$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: 87gahcAqV5ualjaqT9wTjBExkxX7o9ye3QKpa5RtWJ8= Subject key identifier: E2:23:87:6C:AD:75:2A:BD:2B:14:2F:63:07:8B:4E:DC:43:16:4D:B0 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 56ADF16A9485C3C726FC017E915B0A734F99FCE8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 0157 Signing time: Wed 07 May 2025 17:10:38 +0000 Manifest this update: Wed 07 May 2025 17:05:38 +0000 Manifest next update: Sat 10 May 2025 18:28:38 +0000 Files and hashes: 1: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: fU1tQ4gaeWNhq2F1RA67XHvI+/xcbSrzocYJJCxhg9Q=) 2: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: geET9/YOwUtWNeEIEWu0ZCElrUfY/yNFJvOG/4u0aBI=) 3: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: zLelzxU4ZsuxGTfpHV/QeSoT92Uv1YowIuNrVafT1QM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 18:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ad:f1:6a:94:85:c3:c7:26:fc:01:7e:91:5b:0a:73:4f:99:fc:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: May 7 17:05:38 2025 GMT Not After : May 10 18:28:38 2025 GMT Subject: CN=E223876CAD752ABD2B142F63078B4EDC43164DB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:56:6b:6c:3f:99:78:87:fd:cb:29:9e:28:cd: 22:4a:af:78:c4:72:51:81:08:46:f2:3d:9d:5e:d6: 5e:ed:42:e3:fb:cb:18:7e:40:f7:23:81:ed:4c:f9: 30:80:a0:c2:ad:c0:dc:ba:99:a8:c0:e1:c6:c5:cc: c5:d4:81:2c:ba:18:6f:bc:0f:75:af:4a:89:b0:f7: 72:a9:62:22:54:de:88:53:ff:4d:17:ae:c9:22:de: a4:ec:03:69:05:4d:4c:41:9c:1a:4c:8f:56:0b:a9: e4:51:d4:9f:3c:41:21:ee:8c:9f:fb:c1:3b:d4:61: 1f:1d:9a:ba:a8:06:08:8b:f9:b0:28:f3:27:bd:63: 79:6c:21:3a:89:bf:d8:0e:8c:e0:3a:ff:d5:83:f9: a6:63:69:2a:b2:c3:8d:2b:54:34:90:a9:b0:1f:7d: ca:48:f1:54:e4:7e:df:27:bc:0d:76:8f:da:48:de: 9d:09:49:19:af:33:78:ad:d0:0c:d9:83:e7:ce:0d: 1d:0c:ff:d7:fb:dd:77:42:67:ec:7a:44:bc:ba:4f: c7:e7:0e:40:48:17:10:3d:7c:e4:ff:2d:b0:91:98: 72:e8:16:f1:d5:6a:b5:19:85:5f:f4:fa:68:71:46: 10:39:8e:02:c1:96:1d:1f:88:69:25:be:df:c2:63: 5c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:23:87:6C:AD:75:2A:BD:2B:14:2F:63:07:8B:4E:DC:43:16:4D:B0 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:a6:7c:a9:f0:83:eb:f2:89:0d:c2:54:80:87:6d:74:73:e2: 51:32:83:86:17:24:22:8d:7d:f6:f9:20:2a:ef:fe:55:0b:55: c9:b6:9c:9b:54:ce:3c:35:72:b4:f0:9c:5d:0d:8e:b9:e7:2e: 0a:94:8a:57:ce:20:4b:0c:28:71:a7:f7:3e:c4:ed:67:f3:90: d5:da:49:70:99:8d:b1:c4:85:e9:a9:3e:72:e7:33:23:25:1a: de:01:30:69:64:a3:06:a4:24:e1:88:e4:d8:70:95:a1:c3:3d: 23:74:91:f2:87:a5:74:3f:25:4c:5a:74:52:ef:c4:9a:22:df: d2:a0:a1:96:2c:c4:bb:74:cb:4b:ba:9d:92:41:7a:3f:d0:1b: d7:7b:24:fb:96:a7:14:be:40:c4:cb:b4:f3:51:29:52:ed:a3: 48:43:20:77:d7:c9:3e:51:cf:f3:35:13:c8:0c:b7:34:92:6b: 19:b4:b1:64:0e:1f:7c:f3:e1:1c:cb:1f:f1:55:78:57:c2:ee: c6:ce:7e:3c:35:4e:02:b8:13:2a:b5:e0:de:8b:dd:78:2a:92: 42:98:44:89:66:b8:7b:09:05:d0:b4:16:ea:2e:08:35:7e:49: 86:61:da:8c:be:4c:43:2a:f1:79:a3:c7:44:96:a1:ff:cb:3f: f2:0b:0c:ae -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVq3xapSFw8cm/AF+kVsKc0+Z/OgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNTA1MDcxNzA1MzhaFw0yNTA1MTAxODI4MzhaMDMxMTAvBgNV BAMTKEUyMjM4NzZDQUQ3NTJBQkQyQjE0MkY2MzA3OEI0RURDNDMxNjREQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZVmtsP5l4h/3LKZ4ozSJKr3jE clGBCEbyPZ1e1l7tQuP7yxh+QPcjge1M+TCAoMKtwNy6majA4cbFzMXUgSy6GG+8 D3WvSomw93KpYiJU3ohT/00Xrski3qTsA2kFTUxBnBpMj1YLqeRR1J88QSHujJ/7 wTvUYR8dmrqoBgiL+bAo8ye9Y3lsITqJv9gOjOA6/9WD+aZjaSqyw40rVDSQqbAf fcpI8VTkft8nvA12j9pI3p0JSRmvM3it0AzZg+fODR0M/9f73XdCZ+x6RLy6T8fn DkBIFxA9fOT/LbCRmHLoFvHVarUZhV/0+mhxRhA5jgLBlh0fiGklvt/CY1x3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4iOHbK11Kr0rFC9jB4tO3EMWTbAwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJymfKnwg+vyiQ3CVICHbXRz4lEyg4YXJCKN ffb5ICrv/lULVcm2nJtUzjw1crTwnF0NjrnnLgqUilfOIEsMKHGn9z7E7WfzkNXa SXCZjbHEhempPnLnMyMlGt4BMGlkowakJOGI5NhwlaHDPSN0kfKHpXQ/JUxadFLv xJoi39KgoZYsxLt0y0u6nZJBej/QG9d7JPuWpxS+QMTLtPNRKVLto0hDIHfXyT5R z/M1E8gMtzSSaxm0sWQOH3zz4RzLH/FVeFfC7sbOfjw1TgK4Eyq14N6L3XgqkkKY RIlmuHsJBdC0FuouCDV+SYZh2oy+TEMq8Xmjx0SWof/LP/ILDK4= -----END CERTIFICATE-----Generated at Thu May 8 18:37:29 2025 by rpki-client