$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: 0TPXHFGgOXmIJMmIbMcGKIdYinEOWzQKM8KKn1gH2Sw= Subject key identifier: BE:99:6D:8B:6D:A6:2F:7D:66:44:6D:FA:A9:C4:49:9E:B6:BF:A0:BD Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 0F00B645A7502EE64F9F8E3BC9EF35CE44A53E26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: 90 Signing time: Sun 29 Jun 2025 23:21:38 +0000 Manifest this update: Sun 29 Jun 2025 23:16:38 +0000 Manifest next update: Thu 03 Jul 2025 02:38:38 +0000 Files and hashes: 1: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: cxXcs5+F77Lg7/Ojwbw2WUqjYrzsnoyA2M5AF3WeU8k=) 2: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: rf+q03cEDzTMWV12obv2nK42vwpbRtssOTkpv+qd7Z8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 02:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:00:b6:45:a7:50:2e:e6:4f:9f:8e:3b:c9:ef:35:ce:44:a5:3e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Jun 29 23:16:38 2025 GMT Not After : Jul 3 02:38:38 2025 GMT Subject: CN=BE996D8B6DA62F7D66446DFAA9C4499EB6BFA0BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:60:f7:c5:49:d5:5e:6c:a5:b0:34:d0:2d:eb: ec:2c:c3:f8:47:8d:eb:9e:10:0a:36:63:29:48:fd: 4e:78:0d:cd:6d:b7:88:bb:0b:e2:ca:ad:01:16:1e: 90:bf:12:72:c8:9b:0f:ff:e9:17:88:af:29:d4:82: 4f:75:23:7f:19:81:43:97:a1:4e:df:8b:2d:23:6f: e7:45:53:a5:14:d3:67:7c:62:31:48:b5:18:3e:d6: 5c:69:ea:15:aa:ff:61:5b:6a:20:2c:1f:1b:68:3c: 57:58:fc:1d:4b:fa:b0:eb:85:af:ce:30:ca:4b:e5: 98:71:63:ea:70:94:72:4b:e7:52:f7:de:c2:56:44: bc:c1:54:0f:d3:d3:88:03:0b:0d:62:75:19:14:f2: 93:95:f6:da:81:87:35:e5:e3:82:4b:29:69:d4:d5: e7:87:ed:80:01:29:be:84:ae:2d:d2:f7:da:c3:ca: 84:3a:35:89:aa:a7:5c:91:5a:56:3f:82:f2:e0:f5: 0a:30:97:1a:32:19:47:4e:bc:60:6f:5c:1e:60:53: b7:c7:cc:e5:d7:11:33:11:d3:02:1c:60:69:8c:38: 7f:fb:b4:40:e6:39:73:83:9e:5c:87:70:72:b1:43: 6d:f7:00:07:77:60:de:47:a0:e0:09:74:aa:4a:b1: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:99:6D:8B:6D:A6:2F:7D:66:44:6D:FA:A9:C4:49:9E:B6:BF:A0:BD X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:01:aa:e6:b9:ad:bd:4a:7f:68:22:41:a8:a9:c6:d3:70:9f: d2:8f:a7:ab:8c:d8:b1:4f:13:e1:b7:0d:f6:b3:73:0b:e3:f5: 6d:41:4a:ed:90:eb:fc:c5:3c:fd:da:7c:95:38:8b:33:96:b2: ba:d6:9c:47:fd:86:82:35:d8:c6:98:5f:a2:a5:b4:3e:49:e0: 9e:21:dc:cb:49:f0:d3:4b:ff:6b:73:c5:9f:5a:be:85:c7:6a: 33:54:84:56:ce:5a:a6:35:27:6e:12:b8:8b:b5:7c:28:d1:68: e0:74:fd:59:81:5f:47:04:9a:13:c9:8c:42:82:fa:77:39:6d: 01:eb:37:24:9f:ad:5c:e0:e9:68:a0:58:17:a0:c1:89:c8:00: c4:4d:56:b0:22:75:c1:20:1b:3a:c1:97:98:61:bf:91:88:76: 71:af:73:b2:ba:5b:ca:04:f6:8d:7e:68:13:d1:4c:01:d0:b0: c3:f8:db:15:12:a8:29:d7:a7:57:5c:b8:14:d5:e0:40:7e:22: c9:a9:aa:83:5e:dd:9f:67:fc:6c:ad:bf:05:79:a3:f5:e7:9a: a3:e9:33:79:a2:b2:47:f6:04:53:55:e3:af:b9:a7:96:08:80: 82:7d:b4:98:91:17:24:e1:c4:73:27:b6:56:e5:e5:11:25:6a: 36:6d:78:a6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDwC2RadQLuZPn447ye81zkSlPiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNTA2MjkyMzE2MzhaFw0yNTA3MDMwMjM4MzhaMDMxMTAvBgNV BAMTKEJFOTk2RDhCNkRBNjJGN0Q2NjQ0NkRGQUE5QzQ0OTlFQjZCRkEwQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWYPfFSdVebKWwNNAt6+wsw/hH jeueEAo2YylI/U54Dc1tt4i7C+LKrQEWHpC/EnLImw//6ReIrynUgk91I38ZgUOX oU7fiy0jb+dFU6UU02d8YjFItRg+1lxp6hWq/2FbaiAsHxtoPFdY/B1L+rDrha/O MMpL5ZhxY+pwlHJL51L33sJWRLzBVA/T04gDCw1idRkU8pOV9tqBhzXl44JLKWnU 1eeH7YABKb6Eri3S99rDyoQ6NYmqp1yRWlY/gvLg9QowlxoyGUdOvGBvXB5gU7fH zOXXETMR0wIcYGmMOH/7tEDmOXODnlyHcHKxQ233AAd3YN5HoOAJdKpKsdibAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvplti22mL31mRG36qcRJnra/oL0wHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABcBqua5rb1Kf2giQaipxtNwn9KPp6uM2LFP E+G3Dfazcwvj9W1BSu2Q6/zFPP3afJU4izOWsrrWnEf9hoI12MaYX6KltD5J4J4h 3MtJ8NNL/2tzxZ9avoXHajNUhFbOWqY1J24SuIu1fCjRaOB0/VmBX0cEmhPJjEKC +nc5bQHrNySfrVzg6WigWBegwYnIAMRNVrAidcEgGzrBl5hhv5GIdnGvc7K6W8oE 9o1+aBPRTAHQsMP42xUSqCnXp1dcuBTV4EB+IsmpqoNe3Z9n/GytvwV5o/XnmqPp M3miskf2BFNV46+5p5YIgIJ9tJiRFyThxHMntlbl5RElajZteKY= -----END CERTIFICATE-----Generated at Mon Jun 30 07:20:11 2025 by rpki-client