$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: 7GdvbeIeP3UoAk5J3rQVwFolgoIhSvOWZt8WPNyQYBk= Subject key identifier: F7:A5:FF:26:F6:60:17:ED:96:57:CA:5D:31:D6:AD:65:BA:5E:49:B7 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 19A9D535F0086848C9302B6D95E2076023B349E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 0102 Signing time: Tue 05 Aug 2025 22:21:56 +0000 Manifest this update: Tue 05 Aug 2025 22:16:56 +0000 Manifest next update: Sat 09 Aug 2025 04:42:56 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: a4FdSudQjEAgl34M+q1Xc8Ufs5KppxsFNS+LFhO9ytM=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xeW9Q+jrWgb1kNw9Ck6owBJ7nXg3E26nbn0fhXlo6qI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 04:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a9:d5:35:f0:08:68:48:c9:30:2b:6d:95:e2:07:60:23:b3:49:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Aug 5 22:16:56 2025 GMT Not After : Aug 9 04:42:56 2025 GMT Subject: CN=F7A5FF26F66017ED9657CA5D31D6AD65BA5E49B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:b6:a9:08:f1:c9:5b:64:f8:67:24:2c:5c: f7:e3:42:07:69:dc:15:b8:2b:61:be:76:67:ee:53: 8f:bd:86:96:57:c6:28:a9:6c:05:6c:1d:d2:63:85: 9c:cb:b6:d4:71:42:39:00:15:71:11:eb:05:66:ab: cd:48:a5:ab:f3:7c:c5:af:7c:a2:20:48:13:ac:85: 70:3b:fe:f7:de:56:13:de:73:2e:a1:9a:9e:40:67: ea:e3:04:7a:dd:eb:c7:31:d9:19:ee:37:dd:4a:11: 45:b3:02:f7:38:c9:f9:cb:25:fb:57:80:b4:39:97: 2b:d6:0e:19:30:b2:1d:6c:89:bc:ce:95:9f:4e:de: 10:d0:a1:69:dc:f4:88:fb:62:be:34:67:bd:f7:e4: e9:f8:b7:23:25:cc:a6:b2:57:91:b3:1d:13:b4:4e: 15:fb:da:f1:a5:9e:85:d2:8b:55:19:0a:dc:e6:52: 45:e5:5d:a7:4c:84:f7:87:00:f7:47:08:ad:fe:ed: 7f:e5:6e:3f:75:b1:ab:53:f9:f5:86:8c:57:94:8f: 33:3a:87:09:04:0f:cd:0a:bb:82:0d:8f:cc:a9:26: 8e:4a:d0:86:f2:cc:04:2f:e1:19:50:c0:70:68:87: de:4a:34:82:c3:d4:53:54:6f:1c:5f:68:eb:3a:6e: 22:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A5:FF:26:F6:60:17:ED:96:57:CA:5D:31:D6:AD:65:BA:5E:49:B7 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:90:ea:6e:c5:d6:29:4e:87:8a:29:2e:d7:3b:88:6e:92:4f: d4:e8:e2:65:2e:0c:20:e4:81:2a:6b:4b:62:0d:e8:f1:b4:c5: e6:2e:7a:de:62:50:62:c7:f4:03:97:2e:43:c9:ea:1d:14:c5: d6:c5:96:09:40:3e:51:12:21:0f:70:d5:1b:93:53:2a:9c:93: 2d:2c:a3:db:19:d8:2c:f1:41:d9:27:5a:31:79:31:44:cf:5f: 46:cd:39:e6:85:95:5b:2a:aa:54:06:33:ff:29:b0:a5:0c:43: e4:c7:ce:53:41:4c:40:ec:9a:87:c3:5c:7d:bd:aa:fa:d2:c3: 7c:a2:4b:d3:b2:9e:0d:b4:1b:0c:d2:c2:94:22:81:b0:d0:0e: af:db:45:b9:25:df:4a:93:03:d8:d5:bc:0e:42:4b:19:77:8b: 55:8b:47:46:13:88:f4:b2:fc:e7:92:d9:20:a0:78:c1:3f:9c: dd:08:24:d6:b8:ae:e7:67:ee:dd:cd:a2:64:82:3b:46:e3:aa: fa:60:e5:9a:c5:19:ef:39:8c:ee:62:4d:7e:b9:9d:88:c8:f2: a1:1a:e1:b4:9c:4d:3e:fd:49:d1:5c:17:2a:6c:16:da:f6:5b: 2f:2a:8a:eb:30:87:95:e6:b3:68:8c:7c:de:93:b4:dd:5c:81: f3:a8:4e:6b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGanVNfAIaEjJMCttleIHYCOzSeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTA4MDUyMjE2NTZaFw0yNTA4MDkwNDQyNTZaMDMxMTAvBgNV BAMTKEY3QTVGRjI2RjY2MDE3RUQ5NjU3Q0E1RDMxRDZBRDY1QkE1RTQ5QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCXbapCPHJW2T4ZyQsXPfjQgdp 3BW4K2G+dmfuU4+9hpZXxiipbAVsHdJjhZzLttRxQjkAFXER6wVmq81IpavzfMWv fKIgSBOshXA7/vfeVhPecy6hmp5AZ+rjBHrd68cx2RnuN91KEUWzAvc4yfnLJftX gLQ5lyvWDhkwsh1sibzOlZ9O3hDQoWnc9Ij7Yr40Z7335On4tyMlzKayV5GzHRO0 ThX72vGlnoXSi1UZCtzmUkXlXadMhPeHAPdHCK3+7X/lbj91satT+fWGjFeUjzM6 hwkED80Ku4INj8ypJo5K0IbyzAQv4RlQwHBoh95KNILD1FNUbxxfaOs6biKlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU96X/JvZgF+2WV8pdMdatZbpeSbcwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ6Q6m7F1ilOh4opLtc7iG6ST9To4mUuDCDk gSprS2IN6PG0xeYuet5iUGLH9AOXLkPJ6h0UxdbFlglAPlESIQ9w1RuTUyqcky0s o9sZ2CzxQdknWjF5MUTPX0bNOeaFlVsqqlQGM/8psKUMQ+THzlNBTEDsmofDXH29 qvrSw3yiS9Oyng20GwzSwpQigbDQDq/bRbkl30qTA9jVvA5CSxl3i1WLR0YTiPSy /OeS2SCgeME/nN0IJNa4rudn7t3NomSCO0bjqvpg5ZrFGe85jO5iTX65nYjI8qEa 4bScTT79SdFcFypsFtr2Wy8qiuswh5Xms2iMfN6TtN1cgfOoTms= -----END CERTIFICATE-----Generated at Thu Aug 7 23:58:29 2025 by rpki-client