$ rpki-client -vvf repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft File: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft (raw, json) Hash identifier: zy6QOiv2bgWoGLF1xeZldK9v72zzZ8TjK1SiQc43Y38= Subject key identifier: 22:37:D7:A1:A7:40:AC:6E:EB:8C:B5:87:C1:FE:21:61:FD:37:36:34 Authority key identifier: AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 Certificate issuer: /CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Certificate serial: 737D821F135EABB429045143A9F326AE6813215F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft Manifest number: 67 Signing time: Mon 16 Jun 2025 01:00:01 +0000 Manifest this update: Mon 16 Jun 2025 00:55:01 +0000 Manifest next update: Thu 19 Jun 2025 10:10:01 +0000 Files and hashes: 1: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl (hash: WUsn63xty9d3iDYm883H4vdmZxUcsfWze4YWJQ3BVJ0=) 2: 3135372e36362e34302e302f32332d3233203d3e20313532373934.roa (hash: /DFyNaEsyO2usBnFzIOmfhaGZCRB0eHYovN+KsopEbs=) 3: 3135372e36362e34302e302f32342d3234203d3e20313532373934.roa (hash: XF0z782r3sHF+OrwCSt8ZCAVQ0WZ8tu8nYx4HOA7soI=) 4: 3135372e36362e34312e302f32342d3234203d3e20313532373934.roa (hash: AjW16B5R157K3hvjOmHF0WbVknW4Cg9BK3NqgeP7LAQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 10:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:7d:82:1f:13:5e:ab:b4:29:04:51:43:a9:f3:26:ae:68:13:21:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Validity Not Before: Jun 16 00:55:01 2025 GMT Not After : Jun 19 10:10:01 2025 GMT Subject: CN=2237D7A1A740AC6EEB8CB587C1FE2161FD373634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:4e:1b:85:31:35:65:15:72:e2:b0:77:b3: ee:7d:fe:d3:9d:41:87:e8:41:4d:2b:45:9c:95:5a: 20:a2:a7:46:70:74:ea:b4:f5:ca:4d:fa:ca:57:99: de:ee:5d:82:f1:ce:54:f9:d4:31:07:67:6f:6d:51: 2c:d7:61:4d:8d:3c:b2:d3:f1:7a:70:b9:13:14:cd: 6f:5f:d1:c7:86:76:26:2b:06:ca:4f:6c:a2:3f:16: e8:45:e2:e8:de:56:b0:76:4a:e9:57:1f:f9:25:69: 3b:5b:5d:4e:e9:20:4c:36:c3:a6:40:16:00:82:2d: 96:89:48:18:5c:69:3a:8e:8e:3e:5b:3b:95:10:47: 56:52:97:a0:54:0d:ea:d7:8b:ef:22:61:15:67:84: ff:8d:da:69:db:72:5b:c3:8c:3f:86:4f:d0:31:af: 2d:9a:53:89:ec:a9:a9:11:be:8c:32:ac:f6:fd:17: 1d:ff:37:a2:55:10:18:88:68:5e:ad:e9:62:5e:a9: 1c:b8:79:d9:08:2a:f8:55:8d:23:e7:97:ec:6e:47: d5:f2:d1:d4:70:67:44:61:0e:8e:e3:20:44:d6:a6: 4a:ec:cb:cd:4e:a7:09:e6:41:ba:4b:cd:6e:53:1b: ef:ed:81:e9:6d:40:76:45:3b:42:75:79:57:b1:e5: b1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:37:D7:A1:A7:40:AC:6E:EB:8C:B5:87:C1:FE:21:61:FD:37:36:34 X509v3 Authority Key Identifier: keyid:AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:9a:82:0c:e6:9e:98:07:1e:95:0d:f3:fb:8d:4d:87:85:b1: 9c:dc:53:bb:93:af:c6:15:9d:81:f7:e1:ab:a6:10:f7:f7:51: 31:bc:4e:d7:70:8c:ae:d1:c3:9e:62:3e:3b:aa:bc:75:b8:27: 3d:d4:40:e9:ce:4a:2a:02:91:e9:fa:bc:37:34:f1:49:1d:6e: 1d:55:9b:3b:2a:03:a3:89:56:33:11:6e:bb:57:8b:9f:53:ea: 34:71:d5:a4:4a:2a:c4:ae:dd:c1:71:2d:c6:fe:34:5e:15:28: 2f:dc:a3:55:06:ea:b3:ef:ac:af:47:b0:8f:6c:83:61:9a:5d: c0:aa:95:b8:e3:ef:08:ff:d1:f5:2c:71:57:14:00:20:a2:6b: 84:58:47:c6:d0:7a:c9:1d:88:34:49:27:ab:9a:2c:c8:95:29: 10:aa:fd:eb:2b:3d:98:f7:81:1f:59:07:2f:09:ca:d8:56:dc: a8:63:78:23:5c:90:b9:84:bc:46:31:2d:96:06:33:2a:d7:8a: d0:5d:c0:f5:14:fa:12:49:bb:87:d9:cb:c1:e7:6f:68:23:9d: c4:ba:fb:74:73:de:bc:36:a4:c4:2e:63:ae:5f:5f:38:81:67: 61:b7:f5:03:18:db:a6:42:78:c2:2d:2d:45:77:90:b8:f9:b2: 2b:85:25:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUc32CHxNeq7QpBFFDqfMmrmgTIV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZD RURFQzNENTAeFw0yNTA2MTYwMDU1MDFaFw0yNTA2MTkxMDEwMDFaMDMxMTAvBgNV BAMTKDIyMzdEN0ExQTc0MEFDNkVFQjhDQjU4N0MxRkUyMTYxRkQzNzM2MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9F04bhTE1ZRVy4rB3s+59/tOd QYfoQU0rRZyVWiCip0ZwdOq09cpN+spXmd7uXYLxzlT51DEHZ29tUSzXYU2NPLLT 8XpwuRMUzW9f0ceGdiYrBspPbKI/FuhF4ujeVrB2SulXH/klaTtbXU7pIEw2w6ZA FgCCLZaJSBhcaTqOjj5bO5UQR1ZSl6BUDerXi+8iYRVnhP+N2mnbclvDjD+GT9Ax ry2aU4nsqakRvowyrPb9Fx3/N6JVEBiIaF6t6WJeqRy4edkIKvhVjSPnl+xuR9Xy 0dRwZ0RhDo7jIETWpkrsy81OpwnmQbpLzW5TG+/tgeltQHZFO0J1eVex5bHnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIjfXoadArG7rjLWHwf4hYf03NjQwHwYDVR0j BBgwFoAUr2hxyv0FxvYlnNybP+hlb87ew9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2YyYzE5MC0zMGY1LTRmMTktYmZjYS0wYjk4N2E1MmZkNTUvMC9BRjY4NzFDQUZE MDVDNkY2MjU5Q0RDOUIzRkU4NjU2RkNFREVDM0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZDRURF QzNENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzdmMmMxOTAtMzBmNS00ZjE5LWJm Y2EtMGI5ODdhNTJmZDU1LzAvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1 NkZDRURFQzNENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHOaggzmnpgHHpUN8/uNTYeFsZzcU7uTr8YV nYH34aumEPf3UTG8TtdwjK7Rw55iPjuqvHW4Jz3UQOnOSioCken6vDc08Ukdbh1V mzsqA6OJVjMRbrtXi59T6jRx1aRKKsSu3cFxLcb+NF4VKC/co1UG6rPvrK9HsI9s g2GaXcCqlbjj7wj/0fUscVcUACCia4RYR8bQeskdiDRJJ6uaLMiVKRCq/esrPZj3 gR9ZBy8JythW3KhjeCNckLmEvEYxLZYGMyrXitBdwPUU+hJJu4fZy8Hnb2gjncS6 +3Rz3rw2pMQuY65fXziBZ2G39QMY26ZCeMItLUV3kLj5siuFJWo= -----END CERTIFICATE-----Generated at Mon Jun 16 21:28:16 2025 by rpki-client