$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: axaCgYh4cj6ejfpZXESYAE25tc9OzGxZbA6cIq/wloI= Subject key identifier: AF:5B:FE:82:97:EA:B4:B2:C6:DD:04:A7:63:A7:B1:DC:5B:73:0A:DE Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 6764097B7ACDC4BDA1A71C418C4EC2359312252C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 01C3 Signing time: Sun 20 Jul 2025 09:51:38 +0000 Manifest this update: Sun 20 Jul 2025 09:46:38 +0000 Manifest next update: Wed 23 Jul 2025 15:15:38 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: hLQPD3MbEwgildQda9wOjE3SYD9HUC8/tR+TH7Mo1TY=) 2: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: lKzyY3mkUgZ5FAwVZUWCYYj2/5dHac5tLkEtccJrn6s=) 3: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: gwUhQCLpG414frqxV/A3eihir8ysCdrvlyk1yD6ay90=) 4: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: VxDJRyHf4quz1NG42aRPhCKiwsHNdLZ5RbJ8wFW7Nhg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 15:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:64:09:7b:7a:cd:c4:bd:a1:a7:1c:41:8c:4e:c2:35:93:12:25:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Jul 20 09:46:38 2025 GMT Not After : Jul 23 15:15:38 2025 GMT Subject: CN=AF5BFE8297EAB4B2C6DD04A763A7B1DC5B730ADE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:45:c6:45:11:8f:37:69:b2:22:96:cf:b7: e8:e5:5d:1d:0d:17:31:e7:ff:19:38:34:67:89:01: f1:c0:31:fe:1f:14:4e:2c:ba:74:8c:3a:a0:8f:58: c9:4a:40:ff:59:a4:a9:cd:68:68:c8:aa:77:cf:57: 64:d9:c8:1a:3c:91:e1:39:6c:e3:ed:56:82:4e:09: 57:c3:8e:23:14:4b:62:0f:68:b8:97:49:3a:a7:87: b6:c5:06:fc:28:93:cd:f1:ec:95:c8:53:55:8e:5b: 1d:99:37:85:e5:d0:fa:f8:49:53:ba:b9:96:7e:e6: f9:af:e0:74:17:23:8a:4a:05:77:14:1d:fa:19:ca: d4:c3:f8:79:a5:35:4e:df:1a:f6:96:11:82:7e:ca: 50:6c:dd:33:3b:37:eb:53:4e:f8:de:ba:ce:15:1b: 7d:6b:b0:a6:e4:02:8d:dc:cc:5c:a5:61:32:0d:8e: 56:ee:b7:5d:ca:19:cb:3c:aa:8c:fe:f3:a2:5b:0b: 30:98:2a:96:ab:66:09:f3:07:e9:8e:d4:58:a4:8b: 1e:59:fc:ec:a2:0d:6d:d0:c8:ea:d4:7a:19:44:53: ae:16:1e:db:47:7c:a5:45:8d:10:e9:1e:76:8a:fe: c9:9e:4c:c4:7a:18:1c:29:c0:42:ec:c8:6e:66:1a: dc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5B:FE:82:97:EA:B4:B2:C6:DD:04:A7:63:A7:B1:DC:5B:73:0A:DE X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:5f:04:da:47:60:aa:c3:13:5c:23:4a:7c:f1:25:46:3a:c2: d2:99:cd:3a:7f:18:7e:6d:85:d5:59:48:99:ca:3c:3d:9d:f4: d5:30:32:a2:1d:c9:2a:a7:7b:b6:8e:3c:50:fe:7f:c2:a4:01: 40:6f:d5:ea:70:e0:05:47:7b:37:84:32:1e:e6:03:98:d7:62: f2:13:01:ad:7e:c6:e9:20:4e:10:c2:90:be:f4:1e:1f:a6:26: 37:ab:17:68:75:0b:73:1a:58:c9:42:96:4d:8c:38:89:07:f4: 87:16:96:57:ca:18:26:c1:d7:98:5f:3d:ef:e0:c4:7c:7f:f9: d2:ab:3b:57:7d:9f:51:1e:62:4d:f7:20:0b:90:73:f8:67:2f: 0d:e5:82:a9:11:58:f3:9c:37:f6:6f:cf:5e:6f:0b:b9:66:25: 16:fc:7e:6c:14:97:8e:44:c4:f7:0b:f6:90:f1:0a:14:dd:9a: f4:cc:e2:77:14:7f:f1:22:3e:50:fa:25:6e:70:47:c7:79:f4: ce:d3:e1:21:f9:a6:fc:5a:42:62:fb:25:2c:20:a4:e6:07:9c: ae:5e:21:e7:ce:2d:1b:a4:4a:31:c9:88:57:35:6b:04:ba:f7: 45:68:7f:30:ac:ba:c1:17:e6:98:8b:66:0e:81:50:97:3f:7c: 8b:ce:40:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ2QJe3rNxL2hpxxBjE7CNZMSJSwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNTA3MjAwOTQ2MzhaFw0yNTA3MjMxNTE1MzhaMDMxMTAvBgNV BAMTKEFGNUJGRTgyOTdFQUI0QjJDNkREMDRBNzYzQTdCMURDNUI3MzBBREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCkUXGRRGPN2myIpbPt+jlXR0N FzHn/xk4NGeJAfHAMf4fFE4sunSMOqCPWMlKQP9ZpKnNaGjIqnfPV2TZyBo8keE5 bOPtVoJOCVfDjiMUS2IPaLiXSTqnh7bFBvwok83x7JXIU1WOWx2ZN4Xl0Pr4SVO6 uZZ+5vmv4HQXI4pKBXcUHfoZytTD+HmlNU7fGvaWEYJ+ylBs3TM7N+tTTvjeus4V G31rsKbkAo3czFylYTINjlbut13KGcs8qoz+86JbCzCYKparZgnzB+mO1Fikix5Z /OyiDW3QyOrUehlEU64WHttHfKVFjRDpHnaK/smeTMR6GBwpwELsyG5mGty9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr1v+gpfqtLLG3QSnY6ex3FtzCt4wHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACNfBNpHYKrDE1wjSnzxJUY6wtKZzTp/GH5t hdVZSJnKPD2d9NUwMqIdySqne7aOPFD+f8KkAUBv1epw4AVHezeEMh7mA5jXYvIT Aa1+xukgThDCkL70Hh+mJjerF2h1C3MaWMlClk2MOIkH9IcWllfKGCbB15hfPe/g xHx/+dKrO1d9n1EeYk33IAuQc/hnLw3lgqkRWPOcN/Zvz15vC7lmJRb8fmwUl45E xPcL9pDxChTdmvTM4ncUf/EiPlD6JW5wR8d59M7T4SH5pvxaQmL7JSwgpOYHnK5e IefOLRukSjHJiFc1awS690VofzCsusEX5piLZg6BUJc/fIvOQEI= -----END CERTIFICATE-----Generated at Sun Jul 20 21:27:23 2025 by rpki-client