$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: YHKW2kDWTtWYcpFZAVJyo9jcIojUwI7+8y2bPuJ+zkE= Subject key identifier: 90:85:A1:5C:F9:CF:D0:8D:96:72:12:4C:32:04:10:38:BD:1C:AD:43 Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 72270A965FD8985F767C1C3C7BAF7E7466AAA251 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 023F Signing time: Sun 11 May 2025 04:10:53 +0000 Manifest this update: Sun 11 May 2025 04:05:53 +0000 Manifest next update: Wed 14 May 2025 09:44:53 +0000 Files and hashes: 1: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: UPDSae8/CFfV5Khww0dPqevA2MT51TQZkxKIT77mZ/o=) 2: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) 3: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: OUaHqzH5MUuESyQrAEVUqywPb3+c3nlvFdPyh75nUE0=) 4: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: KqJWQLgXmTHd9H6sRHxBzzsWATc/WnNxAAXTEqHhFsc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:27:0a:96:5f:d8:98:5f:76:7c:1c:3c:7b:af:7e:74:66:aa:a2:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: May 11 04:05:53 2025 GMT Not After : May 14 09:44:53 2025 GMT Subject: CN=9085A15CF9CFD08D9672124C32041038BD1CAD43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:6b:bf:82:d7:dc:0d:b6:ae:98:80:48:9b: 9f:80:5f:c6:9d:b5:d7:0b:75:9f:d7:7a:37:20:f8: b9:a1:85:b8:96:f0:f0:4a:78:64:d9:b9:0c:74:a5: bd:97:ff:5e:49:46:06:93:9f:74:b2:75:3d:da:62: b2:af:66:ab:c8:38:4a:5c:a3:40:64:36:75:d1:42: bf:9f:c7:44:f0:68:32:5e:b6:28:39:ad:42:80:c3: 44:36:0f:17:6f:24:cc:e7:1c:a5:d0:79:b3:25:07: 02:05:36:72:58:ff:d4:57:c8:e0:d9:a0:dd:2f:42: 6a:9c:f2:6e:60:40:87:66:26:88:ff:10:35:30:2b: 97:bb:4d:81:7c:21:09:55:ea:f3:f9:03:f5:56:69: b3:95:49:c3:fd:90:fb:0c:be:85:e2:66:89:22:f1: e2:46:d2:5f:6d:95:11:a4:76:13:51:0e:9f:4f:46: 14:4f:23:f5:f8:4e:75:f0:bb:29:d0:eb:b2:22:dc: bc:ba:f2:cc:e3:8f:b0:a4:80:fb:d8:80:b0:10:e2: 32:7c:9c:f0:e0:7b:67:77:f6:67:83:fc:2e:6e:5a: 9a:d7:7b:36:87:11:8d:b7:76:0f:ae:2b:09:74:b9: 8d:95:00:e6:ab:b3:12:b0:23:25:82:48:e5:8b:36: f2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:85:A1:5C:F9:CF:D0:8D:96:72:12:4C:32:04:10:38:BD:1C:AD:43 X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:7b:0d:49:ea:be:f7:18:e4:55:7e:52:fa:d6:41:68:5f:29: 7e:9c:37:dd:50:70:55:94:1b:80:c1:37:81:e6:da:31:d7:e7: eb:79:ad:6b:c4:26:00:ef:8b:d1:8d:6b:f6:09:03:a5:b9:dd: 92:84:43:dd:1e:eb:63:f6:f8:77:d0:b9:6e:64:dc:10:fa:79: 83:88:09:09:4c:66:5b:f6:9e:43:09:24:6d:a0:77:09:72:ff: b8:07:f7:7d:8d:57:3b:63:a7:d8:f6:7c:29:af:63:78:38:11: 4a:8f:7a:c4:d4:11:ef:69:76:a1:81:c8:47:4d:57:aa:ff:4b: df:a9:15:31:17:52:02:02:a1:be:bc:f5:d7:d7:78:cb:fa:2a: e3:58:44:96:3d:ed:46:ac:fb:31:62:27:b8:87:0c:10:ab:33: 2c:cf:d8:76:d1:8a:75:22:c9:e2:20:8e:ac:85:b1:04:5b:49: 6d:47:ff:d3:01:11:7e:2d:7b:56:42:6a:dd:8c:cd:b6:b2:a5: fd:c7:fd:e7:2d:59:f8:2f:5d:bf:a8:c1:d1:ba:fa:4a:c7:90: 46:a8:29:41:ce:df:e9:3b:82:86:cd:be:e4:3c:f9:c2:09:9b: bf:16:31:e7:43:64:e8:40:19:81:60:a3:be:7b:0f:e7:dd:a1: 27:85:25:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcicKll/YmF92fBw8e69+dGaqolEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNTA1MTEwNDA1NTNaFw0yNTA1MTQwOTQ0NTNaMDMxMTAvBgNV BAMTKDkwODVBMTVDRjlDRkQwOEQ5NjcyMTI0QzMyMDQxMDM4QkQxQ0FENDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8hmu/gtfcDbaumIBIm5+AX8ad tdcLdZ/Xejcg+LmhhbiW8PBKeGTZuQx0pb2X/15JRgaTn3SydT3aYrKvZqvIOEpc o0BkNnXRQr+fx0TwaDJetig5rUKAw0Q2DxdvJMznHKXQebMlBwIFNnJY/9RXyODZ oN0vQmqc8m5gQIdmJoj/EDUwK5e7TYF8IQlV6vP5A/VWabOVScP9kPsMvoXiZoki 8eJG0l9tlRGkdhNRDp9PRhRPI/X4TnXwuynQ67Ii3Ly68szjj7CkgPvYgLAQ4jJ8 nPDge2d39meD/C5uWprXezaHEY23dg+uKwl0uY2VAOarsxKwIyWCSOWLNvL3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkIWhXPnP0I2WchJMMgQQOL0crUMwHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHZ7DUnqvvcY5FV+UvrWQWhfKX6cN91QcFWU G4DBN4Hm2jHX5+t5rWvEJgDvi9GNa/YJA6W53ZKEQ90e62P2+HfQuW5k3BD6eYOI CQlMZlv2nkMJJG2gdwly/7gH932NVztjp9j2fCmvY3g4EUqPesTUEe9pdqGByEdN V6r/S9+pFTEXUgICob689dfXeMv6KuNYRJY97Uas+zFiJ7iHDBCrMyzP2HbRinUi yeIgjqyFsQRbSW1H/9MBEX4te1ZCat2Mzbaypf3H/ectWfgvXb+owdG6+krHkEao KUHO3+k7gobNvuQ8+cIJm78WMedDZOhAGYFgo757D+fdoSeFJVU= -----END CERTIFICATE-----Generated at Sun May 11 12:24:47 2025 by rpki-client