$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: ePMV94Rqyf94aJcdAHQcJzPLVsXyzEdi9fzS6dVPLqY= Subject key identifier: A9:90:DF:84:00:FE:06:12:36:1B:8E:CA:ED:11:8B:87:4B:0C:20:ED Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 59EC3D673AEC97AB75F43D6A9C49E20F3F63659D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 01ED Signing time: Mon 20 Oct 2025 07:11:43 +0000 Manifest this update: Mon 20 Oct 2025 07:06:43 +0000 Manifest next update: Thu 23 Oct 2025 14:40:43 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: aDPjpRT6pfd3T7ltNqLLQRA6RqqiOtEG5C4gW/hEaTI=) 2: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: 7zBTS0bU7PgzGa8PCcebIzMScdeyLBIAzKr1yoDxbbo=) 3: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: 0GFIWUiUrqRfAE/w3eKveKOv4M+2LjJoosY6Pp8ypUc=) 4: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: gt+isIe6ZJnRsWtMHfq33uLoozwOZeuNygRhxvcuWuc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ec:3d:67:3a:ec:97:ab:75:f4:3d:6a:9c:49:e2:0f:3f:63:65:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Oct 20 07:06:43 2025 GMT Not After : Oct 23 14:40:43 2025 GMT Subject: CN=A990DF8400FE0612361B8ECAED118B874B0C20ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b1:2f:78:24:80:b5:12:93:da:02:16:94:ad: 1c:74:5b:57:ca:3c:ff:27:4b:9b:e4:a7:9c:df:98: e0:e1:78:5c:b7:26:5b:9e:35:1a:ae:8e:9d:c3:0a: 07:27:cf:ed:7d:2a:67:4c:aa:eb:e3:8e:b3:c3:d4: 24:3b:89:a6:3c:2a:4e:34:18:09:0e:57:61:bb:0d: 1d:d8:5d:fb:3b:ce:5c:95:e5:63:a6:23:d9:a7:f5: 3a:95:35:bf:30:81:95:b0:a4:c5:d0:53:a7:79:96: 5e:65:84:3c:18:00:26:c3:2c:b2:63:e0:d5:b9:e2: cc:a5:dc:db:18:7e:c2:6d:b1:cb:52:c1:f3:23:6a: b6:3a:4a:9d:2f:be:c0:1d:9c:01:24:a7:37:f8:d7: 15:e2:d5:c7:c8:36:22:cb:71:91:54:1e:49:20:cd: 61:3f:dd:23:f2:2e:55:99:51:cd:d4:c6:54:c4:53: 78:fc:b9:be:c7:02:c7:ba:7a:5a:03:08:8e:42:59: e0:32:5a:7f:c6:17:fe:c6:9e:42:98:53:2a:a9:a9: e8:cf:ef:97:e7:d8:82:9a:af:0e:a2:38:b1:0b:a7: 00:66:89:f8:3a:27:94:1d:d1:65:9b:69:a4:a0:c8: 07:d8:57:30:a2:6d:1c:91:bd:28:0e:2b:0a:7f:b3: 0e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:90:DF:84:00:FE:06:12:36:1B:8E:CA:ED:11:8B:87:4B:0C:20:ED X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:be:9a:ad:91:4a:74:5a:a1:21:97:85:ce:a4:b4:58:98:8e: 44:ef:e6:21:53:0e:3c:0c:aa:d2:1d:7a:5b:b4:2b:a8:86:b0: c6:80:6e:87:87:0f:23:39:ee:88:ae:78:c0:65:f2:3d:72:9a: 45:07:3c:7c:0c:7d:61:56:2b:67:7b:bc:2a:0c:81:a1:b8:02: 52:2b:c8:56:5b:d3:1c:37:ff:7a:34:81:d8:86:89:4d:17:e0: 97:ea:90:05:a1:2c:e9:e8:1d:25:39:b0:0e:2a:30:cc:73:26: f1:95:8f:a3:11:b0:83:0e:b8:db:1e:2d:6d:a4:43:14:ce:30: 5d:ff:a0:67:a4:dd:96:49:9a:6f:fb:bb:f7:98:7e:d7:b9:67: 31:59:47:17:9d:ef:4f:a5:4f:87:96:4e:f0:6e:8d:33:e6:50: 72:88:0f:86:33:3f:59:1f:24:c4:3b:c6:cf:0f:29:6b:03:d3: 4a:91:63:6a:b9:e9:17:d9:f9:54:0e:ac:d6:4e:6f:9c:d5:12: 31:56:f4:a0:cd:d7:a9:9a:3e:4b:52:d4:06:2c:74:ad:0f:5f: ed:4f:4c:7e:7f:3d:66:8c:2b:61:ee:ab:06:17:50:b9:a5:f4: a4:5d:10:4a:44:95:7f:2b:0a:7f:49:a3:44:84:45:a8:8b:42: df:74:1a:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWew9Zzrsl6t19D1qnEniDz9jZZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNTEwMjAwNzA2NDNaFw0yNTEwMjMxNDQwNDNaMDMxMTAvBgNV BAMTKEE5OTBERjg0MDBGRTA2MTIzNjFCOEVDQUVEMTE4Qjg3NEIwQzIwRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXsS94JIC1EpPaAhaUrRx0W1fK PP8nS5vkp5zfmODheFy3JlueNRqujp3DCgcnz+19KmdMquvjjrPD1CQ7iaY8Kk40 GAkOV2G7DR3YXfs7zlyV5WOmI9mn9TqVNb8wgZWwpMXQU6d5ll5lhDwYACbDLLJj 4NW54syl3NsYfsJtsctSwfMjarY6Sp0vvsAdnAEkpzf41xXi1cfINiLLcZFUHkkg zWE/3SPyLlWZUc3UxlTEU3j8ub7HAse6eloDCI5CWeAyWn/GF/7GnkKYUyqpqejP 75fn2IKarw6iOLELpwBmifg6J5Qd0WWbaaSgyAfYVzCibRyRvSgOKwp/sw67AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqZDfhAD+BhI2G47K7RGLh0sMIO0wHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEy+mq2RSnRaoSGXhc6ktFiYjkTv5iFTDjwM qtIdelu0K6iGsMaAboeHDyM57oiueMBl8j1ymkUHPHwMfWFWK2d7vCoMgaG4AlIr yFZb0xw3/3o0gdiGiU0X4JfqkAWhLOnoHSU5sA4qMMxzJvGVj6MRsIMOuNseLW2k QxTOMF3/oGek3ZZJmm/7u/eYfte5ZzFZRxed70+lT4eWTvBujTPmUHKID4YzP1kf JMQ7xs8PKWsD00qRY2q56RfZ+VQOrNZOb5zVEjFW9KDN16maPktS1AYsdK0PX+1P TH5/PWaMK2HuqwYXULml9KRdEEpElX8rCn9Jo0SERaiLQt90GhE= -----END CERTIFICATE-----Generated at Mon Oct 20 20:18:40 2025 by rpki-client