$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft File: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft (raw, json) Hash identifier: TMTZWUlDJRaWx+Yxu1QyNdkEPDIboTKBilZutbbBYMI= Subject key identifier: 7F:60:F4:9B:8B:83:C0:FE:4B:55:DF:FA:DC:F5:F3:6B:EB:E0:E3:BF Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 0234E5F79F7BE0661C8306B262CA7A8A64344D1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft Manifest number: 04FA Signing time: Wed 06 Aug 2025 23:31:06 +0000 Manifest this update: Wed 06 Aug 2025 23:26:06 +0000 Manifest next update: Sun 10 Aug 2025 00:38:06 +0000 Files and hashes: 1: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (hash: jH+vIlrKU7PfFq1iZrO7cUj2zjNXd2QDgqmIURJ9hHo=) 2: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (hash: Y4jHaeY4QidDK/340ECCQ/4I5FQ55qG4YZL2AdrbzPk=) 3: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (hash: 92iPAvFoV8ZIni26oBvQBCMwojDuPtSnBMptGXhyF7g=) 4: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl (hash: mSzQjvxjgVJHJn09jkAZc1+fZv46tlo74cgnNJq+hUk=) 5: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (hash: NJ/fZulIyr1e7dyoj8v3tiz901wVBYZYjvKtkVFLK3I=) 6: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (hash: Co7QnH1utLTo+OaXOBXDzn1d7u1X3FX72sJ2/V1LcRI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:34:e5:f7:9f:7b:e0:66:1c:83:06:b2:62:ca:7a:8a:64:34:4d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Aug 6 23:26:06 2025 GMT Not After : Aug 10 00:38:06 2025 GMT Subject: CN=7F60F49B8B83C0FE4B55DFFADCF5F36BEBE0E3BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:52:9f:93:7c:d5:f0:46:52:63:03:b7:b4:e5: d7:82:ad:a6:67:36:8e:65:0a:1f:d0:9b:94:d9:d7: cf:4b:ba:eb:a2:16:6b:e5:0c:7f:28:ca:55:67:9d: 61:cb:7b:d6:0f:c0:bc:2f:f2:c8:3f:0d:7c:9d:98: 13:42:c2:58:17:8c:79:82:bb:77:7f:4b:4f:82:2a: c5:b8:75:fc:fb:72:53:5d:36:fa:b0:78:07:4f:61: 7f:83:62:da:0f:85:80:8f:12:5c:85:b1:60:ca:6a: ac:46:4c:6c:4b:88:5c:a9:37:20:eb:69:74:60:34: 81:dd:b9:1b:06:5b:f1:a5:41:63:7a:65:8d:37:fa: 66:e5:14:f4:22:5a:15:bb:db:45:a1:99:43:a3:c5: 73:8a:ad:03:f5:46:cc:73:45:59:bb:a6:3a:19:b2: 4b:97:d0:7b:67:5b:4a:c6:1a:aa:ef:19:bf:76:3c: 18:50:cf:30:1a:1b:25:86:f9:a5:10:92:68:be:2d: 95:4b:4b:9f:c8:aa:b8:dc:28:3c:81:56:1d:ac:0f: 6a:cf:c2:90:ac:bc:ce:e3:3d:f8:58:02:15:20:5a: 6a:3b:12:af:6f:48:89:f4:62:a3:ab:a2:fd:4a:f9: 1c:9d:59:91:b1:a5:f6:13:ac:11:0a:1d:03:7e:ed: 92:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:60:F4:9B:8B:83:C0:FE:4B:55:DF:FA:DC:F5:F3:6B:EB:E0:E3:BF X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:b4:e4:45:95:ed:1c:7e:57:14:b0:29:2f:5f:39:1b:a2:d0: 04:e4:32:ba:e1:0e:fa:7b:60:8a:fc:ec:e2:28:fe:81:f6:06: 35:b2:6d:5b:2f:92:55:10:2b:73:1b:cb:87:44:16:4a:bb:b7: d5:13:34:88:c4:44:7d:5f:5a:e0:2c:84:66:f3:65:21:5d:8e: 40:9d:7c:b4:2c:af:dc:71:61:ff:3b:42:a5:b2:f7:46:f7:f1: 2d:2f:61:02:dd:68:49:ef:79:5f:f5:e1:7e:b4:06:63:71:d6: e7:8f:8a:82:0d:1f:57:94:e9:a9:de:aa:d9:7f:28:0c:e6:ee: dc:c6:56:8e:9e:15:a7:3c:36:43:f9:99:ae:79:92:8f:be:be: 37:47:f0:49:ff:fa:2d:73:d5:71:ab:7a:6a:f0:0f:3e:7b:28: b8:15:ba:df:52:02:41:3c:37:3c:1a:e8:8d:c9:dc:bf:da:92: 08:5b:5a:5a:e8:f1:66:ca:c5:52:dd:a8:7f:ac:72:c9:d3:1a: 53:46:47:ba:8b:37:8d:b4:5f:28:eb:8a:a7:66:c0:32:b6:da: 4b:28:eb:c3:16:65:25:1b:aa:41:97:13:b6:b2:e2:9b:c7:2d: 88:44:9f:4d:03:13:c1:90:36:c8:06:bc:5c:8c:e8:de:2c:ff: 13:49:34:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAjTl95974GYcgwayYsp6imQ0TR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNTA4MDYyMzI2MDZaFw0yNTA4MTAwMDM4MDZaMDMxMTAvBgNV BAMTKDdGNjBGNDlCOEI4M0MwRkU0QjU1REZGQURDRjVGMzZCRUJFMEUzQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Up+TfNXwRlJjA7e05deCraZn No5lCh/Qm5TZ189LuuuiFmvlDH8oylVnnWHLe9YPwLwv8sg/DXydmBNCwlgXjHmC u3d/S0+CKsW4dfz7clNdNvqweAdPYX+DYtoPhYCPElyFsWDKaqxGTGxLiFypNyDr aXRgNIHduRsGW/GlQWN6ZY03+mblFPQiWhW720WhmUOjxXOKrQP1RsxzRVm7pjoZ skuX0HtnW0rGGqrvGb92PBhQzzAaGyWG+aUQkmi+LZVLS5/IqrjcKDyBVh2sD2rP wpCsvM7jPfhYAhUgWmo7Eq9vSIn0YqOrov1K+RydWZGxpfYTrBEKHQN+7ZK/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf2D0m4uDwP5LVd/63PXza+vg478wHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTJhYzBjYTUtNWNlNy00ZTZlLTlm ZmYtNzIxM2VmMWVmMzY0LzAvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJE QTIxMDZBNTk0Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGS05EWV7Rx+VxSwKS9fORui0ATkMrrhDvp7 YIr87OIo/oH2BjWybVsvklUQK3Mby4dEFkq7t9UTNIjERH1fWuAshGbzZSFdjkCd fLQsr9xxYf87QqWy90b38S0vYQLdaEnveV/14X60BmNx1uePioINH1eU6aneqtl/ KAzm7tzGVo6eFac8NkP5ma55ko++vjdH8En/+i1z1XGremrwDz57KLgVut9SAkE8 Nzwa6I3J3L/akghbWlro8WbKxVLdqH+scsnTGlNGR7qLN420XyjriqdmwDK22kso 68MWZSUbqkGXE7ay4pvHLYhEn00DE8GQNsgGvFyM6N4s/xNJNE0= -----END CERTIFICATE-----Generated at Thu Aug 7 02:01:47 2025 by rpki-client