq9atpdiPdTU6nRbpFHebvwlb mj0LgSm9xKOOgI/PUncUmSEaxYQVldJClZRsZVhonu0LiW2GClCyLvruIWe3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYVdR3ce6MiGQGkXUWoONUmJUD30wHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHpsPnJqaWNSJqRI5zohyra5I/c7IgmMX4qd 9x6yqLU1OdcJLzLoLJfJVeBoTgWLwKVsHNaUScl/fTWfm8h2QQgMvAqlOnjYqWJ5 jLSL8Rsz3jUrlU9725Y9qrHa5lOFAYa1bzfy+asA2GaY3BEcnort5Pb89KnXiz3s D/s64Gd7ReUxffXfsI/WfqkDfZQSMF+UKslP4Wox1D3F7+3vwRTHPdkPcoDJ2ywi c8SsLSsAH6ulSvSXwOFYoliRjKI6AxeTpoYXWZsFy2fWq2Ec93hfgz496inOEtH1 8vUTtm3KlK+uzhK/woyrNQqKdexf4TFw9fHUds2cXhUH1F2aqPY= -----END CERTIFICATE-----Generated at Tue Nov 4 02:20:35 2025 by rpki-client