$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: 0K4j58eb9ao4Q1It0Topdj4tIgny30aj68f0rrn5ZYs= Subject key identifier: 71:78:86:2A:21:76:CE:46:5B:98:67:9C:67:0E:38:A5:2D:75:A6:65 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 33F2A9E24741F881DA9FBB952A4B21979D4FB784 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 0176 Signing time: Mon 16 Jun 2025 09:11:24 +0000 Manifest this update: Mon 16 Jun 2025 09:06:24 +0000 Manifest next update: Thu 19 Jun 2025 11:11:24 +0000 Files and hashes: 1: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: PwQkdkvBPOm+uamvmeoTPET9/DOQmCVFh9vZS8lxK6g=) 2: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: RbJkotiAtcGAz/X/4fMxCRReBEYK6ZI39CQ4Uu7mC8E=) 3: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: ZdMkDOnx4hNOB8b2y8v2461HT/U2gmm0V9h3DP50AsM=) 4: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: woqtXJ7tvZtaqT4bT+mvntSsCYpQhJCgghI0AwY59dM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 11:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f2:a9:e2:47:41:f8:81:da:9f:bb:95:2a:4b:21:97:9d:4f:b7:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Jun 16 09:06:24 2025 GMT Not After : Jun 19 11:11:24 2025 GMT Subject: CN=7178862A2176CE465B98679C670E38A52D75A665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:28:31:05:ea:4a:2e:c8:08:13:24:3a:f4: 68:55:2b:55:52:cf:59:e2:0b:43:76:68:59:90:6d: 87:57:71:67:0a:6e:eb:01:16:d5:39:82:d7:11:57: f9:6e:63:76:ba:f1:31:1c:6a:59:55:4a:3c:d6:b8: 15:29:22:c1:2a:e5:dc:b6:28:63:39:10:07:e2:00: cd:ec:9c:4c:1d:0f:0b:6c:cb:9a:61:7d:c5:a8:9c: 2a:03:6f:e0:f6:0e:45:b8:3c:b2:aa:23:d4:62:d4: 98:8b:13:50:fc:f9:f3:d0:9b:0f:51:6d:92:e0:ab: 3a:ec:5f:44:6e:19:05:31:7e:ad:56:09:96:c5:18: 5d:c7:7f:04:91:93:e2:76:09:92:08:b3:7a:30:35: 2f:4a:35:04:ac:de:10:fa:ae:9e:30:6b:34:ad:a0: ed:31:a5:62:fc:51:70:eb:90:cf:ac:f0:ad:d1:a7: f7:c5:8f:22:ca:ef:ca:33:2f:da:b4:f0:00:da:a5: 84:fd:5f:8d:a8:20:1c:f4:f5:b1:fc:7f:24:57:56: a0:6f:7d:9d:5c:92:2f:cc:12:db:80:c5:16:1c:e4: 63:2c:82:21:e1:2f:be:d0:93:f8:ec:17:89:d9:fa: a8:ee:00:ae:c1:71:2a:ec:a4:ad:8a:45:c3:9e:8a: e5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:78:86:2A:21:76:CE:46:5B:98:67:9C:67:0E:38:A5:2D:75:A6:65 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:93:49:0c:52:e7:d5:60:6a:f2:1c:b7:e8:06:d0:3f:ff:10: 20:ca:83:a2:34:74:c6:c2:07:22:73:d7:3d:40:75:40:97:90: 2d:76:c6:bc:ae:24:0a:a5:49:89:d4:b9:1b:77:a7:3d:0d:0b: ed:9d:33:49:f0:73:0d:81:54:99:23:6e:51:93:50:1d:98:c5: a4:af:96:e7:bf:c4:43:72:7f:1c:2a:45:eb:12:4e:3d:a6:34: f6:65:52:ce:86:49:af:d5:d6:1a:6d:8c:d5:e2:f9:43:f0:0e: f4:d0:07:1b:42:a5:ec:6a:e4:f5:ad:ba:d9:3f:a4:c8:c0:8d: 82:89:25:63:da:8b:1b:d9:ca:a2:18:68:9e:9b:d2:14:a8:c3: b9:45:61:53:61:15:63:20:33:00:cc:e2:af:24:82:45:40:3c: 75:6a:57:65:8d:f3:b0:f5:a2:9a:6e:1e:c2:5a:b0:c5:e9:35: 76:ed:62:7d:95:99:02:93:90:a4:c3:0c:09:5f:24:91:3d:75: bb:5a:2a:0e:a1:6d:48:50:2f:4c:95:a2:9d:cb:c1:eb:33:3d: bc:de:81:51:b9:04:6f:ec:1c:14:08:17:80:4f:ff:6a:bd:f9: 1a:42:a2:c7:43:af:6f:5d:1d:df:ab:e8:28:ef:6d:5e:84:33: 0f:d1:0a:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM/Kp4kdB+IHan7uVKkshl51Pt4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTA2MTYwOTA2MjRaFw0yNTA2MTkxMTExMjRaMDMxMTAvBgNV BAMTKDcxNzg4NjJBMjE3NkNFNDY1Qjk4Njc5QzY3MEUzOEE1MkQ3NUE2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDELygxBepKLsgIEyQ69GhVK1VS z1niC0N2aFmQbYdXcWcKbusBFtU5gtcRV/luY3a68TEcallVSjzWuBUpIsEq5dy2 KGM5EAfiAM3snEwdDwtsy5phfcWonCoDb+D2DkW4PLKqI9Ri1JiLE1D8+fPQmw9R bZLgqzrsX0RuGQUxfq1WCZbFGF3HfwSRk+J2CZIIs3owNS9KNQSs3hD6rp4wazSt oO0xpWL8UXDrkM+s8K3Rp/fFjyLK78ozL9q08ADapYT9X42oIBz09bH8fyRXVqBv fZ1cki/MEtuAxRYc5GMsgiHhL77Qk/jsF4nZ+qjuAK7BcSrspK2KRcOeiuVfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcXiGKiF2zkZbmGecZw44pS11pmUwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEWTSQxS59VgavIct+gG0D//ECDKg6I0dMbC ByJz1z1AdUCXkC12xryuJAqlSYnUuRt3pz0NC+2dM0nwcw2BVJkjblGTUB2YxaSv lue/xENyfxwqResSTj2mNPZlUs6GSa/V1hptjNXi+UPwDvTQBxtCpexq5PWtutk/ pMjAjYKJJWPaixvZyqIYaJ6b0hSow7lFYVNhFWMgMwDM4q8kgkVAPHVqV2WN87D1 oppuHsJasMXpNXbtYn2VmQKTkKTDDAlfJJE9dbtaKg6hbUhQL0yVop3LweszPbze gVG5BG/sHBQIF4BP/2q9+RpCosdDr29dHd+r6CjvbV6EMw/RCqA= -----END CERTIFICATE-----Generated at Tue Jun 17 09:58:10 2025 by rpki-client