$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft File: AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft (raw, json) Hash identifier: xc9pKZ/VEd7Hpr/L2JNDVtlNdukyrHmL74goltSWw5A= Subject key identifier: 1C:E8:6B:99:51:7C:F4:D5:EA:74:C1:E9:C0:72:B1:A5:EA:9F:0D:DF Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 4849CEA686D64FEF55989E9215F55458660BE2C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft Manifest number: 0210 Signing time: Thu 13 Mar 2025 01:51:36 +0000 Manifest this update: Thu 13 Mar 2025 01:46:36 +0000 Manifest next update: Sun 16 Mar 2025 13:05:36 +0000 Files and hashes: 1: 3130332e3137392e37322e302f32332d3233203d3e2039333431.roa (hash: oEGvz5ekNRTmyT1q5mWcENYutpVCXsuKwR/aZOFrdsI=) 2: AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl (hash: 2ybOCFUdDRUEUJl42W/tBNQTRP2c4eXoLVI8gt9LMCg=) 3: 3130332e3137392e37322e302f32342d3234203d3e2039333431.roa (hash: KQr7FT5BTt34iZBSKfWuQXM57WNoh3bm/oXmMRuQ3Ho=) 4: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (hash: g4PKHZmnKpavtsuSJMsF2PYbJyBS2V/nDYQxkb5Lx0g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Mar 2025 13:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:49:ce:a6:86:d6:4f:ef:55:98:9e:92:15:f5:54:58:66:0b:e2:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Mar 13 01:46:36 2025 GMT Not After : Mar 16 13:05:36 2025 GMT Subject: CN=1CE86B99517CF4D5EA74C1E9C072B1A5EA9F0DDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f2:6e:e0:08:8e:b2:1a:97:8e:fa:f7:d5:32: 4a:2a:43:dc:91:d2:92:34:3e:4b:c1:e6:c9:45:bb: b5:12:73:58:ea:36:cc:44:05:16:d9:d0:18:b7:bb: 17:ee:e9:18:ff:91:60:48:5a:c2:9c:fb:d3:fd:00: a1:63:da:1a:c5:e7:3c:f9:53:8a:28:7a:58:12:76: f3:91:98:4a:4d:8a:64:c8:b0:0c:e8:2b:2a:15:4d: f9:fd:1d:12:e0:81:a7:0d:55:fa:b2:b4:b1:ad:a2: 7f:72:e6:d8:d9:b5:9c:8e:9d:fe:43:47:de:b4:ef: c2:c0:c7:e6:f2:09:95:8e:26:83:06:0e:26:0e:7d: 59:43:e2:85:3f:a6:71:cc:4e:7e:bd:10:4e:f6:26: 06:a3:bd:18:2a:86:30:ad:4b:71:a6:d7:cf:51:c1: 28:08:be:32:1f:7f:9f:17:d1:c1:2a:b3:5f:19:d8: 1a:f0:2e:e9:5b:fb:0d:20:96:b5:d4:0b:f3:fe:ab: b4:3d:3b:5b:0b:cc:49:04:8f:ba:25:eb:8a:6d:d4: 31:66:c2:3b:5c:bf:e3:bd:f1:c4:9d:b8:be:6e:b4: 84:d2:66:44:28:ab:78:61:2b:ed:b5:02:02:d4:a1: c2:95:fe:09:23:18:77:1d:37:6b:b7:03:7a:d4:1f: 78:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E8:6B:99:51:7C:F4:D5:EA:74:C1:E9:C0:72:B1:A5:EA:9F:0D:DF X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:55:66:8e:ee:b8:3a:5a:75:0a:f1:a3:b4:13:cd:6b:86:6f: f7:8d:dd:61:dc:39:b0:b1:96:66:30:3c:91:c2:f7:82:a4:8e: 21:ad:51:b6:a8:5f:a5:ef:70:a6:2a:9a:7d:6c:fa:0b:ad:85: 67:ad:c7:cc:fb:5e:a0:8f:2d:0d:1e:8e:05:60:fd:e8:87:b7: 4a:34:90:5f:9d:0a:78:8b:ae:51:60:8f:45:6e:08:24:01:1d: 2d:62:1f:83:5c:61:36:24:cd:e8:d2:69:7b:65:4c:22:35:29: 2d:8d:3b:a9:e2:36:fd:ba:10:3b:4b:72:0b:e5:6c:77:6c:91: 18:59:d0:ee:5a:33:52:a3:82:ea:0e:c1:68:b1:ea:6d:d1:c7: 38:6e:9b:74:ef:a6:8b:66:a4:57:08:4a:95:28:5e:e4:2c:38: 83:5a:43:ba:3a:17:98:31:0c:4e:5c:90:43:38:80:37:d1:9a: 62:38:41:61:30:7c:28:60:c5:e4:28:92:62:e0:32:10:7f:12: 52:ba:24:32:cf:40:25:ee:51:b1:dc:52:67:bb:30:a5:fb:0b: 5b:d4:fe:f0:dd:75:c1:a0:a1:21:28:1f:31:a0:99:3f:8d:94: 07:3c:cd:64:f8:3e:8f:b8:5c:39:f3:c6:a6:f4:3e:f3:19:1e: 92:40:c8:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSEnOpobWT+9VmJ6SFfVUWGYL4skwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNTAzMTMwMTQ2MzZaFw0yNTAzMTYxMzA1MzZaMDMxMTAvBgNV BAMTKDFDRTg2Qjk5NTE3Q0Y0RDVFQTc0QzFFOUMwNzJCMUE1RUE5RjBEREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC48m7gCI6yGpeO+vfVMkoqQ9yR 0pI0PkvB5slFu7USc1jqNsxEBRbZ0Bi3uxfu6Rj/kWBIWsKc+9P9AKFj2hrF5zz5 U4ooelgSdvORmEpNimTIsAzoKyoVTfn9HRLggacNVfqytLGton9y5tjZtZyOnf5D R96078LAx+byCZWOJoMGDiYOfVlD4oU/pnHMTn69EE72JgajvRgqhjCtS3Gm189R wSgIvjIff58X0cEqs18Z2BrwLulb+w0glrXUC/P+q7Q9O1sLzEkEj7ol64pt1DFm wjtcv+O98cSduL5utITSZkQoq3hhK+21AgLUocKV/gkjGHcdN2u3A3rUH3glAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHOhrmVF89NXqdMHpwHKxpeqfDd8wHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzFhYjhhNTgtZjEzZi00ZjcxLTlk ZGUtYWVkNTdlYTZkY2E3LzAvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2 ODUxQkJCNjNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAJVZo7uuDpadQrxo7QTzWuGb/eN3WHcObCx lmYwPJHC94KkjiGtUbaoX6XvcKYqmn1s+guthWetx8z7XqCPLQ0ejgVg/eiHt0o0 kF+dCniLrlFgj0VuCCQBHS1iH4NcYTYkzejSaXtlTCI1KS2NO6niNv26EDtLcgvl bHdskRhZ0O5aM1KjguoOwWix6m3Rxzhum3TvpotmpFcISpUoXuQsOINaQ7o6F5gx DE5ckEM4gDfRmmI4QWEwfChgxeQokmLgMhB/ElK6JDLPQCXuUbHcUme7MKX7C1vU /vDddcGgoSEoHzGgmT+NlAc8zWT4Po+4XDnzxqb0PvMZHpJAyP4= -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:41 2025 by rpki-client