$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: A5R27bESjQ5Cgime/PGigIuuZ6H67dp0THDLbkLqS84= Subject key identifier: CB:AD:34:FD:6F:4B:1B:C6:5A:64:97:7C:FE:F9:7E:27:C6:D2:25:0F Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 0A065F6513FA9E305A95B317A693578DFFC29772 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 0286 Signing time: Sun 19 Oct 2025 00:10:54 +0000 Manifest this update: Sun 19 Oct 2025 00:05:54 +0000 Manifest next update: Wed 22 Oct 2025 09:46:54 +0000 Files and hashes: 1: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: Kv0XlyzlB7j2eg/h1I40sX3x4hUKCKZcT2kunQWThVI=) 2: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: KqJWQLgXmTHd9H6sRHxBzzsWATc/WnNxAAXTEqHhFsc=) 3: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) 4: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: OUaHqzH5MUuESyQrAEVUqywPb3+c3nlvFdPyh75nUE0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 09:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:06:5f:65:13:fa:9e:30:5a:95:b3:17:a6:93:57:8d:ff:c2:97:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: Oct 19 00:05:54 2025 GMT Not After : Oct 22 09:46:54 2025 GMT Subject: CN=CBAD34FD6F4B1BC65A64977CFEF97E27C6D2250F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:61:8b:f1:15:f6:a5:ea:eb:f8:5d:5c:1a:ae: 56:c0:75:8e:89:a6:32:b9:3c:8c:e8:b6:71:0d:ff: 9a:b7:93:e4:33:1c:6b:cb:78:55:87:5f:85:53:f7: 72:ac:f5:19:b9:9a:0b:d5:3a:32:c3:dd:fb:0b:dd: 86:6f:68:93:6f:78:56:41:7a:72:47:86:16:c2:ba: 4e:45:41:54:22:17:07:bf:d3:ab:d8:d8:d5:68:28: 42:76:0b:e2:3e:f3:b6:b9:4e:4c:91:51:3a:ec:80: 16:e7:e9:ec:00:92:a1:5c:ad:a5:96:41:de:69:b3: 16:3a:6b:d0:0c:eb:f3:ba:df:dd:80:cd:82:6a:14: af:8f:ec:c6:2e:a6:4b:f4:8e:11:b6:84:eb:2e:47: 0f:e0:dc:c0:e5:4b:22:7d:70:64:f2:41:f5:73:a8: bc:3f:31:c7:78:ad:cc:2b:53:95:e0:f4:83:b3:2b: 01:60:62:4d:35:5b:2f:26:7e:cb:44:d3:f7:ea:58: 6b:6a:44:f4:03:f4:b2:6a:71:1b:4c:44:7f:f8:f3: 82:0d:6c:e5:e2:90:f1:cb:5e:6a:66:b1:90:23:5a: fc:39:e0:9c:0e:fa:c2:38:7e:00:54:0d:5f:ef:25: d9:9b:1d:56:2e:48:fb:ff:1f:73:a7:c0:a6:61:73: e4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AD:34:FD:6F:4B:1B:C6:5A:64:97:7C:FE:F9:7E:27:C6:D2:25:0F X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:6e:87:32:7c:e4:31:79:6b:dc:1a:0c:82:2d:2d:ff:78:23: f6:18:4c:c6:aa:f0:7c:cd:0d:c4:87:dd:dc:65:05:3e:7a:0c: 4d:89:c3:d9:f5:c8:6f:57:97:f3:c6:83:a6:5e:91:a6:b5:6c: 1c:7f:97:06:1b:65:72:e9:5a:89:68:97:c3:27:13:54:96:1f: d3:13:a5:55:51:7a:18:05:fe:52:97:aa:b2:f4:68:15:88:71: 3e:be:c4:be:28:b5:62:da:75:46:33:4a:f1:7e:5e:42:68:f8: 86:d8:f8:5b:cb:39:e2:d6:a7:6c:d9:cf:4c:22:c9:cb:5d:f5: 52:40:ba:27:0e:6a:47:96:c9:02:22:62:ca:21:3d:98:70:00: 0c:d3:84:d6:d4:0e:fa:76:24:fc:02:5c:7f:a4:cf:74:9e:71: a4:3e:85:e7:c4:1b:7c:5e:f7:13:dd:8e:f2:1f:44:9e:9d:71: d7:c9:c7:1a:d1:b8:3b:11:8e:ce:79:88:2e:13:2f:e5:cd:31: a2:e0:0f:e3:ea:fc:b1:0f:c6:ba:36:cd:87:93:82:60:c6:45: 15:d5:5b:f1:5b:72:7d:ef:f4:41:b0:2d:34:ae:d1:16:cf:a8: 96:d8:0e:97:12:17:77:eb:72:a4:e2:94:2a:68:c4:7e:5f:91: 2a:d4:5c:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCgZfZRP6njBalbMXppNXjf/Cl3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNTEwMTkwMDA1NTRaFw0yNTEwMjIwOTQ2NTRaMDMxMTAvBgNV BAMTKENCQUQzNEZENkY0QjFCQzY1QTY0OTc3Q0ZFRjk3RTI3QzZEMjI1MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfYYvxFfal6uv4XVwarlbAdY6J pjK5PIzotnEN/5q3k+QzHGvLeFWHX4VT93Ks9Rm5mgvVOjLD3fsL3YZvaJNveFZB enJHhhbCuk5FQVQiFwe/06vY2NVoKEJ2C+I+87a5TkyRUTrsgBbn6ewAkqFcraWW Qd5psxY6a9AM6/O6392AzYJqFK+P7MYupkv0jhG2hOsuRw/g3MDlSyJ9cGTyQfVz qLw/Mcd4rcwrU5Xg9IOzKwFgYk01Wy8mfstE0/fqWGtqRPQD9LJqcRtMRH/484IN bOXikPHLXmpmsZAjWvw54JwO+sI4fgBUDV/vJdmbHVYuSPv/H3OnwKZhc+QjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUy600/W9LG8ZaZJd8/vl+J8bSJQ8wHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADduhzJ85DF5a9waDIItLf94I/YYTMaq8HzN DcSH3dxlBT56DE2Jw9n1yG9Xl/PGg6Zekaa1bBx/lwYbZXLpWolol8MnE1SWH9MT pVVRehgF/lKXqrL0aBWIcT6+xL4otWLadUYzSvF+XkJo+IbY+FvLOeLWp2zZz0wi yctd9VJAuicOakeWyQIiYsohPZhwAAzThNbUDvp2JPwCXH+kz3SecaQ+hefEG3xe 9xPdjvIfRJ6dcdfJxxrRuDsRjs55iC4TL+XNMaLgD+Pq/LEPxro2zYeTgmDGRRXV W/Fbcn3v9EGwLTSu0RbPqJbYDpcSF3frcqTilCpoxH5fkSrUXCE= -----END CERTIFICATE-----Generated at Mon Oct 20 08:03:29 2025 by rpki-client