$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: QSRD2hH0bc8uEEdx53jimfnDOQ5fcvNHkE+LKcFGBY4= Subject key identifier: 5D:B9:62:75:A4:44:F9:C6:D7:28:71:78:8D:98:96:CA:3F:4B:5C:08 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 2F90CA1D46D6389D977A1F77B36EE2A7CDFBAAAF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04E5 Signing time: Wed 18 Jun 2025 06:10:40 +0000 Manifest this update: Wed 18 Jun 2025 06:05:40 +0000 Manifest next update: Sat 21 Jun 2025 15:26:40 +0000 Files and hashes: 1: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 2: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: vAkuMikpN+8SV0BJrnWDgLfL7XvIpzism0wfRe1lKj0=) 3: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 4: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) 5: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 6: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 7: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 8: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 9: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 10: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 12:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:90:ca:1d:46:d6:38:9d:97:7a:1f:77:b3:6e:e2:a7:cd:fb:aa:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jun 18 06:05:40 2025 GMT Not After : Jun 21 15:26:40 2025 GMT Subject: CN=5DB96275A444F9C6D72871788D9896CA3F4B5C08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:57:59:fc:32:71:1b:3a:a3:8d:80:96:a4:31: 9c:1b:a8:41:41:fa:9a:3f:f7:03:b7:e4:32:04:68: 99:0f:e8:71:bd:b1:50:84:75:7e:45:d0:c9:33:fe: 9d:33:48:07:d3:80:34:fa:e3:16:61:25:48:35:7d: 04:52:2c:57:9a:ac:a0:1a:dd:7c:be:9b:b1:81:46: d6:5b:5a:a7:a3:fb:e9:5b:35:6c:21:7c:fe:97:49: 95:c1:1a:b2:5a:e7:56:c7:28:19:28:ea:93:24:e8: 5c:58:7c:b9:eb:4d:92:8f:bb:2b:44:22:30:95:b3: d2:00:fd:f1:ee:89:71:b8:9e:31:c7:15:65:b8:29: b1:bc:e5:34:05:ef:79:b1:1c:26:f8:4c:41:fd:e1: b3:e5:a4:eb:c9:40:83:d3:ab:cd:1f:98:c2:57:e6: 3c:64:bd:a9:08:42:13:fc:06:18:8a:1b:d0:59:06: 24:ae:75:b9:6a:1f:77:09:fe:70:f9:f4:21:2d:03: d5:63:72:51:85:c8:20:1b:cd:95:cd:97:ed:c4:04: ac:9c:56:a2:23:d9:c6:42:14:54:10:67:3a:5f:01: b7:17:26:4d:6c:ad:43:bc:2d:ac:d2:14:75:95:53: 83:1a:99:ab:6f:3a:21:1b:d1:5a:a4:82:b8:8c:b8: ef:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B9:62:75:A4:44:F9:C6:D7:28:71:78:8D:98:96:CA:3F:4B:5C:08 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a0:21:c6:6d:a8:f5:43:98:f9:93:28:b3:6a:64:b9:c2:dd: c9:7a:ad:c6:db:6d:c6:2d:06:01:ea:28:d1:9a:01:a5:8e:58: d9:f4:c1:55:e7:50:0f:34:32:ba:69:3b:4b:6c:c9:9e:a2:3a: ae:41:37:46:26:7d:c3:43:92:98:69:9e:5e:b6:ae:00:b6:fc: 6e:c2:07:31:34:81:90:51:dd:7a:2c:e9:89:d5:af:b8:6e:46: 4c:c0:42:fd:9e:db:71:eb:6d:cc:1d:4f:fd:83:6c:00:1e:b0: 6a:7c:af:52:42:82:9c:9e:30:8e:c1:9e:8e:31:08:7c:78:43: 09:2a:ad:0e:f7:c0:46:2c:cb:3c:18:17:78:37:37:65:ec:7f: cd:aa:f0:e9:b3:78:e6:b2:71:f9:07:42:6e:e8:b6:39:68:94: 32:b6:af:cf:93:9f:e5:49:d2:e2:83:29:15:44:75:a9:26:0f: cf:b7:68:cd:cf:c8:6d:63:7c:35:dc:05:44:79:cc:c6:33:9a: 52:89:5e:fe:c6:35:f1:46:97:3b:d8:05:b8:bc:90:25:61:a6: 22:4e:f1:c9:bd:f8:ed:c9:41:e5:a5:d0:df:38:b2:0e:5d:97: 5d:cf:e0:72:27:58:b0:f0:f2:13:5a:40:66:8b:b1:ee:b4:1c: 4c:c9:59:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL5DKHUbWOJ2Xeh93s27ip837qq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA2MTgwNjA1NDBaFw0yNTA2MjExNTI2NDBaMDMxMTAvBgNV BAMTKDVEQjk2Mjc1QTQ0NEY5QzZENzI4NzE3ODhEOTg5NkNBM0Y0QjVDMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5V1n8MnEbOqONgJakMZwbqEFB +po/9wO35DIEaJkP6HG9sVCEdX5F0Mkz/p0zSAfTgDT64xZhJUg1fQRSLFearKAa 3Xy+m7GBRtZbWqej++lbNWwhfP6XSZXBGrJa51bHKBko6pMk6FxYfLnrTZKPuytE IjCVs9IA/fHuiXG4njHHFWW4KbG85TQF73mxHCb4TEH94bPlpOvJQIPTq80fmMJX 5jxkvakIQhP8BhiKG9BZBiSudblqH3cJ/nD59CEtA9VjclGFyCAbzZXNl+3EBKyc VqIj2cZCFFQQZzpfAbcXJk1srUO8LazSFHWVU4MamatvOiEb0VqkgriMuO/nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXblidaRE+cbXKHF4jZiWyj9LXAgwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAqgIcZtqPVDmPmTKLNqZLnC3cl6rcbbbcYt BgHqKNGaAaWOWNn0wVXnUA80MrppO0tsyZ6iOq5BN0YmfcNDkphpnl62rgC2/G7C BzE0gZBR3Xos6YnVr7huRkzAQv2e23HrbcwdT/2DbAAesGp8r1JCgpyeMI7Bno4x CHx4QwkqrQ73wEYsyzwYF3g3N2Xsf82q8OmzeOaycfkHQm7otjlolDK2r8+Tn+VJ 0uKDKRVEdakmD8+3aM3PyG1jfDXcBUR5zMYzmlKJXv7GNfFGlzvYBbi8kCVhpiJO 8cm9+O3JQeWl0N84sg5dl13P4HInWLDw8hNaQGaLse60HEzJWZM= -----END CERTIFICATE-----Generated at Wed Jun 18 21:01:12 2025 by rpki-client