$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: eU9i5D0qXjbmiFS9yGUPvZ4aPZs/wSVRYmWMiCzONOI= Subject key identifier: E3:3E:9E:BF:D4:91:8D:1B:40:14:7F:20:FB:74:12:10:87:48:32:AB Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 679A935FB2B4D62E99F4993B6970B3E1A8805D88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: 85 Signing time: Thu 05 Jun 2025 16:31:41 +0000 Manifest this update: Thu 05 Jun 2025 16:26:41 +0000 Manifest next update: Sun 08 Jun 2025 18:47:41 +0000 Files and hashes: 1: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: MCn/PvmSs+mrUJ5G0GwUvI56VHAftbmxKISHcUpfXDs=) 2: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: cxXcs5+F77Lg7/Ojwbw2WUqjYrzsnoyA2M5AF3WeU8k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 18:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9a:93:5f:b2:b4:d6:2e:99:f4:99:3b:69:70:b3:e1:a8:80:5d:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Jun 5 16:26:41 2025 GMT Not After : Jun 8 18:47:41 2025 GMT Subject: CN=E33E9EBFD4918D1B40147F20FB741210874832AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:71:45:58:a9:2d:99:24:7a:5d:a6:1c:66:99: 3d:a0:f1:89:31:89:94:f2:f6:bd:12:b1:44:eb:bd: 72:71:6c:3a:37:31:e7:a4:4c:45:0a:2e:c6:81:5c: 44:07:42:b0:cb:55:3c:b1:ae:d7:96:a6:1d:b5:11: 52:9b:82:27:54:b5:cb:49:e5:c4:37:87:8e:28:26: 8e:28:c2:56:a9:93:6f:5c:71:13:d5:52:43:85:f4: 5f:b0:b7:82:e5:18:d4:3c:3b:ba:53:11:29:59:f5: 2a:98:a0:43:f5:b6:3c:00:c4:be:fc:7d:62:88:c5: 38:01:59:b6:0a:eb:9e:f2:e1:c4:b7:4f:28:e0:8a: 89:25:d9:9e:f4:a7:dc:af:cd:8a:7e:c1:fd:96:f1: 20:aa:b6:86:29:af:e5:41:85:63:da:0c:c5:70:3b: 47:fe:b6:61:89:80:24:fb:90:13:ae:25:0e:61:72: 9c:8f:25:a6:9e:41:66:11:7a:2e:3c:a6:ce:29:e5: b6:0a:1c:8e:59:bf:6f:96:c0:2a:c7:b2:b2:55:6a: c4:06:1a:17:d9:0a:29:51:35:88:23:a8:5c:81:e3: b4:e6:de:fa:40:f3:8f:ed:e2:58:5c:44:5f:f9:8b: ea:52:8a:51:57:d0:66:2c:2e:7c:55:f4:01:f7:de: 74:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3E:9E:BF:D4:91:8D:1B:40:14:7F:20:FB:74:12:10:87:48:32:AB X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:30:c8:4f:52:25:40:1a:fb:87:66:44:58:03:93:51:a2:fb: e6:f6:b9:6c:0f:f8:a3:1a:07:0d:d7:56:c7:92:3f:f5:71:ed: 25:6b:c9:24:8d:c8:01:96:a2:4c:30:e7:b4:cc:22:ec:4c:0b: 36:c2:a2:b1:42:dd:36:79:d1:a8:7e:b0:2b:24:cc:dc:a7:04: e0:a7:b7:4e:bb:da:24:7d:ca:93:11:4a:f0:f2:36:08:80:d7: 2c:06:e1:dd:6b:a6:fa:b9:6e:2a:c0:d8:05:76:99:85:b9:52: 55:3a:06:fb:e9:57:f1:ed:f9:41:a8:3a:58:b4:97:f2:81:04: c8:98:e4:05:fb:0f:fa:63:3d:5d:d5:71:62:0c:08:25:64:b9: e5:07:0f:f9:6d:37:a7:45:33:c1:2a:6f:75:61:fd:bb:11:35: 02:fe:6a:02:be:3f:01:69:e6:69:21:2d:72:46:45:ef:21:df: e5:f7:c3:01:b8:87:64:0f:91:0d:99:ef:2a:a0:2e:fc:4a:41: 85:bb:16:c2:b3:62:c9:22:04:11:de:4c:dc:3c:9e:62:53:dd: 64:d7:b6:73:19:1a:54:59:04:9e:0c:ff:3a:07:2d:c6:00:78: 59:27:01:47:fe:d6:36:a2:92:40:b6:55:ba:1c:52:7f:f4:0a: f5:e3:43:61 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ5qTX7K01i6Z9Jk7aXCz4aiAXYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNTA2MDUxNjI2NDFaFw0yNTA2MDgxODQ3NDFaMDMxMTAvBgNV BAMTKEUzM0U5RUJGRDQ5MThEMUI0MDE0N0YyMEZCNzQxMjEwODc0ODMyQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCscUVYqS2ZJHpdphxmmT2g8Ykx iZTy9r0SsUTrvXJxbDo3MeekTEUKLsaBXEQHQrDLVTyxrteWph21EVKbgidUtctJ 5cQ3h44oJo4owlapk29ccRPVUkOF9F+wt4LlGNQ8O7pTESlZ9SqYoEP1tjwAxL78 fWKIxTgBWbYK657y4cS3Tyjgiokl2Z70p9yvzYp+wf2W8SCqtoYpr+VBhWPaDMVw O0f+tmGJgCT7kBOuJQ5hcpyPJaaeQWYRei48ps4p5bYKHI5Zv2+WwCrHsrJVasQG GhfZCilRNYgjqFyB47Tm3vpA84/t4lhcRF/5i+pSilFX0GYsLnxV9AH33nSXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4z6ev9SRjRtAFH8g+3QSEIdIMqswHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHwwyE9SJUAa+4dmRFgDk1Gi++b2uWwP+KMa Bw3XVseSP/Vx7SVrySSNyAGWokww57TMIuxMCzbCorFC3TZ50ah+sCskzNynBOCn t0672iR9ypMRSvDyNgiA1ywG4d1rpvq5birA2AV2mYW5UlU6BvvpV/Ht+UGoOli0 l/KBBMiY5AX7D/pjPV3VcWIMCCVkueUHD/ltN6dFM8Eqb3Vh/bsRNQL+agK+PwFp 5mkhLXJGRe8h3+X3wwG4h2QPkQ2Z7yqgLvxKQYW7FsKzYskiBBHeTNw8nmJT3WTX tnMZGlRZBJ4M/zoHLcYAeFknAUf+1jaikkC2VbocUn/0CvXjQ2E= -----END CERTIFICATE-----Generated at Sat Jun 7 07:22:55 2025 by rpki-client