$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: S1sos1Fk2OEv97soNVygqq9ME4U9TN2MW3DGnwuvGEQ= Subject key identifier: 98:47:EE:80:BD:F3:A9:36:5F:A6:EC:35:28:04:59:A7:C1:A9:2A:6E Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 1AD23691380023E454A28D2FEB7FE566995C9499 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: A9 Signing time: Sat 23 Aug 2025 20:31:45 +0000 Manifest this update: Sat 23 Aug 2025 20:26:45 +0000 Manifest next update: Wed 27 Aug 2025 02:41:45 +0000 Files and hashes: 1: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: okMulqCwmQrHdU+kO0nYzAvF/vvi8wTCEKi+VdDT9lQ=) 2: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: 59swYZjR5rPT8Z5OzJRLWs93kaue3vGNJrVAR6hnj/E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d2:36:91:38:00:23:e4:54:a2:8d:2f:eb:7f:e5:66:99:5c:94:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Aug 23 20:26:45 2025 GMT Not After : Aug 27 02:41:45 2025 GMT Subject: CN=9847EE80BDF3A9365FA6EC35280459A7C1A92A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:31:93:66:c6:81:4c:31:d8:67:91:ab:bb:c5: 34:08:30:7c:93:40:4c:0a:ce:14:7e:03:aa:5e:a4: ac:8b:24:9f:4f:ce:a8:1b:09:cf:01:04:bd:f5:94: 12:c2:af:6d:82:b3:65:b7:0c:d9:48:01:3d:81:89: 49:fc:ac:7e:aa:68:d6:8d:e7:a0:6d:df:e5:c5:fc: 2b:14:5e:d7:88:0e:58:b3:bd:11:e2:aa:d8:6c:e9: d1:3d:c6:0d:4b:3a:78:f0:40:62:7c:53:b0:6f:f5: 7f:2a:0c:c3:41:33:cb:89:eb:a7:2c:37:9b:14:cc: cf:e1:cc:4f:c7:5a:23:c4:e4:89:84:50:c5:af:8c: cd:59:5a:d5:16:60:9d:71:d3:25:44:e0:91:c2:f7: 08:b9:4a:5a:1e:6c:8c:ae:62:48:e6:fc:e6:a5:a0: 74:a5:fc:10:d6:3a:ce:62:22:6f:37:a5:75:b2:10: 36:aa:8d:ed:75:e2:fb:2f:f8:99:d2:13:3e:82:68: fe:5e:53:a7:3c:b4:1b:be:34:3f:60:5c:48:40:d4: 88:93:fe:08:cb:9b:eb:3a:74:49:2b:50:80:68:1b: 6f:62:b1:15:21:e9:30:5f:37:1f:a0:d3:44:57:7a: 8f:aa:af:51:d1:71:97:e5:d9:a1:90:43:11:d5:55: c7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:47:EE:80:BD:F3:A9:36:5F:A6:EC:35:28:04:59:A7:C1:A9:2A:6E X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e1:5c:6c:f4:1d:c8:ea:96:b7:e3:a5:86:d9:27:7a:f1:1b: d2:7c:a3:16:8f:b9:5e:aa:1e:f9:aa:ba:ed:7e:46:06:eb:22: 33:5e:0b:35:c3:91:a3:06:39:5c:cd:b0:bc:d5:b1:ff:69:d4: 0b:fa:fc:26:9d:c1:f6:56:4a:c0:12:1f:f5:15:80:71:cf:25: f0:38:8b:f9:a9:24:1e:ac:80:1f:b9:d9:70:2d:8e:6c:22:5e: 1f:99:36:58:83:b5:cd:34:e4:cf:e2:dd:38:cd:78:f6:4b:69: 7f:04:39:90:68:69:08:73:da:09:91:c5:f9:f8:df:b2:d5:ec: 5a:3f:d8:8e:1a:ae:8d:8c:91:9d:87:a2:8a:9f:11:57:99:34: 8a:02:82:60:ec:8e:dd:cf:44:7c:63:93:3f:05:05:05:a8:d8: 73:b8:90:31:d6:a3:07:76:a8:a9:46:11:bb:db:05:d8:cd:49: d8:f7:ff:c3:72:a6:cc:a9:ff:c9:34:5a:8f:50:80:f9:69:bd: cc:83:ed:f8:3b:c9:df:c1:0a:c4:ae:7b:1e:0c:ae:95:33:e4: 12:5e:7e:60:c2:4b:81:41:92:cb:9b:2b:a1:c8:f0:27:fa:5a: dd:91:b7:0f:95:0e:9c:c2:63:3e:e3:4c:36:0d:ff:8e:73:58: 53:79:1a:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGtI2kTgAI+RUoo0v63/lZplclJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNTA4MjMyMDI2NDVaFw0yNTA4MjcwMjQxNDVaMDMxMTAvBgNV BAMTKDk4NDdFRTgwQkRGM0E5MzY1RkE2RUMzNTI4MDQ1OUE3QzFBOTJBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlMZNmxoFMMdhnkau7xTQIMHyT QEwKzhR+A6pepKyLJJ9PzqgbCc8BBL31lBLCr22Cs2W3DNlIAT2BiUn8rH6qaNaN 56Bt3+XF/CsUXteIDlizvRHiqths6dE9xg1LOnjwQGJ8U7Bv9X8qDMNBM8uJ66cs N5sUzM/hzE/HWiPE5ImEUMWvjM1ZWtUWYJ1x0yVE4JHC9wi5SloebIyuYkjm/Oal oHSl/BDWOs5iIm83pXWyEDaqje114vsv+JnSEz6CaP5eU6c8tBu+ND9gXEhA1IiT /gjLm+s6dEkrUIBoG29isRUh6TBfNx+g00RXeo+qr1HRcZfl2aGQQxHVVcd5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmEfugL3zqTZfpuw1KARZp8GpKm4wHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE7hXGz0HcjqlrfjpYbZJ3rxG9J8oxaPuV6q Hvmquu1+RgbrIjNeCzXDkaMGOVzNsLzVsf9p1Av6/CadwfZWSsASH/UVgHHPJfA4 i/mpJB6sgB+52XAtjmwiXh+ZNliDtc005M/i3TjNePZLaX8EOZBoaQhz2gmRxfn4 37LV7Fo/2I4aro2MkZ2HooqfEVeZNIoCgmDsjt3PRHxjkz8FBQWo2HO4kDHWowd2 qKlGEbvbBdjNSdj3/8Nypsyp/8k0Wo9QgPlpvcyD7fg7yd/BCsSuex4MrpUz5BJe fmDCS4FBksubK6HI8Cf6Wt2Rtw+VDpzCYz7jTDYN/45zWFN5Gsc= -----END CERTIFICATE-----Generated at Sun Aug 24 01:05:28 2025 by rpki-client