$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft File: AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft (raw, json) Hash identifier: 8bG4AY5mDdncfoJtjBrdHZ92uBibFUDHLA+KrUh3k+8= Subject key identifier: 17:FF:54:07:EF:99:54:01:9D:7C:06:82:11:FB:76:ED:98:91:C5:28 Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 78044252652DF1E4D20867CC227533882E53C502 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft Manifest number: 0234 Signing time: Mon 02 Jun 2025 18:41:37 +0000 Manifest this update: Mon 02 Jun 2025 18:36:37 +0000 Manifest next update: Thu 05 Jun 2025 21:41:37 +0000 Files and hashes: 1: 3130332e3137392e37322e302f32332d3233203d3e2039333431.roa (hash: oEGvz5ekNRTmyT1q5mWcENYutpVCXsuKwR/aZOFrdsI=) 2: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (hash: g4PKHZmnKpavtsuSJMsF2PYbJyBS2V/nDYQxkb5Lx0g=) 3: 3130332e3137392e37322e302f32342d3234203d3e2039333431.roa (hash: KQr7FT5BTt34iZBSKfWuQXM57WNoh3bm/oXmMRuQ3Ho=) 4: AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl (hash: UDdOQi2/BUPK3AsHNVe+SONZLbshFAYyfNmX6DsWxB0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 21:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:04:42:52:65:2d:f1:e4:d2:08:67:cc:22:75:33:88:2e:53:c5:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Jun 2 18:36:37 2025 GMT Not After : Jun 5 21:41:37 2025 GMT Subject: CN=17FF5407EF9954019D7C068211FB76ED9891C528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:40:71:43:40:18:b2:15:c4:5e:8d:a0:e7:9e: 82:1b:62:6a:37:2f:64:98:a5:24:94:c0:7a:67:d1: 66:86:51:ab:92:08:4a:2e:4c:0f:2d:86:03:22:52: fa:2e:4e:16:a3:00:1d:d8:62:f3:73:48:c3:01:1f: 5c:a2:a6:70:95:3a:7f:2f:3a:08:85:0b:bc:f6:28: b5:6f:48:ea:12:1b:e9:96:81:f4:d5:cb:71:95:a1: 99:60:b9:59:d0:c5:6d:a4:c9:f7:6b:4e:7c:20:fe: 52:1b:c8:69:c2:13:e0:54:60:43:b2:be:eb:af:0e: a4:df:a4:c5:46:49:27:b2:0b:f5:63:f9:58:b2:8b: 2c:6b:06:fa:18:99:b3:b3:17:4e:e0:33:06:29:1e: 46:d2:1d:8b:30:ef:60:af:fa:f1:1d:fb:bb:7f:05: 00:bf:26:b0:f3:11:64:58:83:df:f6:df:6c:c3:12: 81:ef:16:8a:a9:e1:2f:84:0f:0d:1f:28:ab:ff:a1: 30:29:e0:05:a5:d0:be:f1:a5:c3:67:46:0f:86:3e: b9:c9:be:42:16:23:e4:73:d5:03:68:90:39:6c:c7: 7f:58:f5:c7:98:92:0f:97:cd:74:6b:9b:3d:7a:c0: 6d:39:1e:48:0c:0d:e0:a6:29:52:96:18:a9:6a:95: fa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FF:54:07:EF:99:54:01:9D:7C:06:82:11:FB:76:ED:98:91:C5:28 X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:8e:95:ad:62:af:19:40:0a:ca:3a:54:42:28:41:79:99:3b: d0:46:e7:f7:ab:1e:6a:9f:19:dc:53:fd:41:c7:a1:e1:d0:7f: b9:13:61:03:c7:f2:f6:df:fd:77:25:f4:d7:37:31:07:0d:88: dd:f6:a1:be:ce:73:82:45:9d:88:e8:4f:16:0c:1a:f0:32:6e: 5c:cc:d4:d8:80:6d:bd:92:dd:b2:7d:d2:d8:b9:d5:f6:0b:d8: 00:c6:4d:7f:60:9f:65:43:b6:1f:48:87:35:72:b9:4a:0c:17: b6:6d:1d:66:b3:05:4e:c1:ad:59:7e:28:79:f8:bb:2c:63:ee: ee:3d:9b:d1:96:0d:a5:fb:47:8f:89:86:6c:45:36:c5:4b:b4: b4:0f:ca:7f:9a:a0:97:c5:bd:1f:42:e1:91:07:03:30:d3:75: e8:cf:75:30:75:91:cb:a3:d6:96:95:e2:1c:e2:6e:af:43:9f: c2:c3:54:76:19:0f:68:56:45:85:c6:33:b6:03:3f:7c:9d:54: ab:e1:0e:18:3f:cd:dd:2a:4d:8b:94:cd:83:23:23:fd:f5:6f: 72:27:74:a2:06:10:4d:7a:7d:3c:16:c3:00:53:98:84:38:86: b6:59:fb:10:ea:96:9e:4a:2d:0a:de:c5:8d:02:6d:62:3c:1d: c4:5f:60:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeARCUmUt8eTSCGfMInUziC5TxQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNTA2MDIxODM2MzdaFw0yNTA2MDUyMTQxMzdaMDMxMTAvBgNV BAMTKDE3RkY1NDA3RUY5OTU0MDE5RDdDMDY4MjExRkI3NkVEOTg5MUM1MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMQHFDQBiyFcRejaDnnoIbYmo3 L2SYpSSUwHpn0WaGUauSCEouTA8thgMiUvouThajAB3YYvNzSMMBH1yipnCVOn8v OgiFC7z2KLVvSOoSG+mWgfTVy3GVoZlguVnQxW2kyfdrTnwg/lIbyGnCE+BUYEOy vuuvDqTfpMVGSSeyC/Vj+ViyiyxrBvoYmbOzF07gMwYpHkbSHYsw72Cv+vEd+7t/ BQC/JrDzEWRYg9/232zDEoHvFoqp4S+EDw0fKKv/oTAp4AWl0L7xpcNnRg+GPrnJ vkIWI+Rz1QNokDlsx39Y9ceYkg+XzXRrmz16wG05HkgMDeCmKVKWGKlqlfq/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF/9UB++ZVAGdfAaCEft27ZiRxSgwHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzFhYjhhNTgtZjEzZi00ZjcxLTlk ZGUtYWVkNTdlYTZkY2E3LzAvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2 ODUxQkJCNjNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABiOla1irxlACso6VEIoQXmZO9BG5/erHmqf GdxT/UHHoeHQf7kTYQPH8vbf/Xcl9Nc3MQcNiN32ob7Oc4JFnYjoTxYMGvAyblzM 1NiAbb2S3bJ90ti51fYL2ADGTX9gn2VDth9IhzVyuUoMF7ZtHWazBU7BrVl+KHn4 uyxj7u49m9GWDaX7R4+JhmxFNsVLtLQPyn+aoJfFvR9C4ZEHAzDTdejPdTB1kcuj 1paV4hzibq9Dn8LDVHYZD2hWRYXGM7YDP3ydVKvhDhg/zd0qTYuUzYMjI/31b3In dKIGEE16fTwWwwBTmIQ4hrZZ+xDqlp5KLQrexY0CbWI8HcRfYA4= -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:57 2025 by rpki-client