$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: k5Af72ZIH+ObP+lmuYHuScdPDKFHLgUhMOb1SmsdfpQ= Subject key identifier: 20:CC:0B:67:03:05:79:DE:2D:B9:C3:AC:11:15:D7:E6:49:F1:7E:E4 Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 76B811D62B9689E146B60953BAD53ED1833EEAF4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: 9A Signing time: Mon 21 Jul 2025 01:41:40 +0000 Manifest this update: Mon 21 Jul 2025 01:36:40 +0000 Manifest next update: Thu 24 Jul 2025 13:03:40 +0000 Files and hashes: 1: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: +l2rwFooH4D9MU53Wx/H6yPdwK2ps73sWKi77huAgWI=) 2: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: okMulqCwmQrHdU+kO0nYzAvF/vvi8wTCEKi+VdDT9lQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 13:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b8:11:d6:2b:96:89:e1:46:b6:09:53:ba:d5:3e:d1:83:3e:ea:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Jul 21 01:36:40 2025 GMT Not After : Jul 24 13:03:40 2025 GMT Subject: CN=20CC0B67030579DE2DB9C3AC1115D7E649F17EE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:2f:b2:76:71:e4:24:e8:77:0d:49:db:eb: 21:7e:11:e1:2b:9e:be:fa:83:4d:fe:8f:fe:5e:1b: 33:66:3e:75:62:df:57:92:a6:69:96:0e:d0:c0:17: b5:9f:a2:a4:6e:47:87:2e:69:cd:72:67:8f:0c:ea: 99:90:23:18:be:cd:8e:90:0c:7c:29:be:e4:b5:5f: 07:9d:02:63:27:41:ea:87:9a:d2:fe:ad:44:09:21: 0e:ba:57:4d:c5:0c:9c:3b:ef:cd:80:e6:e9:fc:17: 73:4a:c8:98:32:b9:68:53:63:d9:fe:0a:2c:fb:71: b6:3a:b2:23:9b:ef:77:11:50:1f:db:8b:d3:68:22: 0c:75:dd:98:66:cf:6c:8b:8c:b6:cd:55:34:5c:60: c9:e5:9f:12:fe:ba:be:f8:50:01:85:cb:bc:f5:d6: b6:17:30:bb:06:e8:de:24:03:39:eb:38:cc:bd:d3: 91:06:ff:72:c1:b1:82:3b:b2:df:a7:7f:4e:22:53: 56:f0:ba:2b:e8:e3:7a:3c:75:36:c4:44:13:09:6b: 0e:0d:d8:05:6d:d2:c0:85:a2:9c:43:27:55:61:f2: 2e:46:fd:03:29:f6:f8:9b:0d:4a:31:ee:f4:5f:1e: cb:21:4d:48:7d:3b:69:2c:5a:99:ae:e2:03:ba:26: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CC:0B:67:03:05:79:DE:2D:B9:C3:AC:11:15:D7:E6:49:F1:7E:E4 X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:49:6e:2f:08:1c:da:a0:7b:87:75:f1:6b:3a:d8:d5:b0:37: 52:9e:6c:0d:c2:81:0b:67:b6:49:dd:9f:b4:e4:12:62:e0:b1: 05:0f:91:5f:95:3d:81:d6:4b:bb:89:48:c5:94:7a:6f:83:cd: 43:ff:d5:5c:88:d5:b8:03:eb:a9:78:1d:10:dc:d4:09:9a:a0: 6b:ca:20:19:58:e2:1c:86:fb:d2:3c:a1:ea:f4:a3:2a:1e:62: cd:b8:eb:83:9d:d0:f1:3f:1d:bc:84:11:e8:25:02:f4:ee:a3: ac:e7:e5:df:25:f1:bd:d3:9a:46:cb:92:69:aa:9a:12:e0:4b: ba:11:e4:97:d8:7e:01:9a:37:1c:99:47:69:49:41:06:e2:6e: 7e:8c:e0:43:7f:b3:2c:68:e1:5e:56:8d:a2:fa:20:72:13:dc: 06:53:2b:b8:8f:80:56:e3:a6:23:6f:d3:3f:2f:e4:45:5b:90: e5:c6:4b:a3:92:69:83:1a:33:bb:5f:29:10:d7:5c:7e:ca:ff: 97:97:28:c3:72:d1:2f:f5:90:00:b6:8f:34:1e:d1:b3:bf:3a: 46:5a:ff:bc:34:fd:40:c2:0d:1d:fa:bd:e1:15:65:aa:1d:ac: dc:e9:b3:f7:05:21:dd:60:20:be:a4:e7:10:59:54:65:90:74: 11:cd:04:70 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdrgR1iuWieFGtglTutU+0YM+6vQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNTA3MjEwMTM2NDBaFw0yNTA3MjQxMzAzNDBaMDMxMTAvBgNV BAMTKDIwQ0MwQjY3MDMwNTc5REUyREI5QzNBQzExMTVEN0U2NDlGMTdFRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxAi+ydnHkJOh3DUnb6yF+EeEr nr76g03+j/5eGzNmPnVi31eSpmmWDtDAF7WfoqRuR4cuac1yZ48M6pmQIxi+zY6Q DHwpvuS1XwedAmMnQeqHmtL+rUQJIQ66V03FDJw7782A5un8F3NKyJgyuWhTY9n+ Ciz7cbY6siOb73cRUB/bi9NoIgx13Zhmz2yLjLbNVTRcYMnlnxL+ur74UAGFy7z1 1rYXMLsG6N4kAznrOMy905EG/3LBsYI7st+nf04iU1bwuivo43o8dTbERBMJaw4N 2AVt0sCFopxDJ1Vh8i5G/QMp9vibDUox7vRfHsshTUh9O2ksWpmu4gO6Jse3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIMwLZwMFed4tucOsERXX5knxfuQwHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGJJbi8IHNqge4d18Ws62NWwN1KebA3CgQtn tkndn7TkEmLgsQUPkV+VPYHWS7uJSMWUem+DzUP/1VyI1bgD66l4HRDc1AmaoGvK IBlY4hyG+9I8oer0oyoeYs2464Od0PE/HbyEEeglAvTuo6zn5d8l8b3TmkbLkmmq mhLgS7oR5JfYfgGaNxyZR2lJQQbibn6M4EN/syxo4V5WjaL6IHIT3AZTK7iPgFbj piNv0z8v5EVbkOXGS6OSaYMaM7tfKRDXXH7K/5eXKMNy0S/1kAC2jzQe0bO/OkZa /7w0/UDCDR36veEVZaodrNzps/cFId1gIL6k5xBZVGWQdBHNBHA= -----END CERTIFICATE-----Generated at Wed Jul 23 06:03:16 2025 by rpki-client