$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: M9yv8WMbYBjbsGcbWHtMeXKJs7Q49asHsYGWsmYHvjo= Subject key identifier: CE:D9:BB:71:47:34:92:06:39:1B:8C:89:17:26:03:B2:31:01:1D:21 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 766045E56DEE8F82991231FD424C098F6FFC5FA9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 0186 Signing time: Thu 21 Aug 2025 15:50:40 +0000 Manifest this update: Thu 21 Aug 2025 15:45:40 +0000 Manifest next update: Mon 25 Aug 2025 01:28:40 +0000 Files and hashes: 1: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: fU1tQ4gaeWNhq2F1RA67XHvI+/xcbSrzocYJJCxhg9Q=) 2: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: geET9/YOwUtWNeEIEWu0ZCElrUfY/yNFJvOG/4u0aBI=) 3: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: OSZfNxR4B6u/Ge8D7QDu4vVEc9p95BnSzrhKShX0ctE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 01:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:60:45:e5:6d:ee:8f:82:99:12:31:fd:42:4c:09:8f:6f:fc:5f:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Aug 21 15:45:40 2025 GMT Not After : Aug 25 01:28:40 2025 GMT Subject: CN=CED9BB7147349206391B8C89172603B231011D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:04:75:3c:49:c7:c9:8b:26:ba:48:02:4e:99: 26:ba:51:82:9b:7d:ef:a1:96:32:c5:85:d3:0e:1f: 4c:75:a9:75:44:4c:f8:25:98:ab:49:b1:40:ce:d2: a3:88:20:d8:b3:28:1f:12:2a:03:8f:7c:fc:43:6b: a1:82:db:27:0d:6c:e4:86:2a:81:4a:5a:41:b5:43: e2:a0:08:22:02:13:bb:aa:07:ff:ae:39:cb:b5:b7: 76:4f:26:53:14:1b:0a:9f:8f:57:15:97:f9:a2:f5: b3:af:65:ee:a6:31:d6:76:7f:25:e7:de:c4:fe:3c: 3a:39:d9:a7:4c:b9:5a:dc:4e:3a:f5:49:1b:33:6f: 72:75:88:9b:64:1e:03:3d:7f:10:99:51:1a:45:03: 11:19:2d:9a:23:2a:ea:e8:ac:fa:ae:6d:99:66:04: 18:28:50:f1:a1:46:17:02:51:4f:8e:8f:1a:79:eb: 34:73:2a:99:31:21:ac:a5:5c:a7:24:c9:c6:8e:74: 63:f2:52:db:3b:c9:11:24:30:a9:b6:1c:67:e2:61: 9f:f6:f7:87:d2:60:41:df:d8:71:61:b9:99:e9:aa: 74:51:5b:7e:c8:e8:98:52:8f:d6:7e:0d:7b:4b:e9: ae:ec:e0:72:bf:af:da:f4:70:09:80:5c:25:e6:41: b1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D9:BB:71:47:34:92:06:39:1B:8C:89:17:26:03:B2:31:01:1D:21 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:25:81:16:cb:76:51:15:b5:5f:59:9a:c8:73:44:65:2d:5e: da:53:01:5f:9e:64:0f:00:5e:69:17:5c:a3:68:52:a7:8e:ad: 54:9b:31:bc:62:7b:6f:98:a2:fe:c6:5b:33:d1:cb:e3:8b:99: 9b:53:52:05:de:27:fc:bd:1c:f1:9f:4a:a3:92:1a:64:45:b3: d3:1a:87:0a:a9:33:e3:84:08:39:57:15:fc:6b:d7:bd:8d:75: 1d:f0:58:5f:67:b6:ce:1b:60:ce:f9:50:57:ec:24:12:d3:67: 9b:df:5d:fc:88:48:61:c6:59:ea:3e:32:71:f4:d3:03:22:49: 71:5c:ad:87:7f:38:b0:00:de:84:f6:f4:e3:de:20:13:0f:4b: f6:51:31:37:cf:c1:ac:a5:27:a3:37:64:09:66:e8:0b:00:63: 74:32:63:79:bd:b6:3b:c2:6f:a0:cc:04:a7:ae:9c:14:ff:ad: cb:3c:68:d3:e6:ee:f3:e5:11:bd:0f:48:e4:a2:45:06:07:32: 2e:d2:69:77:e6:fb:03:ee:e1:93:50:40:48:78:b8:f8:f7:d1: c2:58:0c:a1:95:f9:91:e2:12:4d:35:72:d3:df:fd:c6:5a:ae: 05:c8:b4:21:c9:f8:c9:c5:0a:13:73:46:c4:0a:a6:0a:e8:73: c3:52:36:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdmBF5W3uj4KZEjH9QkwJj2/8X6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNTA4MjExNTQ1NDBaFw0yNTA4MjUwMTI4NDBaMDMxMTAvBgNV BAMTKENFRDlCQjcxNDczNDkyMDYzOTFCOEM4OTE3MjYwM0IyMzEwMTFEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnBHU8ScfJiya6SAJOmSa6UYKb fe+hljLFhdMOH0x1qXVETPglmKtJsUDO0qOIINizKB8SKgOPfPxDa6GC2ycNbOSG KoFKWkG1Q+KgCCICE7uqB/+uOcu1t3ZPJlMUGwqfj1cVl/mi9bOvZe6mMdZ2fyXn 3sT+PDo52adMuVrcTjr1SRszb3J1iJtkHgM9fxCZURpFAxEZLZojKurorPqubZlm BBgoUPGhRhcCUU+Ojxp56zRzKpkxIaylXKckycaOdGPyUts7yREkMKm2HGfiYZ/2 94fSYEHf2HFhuZnpqnRRW37I6JhSj9Z+DXtL6a7s4HK/r9r0cAmAXCXmQbH/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUztm7cUc0kgY5G4yJFyYDsjEBHSEwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAklgRbLdlEVtV9ZmshzRGUtXtpTAV+eZA8A XmkXXKNoUqeOrVSbMbxie2+Yov7GWzPRy+OLmZtTUgXeJ/y9HPGfSqOSGmRFs9Ma hwqpM+OECDlXFfxr172NdR3wWF9nts4bYM75UFfsJBLTZ5vfXfyISGHGWeo+MnH0 0wMiSXFcrYd/OLAA3oT29OPeIBMPS/ZRMTfPwaylJ6M3ZAlm6AsAY3QyY3m9tjvC b6DMBKeunBT/rcs8aNPm7vPlEb0PSOSiRQYHMi7SaXfm+wPu4ZNQQEh4uPj30cJY DKGV+ZHiEk01ctPf/cZargXItCHJ+MnFChNzRsQKpgroc8NSNno= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:14 2025 by rpki-client