$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: PxiDkiSnvf8fN6PP7BccKUdSii+uGqZRdJluaQvxlZE= Subject key identifier: 92:77:13:74:58:DB:D5:7B:84:0C:DC:F4:23:67:9F:DE:22:10:CE:9C Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 2E06DFC9EAB3007242F591066344DF9A2C628146 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 0255 Signing time: Mon 30 Jun 2025 16:30:53 +0000 Manifest this update: Mon 30 Jun 2025 16:25:53 +0000 Manifest next update: Thu 03 Jul 2025 21:40:53 +0000 Files and hashes: 1: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: BNKMMEL5B1/oYgm/3B9GM5h6oeAn67DJcYyjv9hlNtI=) 2: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: KqJWQLgXmTHd9H6sRHxBzzsWATc/WnNxAAXTEqHhFsc=) 3: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: OUaHqzH5MUuESyQrAEVUqywPb3+c3nlvFdPyh75nUE0=) 4: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 21:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:06:df:c9:ea:b3:00:72:42:f5:91:06:63:44:df:9a:2c:62:81:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: Jun 30 16:25:53 2025 GMT Not After : Jul 3 21:40:53 2025 GMT Subject: CN=9277137458DBD57B840CDCF423679FDE2210CE9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0a:d7:0d:71:db:0a:2e:3d:95:df:eb:18:46: db:09:08:9f:5c:63:f6:c5:55:a1:59:3a:43:2e:90: 96:f0:73:05:5d:27:02:9e:e6:ab:31:75:29:b3:72: e4:a8:a3:77:7c:cf:81:d4:fe:63:57:63:e3:5e:84: f8:f3:d0:cc:20:bc:bd:a4:e5:8d:f4:87:39:38:a9: ab:6b:33:7c:1d:ea:ee:82:30:a9:33:25:0d:14:b2: 41:39:26:81:6d:44:c1:b7:a3:11:4d:7d:37:84:95: 56:38:26:ae:64:7e:43:2e:b4:d6:25:a7:d5:86:b5: fb:eb:3f:a4:fd:de:eb:7b:f8:36:9c:ce:28:d5:97: 64:40:5d:60:d5:ef:28:05:75:b5:7b:74:73:1b:06: 83:76:04:80:1a:98:c4:77:fc:20:97:00:6c:a4:60: 82:6c:ee:b1:a0:8b:47:63:a3:0c:9d:c1:48:5f:4b: 53:cf:a0:ad:f8:5e:98:67:82:61:40:a1:fd:75:4b: d0:c5:b7:f8:52:0b:e4:ea:15:a5:bc:12:31:2f:78: 4d:94:f5:bf:14:4b:85:7c:33:26:fe:47:9d:12:12: 4b:8e:9e:27:4f:12:e4:8a:6c:d1:83:76:4f:02:03: dc:fe:1d:1a:2e:62:e2:b0:e5:98:eb:7e:25:db:07: 5d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:77:13:74:58:DB:D5:7B:84:0C:DC:F4:23:67:9F:DE:22:10:CE:9C X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:82:37:2c:12:5f:fb:12:c7:0c:5d:43:1d:69:b5:f6:ed:cf: f2:18:35:c0:47:be:58:61:84:ea:e6:55:f5:bb:07:09:fa:0f: 90:98:09:c8:5e:e4:44:53:f3:7f:86:33:f5:04:91:53:b5:68: 62:fa:5e:f2:08:5c:0b:10:47:ee:dd:6f:e6:0e:62:eb:ed:69: 34:1d:01:9d:ed:22:ef:be:07:07:ce:80:4d:26:f6:21:d2:21: ff:43:d8:9b:51:40:71:95:11:56:5f:5a:de:0d:5a:2d:f4:d5: 30:4e:7a:d9:95:b4:f9:66:97:7d:10:a1:ea:be:de:a2:c3:66: 00:db:23:ed:44:72:d4:bd:47:af:85:3b:47:c7:2a:7c:e7:a0: 9f:23:02:65:ef:30:9c:fd:e9:47:2f:d8:7e:38:c7:0c:25:83: 43:89:cb:1e:4a:f4:0c:79:5e:c6:54:91:b1:f9:53:63:c3:90: a4:8d:d1:d6:8f:e5:4f:e9:9c:b7:22:3d:f3:6b:2c:6b:c3:ba: 2f:22:d7:3f:13:cd:4e:77:2a:db:41:5a:b2:47:4f:e7:3b:2b: 10:e3:14:72:cb:76:29:4a:75:35:5f:c8:09:f6:39:52:ae:f5: d0:81:30:b1:c2:6f:85:b3:88:5a:8a:20:86:3d:0d:06:1a:8f: 3b:92:d5:a3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULgbfyeqzAHJC9ZEGY0TfmixigUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNTA2MzAxNjI1NTNaFw0yNTA3MDMyMTQwNTNaMDMxMTAvBgNV BAMTKDkyNzcxMzc0NThEQkQ1N0I4NDBDRENGNDIzNjc5RkRFMjIxMENFOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiCtcNcdsKLj2V3+sYRtsJCJ9c Y/bFVaFZOkMukJbwcwVdJwKe5qsxdSmzcuSoo3d8z4HU/mNXY+NehPjz0MwgvL2k 5Y30hzk4qatrM3wd6u6CMKkzJQ0UskE5JoFtRMG3oxFNfTeElVY4Jq5kfkMutNYl p9WGtfvrP6T93ut7+DaczijVl2RAXWDV7ygFdbV7dHMbBoN2BIAamMR3/CCXAGyk YIJs7rGgi0djowydwUhfS1PPoK34XphngmFAof11S9DFt/hSC+TqFaW8EjEveE2U 9b8US4V8Myb+R50SEkuOnidPEuSKbNGDdk8CA9z+HRouYuKw5ZjrfiXbB13NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkncTdFjb1XuEDNz0I2ef3iIQzpwwHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGqCNywSX/sSxwxdQx1ptfbtz/IYNcBHvlhh hOrmVfW7Bwn6D5CYCche5ERT83+GM/UEkVO1aGL6XvIIXAsQR+7db+YOYuvtaTQd AZ3tIu++BwfOgE0m9iHSIf9D2JtRQHGVEVZfWt4NWi301TBOetmVtPlml30Qoeq+ 3qLDZgDbI+1EctS9R6+FO0fHKnznoJ8jAmXvMJz96Ucv2H44xwwlg0OJyx5K9Ax5 XsZUkbH5U2PDkKSN0daP5U/pnLciPfNrLGvDui8i1z8TzU53KttBWrJHT+c7KxDj FHLLdilKdTVfyAn2OVKu9dCBMLHCb4WziFqKIIY9DQYajzuS1aM= -----END CERTIFICATE-----Generated at Tue Jul 1 14:19:10 2025 by rpki-client