$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: whsPOkratpzD5EPGIQYuNlgil3/zcStgvTFlrwd7wcg= Subject key identifier: E2:32:A9:28:23:93:B7:47:88:E8:7B:AC:BC:3E:3B:F6:47:03:50:F9 Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 18C603C8FD535AF2DD2746324062BE9C21D412C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 01BA Signing time: Sun 29 Jun 2025 17:21:38 +0000 Manifest this update: Sun 29 Jun 2025 17:16:38 +0000 Manifest next update: Wed 02 Jul 2025 17:25:38 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: VxDJRyHf4quz1NG42aRPhCKiwsHNdLZ5RbJ8wFW7Nhg=) 2: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: gwUhQCLpG414frqxV/A3eihir8ysCdrvlyk1yD6ay90=) 3: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: j8CNQ4BoCSUNtp/8TTlBCExQROj+dKkcS4tnGU74NkQ=) 4: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: hLQPD3MbEwgildQda9wOjE3SYD9HUC8/tR+TH7Mo1TY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c6:03:c8:fd:53:5a:f2:dd:27:46:32:40:62:be:9c:21:d4:12:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Jun 29 17:16:38 2025 GMT Not After : Jul 2 17:25:38 2025 GMT Subject: CN=E232A9282393B74788E87BACBC3E3BF6470350F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7b:14:fe:3f:a1:af:24:4b:53:e1:2f:72:17: f4:c8:ff:e8:1a:bb:19:11:4a:f8:75:3c:09:69:2b: 6c:68:c1:9b:ba:96:b1:98:fe:1b:f4:ca:85:dd:35: aa:8d:03:8b:59:1e:e6:9d:a8:70:82:3b:f0:37:0a: 0d:99:0d:2b:49:f4:2e:40:b0:70:4d:d7:d4:5f:b3: 94:b0:67:5e:dc:7b:09:cf:02:31:f1:ef:cf:3c:eb: 54:c5:ae:4e:13:0f:be:f4:db:e8:5d:a0:f7:cd:c0: a4:76:fc:7e:f3:06:fd:ff:16:f8:5c:76:2f:5c:79: 75:79:67:94:46:91:3d:d6:c5:30:f5:7a:9e:2a:48: de:5d:a4:a0:f8:3e:d3:7d:f9:9c:16:07:e1:e7:d9: a4:82:fe:ee:81:95:2e:a8:b9:8e:85:82:76:c9:a4: 40:8e:80:42:cc:6a:81:b6:fc:c7:24:fc:ff:14:9a: 58:93:91:90:bf:35:2b:77:7e:18:31:91:96:40:b9: fb:9b:18:c5:49:55:9a:aa:3d:3b:bf:6c:dd:c3:c6: 1f:a8:2f:6d:eb:26:4e:8f:30:ca:67:9b:fa:50:78: 6b:68:f7:80:0d:5d:95:2a:fd:14:ca:ad:9d:9c:30: 12:f1:d2:59:71:e3:23:c4:24:f2:c2:65:ae:9c:be: bb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:32:A9:28:23:93:B7:47:88:E8:7B:AC:BC:3E:3B:F6:47:03:50:F9 X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:21:bb:1f:f5:13:4d:d8:ee:0a:cd:40:51:25:01:50:66:ad: 1a:cf:b3:81:94:fb:30:4b:54:59:da:86:15:f5:18:5f:55:e8: d9:18:25:6f:c3:bb:af:4c:f1:2e:b9:93:37:d0:60:ef:7d:f3: 53:89:cb:cf:31:d1:30:18:45:78:47:18:7c:22:dd:76:02:cf: 60:01:4f:64:cb:51:ee:f9:06:7c:1b:6e:37:58:e5:dc:fd:86: 3a:b3:9a:01:6d:d2:0c:f2:3b:cd:6a:ae:dd:f0:e1:4e:14:f2: b0:33:90:47:05:a4:d4:d0:17:8f:25:ca:9c:03:af:86:b3:f4: cc:1c:5c:8d:3b:60:d6:50:80:06:a0:62:03:0d:8b:16:49:ff: 1b:9a:b9:7c:ac:45:bd:5f:29:55:1f:bb:33:de:26:d2:00:cc: 0c:3c:02:74:53:fc:f7:d1:57:e8:dc:be:b7:a1:2f:31:05:fb: 8b:e2:0b:f8:3d:3e:a0:ba:74:40:69:16:6c:ac:eb:b2:5f:37: f6:71:df:84:c6:41:79:90:9f:30:86:35:4a:a6:32:36:ab:45: 32:e0:b9:5c:ec:f4:e1:75:e4:5d:15:de:57:7c:93:22:2e:d9: 15:17:09:c5:5a:2e:aa:1c:47:28:34:94:4e:c3:bd:77:47:17: 2c:47:ac:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGMYDyP1TWvLdJ0YyQGK+nCHUEsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNTA2MjkxNzE2MzhaFw0yNTA3MDIxNzI1MzhaMDMxMTAvBgNV BAMTKEUyMzJBOTI4MjM5M0I3NDc4OEU4N0JBQ0JDM0UzQkY2NDcwMzUwRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIexT+P6GvJEtT4S9yF/TI/+ga uxkRSvh1PAlpK2xowZu6lrGY/hv0yoXdNaqNA4tZHuadqHCCO/A3Cg2ZDStJ9C5A sHBN19Rfs5SwZ17cewnPAjHx788861TFrk4TD7702+hdoPfNwKR2/H7zBv3/Fvhc di9ceXV5Z5RGkT3WxTD1ep4qSN5dpKD4PtN9+ZwWB+Hn2aSC/u6BlS6ouY6FgnbJ pECOgELMaoG2/Mck/P8UmliTkZC/NSt3fhgxkZZAufubGMVJVZqqPTu/bN3Dxh+o L23rJk6PMMpnm/pQeGto94ANXZUq/RTKrZ2cMBLx0llx4yPEJPLCZa6cvruNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4jKpKCOTt0eI6HusvD479kcDUPkwHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEshux/1E03Y7grNQFElAVBmrRrPs4GU+zBL VFnahhX1GF9V6NkYJW/Du69M8S65kzfQYO9981OJy88x0TAYRXhHGHwi3XYCz2AB T2TLUe75BnwbbjdY5dz9hjqzmgFt0gzyO81qrt3w4U4U8rAzkEcFpNTQF48lypwD r4az9MwcXI07YNZQgAagYgMNixZJ/xuauXysRb1fKVUfuzPeJtIAzAw8AnRT/PfR V+jcvrehLzEF+4viC/g9PqC6dEBpFmys67JfN/Zx34TGQXmQnzCGNUqmMjarRTLg uVzs9OF15F0V3ld8kyIu2RUXCcVaLqocRyg0lE7DvXdHFyxHrGY= -----END CERTIFICATE-----Generated at Sun Jun 29 19:33:32 2025 by rpki-client