$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: vDTldFYzp3L3vmvE1xlO5M1hudo31Dn9GjCxKvGFU2s= Subject key identifier: 45:EA:01:D2:22:78:23:02:5C:85:A7:F5:16:DC:1D:3E:9B:CF:25:AC Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 5EAE901BDB9ACA496D660BF883E18A09B0702BAA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 016E Signing time: Fri 27 Jun 2025 21:50:39 +0000 Manifest this update: Fri 27 Jun 2025 21:45:39 +0000 Manifest next update: Tue 01 Jul 2025 08:16:39 +0000 Files and hashes: 1: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: JOoNT+TPzsSllCH0f1wGis4667tVOCdpwmvAPC8jj4k=) 2: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: fU1tQ4gaeWNhq2F1RA67XHvI+/xcbSrzocYJJCxhg9Q=) 3: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: geET9/YOwUtWNeEIEWu0ZCElrUfY/yNFJvOG/4u0aBI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 08:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ae:90:1b:db:9a:ca:49:6d:66:0b:f8:83:e1:8a:09:b0:70:2b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Jun 27 21:45:39 2025 GMT Not After : Jul 1 08:16:39 2025 GMT Subject: CN=45EA01D2227823025C85A7F516DC1D3E9BCF25AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:38:85:74:b1:7c:65:a2:88:e8:c1:e9:ca:33: ef:ee:74:40:fe:89:34:f7:d8:7f:48:f7:d4:ba:46: e5:d8:04:04:03:69:26:8e:66:1f:fa:ad:1c:1e:2b: 2b:89:2a:26:58:59:a3:ea:d4:f6:bc:59:0a:52:f4: 44:77:ce:71:cd:dd:72:b0:5a:25:3f:3e:97:45:92: 78:c0:1a:9b:07:b0:c6:37:c3:34:5f:b7:ce:52:c2: 5a:b2:9b:6c:07:32:4c:d9:52:71:43:c9:8c:75:9b: 33:ea:b5:a9:bc:d2:49:32:80:7f:d1:35:1c:d4:ee: 3d:f5:cc:49:75:43:98:1b:e3:78:5e:7e:e1:ad:ac: f7:c5:d0:9a:a2:b3:6b:fb:d6:cb:92:17:51:e0:52: 0d:e5:e9:bb:19:e5:75:83:cd:86:10:83:ac:14:38: a7:c8:71:62:09:36:2d:4e:4e:3b:b3:0c:5b:d4:8d: 0c:2a:b6:5d:0d:3f:8f:03:8c:3e:d4:6f:0c:2f:50: f7:83:a0:18:67:ed:14:d4:16:f0:da:1e:85:ee:28: d1:ef:28:22:36:93:75:4a:8a:02:6c:c7:42:d7:fb: 74:cb:12:a6:5c:e6:0c:59:00:ce:13:b9:e3:c6:fb: 75:bb:cc:ad:4e:51:4c:db:de:1b:e3:c7:1d:86:0b: 97:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EA:01:D2:22:78:23:02:5C:85:A7:F5:16:DC:1D:3E:9B:CF:25:AC X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:1b:25:e7:27:27:ca:4f:22:d7:02:49:4a:27:e3:ba:33:d9: ca:dc:2d:91:97:7b:13:75:63:c0:3c:b1:70:91:aa:5e:11:39: 9b:14:6d:57:f2:10:87:0b:11:bc:5b:0b:31:fa:c2:1f:2f:af: 15:30:7f:2e:d1:d5:35:29:65:9f:63:87:dc:b2:73:d2:80:a4: 15:f7:0e:03:fe:cf:3e:0f:29:2d:c9:68:5a:d5:03:e2:3b:64: 11:24:c6:f9:ee:99:0c:9d:f3:47:02:35:9a:72:69:a5:77:b1: 0c:cf:9c:4c:44:27:c0:13:80:ac:30:f0:46:42:97:16:04:b9: bf:0b:a1:41:3e:3b:09:2e:eb:f0:f9:18:da:b4:57:5c:de:56: bb:d8:d8:4e:87:50:27:91:d5:c7:ad:b7:e4:f0:e0:ae:cb:12: ca:9c:2c:f1:62:08:e9:99:7d:5f:24:2d:88:20:86:ac:45:8e: 58:9f:e1:42:f3:bb:2d:6d:5b:13:93:5a:85:7c:9a:76:59:b4: 5e:ee:b2:56:fc:8e:90:2a:7b:a4:73:ae:c2:da:dd:e3:b9:f4: 04:ed:93:9b:be:5c:da:79:06:04:57:41:5a:2b:63:6f:b2:47: 58:be:38:1e:13:09:6b:26:ea:4c:95:f6:ef:8f:40:a6:03:d7: fb:7f:99:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXq6QG9uaykltZgv4g+GKCbBwK6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNTA2MjcyMTQ1MzlaFw0yNTA3MDEwODE2MzlaMDMxMTAvBgNV BAMTKDQ1RUEwMUQyMjI3ODIzMDI1Qzg1QTdGNTE2REMxRDNFOUJDRjI1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbOIV0sXxloojowenKM+/udED+ iTT32H9I99S6RuXYBAQDaSaOZh/6rRweKyuJKiZYWaPq1Pa8WQpS9ER3znHN3XKw WiU/PpdFknjAGpsHsMY3wzRft85Swlqym2wHMkzZUnFDyYx1mzPqtam80kkygH/R NRzU7j31zEl1Q5gb43hefuGtrPfF0Jqis2v71suSF1HgUg3l6bsZ5XWDzYYQg6wU OKfIcWIJNi1OTjuzDFvUjQwqtl0NP48DjD7UbwwvUPeDoBhn7RTUFvDaHoXuKNHv KCI2k3VKigJsx0LX+3TLEqZc5gxZAM4TuePG+3W7zK1OUUzb3hvjxx2GC5dxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUReoB0iJ4IwJchaf1FtwdPpvPJawwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAIbJecnJ8pPItcCSUon47oz2crcLZGXexN1 Y8A8sXCRql4ROZsUbVfyEIcLEbxbCzH6wh8vrxUwfy7R1TUpZZ9jh9yyc9KApBX3 DgP+zz4PKS3JaFrVA+I7ZBEkxvnumQyd80cCNZpyaaV3sQzPnExEJ8ATgKww8EZC lxYEub8LoUE+Owku6/D5GNq0V1zeVrvY2E6HUCeR1cett+Tw4K7LEsqcLPFiCOmZ fV8kLYgghqxFjlif4ULzuy1tWxOTWoV8mnZZtF7uslb8jpAqe6RzrsLa3eO59ATt k5u+XNp5BgRXQVorY2+yR1i+OB4TCWsm6kyV9u+PQKYD1/t/mds= -----END CERTIFICATE-----Generated at Sun Jun 29 19:37:32 2025 by rpki-client