$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: UeYO/xpzOpNeIHQxVbxATQHW1oFsIC8Cifq9ltpwnWY= Subject key identifier: 0B:91:FB:72:F4:7E:EC:7D:54:FB:50:7E:93:F4:8B:76:44:62:DB:04 Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 63FC18D74A81FA27F14185B7A0FBF7C10094B48E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 01D3 Signing time: Fri 22 Aug 2025 23:51:41 +0000 Manifest this update: Fri 22 Aug 2025 23:46:41 +0000 Manifest next update: Tue 26 Aug 2025 02:54:41 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: aDPjpRT6pfd3T7ltNqLLQRA6RqqiOtEG5C4gW/hEaTI=) 2: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: 0GFIWUiUrqRfAE/w3eKveKOv4M+2LjJoosY6Pp8ypUc=) 3: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: fpMsURC55mj9UYGSygWRMqXNEXGKrx7Tnv6mnaZw8SE=) 4: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: 7zBTS0bU7PgzGa8PCcebIzMScdeyLBIAzKr1yoDxbbo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 02:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:fc:18:d7:4a:81:fa:27:f1:41:85:b7:a0:fb:f7:c1:00:94:b4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Aug 22 23:46:41 2025 GMT Not After : Aug 26 02:54:41 2025 GMT Subject: CN=0B91FB72F47EEC7D54FB507E93F48B764462DB04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:73:66:fd:4e:77:d6:62:17:fc:be:ac:ab:16: c6:fc:ad:f1:c4:8c:91:f9:8f:b0:33:48:00:2f:cc: 8c:ba:57:6a:6d:c8:6a:a8:a3:82:a5:68:56:e9:3c: ea:ac:ca:56:87:f2:03:c1:e4:ba:ce:0a:23:fa:17: de:41:53:65:32:de:5e:61:db:ad:89:72:62:f5:4d: 3a:14:36:1c:a6:90:11:86:6d:48:15:c7:f8:50:5c: 54:d5:75:19:b8:15:37:69:bc:e0:7e:36:bf:c0:cd: d7:7f:5e:86:aa:aa:09:91:01:39:82:8d:b8:d1:71: 46:b9:5b:01:58:7d:9a:d7:66:d1:25:a1:c3:9f:83: 4c:bb:8c:84:87:a5:90:1a:25:80:cb:b7:61:70:9a: db:7b:e7:df:c1:ef:c2:1a:12:4e:8d:14:2f:bd:0b: 36:6c:3f:b7:b6:88:e2:e5:9d:4c:3a:40:26:fc:36: 84:c2:df:e1:d8:b9:d8:42:c9:f4:7b:57:d8:5d:d5: 09:f9:49:6a:01:13:32:7e:be:ca:10:13:ba:fb:9b: 4a:0c:10:f6:1f:66:5d:3b:3a:c4:bd:be:52:15:dd: 93:07:bb:a3:1a:53:29:75:d2:30:24:16:0b:23:92: 19:2c:c3:2a:df:1c:a1:1e:93:94:4f:69:5f:8b:e8: b8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:91:FB:72:F4:7E:EC:7D:54:FB:50:7E:93:F4:8B:76:44:62:DB:04 X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:71:c9:34:4e:e9:f4:2c:0e:05:d2:8a:50:8a:7a:03:22:28: 95:14:00:66:7b:53:4b:ea:cd:ed:46:ca:05:78:2f:f7:3d:c9: 99:bc:48:c5:ad:98:05:6a:2d:a6:37:5f:4a:1d:ca:32:61:3d: f3:b5:64:39:7c:7f:ab:36:73:d3:9d:fb:d7:d2:80:9a:a5:5f: 59:ec:67:cc:8f:38:59:10:cd:86:2f:46:81:9e:b1:9f:ef:30: be:d2:38:eb:75:ae:6b:f6:08:db:99:ae:8f:5a:68:01:95:c3: d9:62:de:e2:10:67:1b:57:e0:12:85:3e:21:a7:21:df:5b:33: e1:eb:08:f3:e1:bc:ae:c7:c7:14:d8:0a:83:eb:80:97:5f:91: 14:16:07:b0:08:1d:b8:d2:a9:02:13:cc:3a:1e:df:06:3e:c7: cc:79:96:e7:94:d7:35:99:d7:d4:63:98:bd:12:41:63:09:2c: 21:b8:e6:3f:48:e2:da:af:93:c0:06:cd:d6:f5:62:6d:43:f8: 5a:fd:a4:b8:0d:51:90:ce:22:51:8a:41:21:9c:cd:9d:8f:52: a2:dd:a4:0f:45:80:65:fc:99:4f:e3:78:65:c2:a0:a8:33:8a: 3d:96:54:c1:79:bb:c8:06:a6:85:3f:bf:18:db:ae:f2:95:c2: 07:2b:1f:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY/wY10qB+ifxQYW3oPv3wQCUtI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNTA4MjIyMzQ2NDFaFw0yNTA4MjYwMjU0NDFaMDMxMTAvBgNV BAMTKDBCOTFGQjcyRjQ3RUVDN0Q1NEZCNTA3RTkzRjQ4Qjc2NDQ2MkRCMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9c2b9TnfWYhf8vqyrFsb8rfHE jJH5j7AzSAAvzIy6V2ptyGqoo4KlaFbpPOqsylaH8gPB5LrOCiP6F95BU2Uy3l5h 262JcmL1TToUNhymkBGGbUgVx/hQXFTVdRm4FTdpvOB+Nr/Azdd/XoaqqgmRATmC jbjRcUa5WwFYfZrXZtElocOfg0y7jISHpZAaJYDLt2Fwmtt759/B78IaEk6NFC+9 CzZsP7e2iOLlnUw6QCb8NoTC3+HYudhCyfR7V9hd1Qn5SWoBEzJ+vsoQE7r7m0oM EPYfZl07OsS9vlIV3ZMHu6MaUyl10jAkFgsjkhkswyrfHKEek5RPaV+L6LhTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUC5H7cvR+7H1U+1B+k/SLdkRi2wQwHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIRxyTRO6fQsDgXSilCKegMiKJUUAGZ7U0vq ze1GygV4L/c9yZm8SMWtmAVqLaY3X0odyjJhPfO1ZDl8f6s2c9Od+9fSgJqlX1ns Z8yPOFkQzYYvRoGesZ/vML7SOOt1rmv2CNuZro9aaAGVw9li3uIQZxtX4BKFPiGn Id9bM+HrCPPhvK7HxxTYCoPrgJdfkRQWB7AIHbjSqQITzDoe3wY+x8x5lueU1zWZ 19RjmL0SQWMJLCG45j9I4tqvk8AGzdb1Ym1D+Fr9pLgNUZDOIlGKQSGczZ2PUqLd pA9FgGX8mU/jeGXCoKgzij2WVMF5u8gGpoU/vxjbrvKVwgcrH+0= -----END CERTIFICATE-----Generated at Sat Aug 23 14:10:41 2025 by rpki-client