$ rpki-client -vvf repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft File: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft (raw, json) Hash identifier: 7hSRlvnRLZCYadXgZmZHaCrKYm7UoltKQQYvyZ4du+8= Subject key identifier: C2:FD:CF:FF:C7:07:DF:12:50:06:D2:30:20:56:F9:03:6A:40:4F:72 Authority key identifier: AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 Certificate issuer: /CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Certificate serial: 2C687E389A9AC4093F80150A15CA029FE6587DB5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft Manifest number: 7D Signing time: Tue 05 Aug 2025 07:30:01 +0000 Manifest this update: Tue 05 Aug 2025 07:25:01 +0000 Manifest next update: Fri 08 Aug 2025 12:52:01 +0000 Files and hashes: 1: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl (hash: RgvogaED1n1d5kZPdol2nlq9+udna7ERacOp9ncWZt0=) 2: 3135372e36362e34312e302f32342d3234203d3e20313532373934.roa (hash: AjW16B5R157K3hvjOmHF0WbVknW4Cg9BK3NqgeP7LAQ=) 3: 3135372e36362e34302e302f32332d3233203d3e20313532373934.roa (hash: /DFyNaEsyO2usBnFzIOmfhaGZCRB0eHYovN+KsopEbs=) 4: 3135372e36362e34302e302f32342d3234203d3e20313532373934.roa (hash: XF0z782r3sHF+OrwCSt8ZCAVQ0WZ8tu8nYx4HOA7soI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 09:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:68:7e:38:9a:9a:c4:09:3f:80:15:0a:15:ca:02:9f:e6:58:7d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Validity Not Before: Aug 5 07:25:01 2025 GMT Not After : Aug 8 12:52:01 2025 GMT Subject: CN=C2FDCFFFC707DF125006D2302056F9036A404F72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:c1:c9:37:7d:b2:a0:e7:04:72:05:20:58: 3e:da:0a:a3:61:04:fe:2c:d0:d2:09:76:f2:31:88: 05:7e:14:35:e8:9c:7d:e0:a0:51:0c:60:7d:19:7d: a3:43:ec:fe:cf:3a:f4:df:2f:e6:9e:28:ec:8a:97: 4a:05:fe:01:40:13:2a:00:58:87:81:1b:9d:2a:02: e1:04:fd:82:71:aa:bc:d1:71:96:41:2f:b7:77:9c: bc:2d:38:07:38:c3:68:7e:50:78:44:aa:af:11:6d: 46:aa:6f:91:11:f2:f1:63:f8:8f:dd:de:09:ea:95: e3:64:48:2c:10:77:52:62:ec:3d:60:08:aa:f7:50: e8:03:38:b7:61:78:9e:6d:02:0c:fd:b6:53:3f:f1: a4:45:3f:aa:e7:0e:5e:ee:0f:1a:9d:5a:82:90:49: 7e:91:48:e9:52:af:e9:32:c4:fe:7c:b9:2a:e2:79: ba:60:b1:d9:ef:fc:39:e1:04:f1:1a:ab:46:44:a7: c4:1c:f5:c8:08:18:d9:3f:6c:0d:5b:c1:65:85:0f: ed:72:9f:e9:8e:0d:d2:8a:52:a6:69:88:ae:a8:63: 71:04:68:be:7c:9a:24:de:38:cd:16:b3:53:3b:b9: f4:b9:d2:0d:d3:b7:40:4e:96:0b:02:34:e3:0f:b5: 76:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FD:CF:FF:C7:07:DF:12:50:06:D2:30:20:56:F9:03:6A:40:4F:72 X509v3 Authority Key Identifier: keyid:AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:e9:e7:80:06:48:de:2e:76:7d:50:8e:26:39:9d:4b:5b:69: a7:84:e5:08:d4:24:ff:f7:7e:73:2a:8e:8b:19:2a:d6:57:2c: 91:ce:57:47:04:37:c4:56:d4:14:cb:2d:c3:3e:4e:b1:e7:a9: 38:86:04:18:7e:97:95:62:db:7d:1b:9b:41:2f:7d:6a:64:07: d3:77:29:66:69:b6:7f:da:87:f4:ad:3e:22:41:f6:58:bd:d6: bd:12:9c:4a:d1:dd:60:f0:a8:1e:4a:48:7c:6c:71:be:63:d1: 47:7a:f4:7a:b3:9b:5c:9f:05:95:fe:65:7a:47:67:af:56:a2: bc:50:44:5d:0a:ad:3c:79:d7:89:4e:d6:42:17:99:d2:ac:3a: 93:13:b1:19:d7:22:aa:bc:a2:47:7f:ba:54:4c:9e:70:8f:0d: f6:29:ad:0c:48:27:8f:50:5f:39:6e:b3:e0:c2:b1:ef:84:86: 47:11:0f:d6:2f:c7:8f:ef:35:7d:1e:d8:71:59:b2:0c:ba:38: 27:e3:9c:bf:8f:2d:c2:91:51:a4:d8:8e:07:f4:c2:cc:d3:69: db:c4:c0:50:b6:2c:92:04:8b:7b:98:1d:7c:a0:e1:f6:d3:c1: f3:7e:68:8b:7f:2e:da:8e:4d:70:fc:38:98:65:25:8f:11:72: 05:2f:e8:28 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULGh+OJqaxAk/gBUKFcoCn+ZYfbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZD RURFQzNENTAeFw0yNTA4MDUwNzI1MDFaFw0yNTA4MDgxMjUyMDFaMDMxMTAvBgNV BAMTKEMyRkRDRkZGQzcwN0RGMTI1MDA2RDIzMDIwNTZGOTAzNkE0MDRGNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/cHJN32yoOcEcgUgWD7aCqNh BP4s0NIJdvIxiAV+FDXonH3goFEMYH0ZfaND7P7POvTfL+aeKOyKl0oF/gFAEyoA WIeBG50qAuEE/YJxqrzRcZZBL7d3nLwtOAc4w2h+UHhEqq8RbUaqb5ER8vFj+I/d 3gnqleNkSCwQd1Ji7D1gCKr3UOgDOLdheJ5tAgz9tlM/8aRFP6rnDl7uDxqdWoKQ SX6RSOlSr+kyxP58uSriebpgsdnv/DnhBPEaq0ZEp8Qc9cgIGNk/bA1bwWWFD+1y n+mODdKKUqZpiK6oY3EEaL58miTeOM0Ws1M7ufS50g3Tt0BOlgsCNOMPtXaNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwv3P/8cH3xJQBtIwIFb5A2pAT3IwHwYDVR0j BBgwFoAUr2hxyv0FxvYlnNybP+hlb87ew9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2YyYzE5MC0zMGY1LTRmMTktYmZjYS0wYjk4N2E1MmZkNTUvMC9BRjY4NzFDQUZE MDVDNkY2MjU5Q0RDOUIzRkU4NjU2RkNFREVDM0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZDRURF QzNENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzdmMmMxOTAtMzBmNS00ZjE5LWJm Y2EtMGI5ODdhNTJmZDU1LzAvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1 NkZDRURFQzNENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGbp54AGSN4udn1QjiY5nUtbaaeE5QjUJP/3 fnMqjosZKtZXLJHOV0cEN8RW1BTLLcM+TrHnqTiGBBh+l5Vi230bm0EvfWpkB9N3 KWZptn/ah/StPiJB9li91r0SnErR3WDwqB5KSHxscb5j0Ud69Hqzm1yfBZX+ZXpH Z69WorxQRF0KrTx514lO1kIXmdKsOpMTsRnXIqq8okd/ulRMnnCPDfYprQxIJ49Q Xzlus+DCse+EhkcRD9Yvx4/vNX0e2HFZsgy6OCfjnL+PLcKRUaTYjgf0wszTadvE wFC2LJIEi3uYHXyg4fbTwfN+aIt/LtqOTXD8OJhlJY8RcgUv6Cg= -----END CERTIFICATE-----Generated at Tue Aug 5 20:22:06 2025 by rpki-client