$ rpki-client -vvf repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft File: 03832B38693F0F23EF49480775A2493B9E3F7FA0.mft (raw, json) Hash identifier: gcaE2gYrT4VYAewI6AehqRuaD1HPIPAdhK3sK/kNkuM= Subject key identifier: CD:64:A5:BF:B9:84:81:A5:C7:82:70:61:69:2B:A4:32:CE:85:2C:74 Authority key identifier: 03:83:2B:38:69:3F:0F:23:EF:49:48:07:75:A2:49:3B:9E:3F:7F:A0 Certificate issuer: /CN=03832B38693F0F23EF49480775A2493B9E3F7FA0 Certificate serial: 196674125FB812F50B127920B2857861F941A95E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft Manifest number: 0310 Signing time: Fri 18 Jul 2025 19:00:53 +0000 Manifest this update: Fri 18 Jul 2025 18:55:53 +0000 Manifest next update: Tue 22 Jul 2025 04:40:53 +0000 Files and hashes: 1: 3130332e3135352e3235302e302f32332d3234203d3e203137383834.roa (hash: C109hu1BJkl1pWWKKoRbk9sf7Lmm7AwONWDQ76EwY1Q=) 2: 03832B38693F0F23EF49480775A2493B9E3F7FA0.crl (hash: g4FH1IRwYcV+SGlijZPFLMOmhAo7yJP4QzLtfGCMEMw=) 3: 323030313a6466343a646638303a3a2f34382d3438203d3e20313431303730.roa (hash: pokBZpL5hJ0olRQ6JHoy2AMfLYfeAfsOoOkW3DB0M7g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.crl rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 04:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:66:74:12:5f:b8:12:f5:0b:12:79:20:b2:85:78:61:f9:41:a9:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03832B38693F0F23EF49480775A2493B9E3F7FA0 Validity Not Before: Jul 18 18:55:53 2025 GMT Not After : Jul 22 04:40:53 2025 GMT Subject: CN=CD64A5BFB98481A5C7827061692BA432CE852C74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:12:8c:97:27:fc:fa:76:38:2c:f5:26:3d: 06:14:c3:17:8a:42:bc:96:6b:62:92:7e:d8:fc:7a: 7d:e7:7d:15:f5:f1:98:18:d8:88:44:c1:fd:1f:88: ec:4c:f5:85:c3:c6:16:2a:57:0c:1b:1d:10:30:a8: 1c:ec:74:76:8c:6f:13:b1:01:a9:28:f4:5c:a3:9f: 5b:28:21:d7:0a:83:49:2c:9e:48:f2:25:90:9f:3c: f3:41:7a:8a:c2:2e:d2:85:5a:bf:9c:0e:03:39:0f: 42:c0:da:58:d5:63:8d:fe:e6:eb:f7:32:96:32:35: 55:19:f8:ed:d2:a5:c6:a8:1f:d4:ec:5b:4d:b0:30: 62:ba:57:9b:3b:76:e6:1f:0e:72:ac:ab:3a:a1:dd: 48:22:dc:67:99:ec:1d:c8:28:9c:19:86:be:92:4f: cf:82:dc:31:5e:bd:13:71:aa:d1:67:00:f6:58:a2: ea:bc:13:5a:ee:f3:8d:30:47:6e:c7:08:58:9a:82: 25:80:34:9f:aa:54:bd:1f:33:ab:1c:0f:22:c9:c3: c8:eb:9a:ef:95:68:9a:54:5f:37:bd:58:53:24:4a: e8:4d:30:cc:0c:eb:21:97:5d:2b:3f:e1:87:3e:7a: 5d:84:c4:4b:f5:2d:a9:20:27:60:a7:a0:e4:18:97: 48:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:64:A5:BF:B9:84:81:A5:C7:82:70:61:69:2B:A4:32:CE:85:2C:74 X509v3 Authority Key Identifier: keyid:03:83:2B:38:69:3F:0F:23:EF:49:48:07:75:A2:49:3B:9E:3F:7F:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:76:9f:2e:90:69:36:82:49:42:e7:84:c0:0a:6d:ea:84:00: 04:f5:5a:2b:73:f7:b3:7a:fa:8a:60:ed:b0:bb:99:3c:7a:19: 77:e8:66:07:a0:42:ff:28:36:54:73:04:cf:29:5b:0b:7e:a2: b4:6d:02:da:59:1f:91:b1:79:74:3c:41:8e:0f:01:06:d7:31: 30:b2:ca:62:87:54:95:e8:49:3e:00:3e:80:6e:e1:9e:bf:da: ec:ee:17:8e:e4:c2:71:e7:d2:7e:74:1d:ae:84:ec:9a:46:64: 52:0b:45:f7:21:e0:7c:18:e6:b4:e4:94:46:17:54:bd:0a:d4: 18:0f:46:cd:d0:f3:51:af:8a:52:57:d4:4b:f1:37:e8:38:ba: 0c:87:01:8c:5a:5f:79:9c:d0:a3:38:fc:94:c6:0c:94:ba:89: ec:ce:be:c6:30:4e:34:98:97:eb:08:08:53:1d:b7:8f:d7:80: e3:87:93:3a:c1:6c:2d:00:13:ef:5e:0b:3f:d8:b5:46:4e:9f: 4b:c9:43:5c:32:47:45:04:be:8e:f2:09:b4:20:6e:96:47:fb: 35:b1:20:25:38:0a:df:4b:9a:5d:e6:06:b1:b7:9d:e7:d7:88: 48:e4:1a:c3:52:3f:88:cd:ee:d7:68:f0:22:db:81:0e:3c:ef: 82:e7:4d:6e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGWZ0El+4EvULEnkgsoV4YflBqV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5M0I5 RTNGN0ZBMDAeFw0yNTA3MTgxODU1NTNaFw0yNTA3MjIwNDQwNTNaMDMxMTAvBgNV BAMTKENENjRBNUJGQjk4NDgxQTVDNzgyNzA2MTY5MkJBNDMyQ0U4NTJDNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPLBKMlyf8+nY4LPUmPQYUwxeK QryWa2KSftj8en3nfRX18ZgY2IhEwf0fiOxM9YXDxhYqVwwbHRAwqBzsdHaMbxOx Aako9Fyjn1soIdcKg0ksnkjyJZCfPPNBeorCLtKFWr+cDgM5D0LA2ljVY43+5uv3 MpYyNVUZ+O3SpcaoH9TsW02wMGK6V5s7duYfDnKsqzqh3Ugi3GeZ7B3IKJwZhr6S T8+C3DFevRNxqtFnAPZYouq8E1ru840wR27HCFiagiWANJ+qVL0fM6scDyLJw8jr mu+VaJpUXze9WFMkSuhNMMwM6yGXXSs/4Yc+el2ExEv1LakgJ2CnoOQYl0gnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzWSlv7mEgaXHgnBhaSukMs6FLHQwHwYDVR0j BBgwFoAUA4MrOGk/DyPvSUgHdaJJO54/f6AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NmVkMDU4NC1hYzJkLTQ2NjQtYmMxMS1kMDI2ZGRiZmFmN2MvMC8wMzgzMkIzODY5 M0YwRjIzRUY0OTQ4MDc3NUEyNDkzQjlFM0Y3RkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5M0I5RTNG N0ZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjZlZDA1ODQtYWMyZC00NjY0LWJj MTEtZDAyNmRkYmZhZjdjLzAvMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5 M0I5RTNGN0ZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGB2ny6QaTaCSULnhMAKbeqEAAT1Witz97N6 +opg7bC7mTx6GXfoZgegQv8oNlRzBM8pWwt+orRtAtpZH5GxeXQ8QY4PAQbXMTCy ymKHVJXoST4APoBu4Z6/2uzuF47kwnHn0n50Ha6E7JpGZFILRfch4HwY5rTklEYX VL0K1BgPRs3Q81GvilJX1EvxN+g4ugyHAYxaX3mc0KM4/JTGDJS6iezOvsYwTjSY l+sICFMdt4/XgOOHkzrBbC0AE+9eCz/YtUZOn0vJQ1wyR0UEvo7yCbQgbpZH+zWx ICU4Ct9Lml3mBrG3nefXiEjkGsNSP4jN7tdo8CLbgQ4874LnTW4= -----END CERTIFICATE-----Generated at Mon Jul 21 02:04:51 2025 by rpki-client