$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft File: AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft (raw, json) Hash identifier: OoE4CekxEGOQylb4D6oA1HLD2riCmBe4JDi1R3VIymY= Subject key identifier: 22:19:1E:CA:C7:54:D7:1D:34:8D:FB:90:E5:C4:8A:17:2F:07:C2:0E Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 7BE1F69D6FF0316113147FDE254F3543BCEC4924 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft Manifest number: 0278 Signing time: Thu 30 Oct 2025 10:11:38 +0000 Manifest this update: Thu 30 Oct 2025 10:06:38 +0000 Manifest next update: Sun 02 Nov 2025 21:34:38 +0000 Files and hashes: 1: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (hash: 36hFp4MNqRDgFjqepz99CP3U7evoSejJQb+GMWj9djo=) 2: AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl (hash: GicdI5uGo/vLwPB3SwwqtIuyzCKwk4EKbX1Pyh418Bo=) 3: 3130332e3137392e37322e302f32332d3233203d3e2039333431.roa (hash: K4U8d+sUzMLgrI4fy436tf9syDLx6SvZlYhSkGTWcb8=) 4: 3130332e3137392e37322e302f32342d3234203d3e2039333431.roa (hash: cvr2rock59oqaJDiE9arMS+Z9L88+lzn8zN5bKyApVs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:e1:f6:9d:6f:f0:31:61:13:14:7f:de:25:4f:35:43:bc:ec:49:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Oct 30 10:06:38 2025 GMT Not After : Nov 2 21:34:38 2025 GMT Subject: CN=22191ECAC754D71D348DFB90E5C48A172F07C20E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:08:f0:64:f0:7e:2a:e6:0c:b4:c5:65:00: c6:5f:a7:a9:9a:c6:a3:9c:da:b2:6e:af:86:98:69: 38:02:80:d8:4e:df:7f:f3:30:d8:eb:b2:08:02:4b: 11:2f:18:3c:0a:a1:84:27:34:43:0d:32:ae:64:de: 7a:77:e5:15:00:e3:2f:78:f8:14:7f:fc:7f:cb:fb: 8d:01:e9:82:83:eb:14:0e:bb:d3:c5:b8:57:22:c6: c6:b4:e7:b0:f9:ad:64:55:eb:5c:22:4a:4f:bf:b4: 44:87:27:6c:c6:40:fd:72:4c:80:4d:02:fb:1a:cf: b9:ab:86:18:8d:3e:db:d3:04:13:75:56:72:97:d8: 7c:bb:03:2b:46:d1:f2:55:b8:cd:60:2a:07:57:82: 06:88:3e:67:e6:bc:58:7e:ef:ab:66:51:25:c7:0f: e4:80:5b:d9:b5:76:79:3a:cc:75:92:c8:56:27:f9: 38:55:e8:46:b8:ab:1d:4d:75:2b:65:9c:08:84:9e: 9c:cc:e1:b2:f4:db:f7:09:98:7e:12:4c:d1:6d:46: 9d:7b:e7:67:24:08:e6:fd:53:ca:89:f2:85:9b:6f: ed:91:2d:dd:48:51:81:a7:0a:47:0f:36:12:5d:5e: b0:93:ce:ab:e8:9d:af:56:95:c1:e9:74:3a:48:c0: 1f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:19:1E:CA:C7:54:D7:1D:34:8D:FB:90:E5:C4:8A:17:2F:07:C2:0E X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:0b:ae:66:fb:a5:21:ae:ad:91:f7:4f:2e:c4:2a:d6:0a:4d: 6b:64:6c:2f:61:b6:37:b8:9f:53:a2:bf:f8:04:64:6f:ab:42: 01:3d:9b:64:6d:98:33:6e:28:c8:65:d2:09:49:21:fe:c9:d4: 07:bc:3f:a4:8e:ff:1d:19:72:8d:2d:37:f5:30:9a:b9:7d:c0: 08:a5:77:ff:d4:75:e1:13:59:8a:08:1b:a7:3a:3f:43:46:13: 3c:94:87:50:70:f6:38:77:51:d6:75:5d:7d:ce:a7:0e:ec:14: 53:8f:ad:db:36:e3:8c:de:84:bd:0a:15:50:ed:4d:ca:d7:8f: 2a:7a:57:1d:36:9d:14:a1:19:c5:16:8c:9d:9e:0c:66:5d:88: 54:1c:61:84:ad:6e:7d:76:4b:81:2b:7f:36:5a:8d:70:be:2f: c8:3c:bd:48:be:15:69:1a:9a:15:b0:96:e3:ab:ef:37:97:32: 1e:96:e5:0a:29:50:18:01:7c:19:d4:17:96:62:01:1e:00:4c: 77:cf:14:76:bf:af:10:c5:40:a2:92:13:e3:f9:b1:0c:76:7f: a0:50:b2:08:63:80:ef:a7:93:25:7b:90:08:ae:26:ee:b3:fc: d5:e0:86:bc:0f:5f:51:9e:e6:6e:78:fb:a9:c3:a2:bc:e6:ba: 87:80:a0:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe+H2nW/wMWETFH/eJU81Q7zsSSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNTEwMzAxMDA2MzhaFw0yNTExMDIyMTM0MzhaMDMxMTAvBgNV BAMTKDIyMTkxRUNBQzc1NEQ3MUQzNDhERkI5MEU1QzQ4QTE3MkYwN0MyMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSswjwZPB+KuYMtMVlAMZfp6ma xqOc2rJur4aYaTgCgNhO33/zMNjrsggCSxEvGDwKoYQnNEMNMq5k3np35RUA4y94 +BR//H/L+40B6YKD6xQOu9PFuFcixsa057D5rWRV61wiSk+/tESHJ2zGQP1yTIBN Avsaz7mrhhiNPtvTBBN1VnKX2Hy7AytG0fJVuM1gKgdXggaIPmfmvFh+76tmUSXH D+SAW9m1dnk6zHWSyFYn+ThV6Ea4qx1NdStlnAiEnpzM4bL02/cJmH4STNFtRp17 52ckCOb9U8qJ8oWbb+2RLd1IUYGnCkcPNhJdXrCTzqvona9WlcHpdDpIwB+9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIhkeysdU1x00jfuQ5cSKFy8Hwg4wHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzFhYjhhNTgtZjEzZi00ZjcxLTlk ZGUtYWVkNTdlYTZkY2E3LzAvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2 ODUxQkJCNjNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKYLrmb7pSGurZH3Ty7EKtYKTWtkbC9htje4 n1Oiv/gEZG+rQgE9m2RtmDNuKMhl0glJIf7J1Ae8P6SO/x0Zco0tN/Uwmrl9wAil d//UdeETWYoIG6c6P0NGEzyUh1Bw9jh3UdZ1XX3Opw7sFFOPrds244zehL0KFVDt TcrXjyp6Vx02nRShGcUWjJ2eDGZdiFQcYYStbn12S4ErfzZajXC+L8g8vUi+FWka mhWwluOr7zeXMh6W5QopUBgBfBnUF5ZiAR4ATHfPFHa/rxDFQKKSE+P5sQx2f6BQ sghjgO+nkyV7kAiuJu6z/NXghrwPX1Ge5m54+6nDorzmuoeAoF4= -----END CERTIFICATE-----Generated at Thu Oct 30 14:55:33 2025 by rpki-client