$ rpki-client -vvf repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft File: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft (raw, json) Hash identifier: fLeYYVxa4/STSN7GxBtbzRAM6q64Z1IAVvpqQzCEH7Y= Subject key identifier: 39:A7:07:EB:90:EB:9C:E6:A6:02:A6:0B:4E:24:D0:EE:F4:92:76:71 Authority key identifier: AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 Certificate issuer: /CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Certificate serial: 10397BAE138411C128B9439A65461AB28A2E1999 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft Manifest number: 51 Signing time: Sun 27 Apr 2025 01:30:01 +0000 Manifest this update: Sun 27 Apr 2025 01:25:01 +0000 Manifest next update: Wed 30 Apr 2025 11:11:01 +0000 Files and hashes: 1: 3135372e36362e34302e302f32342d3234203d3e20313532373934.roa (hash: XF0z782r3sHF+OrwCSt8ZCAVQ0WZ8tu8nYx4HOA7soI=) 2: 3135372e36362e34302e302f32332d3233203d3e20313532373934.roa (hash: /DFyNaEsyO2usBnFzIOmfhaGZCRB0eHYovN+KsopEbs=) 3: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl (hash: kOfn4VkZFOBGnaBEJgx6XMCH7gQ1qJnl5v/dzV3b7yc=) 4: 3135372e36362e34312e302f32342d3234203d3e20313532373934.roa (hash: AjW16B5R157K3hvjOmHF0WbVknW4Cg9BK3NqgeP7LAQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 03:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:39:7b:ae:13:84:11:c1:28:b9:43:9a:65:46:1a:b2:8a:2e:19:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Validity Not Before: Apr 27 01:25:01 2025 GMT Not After : Apr 30 11:11:01 2025 GMT Subject: CN=39A707EB90EB9CE6A602A60B4E24D0EEF4927671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4b:7c:a5:cc:28:b2:be:71:3f:d1:13:2a:e5: 6c:56:fc:39:88:e5:b5:c2:1d:58:00:45:f5:b5:88: 98:42:dc:84:03:7b:8c:d8:dc:71:75:2d:30:83:88: 32:a6:74:c5:31:f1:58:03:5f:3e:c1:fe:68:ea:10: e5:b5:fa:b3:b1:94:7f:23:d6:d2:fe:ec:5c:96:52: a5:75:7e:d4:fe:3f:60:78:e9:b9:52:34:63:af:29: b8:6c:80:a3:63:6f:be:63:6d:40:7c:0a:ca:cc:1f: 9b:d8:16:cc:43:8c:44:0f:49:51:90:65:26:0c:9c: ee:4c:d8:16:28:8f:c1:74:69:1e:6a:55:f9:d7:c7: a9:a3:fe:65:2c:12:f7:eb:56:51:93:b7:43:bd:d1: 1a:57:fe:b7:34:88:a2:c2:4a:d3:56:38:1d:f0:d7: b9:a9:ff:c3:c6:dc:fe:9f:f5:1b:c4:f0:d6:b1:fa: cf:2c:ec:14:0c:32:de:bf:2e:0d:00:63:95:7a:1e: 11:97:dc:9f:d1:37:1a:c6:0d:1c:79:a7:19:9b:19: f5:c6:c1:7c:a1:db:88:f7:60:97:4f:b7:f0:89:6b: 83:39:a5:13:c0:db:b7:8d:22:c4:9c:18:f2:3e:38: fa:0a:69:75:48:22:23:71:18:57:ec:22:6b:ac:cb: bd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A7:07:EB:90:EB:9C:E6:A6:02:A6:0B:4E:24:D0:EE:F4:92:76:71 X509v3 Authority Key Identifier: keyid:AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:5c:52:61:d1:d6:16:dd:2b:86:1a:4c:4f:3e:13:24:27:6a: eb:b1:19:f6:95:e5:e4:c2:34:53:4f:bf:6f:96:39:d0:fc:97: db:61:fb:c3:93:7e:5a:d2:f4:0f:6c:46:5c:3d:54:b9:69:7e: 23:20:f6:73:1e:6e:e5:1a:de:45:d0:69:30:5c:91:9a:25:db: 47:a3:43:e7:9c:d0:eb:a0:68:48:2b:a2:e2:3c:d6:08:0a:5a: 1c:31:38:7a:b0:08:26:41:09:4d:74:e2:55:d4:6b:81:98:00: f7:d5:b9:f1:95:a5:c1:08:f1:ec:3d:19:ef:5b:ca:df:1a:3d: 3d:8d:d9:37:b3:c4:cc:3b:39:37:4a:97:51:0b:46:cd:20:d4: 48:de:4c:13:e0:73:8e:d0:b8:ed:b8:0c:ed:2d:7d:ab:1c:6a: 05:3e:02:05:e8:d5:5f:6f:c4:2d:2a:d7:97:40:2d:e6:42:8c: 19:aa:1f:de:2e:c7:00:35:b4:36:4a:c4:6e:e3:f7:ae:7a:31: fc:19:8c:07:fa:28:57:c5:df:b2:40:d3:1a:3f:b5:1c:d9:80: 45:02:e2:6e:aa:17:c2:e4:2d:de:b7:53:d6:d3:71:ac:fb:cb: 16:5c:e0:c0:e9:2f:8f:59:99:a7:87:0a:a0:aa:e8:ff:b4:58: 75:9b:27:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEDl7rhOEEcEouUOaZUYasoouGZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZD RURFQzNENTAeFw0yNTA0MjcwMTI1MDFaFw0yNTA0MzAxMTExMDFaMDMxMTAvBgNV BAMTKDM5QTcwN0VCOTBFQjlDRTZBNjAyQTYwQjRFMjREMEVFRjQ5Mjc2NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtS3ylzCiyvnE/0RMq5WxW/DmI 5bXCHVgARfW1iJhC3IQDe4zY3HF1LTCDiDKmdMUx8VgDXz7B/mjqEOW1+rOxlH8j 1tL+7FyWUqV1ftT+P2B46blSNGOvKbhsgKNjb75jbUB8CsrMH5vYFsxDjEQPSVGQ ZSYMnO5M2BYoj8F0aR5qVfnXx6mj/mUsEvfrVlGTt0O90RpX/rc0iKLCStNWOB3w 17mp/8PG3P6f9RvE8Nax+s8s7BQMMt6/Lg0AY5V6HhGX3J/RNxrGDRx5pxmbGfXG wXyh24j3YJdPt/CJa4M5pRPA27eNIsScGPI+OPoKaXVIIiNxGFfsImusy70dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOacH65DrnOamAqYLTiTQ7vSSdnEwHwYDVR0j BBgwFoAUr2hxyv0FxvYlnNybP+hlb87ew9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2YyYzE5MC0zMGY1LTRmMTktYmZjYS0wYjk4N2E1MmZkNTUvMC9BRjY4NzFDQUZE MDVDNkY2MjU5Q0RDOUIzRkU4NjU2RkNFREVDM0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZDRURF QzNENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzdmMmMxOTAtMzBmNS00ZjE5LWJm Y2EtMGI5ODdhNTJmZDU1LzAvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1 NkZDRURFQzNENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACFcUmHR1hbdK4YaTE8+EyQnauuxGfaV5eTC NFNPv2+WOdD8l9th+8OTflrS9A9sRlw9VLlpfiMg9nMebuUa3kXQaTBckZol20ej Q+ec0OugaEgrouI81ggKWhwxOHqwCCZBCU104lXUa4GYAPfVufGVpcEI8ew9Ge9b yt8aPT2N2TezxMw7OTdKl1ELRs0g1EjeTBPgc47QuO24DO0tfascagU+AgXo1V9v xC0q15dALeZCjBmqH94uxwA1tDZKxG7j9656MfwZjAf6KFfF37JA0xo/tRzZgEUC 4m6qF8LkLd63U9bTcaz7yxZc4MDpL49ZmaeHCqCq6P+0WHWbJ14= -----END CERTIFICATE-----Generated at Sun Apr 27 12:51:40 2025 by rpki-client