$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: o9G/X0UZiIqyXB+NnpauyqoxZlImRss8hu7AA8HC0Ac= Subject key identifier: 48:2F:9B:AC:DD:B9:89:87:B8:78:6B:E0:56:33:27:64:67:C9:1E:18 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 1B5EFA6A9D7C4D256D6F6642652C524C31A8A858 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 017F Signing time: Tue 05 Aug 2025 13:40:40 +0000 Manifest this update: Tue 05 Aug 2025 13:35:40 +0000 Manifest next update: Fri 08 Aug 2025 19:47:40 +0000 Files and hashes: 1: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: fU1tQ4gaeWNhq2F1RA67XHvI+/xcbSrzocYJJCxhg9Q=) 2: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: geET9/YOwUtWNeEIEWu0ZCElrUfY/yNFJvOG/4u0aBI=) 3: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: e+kikKSuqVf2pf5tqkq6COu9iorqY2Pb2MbQTnhAM+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 19:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:5e:fa:6a:9d:7c:4d:25:6d:6f:66:42:65:2c:52:4c:31:a8:a8:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Aug 5 13:35:40 2025 GMT Not After : Aug 8 19:47:40 2025 GMT Subject: CN=482F9BACDDB98987B8786BE05633276467C91E18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:44:f6:fb:eb:3e:36:a3:bb:9f:f2:42:34: a5:ff:3e:51:bf:ce:d0:0c:32:71:5e:21:3a:60:1d: 4a:d9:6d:51:ac:be:3a:92:3a:62:82:73:87:7b:d2: c6:62:d6:ef:6e:fa:6f:22:90:67:a3:bd:1f:54:0b: 7c:b5:2a:93:0b:4f:0c:2b:cf:c5:57:af:74:da:db: 8b:6b:99:25:e1:fd:f8:b6:cf:5b:13:79:15:00:a8: 7e:12:56:f5:83:03:14:96:d0:0a:5b:da:d7:e9:cd: b5:01:82:6c:b5:90:1b:ed:a3:95:63:53:02:20:fb: cb:d9:15:88:a5:b7:2a:1f:d1:18:5f:e0:14:61:71: ee:3f:b7:4d:98:1a:97:bf:e0:60:dc:11:4e:31:84: e7:2b:38:1c:64:99:a6:b6:a4:09:e0:dc:36:97:23: 33:b1:5d:7f:fd:5a:3f:68:f7:ec:29:dc:18:df:72: e8:9a:9d:27:7d:41:8a:e2:10:a9:ff:70:9e:b8:8c: a3:59:87:cf:17:99:d4:87:a4:cd:a4:21:e2:78:d2: 51:d1:9a:0c:54:df:47:29:f5:af:5d:ec:4b:a9:5a: 46:c2:93:5b:9c:07:f7:07:de:44:76:77:7b:cb:22: 76:b1:06:9c:a4:16:a2:cf:cb:27:26:05:21:b5:b0: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:9B:AC:DD:B9:89:87:B8:78:6B:E0:56:33:27:64:67:C9:1E:18 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:07:f7:1d:cf:36:88:25:53:dd:8c:7c:01:0a:fd:f9:3b:71: d5:a1:1f:1a:0b:65:88:07:08:a8:7c:59:81:1b:c7:c1:1a:3e: ad:d9:e9:a2:f0:49:43:cf:13:64:ac:6d:95:94:9b:bc:cf:4b: 78:d8:68:7a:e5:23:e2:b0:f0:7c:4b:7a:51:ac:1d:fd:fa:23: bd:c2:0e:d5:7c:03:61:b8:84:26:c8:7a:98:b7:f5:a4:5f:13: 30:f1:f2:04:c4:c0:49:0c:e2:a3:06:93:ee:02:f3:72:7d:03: 5b:de:d9:7c:91:81:25:d3:23:ea:62:a3:ef:a4:d2:62:99:47: a6:2d:37:7b:84:07:bd:8d:4c:38:4c:0f:ef:30:e1:9d:9f:44: a0:1f:9e:49:8b:b7:c0:0e:d5:1e:8f:38:42:76:0e:be:03:a0: 4a:77:c8:2d:19:05:fa:0f:22:9a:42:bb:16:e8:56:36:d9:d6: 0b:0e:2d:71:73:ae:ec:50:ed:75:52:a3:44:01:70:4d:0e:ac: 06:30:7f:4d:4a:c3:fc:c0:b2:d7:0a:9c:3d:38:f9:c0:ab:f8: cb:f9:a6:8e:70:5b:f3:9a:90:34:99:f3:93:0c:ae:26:05:35: 50:b9:89:23:2d:c2:de:ef:21:a6:6c:32:2f:c2:0a:98:16:cf: ba:6f:63:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG176ap18TSVtb2ZCZSxSTDGoqFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNTA4MDUxMzM1NDBaFw0yNTA4MDgxOTQ3NDBaMDMxMTAvBgNV BAMTKDQ4MkY5QkFDRERCOTg5ODdCODc4NkJFMDU2MzMyNzY0NjdDOTFFMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAzkT2++s+NqO7n/JCNKX/PlG/ ztAMMnFeITpgHUrZbVGsvjqSOmKCc4d70sZi1u9u+m8ikGejvR9UC3y1KpMLTwwr z8VXr3Ta24trmSXh/fi2z1sTeRUAqH4SVvWDAxSW0Apb2tfpzbUBgmy1kBvto5Vj UwIg+8vZFYiltyof0Rhf4BRhce4/t02YGpe/4GDcEU4xhOcrOBxkmaa2pAng3DaX IzOxXX/9Wj9o9+wp3BjfcuianSd9QYriEKn/cJ64jKNZh88XmdSHpM2kIeJ40lHR mgxU30cp9a9d7EupWkbCk1ucB/cH3kR2d3vLInaxBpykFqLPyycmBSG1sLZ7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSC+brN25iYe4eGvgVjMnZGfJHhgwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF4H9x3PNoglU92MfAEK/fk7cdWhHxoLZYgH CKh8WYEbx8EaPq3Z6aLwSUPPE2SsbZWUm7zPS3jYaHrlI+Kw8HxLelGsHf36I73C DtV8A2G4hCbIepi39aRfEzDx8gTEwEkM4qMGk+4C83J9A1ve2XyRgSXTI+pio++k 0mKZR6YtN3uEB72NTDhMD+8w4Z2fRKAfnkmLt8AO1R6POEJ2Dr4DoEp3yC0ZBfoP IppCuxboVjbZ1gsOLXFzruxQ7XVSo0QBcE0OrAYwf01Kw/zAstcKnD04+cCr+Mv5 po5wW/OakDSZ85MMriYFNVC5iSMtwt7vIaZsMi/CCpgWz7pvY44= -----END CERTIFICATE-----Generated at Thu Aug 7 01:08:06 2025 by rpki-client