$ rpki-client -vvf repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft File: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft (raw, json) Hash identifier: bpaXPgDe1h0SCdu3brsgwJ114X2lZvYz01osVF472T8= Subject key identifier: D4:05:AF:98:B5:F7:36:8C:4E:27:4A:D0:15:DD:38:35:9A:EA:EE:F7 Authority key identifier: AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 Certificate issuer: /CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Certificate serial: 3F07B9F0C564568BDC75458472CB1BA84AB9329C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft Manifest number: 025D Signing time: Thu 05 Jun 2025 04:34:25 +0000 Manifest this update: Thu 05 Jun 2025 04:29:25 +0000 Manifest next update: Sun 08 Jun 2025 16:30:25 +0000 Files and hashes: 1: 3130332e3137322e32332e302f32342d3234203d3e20313437313237.roa (hash: 8PoVgFfgdv0P+Y4Af6XkrWx9EOtSeERWvAdTwZHIcYM=) 2: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl (hash: JrPIsDDcJzCkTy4i0qWYVdFYrSXVHT9VnNawEE2GrI8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:07:b9:f0:c5:64:56:8b:dc:75:45:84:72:cb:1b:a8:4a:b9:32:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Validity Not Before: Jun 5 04:29:25 2025 GMT Not After : Jun 8 16:30:25 2025 GMT Subject: CN=D405AF98B5F7368C4E274AD015DD38359AEAEEF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ba:7c:eb:39:93:7f:21:f8:a4:36:98:c6:28: 94:1e:e3:89:af:6e:6c:92:1f:79:a9:47:29:95:b3: 8b:c5:18:27:f1:f5:3b:0a:50:a9:9d:5d:3c:78:25: 1f:4f:00:20:fe:1e:e1:44:89:38:0b:73:b9:a9:a8: 56:e6:cf:ea:58:d0:de:ff:56:35:a5:85:b6:39:52: cf:ae:a3:10:d3:04:6b:09:58:98:73:a7:96:2e:7e: 0b:c9:fa:d5:3e:95:4f:43:98:52:f8:9f:b3:60:06: d3:8c:57:eb:cb:e2:e7:09:25:75:12:eb:69:73:0c: e6:47:19:1c:4c:4b:24:84:7f:e3:d3:d4:37:81:4b: 4b:0f:c6:6c:df:38:3b:d3:1b:a0:a4:1e:9b:e0:f8: 88:9f:a4:28:a2:26:a9:f9:4d:41:82:ce:41:64:0a: 00:c2:07:94:bf:aa:85:dd:c7:28:f7:81:56:0c:20: 6e:20:9e:ae:bc:af:ee:a9:f1:62:b5:f9:a6:d3:04: d0:01:24:e1:6a:17:4b:89:40:54:bc:5f:9f:6d:de: 7c:72:71:29:6d:bd:bd:7c:77:4c:13:8d:e2:53:66: 99:05:d0:50:bc:a0:b6:fc:35:7d:4d:e2:13:06:82: a3:20:e4:eb:d9:6d:fe:4c:20:1c:08:bc:7e:4b:ee: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:05:AF:98:B5:F7:36:8C:4E:27:4A:D0:15:DD:38:35:9A:EA:EE:F7 X509v3 Authority Key Identifier: keyid:AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:ce:1c:a1:df:4f:20:82:46:7c:11:13:f1:30:34:5e:f6:a5: bc:24:1b:e9:6e:02:4c:f6:a6:a5:ba:57:4a:52:4b:a4:c6:99: f7:08:63:5a:c6:ac:d5:09:8d:ae:94:55:bb:9a:a6:b7:1e:84: 44:62:d8:cc:69:37:7b:a7:08:29:74:7e:48:bc:b3:65:fe:e1: 28:6d:fe:29:b6:4a:5b:8f:dc:0a:44:19:2b:f6:5f:48:c8:b9: 38:ee:22:8c:85:3c:36:c1:b0:66:42:41:07:e9:76:74:fd:f6: ea:d0:47:38:d7:24:9f:66:ca:72:14:19:19:25:14:5d:fd:83: 48:ab:8f:bd:5a:68:36:cf:c5:04:6e:2a:15:db:52:09:01:17: a4:4f:28:a4:fb:b4:54:5f:51:cd:8e:33:81:57:55:7d:4c:ff: 18:b3:14:7a:c3:48:90:16:3d:ab:c9:d7:f7:9e:a0:a8:fe:ad: 9d:a2:f4:6c:d6:78:dc:02:19:80:15:55:31:ae:05:77:36:b9: 62:fd:74:ea:04:84:50:c7:f5:4f:a6:76:df:2d:59:10:9e:1f: 3e:2f:55:c8:fa:08:2e:66:12:98:57:03:36:82:20:dd:b2:3e: a1:3a:18:6c:6e:63:98:55:7c:23:a2:de:1e:20:22:02:25:3c: c4:ec:5e:be -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPwe58MVkVovcdUWEcssbqEq5MpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4 MkMzQzJGNjAeFw0yNTA2MDUwNDI5MjVaFw0yNTA2MDgxNjMwMjVaMDMxMTAvBgNV BAMTKEQ0MDVBRjk4QjVGNzM2OEM0RTI3NEFEMDE1REQzODM1OUFFQUVFRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGunzrOZN/IfikNpjGKJQe44mv bmySH3mpRymVs4vFGCfx9TsKUKmdXTx4JR9PACD+HuFEiTgLc7mpqFbmz+pY0N7/ VjWlhbY5Us+uoxDTBGsJWJhzp5YufgvJ+tU+lU9DmFL4n7NgBtOMV+vL4ucJJXUS 62lzDOZHGRxMSySEf+PT1DeBS0sPxmzfODvTG6CkHpvg+IifpCiiJqn5TUGCzkFk CgDCB5S/qoXdxyj3gVYMIG4gnq68r+6p8WK1+abTBNABJOFqF0uJQFS8X59t3nxy cSltvb18d0wTjeJTZpkF0FC8oLb8NX1N4hMGgqMg5OvZbf5MIBwIvH5L7knvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1AWvmLX3NoxOJ0rQFd04NZrq7vcwHwYDVR0j BBgwFoAUr5WN4OzoMLLAfBpYzpFf24LDwvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWRlMGMzOS04NGQ1LTQ0MDUtOTU0ZC00ZDNkNzEyNjkzY2UvMC9BRjk1OERFMEVD RTgzMEIyQzA3QzFBNThDRTkxNUZEQjgyQzNDMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4MkMz QzJGNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzlkZTBjMzktODRkNS00NDA1LTk1 NGQtNGQzZDcxMjY5M2NlLzAvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVG REI4MkMzQzJGNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKTOHKHfTyCCRnwRE/EwNF72pbwkG+luAkz2 pqW6V0pSS6TGmfcIY1rGrNUJja6UVbuaprcehERi2MxpN3unCCl0fki8s2X+4Sht /im2SluP3ApEGSv2X0jIuTjuIoyFPDbBsGZCQQfpdnT99urQRzjXJJ9mynIUGRkl FF39g0irj71aaDbPxQRuKhXbUgkBF6RPKKT7tFRfUc2OM4FXVX1M/xizFHrDSJAW PavJ1/eeoKj+rZ2i9GzWeNwCGYAVVTGuBXc2uWL9dOoEhFDH9U+mdt8tWRCeHz4v Vcj6CC5mEphXAzaCIN2yPqE6GGxuY5hVfCOi3h4gIgIlPMTsXr4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:13:26 2025 by rpki-client