$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: 4JiYuR0I7P0b4v38XF4iu4ZIUnpT4wfv/1PA9pVfn3Y= Subject key identifier: 9A:A7:64:75:8E:FD:8F:FF:6F:3D:DA:91:1D:BE:18:EE:1F:7A:88:4D Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 2AC16B5CDB611C38AA9046F30861A583AD3B05FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 026C Signing time: Thu 21 Aug 2025 21:50:55 +0000 Manifest this update: Thu 21 Aug 2025 21:45:55 +0000 Manifest next update: Mon 25 Aug 2025 08:41:55 +0000 Files and hashes: 1: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: KqJWQLgXmTHd9H6sRHxBzzsWATc/WnNxAAXTEqHhFsc=) 2: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: a6RNXmijw7V7Csc6rQ6AyYrcqlNZYzhg7LeRrqpD1GQ=) 3: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) 4: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: OUaHqzH5MUuESyQrAEVUqywPb3+c3nlvFdPyh75nUE0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c1:6b:5c:db:61:1c:38:aa:90:46:f3:08:61:a5:83:ad:3b:05:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: Aug 21 21:45:55 2025 GMT Not After : Aug 25 08:41:55 2025 GMT Subject: CN=9AA764758EFD8FFF6F3DDA911DBE18EE1F7A884D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9d:7a:75:7f:2b:a2:58:27:ef:17:3b:49:6f: fe:77:e4:b1:9d:79:dd:cb:a5:fa:f3:28:59:ac:45: d1:22:d4:59:1e:af:46:96:cc:64:7b:36:bb:e2:47: 3d:e3:d7:07:56:17:b2:d2:f8:a1:31:92:c8:60:08: 0f:7a:4f:0b:82:7d:6e:36:f0:8f:80:de:21:d1:ed: e7:b5:11:55:66:3a:5d:82:b7:1c:4a:9e:ad:30:af: 10:15:90:df:04:b8:01:bf:a3:4c:4b:ac:6f:54:08: b6:14:a5:75:21:b1:e3:ba:2a:37:22:b0:4b:44:06: 6d:61:39:e9:42:d1:a6:21:54:b7:71:8b:dc:b9:6f: b8:59:7e:ed:a3:02:6e:07:28:ed:9a:1f:dd:b3:67: b1:fd:b0:e1:27:81:58:76:a9:11:d3:a2:a7:64:17: 7e:79:9e:03:45:6b:56:d6:be:1f:11:65:e9:42:55: 22:c5:c8:00:ef:d9:f9:a9:a3:f8:89:81:77:86:85: 6b:89:f1:ec:f6:0b:85:83:b6:08:b7:18:17:3f:92: 5f:a7:ef:3f:8e:5b:3b:dd:91:2d:00:34:8d:0d:c6: db:0a:ea:10:94:a2:b6:2c:77:f2:dc:f2:9c:c9:68: ed:56:5a:29:63:9b:e7:32:7e:b0:7a:5a:cc:70:39: 44:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A7:64:75:8E:FD:8F:FF:6F:3D:DA:91:1D:BE:18:EE:1F:7A:88:4D X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:89:9c:85:64:9a:f6:d7:50:e0:86:c5:86:b4:35:93:a7:0d: 49:9f:d3:10:86:f0:e0:e0:9e:e8:32:55:f7:5e:f7:71:ab:26: 91:b1:5e:ea:cd:3a:45:48:47:c7:c8:af:ce:3c:2c:34:58:c7: 5f:2a:3a:01:97:84:e5:4f:bc:22:2b:55:61:62:60:41:85:6d: 5a:93:49:bc:83:da:bc:a6:27:3b:53:17:c0:83:0b:30:32:8a: 81:11:47:35:b2:49:ad:c3:a8:18:7c:bc:05:84:38:13:c3:0e: 09:ef:dc:9f:77:7f:93:6c:a9:8d:ac:5b:16:16:b4:89:fe:44: 7b:5b:b7:8e:df:88:26:33:86:44:b8:22:ab:27:41:f3:3c:42: 4b:e1:9d:85:b6:e2:ca:23:e5:5b:16:24:d1:ce:dc:84:8a:4c: ea:0a:12:1f:41:f9:b6:a3:9f:04:6f:14:5c:cf:75:5f:08:58: 80:e0:f2:d7:62:d6:2d:bb:9b:4c:43:47:9c:a7:b9:f5:65:7f: 24:f6:83:88:fc:49:43:23:47:ec:03:0c:b2:ce:94:d1:21:9c: 41:2c:5b:dd:c4:37:72:ee:92:0f:7b:5e:50:0b:f7:be:46:2e: 3d:00:6f:6d:6b:ec:f6:f4:e5:6f:7a:39:9b:be:47:9b:02:e1: 2e:69:5c:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKsFrXNthHDiqkEbzCGGlg607Bf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNTA4MjEyMTQ1NTVaFw0yNTA4MjUwODQxNTVaMDMxMTAvBgNV BAMTKDlBQTc2NDc1OEVGRDhGRkY2RjNEREE5MTFEQkUxOEVFMUY3QTg4NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCznXp1fyuiWCfvFztJb/535LGd ed3LpfrzKFmsRdEi1Fker0aWzGR7NrviRz3j1wdWF7LS+KExkshgCA96TwuCfW42 8I+A3iHR7ee1EVVmOl2CtxxKnq0wrxAVkN8EuAG/o0xLrG9UCLYUpXUhseO6Kjci sEtEBm1hOelC0aYhVLdxi9y5b7hZfu2jAm4HKO2aH92zZ7H9sOEngVh2qRHToqdk F355ngNFa1bWvh8RZelCVSLFyADv2fmpo/iJgXeGhWuJ8ez2C4WDtgi3GBc/kl+n 7z+OWzvdkS0ANI0NxtsK6hCUorYsd/Lc8pzJaO1WWiljm+cyfrB6WsxwOURfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmqdkdY79j/9vPdqRHb4Y7h96iE0wHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAICJnIVkmvbXUOCGxYa0NZOnDUmf0xCG8ODg nugyVfde93GrJpGxXurNOkVIR8fIr848LDRYx18qOgGXhOVPvCIrVWFiYEGFbVqT SbyD2rymJztTF8CDCzAyioERRzWySa3DqBh8vAWEOBPDDgnv3J93f5NsqY2sWxYW tIn+RHtbt47fiCYzhkS4IqsnQfM8QkvhnYW24soj5VsWJNHO3ISKTOoKEh9B+baj nwRvFFzPdV8IWIDg8tdi1i27m0xDR5ynufVlfyT2g4j8SUMjR+wDDLLOlNEhnEEs W93EN3Lukg97XlAL975GLj0Ab21r7Pb05W96OZu+R5sC4S5pXG8= -----END CERTIFICATE-----Generated at Sat Aug 23 23:37:16 2025 by rpki-client