$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: A5OMOd/XDYV5vs/3UdWw19ihLjSAxwIaAARd7Rkce98= Subject key identifier: B2:D8:0E:BD:9F:56:17:01:31:4C:66:A9:5A:8E:97:43:B0:86:FF:35 Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 48382B883E5F47583C2391819ED3856B341436A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 02CD Signing time: Thu 26 Mar 2026 02:51:04 +0000 Manifest this update: Thu 26 Mar 2026 02:46:04 +0000 Manifest next update: Sun 29 Mar 2026 08:43:04 +0000 Files and hashes: 1: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: piBMQKLQ4vl4/HEDElryTA2LFV1e3urfPVD8hTuJ8gs=) 2: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: GH9A/ETxxHTBzmicKkqS8xZ8OfH+7iZbdIgAhEyvCME=) 3: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: sSnxtf8TtC4PO2zmbNaGgHD80ecB0QzT4ZxlEb0ObOM=) 4: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 08:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:38:2b:88:3e:5f:47:58:3c:23:91:81:9e:d3:85:6b:34:14:36:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: Mar 26 02:46:04 2026 GMT Not After : Mar 29 08:43:04 2026 GMT Subject: CN=B2D80EBD9F561701314C66A95A8E9743B086FF35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3c:47:7d:be:46:a2:35:42:7e:33:df:9f:2d: 58:8e:34:11:e3:37:93:3a:6c:16:f0:e1:e3:b7:bd: 79:2e:0c:b7:8e:26:94:19:1a:8b:0c:3b:ec:ae:48: d8:24:3c:d9:ea:9d:27:ac:f7:29:e4:15:2a:ae:a6: 1d:b8:30:f6:ea:cf:81:ec:ba:c0:6c:90:55:27:7b: 8b:2a:59:76:5d:0a:fb:6f:fe:49:c7:b7:78:71:6d: c1:05:e7:b7:b3:4a:1f:96:db:38:53:5c:bf:06:cf: 45:20:cd:af:fb:01:7c:c3:b4:ac:d2:2e:9c:67:91: 8c:f2:bc:a6:53:7b:44:77:68:ff:4f:48:a9:4f:8e: 67:23:9f:a4:08:2d:79:d9:30:cf:4a:15:b6:0b:65: e3:18:b6:8f:82:0c:66:6f:b3:b8:e9:5e:70:a1:90: 63:24:0e:0f:f0:18:fe:13:58:fe:41:8e:6f:29:90: 09:32:13:b1:46:61:36:6a:be:31:97:b3:81:62:25: 9f:c9:22:dc:59:79:20:70:c3:02:9c:fa:f9:1a:24: 0a:b1:40:1b:ab:cb:7f:ed:f8:5c:f9:a2:96:2f:59: 4e:c7:b3:24:7a:d6:24:c2:ce:b9:b4:2a:be:c8:af: 9b:a1:f0:2e:1a:09:ca:f4:02:cb:09:42:a5:57:98: c8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D8:0E:BD:9F:56:17:01:31:4C:66:A9:5A:8E:97:43:B0:86:FF:35 X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:d1:d6:59:23:83:9b:16:fa:97:cb:c1:2f:47:8d:9f:89:00: f2:0f:d3:8c:e7:88:73:76:58:ef:d8:80:e3:ca:d0:9c:a8:57: 23:cf:d8:1c:a5:42:41:9a:26:1d:5e:2d:e8:a8:63:0b:2d:73: 4b:47:cc:98:ea:0b:3d:da:96:1d:6e:c5:2a:1a:aa:9e:d5:a4: f6:2d:18:09:31:ea:bf:59:f5:3f:2e:4f:e6:4f:34:5e:4d:d3: 6a:82:94:6e:7e:7a:86:1f:75:77:2d:a4:ff:ba:9b:06:83:fb: fc:8f:16:0a:35:8b:17:be:05:1b:7a:e2:40:92:e9:de:aa:28: 20:d5:fc:04:57:b9:dc:d8:62:ed:94:a8:35:cb:fc:9e:5d:9d: ff:10:9d:34:7e:3f:d8:dd:1b:17:60:0a:5f:fe:80:80:69:ed: 3c:c3:fb:a2:f1:12:1f:a2:1a:2d:2a:cf:fd:59:71:34:50:f5: c9:ee:fa:ca:4b:1c:41:9d:67:a7:86:47:5c:03:a2:a3:75:fd: 06:cd:e3:ea:8c:96:a6:47:d8:11:7f:f1:27:31:bd:17:a8:c7: dd:02:cc:9a:cd:bc:81:62:5a:9a:c4:92:4b:d6:3e:7a:5a:df: ba:05:de:42:4b:14:ed:3f:18:7f:04:ba:c1:ee:20:43:fd:8b: 7c:e1:7f:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSDgriD5fR1g8I5GBntOFazQUNqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNjAzMjYwMjQ2MDRaFw0yNjAzMjkwODQzMDRaMDMxMTAvBgNV BAMTKEIyRDgwRUJEOUY1NjE3MDEzMTRDNjZBOTVBOEU5NzQzQjA4NkZGMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWPEd9vkaiNUJ+M9+fLViONBHj N5M6bBbw4eO3vXkuDLeOJpQZGosMO+yuSNgkPNnqnSes9ynkFSquph24MPbqz4Hs usBskFUne4sqWXZdCvtv/knHt3hxbcEF57ezSh+W2zhTXL8Gz0Ugza/7AXzDtKzS LpxnkYzyvKZTe0R3aP9PSKlPjmcjn6QILXnZMM9KFbYLZeMYto+CDGZvs7jpXnCh kGMkDg/wGP4TWP5Bjm8pkAkyE7FGYTZqvjGXs4FiJZ/JItxZeSBwwwKc+vkaJAqx QBury3/t+Fz5opYvWU7HsyR61iTCzrm0Kr7Ir5uh8C4aCcr0AssJQqVXmMiHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUstgOvZ9WFwExTGapWo6XQ7CG/zUwHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHPR1lkjg5sW+pfLwS9HjZ+JAPIP04zniHN2 WO/YgOPK0JyoVyPP2BylQkGaJh1eLeioYwstc0tHzJjqCz3alh1uxSoaqp7VpPYt GAkx6r9Z9T8uT+ZPNF5N02qClG5+eoYfdXctpP+6mwaD+/yPFgo1ixe+BRt64kCS 6d6qKCDV/ARXudzYYu2UqDXL/J5dnf8QnTR+P9jdGxdgCl/+gIBp7TzD+6LxEh+i Gi0qz/1ZcTRQ9cnu+spLHEGdZ6eGR1wDoqN1/QbN4+qMlqZH2BF/8ScxvReox90C zJrNvIFiWprEkkvWPnpa37oF3kJLFO0/GH8EusHuIEP9i3zhf4g= -----END CERTIFICATE-----Generated at Thu Mar 26 16:10:56 2026 by rpki-client