$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: qmaIWjSd182h5VSu9FRtKtdcWhk6VWAKGF8wpDwJqpY= Subject key identifier: 4F:2B:AD:45:89:CE:B6:9E:B9:80:F3:39:C8:7A:DE:CD:9A:E5:F4:FA Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 6B9E0002C9BFCBF4DDDD4DA0F897495771E37F46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 04CD Signing time: Fri 25 Apr 2025 07:50:37 +0000 Manifest this update: Fri 25 Apr 2025 07:45:37 +0000 Manifest next update: Mon 28 Apr 2025 09:00:37 +0000 Files and hashes: 1: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: 4cr+QZXigIFKCl/E01HmbmzHPYbUe8iFmoKY3eWNtV8=) 2: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 3: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: gM3z/op2YFXyT7g7JtYZFudpoLz5+Bi5Ub/M9drayg4=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: 6ejxm/D7fWLYd/jA5kGnDm4Adf1D2VKSxCwudEm22iA=) 5: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: CKZqBz5RzUJDxeDRQjwvwDjhTydwwJ4qsh8D2GYetBs=) 6: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) 7: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: 8Pihm82g70d0YD39AiI0nfOrZFr+2CjjXY243qvfoMg=) 8: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: jDrhPX06laCb+UzcHJoBJ0/4MGucbguYuMq8N4k4Eyc=) 9: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: AGLiUoWAlNJIAtchHSJ4lguvgiblVxmk8bMAMIntFqw=) 10: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: zzTNZ4xzQEOmQw8ycNtJFjGo6ll3tDYLpBJW9o97EtU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 09:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9e:00:02:c9:bf:cb:f4:dd:dd:4d:a0:f8:97:49:57:71:e3:7f:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Apr 25 07:45:37 2025 GMT Not After : Apr 28 09:00:37 2025 GMT Subject: CN=4F2BAD4589CEB69EB980F339C87ADECD9AE5F4FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2f:cb:91:35:76:7b:9d:c3:53:47:f7:94:8c: 4f:1e:23:48:dc:d4:56:68:1a:96:89:91:8e:9e:50: f4:1f:0f:56:69:85:c3:a6:d1:a6:02:7e:5d:3a:22: e5:c1:7e:07:70:3c:1c:be:e6:7c:8a:91:3e:9c:58: fa:47:5d:bd:d9:56:10:15:dc:f2:64:52:f3:d4:79: 7c:2f:6b:0b:0c:2c:d2:73:2a:5c:38:aa:20:be:66: ea:dc:ac:ca:1c:ce:30:81:db:e9:ff:03:64:3d:fa: 5b:ac:c9:37:71:e2:74:2f:a8:85:59:ac:fb:7b:a7: e3:d0:ee:79:cd:42:b4:90:d2:34:ef:c6:92:ae:e9: 8b:97:e4:8b:2c:34:53:36:1f:5e:02:62:ff:6b:85: 71:b5:8c:87:e0:98:95:d3:2d:7f:52:ad:2e:2e:a7: be:c2:c5:69:de:f9:e5:55:6a:26:a5:65:29:d1:40: a4:0b:e7:36:74:ad:5a:b2:77:7e:98:19:2c:47:1e: 24:eb:5a:8b:1b:b8:4c:b8:6e:6f:f0:85:2c:75:69: 04:1a:a2:ff:e4:a6:fc:b2:f4:a4:f3:81:b6:06:b4: 87:f1:41:9e:47:81:2e:37:31:39:b1:87:ec:7c:81: 9b:44:ea:c5:4f:f0:4d:49:fb:6f:d6:93:a8:59:1e: 67:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:2B:AD:45:89:CE:B6:9E:B9:80:F3:39:C8:7A:DE:CD:9A:E5:F4:FA X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:0e:94:4b:bc:0b:ed:be:d9:27:f2:88:7e:4c:03:56:9c:ad: d6:d6:64:20:59:13:74:1b:0c:de:11:f3:0d:f7:9a:c3:41:e0: 6b:25:ac:c5:e6:c6:ef:74:b9:cc:16:c1:5c:89:59:7f:8e:d9: f7:66:7b:c4:8a:30:bc:98:13:d0:6e:ba:f7:87:23:03:fa:fa: 19:f5:82:52:e7:3b:16:a5:4d:9e:38:a6:a9:74:17:b3:6b:df: 8b:95:34:28:9a:44:d1:50:da:b5:d6:38:97:3f:ce:5b:90:4b: ee:03:18:35:34:42:5d:d3:d1:56:d4:01:37:43:d2:6c:00:fb: 39:d4:76:de:11:9b:01:d1:1f:2c:e9:6e:b2:0b:c3:26:55:42: 45:35:1c:5d:b1:00:df:79:ec:fa:12:00:37:9e:55:7d:83:c2: 37:f1:4b:66:79:6c:6e:cd:43:61:45:46:44:5c:5d:08:fb:de: 0f:dc:21:6b:f3:03:cd:ae:2b:ee:1c:dd:fd:ee:59:c6:57:49: 34:d4:9c:62:7a:8f:ea:5c:e9:f8:84:59:57:d7:1d:9f:94:a6: 17:27:33:65:c0:71:05:29:11:67:29:73:79:7c:4e:31:23:69: 1b:8d:8d:91:a8:e1:ed:1f:ca:df:98:16:39:33:74:f1:b4:e8: 1e:43:be:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa54AAsm/y/Td3U2g+JdJV3Hjf0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTA0MjUwNzQ1MzdaFw0yNTA0MjgwOTAwMzdaMDMxMTAvBgNV BAMTKDRGMkJBRDQ1ODlDRUI2OUVCOTgwRjMzOUM4N0FERUNEOUFFNUY0RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYL8uRNXZ7ncNTR/eUjE8eI0jc 1FZoGpaJkY6eUPQfD1ZphcOm0aYCfl06IuXBfgdwPBy+5nyKkT6cWPpHXb3ZVhAV 3PJkUvPUeXwvawsMLNJzKlw4qiC+ZurcrMoczjCB2+n/A2Q9+lusyTdx4nQvqIVZ rPt7p+PQ7nnNQrSQ0jTvxpKu6YuX5IssNFM2H14CYv9rhXG1jIfgmJXTLX9SrS4u p77CxWne+eVVaialZSnRQKQL5zZ0rVqyd36YGSxHHiTrWosbuEy4bm/whSx1aQQa ov/kpvyy9KTzgbYGtIfxQZ5HgS43MTmxh+x8gZtE6sVP8E1J+2/Wk6hZHmcFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTyutRYnOtp65gPM5yHrezZrl9PowHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEQOlEu8C+2+2SfyiH5MA1acrdbWZCBZE3Qb DN4R8w33msNB4GslrMXmxu90ucwWwVyJWX+O2fdme8SKMLyYE9BuuveHIwP6+hn1 glLnOxalTZ44pql0F7Nr34uVNCiaRNFQ2rXWOJc/zluQS+4DGDU0Ql3T0VbUATdD 0mwA+znUdt4RmwHRHyzpbrILwyZVQkU1HF2xAN957PoSADeeVX2DwjfxS2Z5bG7N Q2FFRkRcXQj73g/cIWvzA82uK+4c3f3uWcZXSTTUnGJ6j+pc6fiEWVfXHZ+Uphcn M2XAcQUpEWcpc3l8TjEjaRuNjZGo4e0fyt+YFjkzdPG06B5DvqQ= -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:52 2025 by rpki-client on console.sobornost.net