$ rpki-client -vvf repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft File: AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft (raw, json) Hash identifier: 3h2UHzE7bO/6KsnfxZo3pnpojO/7WY8ekQn2BZokFUg= Subject key identifier: E6:DA:CA:1B:2A:F3:CA:E4:7E:02:19:95:74:A1:FE:31:28:E2:D8:48 Authority key identifier: AF:DF:D5:D1:C4:B3:9F:2F:AA:BB:A5:BC:15:23:4C:2B:12:43:BF:FB Certificate issuer: /CN=AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB Certificate serial: 1BBF891F1F583B47B5E95EA0F6D4F505A71CBB48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft Manifest number: 038E Signing time: Sun 15 Jun 2025 07:51:27 +0000 Manifest this update: Sun 15 Jun 2025 07:46:27 +0000 Manifest next update: Wed 18 Jun 2025 09:22:27 +0000 Files and hashes: 1: AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.crl (hash: HBmKlYRhOJct6E4I+GBC7OvlvgJgjf6AP2N/qYi1wH0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.crl rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 09:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:bf:89:1f:1f:58:3b:47:b5:e9:5e:a0:f6:d4:f5:05:a7:1c:bb:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB Validity Not Before: Jun 15 07:46:27 2025 GMT Not After : Jun 18 09:22:27 2025 GMT Subject: CN=E6DACA1B2AF3CAE47E02199574A1FE3128E2D848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3e:f0:72:cb:21:e1:16:b7:b4:79:e8:d7:83: 5a:a5:29:07:82:f0:b5:ea:11:c9:d1:f9:6e:3f:a2: d4:7f:fe:74:d8:18:db:9a:70:26:af:31:b2:0a:6e: 54:4f:83:8b:e0:bd:fa:c3:15:7a:12:53:a7:53:e4: 17:ba:c6:70:a9:bb:d4:ac:fc:bb:ba:56:71:f2:0f: 4b:fc:a2:41:82:15:92:2e:9e:21:55:15:52:6e:7b: 63:a2:e5:18:ef:25:49:a1:a0:26:18:27:09:cf:00: c9:70:73:60:99:38:fb:ea:db:24:bc:a1:62:60:e7: ae:9e:99:d5:47:88:d1:c4:3f:19:a5:ae:f2:7c:24: fd:9f:f6:72:32:62:87:73:58:1c:01:2d:ed:d5:7e: 8e:3e:6d:c5:0e:84:36:68:a1:fa:a3:28:d3:aa:e9: 07:de:72:04:c0:65:a0:7e:ee:d0:18:a0:2d:c9:a5: 06:84:4d:45:a6:df:c2:90:81:93:62:6c:3e:b1:e4: 0e:0f:64:94:a0:37:4f:6d:fd:5d:a0:a4:dc:e4:f6: 00:17:05:03:7d:61:e9:d5:bc:80:1b:df:08:04:9f: ce:3b:04:61:c1:f2:dc:b6:2a:38:34:8a:eb:56:af: e9:9c:4a:4a:b7:bd:c6:ee:ba:f2:9b:ac:9a:94:c0: d6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DA:CA:1B:2A:F3:CA:E4:7E:02:19:95:74:A1:FE:31:28:E2:D8:48 X509v3 Authority Key Identifier: keyid:AF:DF:D5:D1:C4:B3:9F:2F:AA:BB:A5:BC:15:23:4C:2B:12:43:BF:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:9a:5d:01:97:ab:bf:80:22:11:00:d2:cd:43:c2:44:ec:02: 7d:a2:55:88:5e:85:b4:a4:2b:34:d0:1d:12:88:c1:a0:7b:64: 97:64:e7:1d:94:2e:8f:83:0a:ed:1b:60:12:fe:de:2e:e8:bf: 5c:5f:89:82:2a:1d:78:57:8a:c7:1e:ba:9b:67:ff:19:13:17: e2:7c:db:ab:f9:18:33:2a:6e:44:2f:59:33:8d:17:4b:ff:ef: 0e:21:2f:59:22:fa:92:ba:76:56:25:14:ab:04:5c:38:ee:f8: b6:0e:c8:fa:89:8b:cb:35:98:ba:0f:a1:81:07:ce:1b:28:89: b6:b2:e0:35:1a:17:c1:40:b3:80:d4:db:33:8f:e3:1d:d7:1b: b8:dc:a6:b3:da:be:c0:bd:24:5d:31:1f:e7:cc:76:ce:75:8f: 3f:db:2c:ca:f3:a6:a7:7c:92:99:a4:51:fb:c3:a3:74:82:66: b6:17:01:48:4c:1e:52:e9:76:81:a9:92:f8:39:e9:b9:53:3c: a2:93:7e:45:88:40:3c:04:c3:65:49:c2:50:16:87:b8:77:0c: 4b:28:aa:0e:c7:60:5e:06:00:2c:1f:2f:60:be:ab:16:23:6f: 5b:24:11:bf:b7:43:c0:44:da:4f:23:2d:83:19:8a:a7:69:47: 5d:41:fc:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG7+JHx9YO0e16V6g9tT1Baccu0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZERkQ1RDFDNEIzOUYyRkFBQkJBNUJDMTUyMzRDMkIx MjQzQkZGQjAeFw0yNTA2MTUwNzQ2MjdaFw0yNTA2MTgwOTIyMjdaMDMxMTAvBgNV BAMTKEU2REFDQTFCMkFGM0NBRTQ3RTAyMTk5NTc0QTFGRTMxMjhFMkQ4NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWPvByyyHhFre0eejXg1qlKQeC 8LXqEcnR+W4/otR//nTYGNuacCavMbIKblRPg4vgvfrDFXoSU6dT5Be6xnCpu9Ss /Lu6VnHyD0v8okGCFZIuniFVFVJue2Oi5RjvJUmhoCYYJwnPAMlwc2CZOPvq2yS8 oWJg566emdVHiNHEPxmlrvJ8JP2f9nIyYodzWBwBLe3Vfo4+bcUOhDZoofqjKNOq 6QfecgTAZaB+7tAYoC3JpQaETUWm38KQgZNibD6x5A4PZJSgN09t/V2gpNzk9gAX BQN9YenVvIAb3wgEn847BGHB8ty2Kjg0iutWr+mcSkq3vcbuuvKbrJqUwNaPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5trKGyrzyuR+AhmVdKH+MSji2EgwHwYDVR0j BBgwFoAUr9/V0cSzny+qu6W8FSNMKxJDv/swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NGZlMTgxMS1jMDNmLTQ5ZDgtOTIxNy0xM2ZmMjJhMzFlYmUvMC9BRkRGRDVEMUM0 QjM5RjJGQUFCQkE1QkMxNTIzNEMyQjEyNDNCRkZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZERkQ1RDFDNEIzOUYyRkFBQkJBNUJDMTUyMzRDMkIxMjQz QkZGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTRmZTE4MTEtYzAzZi00OWQ4LTky MTctMTNmZjIyYTMxZWJlLzAvQUZERkQ1RDFDNEIzOUYyRkFBQkJBNUJDMTUyMzRD MkIxMjQzQkZGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEmaXQGXq7+AIhEA0s1DwkTsAn2iVYhehbSk KzTQHRKIwaB7ZJdk5x2ULo+DCu0bYBL+3i7ov1xfiYIqHXhXisceuptn/xkTF+J8 26v5GDMqbkQvWTONF0v/7w4hL1ki+pK6dlYlFKsEXDju+LYOyPqJi8s1mLoPoYEH zhsoibay4DUaF8FAs4DU2zOP4x3XG7jcprPavsC9JF0xH+fMds51jz/bLMrzpqd8 kpmkUfvDo3SCZrYXAUhMHlLpdoGpkvg56blTPKKTfkWIQDwEw2VJwlAWh7h3DEso qg7HYF4GACwfL2C+qxYjb1skEb+3Q8BE2k8jLYMZiqdpR11B/JM= -----END CERTIFICATE-----Generated at Mon Jun 16 01:31:20 2025 by rpki-client