$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: fBcweNirJTDCf7i7ndQf3TSQ+IHTxkPLlTxk15+cNkk= Subject key identifier: 9A:35:54:7E:97:DF:DB:87:90:AD:6C:01:73:95:B4:8C:1B:80:57:72 Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 4168A2DD7132C84DEAD00CC7FA653542470B8D56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 01A2 Signing time: Wed 07 May 2025 11:21:41 +0000 Manifest this update: Wed 07 May 2025 11:16:41 +0000 Manifest next update: Sat 10 May 2025 19:55:41 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: hLQPD3MbEwgildQda9wOjE3SYD9HUC8/tR+TH7Mo1TY=) 2: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: gwUhQCLpG414frqxV/A3eihir8ysCdrvlyk1yD6ay90=) 3: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: yRfuqfqkKb+kduPHni+17u8MIRgOvgAgU5CY2H7OAQI=) 4: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: VxDJRyHf4quz1NG42aRPhCKiwsHNdLZ5RbJ8wFW7Nhg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 19:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:68:a2:dd:71:32:c8:4d:ea:d0:0c:c7:fa:65:35:42:47:0b:8d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: May 7 11:16:41 2025 GMT Not After : May 10 19:55:41 2025 GMT Subject: CN=9A35547E97DFDB8790AD6C017395B48C1B805772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:63:50:2f:79:b1:3f:c2:3e:23:a0:9d:51:f0: 1f:b1:17:61:fa:44:61:83:a6:51:a4:97:83:25:61: 8d:b9:db:47:c1:39:a7:e8:55:d7:61:30:72:b5:48: af:4d:78:14:23:4b:86:c3:0a:0f:64:aa:7e:67:57: 0a:78:95:60:6a:65:a2:c1:51:87:e7:d2:b4:5c:4d: 3a:cd:2e:36:d6:2d:ec:00:66:0c:fc:5b:90:ed:ac: 7a:3f:0d:4e:d8:e9:8e:8e:62:7a:d3:3d:ef:fe:9c: 0f:ff:da:56:63:7b:c5:b2:39:cd:9c:1e:cd:85:1d: cf:ce:cc:e8:74:cf:c9:f0:e3:64:5a:cd:b4:04:95: 6d:fe:25:ff:f7:8e:33:92:94:10:4d:cc:aa:f8:d9: 5f:d3:ce:a5:36:b5:5d:4e:4a:49:a3:ae:44:7b:e8: 8c:8d:9d:3d:61:91:cd:49:4a:7f:e2:29:b1:9c:29: 80:f5:cd:5f:64:75:91:0f:42:40:16:64:07:0e:58: 02:6d:a6:35:a6:a4:52:3f:cd:5d:3c:ca:83:83:a9: ce:fb:d8:52:92:ac:ae:24:98:d4:6b:a8:61:74:5a: 77:22:4e:93:61:c1:be:74:97:d7:5f:47:6f:22:ff: 8c:d4:a5:10:ea:4f:fa:30:68:12:78:74:4f:9f:5c: cc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:35:54:7E:97:DF:DB:87:90:AD:6C:01:73:95:B4:8C:1B:80:57:72 X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:0e:31:f2:47:6c:27:ca:92:cc:15:39:10:2c:26:ea:5d:03: d3:d3:af:87:08:a3:35:52:f8:71:ed:e0:f8:85:0d:a1:25:52: bc:ee:fb:b9:1e:e5:60:0b:65:53:ce:c7:1d:e0:f5:8f:da:4c: 84:42:25:36:a7:e9:34:4a:ae:6f:ed:58:a5:a7:62:70:9a:96: f1:ac:5e:fb:9d:9f:70:7e:0b:d7:b4:f3:bd:7a:92:1a:e9:b0: 11:be:a3:dc:16:f1:23:40:ba:61:f0:27:1b:32:c8:d7:8b:fe: 10:5f:ab:10:86:07:87:46:32:f9:4f:22:c4:57:15:52:14:9a: eb:c0:4d:9e:05:59:27:0d:b0:d2:83:06:fa:db:18:d8:81:84: 6d:93:4d:65:58:44:77:b2:c1:75:3d:e3:df:a1:8d:41:ca:9d: 84:67:80:3c:73:17:e1:56:32:e2:d5:c2:80:a0:ce:3e:2a:4c: a2:dd:1b:96:1c:8d:dc:f1:16:70:e8:12:c4:be:76:08:10:69: cd:f6:e2:97:3b:ad:f3:9a:b9:12:72:24:87:58:cd:fc:ac:1f: 36:6f:21:c7:3f:b1:c4:c1:41:19:8b:0a:22:20:49:52:6d:b0: fc:f1:f1:6b:c7:b6:d5:ca:06:98:ff:a0:59:a2:2a:69:bb:4c: 3f:7b:99:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQWii3XEyyE3q0AzH+mU1QkcLjVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNTA1MDcxMTE2NDFaFw0yNTA1MTAxOTU1NDFaMDMxMTAvBgNV BAMTKDlBMzU1NDdFOTdERkRCODc5MEFENkMwMTczOTVCNDhDMUI4MDU3NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzY1AvebE/wj4joJ1R8B+xF2H6 RGGDplGkl4MlYY2520fBOafoVddhMHK1SK9NeBQjS4bDCg9kqn5nVwp4lWBqZaLB UYfn0rRcTTrNLjbWLewAZgz8W5DtrHo/DU7Y6Y6OYnrTPe/+nA//2lZje8WyOc2c Hs2FHc/OzOh0z8nw42RazbQElW3+Jf/3jjOSlBBNzKr42V/TzqU2tV1OSkmjrkR7 6IyNnT1hkc1JSn/iKbGcKYD1zV9kdZEPQkAWZAcOWAJtpjWmpFI/zV08yoODqc77 2FKSrK4kmNRrqGF0WnciTpNhwb50l9dfR28i/4zUpRDqT/owaBJ4dE+fXMyZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmjVUfpff24eQrWwBc5W0jBuAV3IwHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMYOMfJHbCfKkswVORAsJupdA9PTr4cIozVS +HHt4PiFDaElUrzu+7ke5WALZVPOxx3g9Y/aTIRCJTan6TRKrm/tWKWnYnCalvGs Xvudn3B+C9e08716khrpsBG+o9wW8SNAumHwJxsyyNeL/hBfqxCGB4dGMvlPIsRX FVIUmuvATZ4FWScNsNKDBvrbGNiBhG2TTWVYRHeywXU949+hjUHKnYRngDxzF+FW MuLVwoCgzj4qTKLdG5YcjdzxFnDoEsS+dggQac324pc7rfOauRJyJIdYzfysHzZv Icc/scTBQRmLCiIgSVJtsPzx8WvHttXKBpj/oFmiKmm7TD97mWM= -----END CERTIFICATE-----Generated at Thu May 8 06:44:40 2025 by rpki-client