$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft File: AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft (raw, json) Hash identifier: iEWVU01MHslPG5pIfJusT/B1BOgRjOua33/eUZA07rI= Subject key identifier: B1:6D:DD:D9:9E:7C:2F:B7:08:72:E2:EF:89:A7:DD:80:1F:F6:B9:F5 Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 30A6C39FB5E60F8F3D6E0C887204696027693EB0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft Manifest number: 0260 Signing time: Sat 06 Sep 2025 02:41:38 +0000 Manifest this update: Sat 06 Sep 2025 02:36:38 +0000 Manifest next update: Tue 09 Sep 2025 14:06:38 +0000 Files and hashes: 1: 3130332e3137392e37322e302f32332d3233203d3e2039333431.roa (hash: K4U8d+sUzMLgrI4fy436tf9syDLx6SvZlYhSkGTWcb8=) 2: 3130332e3137392e37322e302f32342d3234203d3e2039333431.roa (hash: cvr2rock59oqaJDiE9arMS+Z9L88+lzn8zN5bKyApVs=) 3: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (hash: 36hFp4MNqRDgFjqepz99CP3U7evoSejJQb+GMWj9djo=) 4: AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl (hash: 1MR8IixOdsghe1SPdAjEjwWfNyKDyTejHSf2Lwnk5HA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 14:06:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a6:c3:9f:b5:e6:0f:8f:3d:6e:0c:88:72:04:69:60:27:69:3e:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Sep 6 02:36:38 2025 GMT Not After : Sep 9 14:06:38 2025 GMT Subject: CN=B16DDDD99E7C2FB70872E2EF89A7DD801FF6B9F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:98:70:0d:8f:26:79:70:74:39:1e:9a:01: 35:85:8c:7f:d7:25:42:41:97:09:43:8f:6d:03:5c: c7:a9:92:85:d0:09:c8:14:73:7a:55:0d:fa:44:ab: 63:cc:3a:76:e0:ad:bb:26:2f:05:19:e1:ca:5f:50: 6b:4c:08:f5:b2:41:9c:f8:06:fb:56:b3:b0:d2:96: f7:e9:a8:34:d6:1a:66:a2:c4:79:f6:ec:95:64:0f: 9a:51:58:9e:a9:35:ae:86:8e:0a:0d:d8:c9:8b:d7: 16:c9:c0:47:17:dd:fe:89:26:f9:81:fb:1e:0b:5f: 86:fa:1b:39:27:70:8d:f6:9c:c3:a9:70:4d:c7:dd: 5e:63:1d:ed:72:45:5f:0c:6e:3e:13:ef:be:58:32: 39:04:27:11:d6:92:e6:8d:fc:9a:b6:59:28:9a:87: ad:14:8d:ac:73:38:22:ed:5c:9f:cf:31:a2:2d:45: d4:99:e6:01:52:3f:33:a0:20:e3:31:b0:ed:7d:10: 0f:fa:c9:0e:bc:a7:67:72:0f:70:11:d8:1a:94:eb: d4:53:b7:de:05:60:5a:13:c0:27:6d:80:cb:ba:97: 97:3d:c4:8f:3e:70:da:e6:c6:3d:35:7e:8f:98:60: ff:04:07:c0:d4:ea:db:e0:42:a4:b5:c3:e1:32:04: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6D:DD:D9:9E:7C:2F:B7:08:72:E2:EF:89:A7:DD:80:1F:F6:B9:F5 X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:69:3d:64:c4:01:63:36:a6:e6:26:80:00:e6:e5:7f:a4:14: 41:07:da:d0:58:89:4c:db:3f:30:98:df:cd:ae:7a:3d:3a:28: 8c:19:0d:07:0e:fc:9f:74:3e:9c:e2:0d:e7:a8:a9:a0:bd:80: 21:49:48:04:f2:2b:7c:12:7c:86:57:bf:b4:02:20:c3:43:35: 4c:33:24:a8:8d:ee:50:b4:2a:1a:2f:5f:56:1a:db:60:c0:78: 75:36:4b:62:b8:99:94:84:99:8e:bb:97:66:f8:93:7f:a0:c4: 14:d5:7f:79:b0:dc:42:fd:a7:b2:c3:fa:b2:20:c2:19:3f:d5: 18:e8:00:be:9a:06:6f:af:f4:f8:c6:28:40:51:96:7a:4a:f0: ae:d7:9e:05:73:2e:18:eb:85:13:98:7f:6d:49:12:36:4a:77: cf:79:63:bf:fc:ce:cc:90:a4:da:df:e9:f7:98:b5:f9:2a:3d: 39:0a:be:42:be:b6:69:42:b2:a1:78:0d:92:89:a5:78:0c:9f: cb:ce:84:9a:68:d4:a2:4d:41:76:85:ad:bb:84:69:2e:b1:62: 7a:cd:e7:fc:36:f0:98:13:c7:91:9a:61:a8:cf:50:14:47:e7: 56:05:96:e6:82:04:0d:29:a2:42:e2:11:17:3f:d9:1f:ea:f8: 3c:00:a8:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMKbDn7XmD489bgyIcgRpYCdpPrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNTA5MDYwMjM2MzhaFw0yNTA5MDkxNDA2MzhaMDMxMTAvBgNV BAMTKEIxNkREREQ5OUU3QzJGQjcwODcyRTJFRjg5QTdERDgwMUZGNkI5RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGyJhwDY8meXB0OR6aATWFjH/X JUJBlwlDj20DXMepkoXQCcgUc3pVDfpEq2PMOnbgrbsmLwUZ4cpfUGtMCPWyQZz4 BvtWs7DSlvfpqDTWGmaixHn27JVkD5pRWJ6pNa6GjgoN2MmL1xbJwEcX3f6JJvmB +x4LX4b6GzkncI32nMOpcE3H3V5jHe1yRV8Mbj4T775YMjkEJxHWkuaN/Jq2WSia h60UjaxzOCLtXJ/PMaItRdSZ5gFSPzOgIOMxsO19EA/6yQ68p2dyD3AR2BqU69RT t94FYFoTwCdtgMu6l5c9xI8+cNrmxj01fo+YYP8EB8DU6tvgQqS1w+EyBIZFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsW3d2Z58L7cIcuLviafdgB/2ufUwHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzFhYjhhNTgtZjEzZi00ZjcxLTlk ZGUtYWVkNTdlYTZkY2E3LzAvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2 ODUxQkJCNjNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEVpPWTEAWM2puYmgADm5X+kFEEH2tBYiUzb PzCY382uej06KIwZDQcO/J90PpziDeeoqaC9gCFJSATyK3wSfIZXv7QCIMNDNUwz JKiN7lC0KhovX1Ya22DAeHU2S2K4mZSEmY67l2b4k3+gxBTVf3mw3EL9p7LD+rIg whk/1RjoAL6aBm+v9PjGKEBRlnpK8K7XngVzLhjrhROYf21JEjZKd895Y7/8zsyQ pNrf6feYtfkqPTkKvkK+tmlCsqF4DZKJpXgMn8vOhJpo1KJNQXaFrbuEaS6xYnrN 5/w28JgTx5GaYajPUBRH51YFluaCBA0pokLiERc/2R/q+DwAqB4= -----END CERTIFICATE-----Generated at Sun Sep 7 15:25:45 2025 by rpki-client