$ rpki-client -vvf repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft File: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft (raw, json) Hash identifier: BqGJOTmyNlNnAmZhBM+iQxBMuOm1orDQnUQN/XZ6hlU= Subject key identifier: B3:F5:79:62:C5:C5:DF:66:7E:23:1C:C9:77:3A:F0:93:C7:27:A5:36 Authority key identifier: AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 Certificate issuer: /CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Certificate serial: 72300ED32A11025D6AE3EE133B0F979B249FD9B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft Manifest number: 0286 Signing time: Sat 06 Sep 2025 06:42:03 +0000 Manifest this update: Sat 06 Sep 2025 06:37:03 +0000 Manifest next update: Tue 09 Sep 2025 15:10:03 +0000 Files and hashes: 1: 3130332e3137322e32332e302f32342d3234203d3e20313437313237.roa (hash: 8PoVgFfgdv0P+Y4Af6XkrWx9EOtSeERWvAdTwZHIcYM=) 2: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl (hash: EZGX+E8t4NAwY+dhwyG4jIwqvL6snq3SVlyAcPLasLw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 15:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:30:0e:d3:2a:11:02:5d:6a:e3:ee:13:3b:0f:97:9b:24:9f:d9:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Validity Not Before: Sep 6 06:37:03 2025 GMT Not After : Sep 9 15:10:03 2025 GMT Subject: CN=B3F57962C5C5DF667E231CC9773AF093C727A536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0e:29:df:ca:e0:fe:2b:a3:96:46:a6:45:31: a5:66:c3:3b:6a:a0:0d:68:f2:6a:8c:dc:88:6a:a7: 25:37:f7:81:ba:6f:2f:2a:2e:40:16:bc:b1:6a:dd: d1:56:41:be:28:26:5b:5d:5e:d3:96:f4:2a:4f:ec: 9d:8b:ad:b4:76:d5:ee:1b:f9:f6:17:65:68:f6:55: 8a:71:fc:e5:3c:7a:c9:25:11:d8:1c:18:88:a3:78: 23:76:26:63:6e:94:94:e5:8a:18:ae:db:dd:eb:f7: bf:61:9d:22:ce:52:fa:6d:21:69:47:31:9e:3a:5b: e8:ad:a9:db:e7:58:81:83:22:5c:6c:ce:b6:29:4e: ef:11:a9:12:f7:7f:c7:a2:af:76:27:3a:22:80:a9: 18:bd:e2:7d:05:7f:72:9a:66:17:9d:bd:cf:9a:4b: 89:f6:b9:71:c8:30:51:e1:3e:45:04:31:7b:b4:f4: d5:93:46:92:42:b4:ba:24:5f:15:17:ba:30:13:98: e9:1f:6f:93:e3:a5:a0:12:ef:7f:af:0a:3c:01:0e: 98:9a:98:18:06:a8:1e:6c:66:f1:e5:aa:11:15:0b: 13:19:ef:6f:8f:16:ef:ba:b3:a6:d4:7a:a1:b4:4e: 07:47:33:10:bf:0b:0d:27:6d:8c:5e:8e:22:b5:4d: 16:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F5:79:62:C5:C5:DF:66:7E:23:1C:C9:77:3A:F0:93:C7:27:A5:36 X509v3 Authority Key Identifier: keyid:AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:de:b5:9b:6b:9a:36:20:29:32:51:2a:79:bc:7e:c3:a5:fa: 1a:e5:cd:12:23:ea:93:52:18:47:e7:70:86:f7:bb:fb:2c:0f: 85:63:5b:aa:76:10:36:f2:86:ef:ea:5e:2d:3d:23:0f:0f:5c: ce:98:2b:05:a7:dd:2e:5e:e0:ac:32:de:0a:e0:8f:fb:55:5c: 7c:12:2f:5d:f4:29:bb:86:2d:d0:ad:13:36:f4:93:c5:c8:ec: ec:d3:d2:3a:78:7c:3c:cc:1f:b1:a3:30:8a:b9:7e:83:29:41: 70:5e:ca:e2:3e:e8:e1:97:0b:0d:87:fb:92:cb:93:17:6a:47: be:71:8e:6a:ca:5e:31:d2:2a:1e:99:6c:0f:ae:a9:ca:4a:d8: 62:82:e4:96:a3:1e:cf:51:a2:10:75:6f:2c:c6:1d:3a:58:90: ee:13:91:31:68:29:77:9a:f4:d1:58:84:e5:5a:9e:fd:8c:d0: 4d:dd:9a:5d:69:17:d5:33:8b:7c:b7:30:86:d8:f0:35:90:af: d1:8a:ba:ee:c8:03:88:d4:dd:16:4b:b7:31:61:e8:e2:66:7d: 1b:e6:83:5e:f2:44:d6:76:9c:56:88:9c:6f:5c:ed:c2:f6:f7: aa:5a:50:e5:fc:e3:0a:0e:ab:c9:d7:b9:ae:3e:37:90:21:09: b8:17:1f:b4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcjAO0yoRAl1q4+4TOw+XmySf2bgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4 MkMzQzJGNjAeFw0yNTA5MDYwNjM3MDNaFw0yNTA5MDkxNTEwMDNaMDMxMTAvBgNV BAMTKEIzRjU3OTYyQzVDNURGNjY3RTIzMUNDOTc3M0FGMDkzQzcyN0E1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClDinfyuD+K6OWRqZFMaVmwztq oA1o8mqM3IhqpyU394G6by8qLkAWvLFq3dFWQb4oJltdXtOW9CpP7J2LrbR21e4b +fYXZWj2VYpx/OU8esklEdgcGIijeCN2JmNulJTlihiu293r979hnSLOUvptIWlH MZ46W+itqdvnWIGDIlxszrYpTu8RqRL3f8eir3YnOiKAqRi94n0Ff3KaZhedvc+a S4n2uXHIMFHhPkUEMXu09NWTRpJCtLokXxUXujATmOkfb5PjpaAS73+vCjwBDpia mBgGqB5sZvHlqhEVCxMZ72+PFu+6s6bUeqG0TgdHMxC/Cw0nbYxejiK1TRZtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs/V5YsXF32Z+IxzJdzrwk8cnpTYwHwYDVR0j BBgwFoAUr5WN4OzoMLLAfBpYzpFf24LDwvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWRlMGMzOS04NGQ1LTQ0MDUtOTU0ZC00ZDNkNzEyNjkzY2UvMC9BRjk1OERFMEVD RTgzMEIyQzA3QzFBNThDRTkxNUZEQjgyQzNDMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4MkMz QzJGNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzlkZTBjMzktODRkNS00NDA1LTk1 NGQtNGQzZDcxMjY5M2NlLzAvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVG REI4MkMzQzJGNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADDetZtrmjYgKTJRKnm8fsOl+hrlzRIj6pNS GEfncIb3u/ssD4VjW6p2EDbyhu/qXi09Iw8PXM6YKwWn3S5e4Kwy3grgj/tVXHwS L130KbuGLdCtEzb0k8XI7OzT0jp4fDzMH7GjMIq5foMpQXBeyuI+6OGXCw2H+5LL kxdqR75xjmrKXjHSKh6ZbA+uqcpK2GKC5JajHs9RohB1byzGHTpYkO4TkTFoKXea 9NFYhOVanv2M0E3dml1pF9Uzi3y3MIbY8DWQr9GKuu7IA4jU3RZLtzFh6OJmfRvm g17yRNZ2nFaInG9c7cL296paUOX84woOq8nXua4+N5AhCbgXH7Q= -----END CERTIFICATE-----Generated at Sun Sep 7 15:25:43 2025 by rpki-client