$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: wzetp6V3xWz4bluE73yw31Ir2rCg919aG7ZxuKmrgJM= Subject key identifier: 2C:35:E2:FE:1E:A9:F3:6E:38:32:13:38:2D:58:C6:7F:B7:57:45:A9 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 279E8C8CE074D40D7FBF1068ABF6D440DA6EFAC5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 0168 Signing time: Sat 14 Jun 2025 17:20:38 +0000 Manifest this update: Sat 14 Jun 2025 17:15:38 +0000 Manifest next update: Wed 18 Jun 2025 00:15:38 +0000 Files and hashes: 1: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: LhEQawX/sHRKdZIO29Yx9kLVRKXi8tePrCwQezq/Bis=) 2: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: fU1tQ4gaeWNhq2F1RA67XHvI+/xcbSrzocYJJCxhg9Q=) 3: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: geET9/YOwUtWNeEIEWu0ZCElrUfY/yNFJvOG/4u0aBI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:9e:8c:8c:e0:74:d4:0d:7f:bf:10:68:ab:f6:d4:40:da:6e:fa:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Jun 14 17:15:38 2025 GMT Not After : Jun 18 00:15:38 2025 GMT Subject: CN=2C35E2FE1EA9F36E383213382D58C67FB75745A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cc:7a:ed:96:b5:c2:6c:c8:a7:c9:c0:ed:4d: c7:a4:d4:75:51:e8:cb:00:ce:1b:72:82:2a:78:22: e1:43:27:1a:9d:41:a8:be:ff:27:0d:da:95:40:1c: dd:67:ee:4a:3c:90:f8:39:a1:43:d0:29:ac:83:ae: f7:e5:67:d4:a5:5a:56:5a:bb:e3:d1:9f:21:36:0b: b8:e3:6c:3f:a6:3a:9f:b1:9a:aa:36:fc:d5:2e:45: 8f:ca:b1:aa:ef:92:1c:22:e2:1d:88:a1:45:45:19: 59:00:ff:6a:a8:36:97:02:63:16:3b:bd:d8:04:0f: e9:23:9c:d0:8e:af:7b:8e:8b:c3:9b:00:4f:3e:66: 89:89:b3:24:46:df:38:02:a0:73:b5:b7:9b:15:16: 27:1d:a2:88:ff:52:fa:a9:4f:4a:ed:14:2e:31:00: 30:d2:e9:91:75:ba:bc:45:a4:1a:1a:13:7f:df:2c: 90:1a:87:b1:4a:f2:88:6e:2c:4d:9c:f7:e1:fb:0e: 54:b6:a7:01:d8:99:0c:ec:a9:e9:70:49:c0:5d:af: 36:8a:09:53:ed:c3:a2:03:bf:40:a5:98:b3:24:35: 48:58:19:ba:a5:a8:7a:c1:b2:ec:86:92:8d:bd:e3: a8:1c:75:ee:2e:bf:17:7d:84:95:fa:b3:be:2d:b6: a0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:35:E2:FE:1E:A9:F3:6E:38:32:13:38:2D:58:C6:7F:B7:57:45:A9 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:f7:7e:b6:71:17:9d:3e:c8:ff:87:92:cb:89:0a:6b:3f:60: 5e:77:a2:09:a4:c0:c0:c7:17:6b:1c:5d:c3:7c:af:a5:55:7a: 2e:4e:27:e1:e5:6b:94:29:a4:74:4f:16:07:eb:a2:c7:67:17: da:e5:a4:19:21:2a:ed:ec:6b:13:0e:c9:95:dd:03:0f:89:e7: d0:38:8c:48:a7:1b:b2:c3:c8:71:07:85:32:2e:57:c8:fd:1b: d9:52:5d:03:11:1f:ec:b7:cc:fb:09:1a:e1:60:f8:11:a1:36: b9:24:d4:ab:08:e3:1b:87:f4:98:74:71:15:d7:6b:34:7f:5d: 9d:1e:ed:39:0b:7a:3a:30:48:7e:cd:44:87:33:ef:b0:4c:2e: 62:e6:38:16:bf:c1:26:ac:f8:58:d4:fa:69:f2:d7:b6:6f:bd: 01:16:9c:72:5a:e4:d3:d6:a7:83:b3:09:ec:83:58:a6:af:94: 29:0a:8a:58:08:2d:1e:23:23:4f:19:6d:6c:85:4e:80:cd:ad: 36:5e:ba:93:3d:0f:98:08:c6:f3:88:fa:11:52:8a:3e:83:6e: 0f:f8:6e:b4:6b:ab:9f:df:3b:b6:ab:e3:2d:f7:bc:20:28:0b: e5:4d:d7:a7:d1:10:da:c1:06:92:39:32:d5:35:7a:31:46:a2: 47:07:0b:8c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ56MjOB01A1/vxBoq/bUQNpu+sUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNTA2MTQxNzE1MzhaFw0yNTA2MTgwMDE1MzhaMDMxMTAvBgNV BAMTKDJDMzVFMkZFMUVBOUYzNkUzODMyMTMzODJENThDNjdGQjc1NzQ1QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtzHrtlrXCbMinycDtTcek1HVR 6MsAzhtygip4IuFDJxqdQai+/ycN2pVAHN1n7ko8kPg5oUPQKayDrvflZ9SlWlZa u+PRnyE2C7jjbD+mOp+xmqo2/NUuRY/Ksarvkhwi4h2IoUVFGVkA/2qoNpcCYxY7 vdgED+kjnNCOr3uOi8ObAE8+ZomJsyRG3zgCoHO1t5sVFicdooj/UvqpT0rtFC4x ADDS6ZF1urxFpBoaE3/fLJAah7FK8ohuLE2c9+H7DlS2pwHYmQzsqelwScBdrzaK CVPtw6IDv0ClmLMkNUhYGbqlqHrBsuyGko2946gcde4uvxd9hJX6s74ttqCXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULDXi/h6p8244MhM4LVjGf7dXRakwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKT3frZxF50+yP+HksuJCms/YF53ogmkwMDH F2scXcN8r6VVei5OJ+Hla5QppHRPFgfrosdnF9rlpBkhKu3saxMOyZXdAw+J59A4 jEinG7LDyHEHhTIuV8j9G9lSXQMRH+y3zPsJGuFg+BGhNrkk1KsI4xuH9Jh0cRXX azR/XZ0e7TkLejowSH7NRIcz77BMLmLmOBa/wSas+FjU+mny17ZvvQEWnHJa5NPW p4OzCeyDWKavlCkKilgILR4jI08ZbWyFToDNrTZeupM9D5gIxvOI+hFSij6Dbg/4 brRrq5/fO7ar4y33vCAoC+VN16fRENrBBpI5MtU1ejFGokcHC4w= -----END CERTIFICATE-----Generated at Mon Jun 16 21:05:54 2025 by rpki-client