$ rpki-client -vvf repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft File: AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft (raw, json) Hash identifier: efWL8fIq9fsgzwgBh6/BxfWAsXljanAnOiCDrMrtiF4= Subject key identifier: 72:10:1D:FF:A3:E2:F3:DD:19:27:1F:90:D1:10:36:EB:0E:F6:E1:62 Authority key identifier: AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 Certificate issuer: /CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Certificate serial: 1C505FE0A7645D4FB1AA16D6E499F5DD28AA0EFB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft Manifest number: 9E Signing time: Sun 29 Jun 2025 18:02:01 +0000 Manifest this update: Sun 29 Jun 2025 17:57:01 +0000 Manifest next update: Thu 03 Jul 2025 05:34:01 +0000 Files and hashes: 1: 3136302e32352e3137352e302f32342d3234203d3e20313533303733.roa (hash: Yq8Q6JYOVHESjvKiauFlSKUKL9dSlIZbiu5ayrjEea4=) 2: AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl (hash: yzHuORfR1Httq0sbLpxy+doZ1FsmaSueUjSxGaK56Bw=) 3: 3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa (hash: UbbhlYQNDi6JszbpEsabaohj0lI6X/p1NOF16+0hgH0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:50:5f:e0:a7:64:5d:4f:b1:aa:16:d6:e4:99:f5:dd:28:aa:0e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Validity Not Before: Jun 29 17:57:01 2025 GMT Not After : Jul 3 05:34:01 2025 GMT Subject: CN=72101DFFA3E2F3DD19271F90D11036EB0EF6E162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:37:dd:30:2f:a7:d5:5b:35:18:60:47:47:1b: a5:49:b3:5d:5a:f9:aa:c5:43:ef:4d:9b:38:1c:3f: 29:eb:2a:35:b3:eb:fa:fe:d9:53:8b:67:e0:30:49: 80:c9:3a:4b:e0:ef:e7:69:7b:b0:62:ea:96:c1:5d: b1:20:d9:9e:28:85:80:4e:81:17:1a:85:58:6a:18: a2:70:26:9e:b8:84:0d:8e:07:c3:0f:67:5d:01:a2: 2f:07:07:d1:85:9f:d3:07:71:d1:52:65:5e:39:e9: 40:f1:54:60:07:34:fe:20:8b:84:a4:62:f2:a6:bb: 2f:83:1e:29:90:f8:f3:0d:e4:15:eb:2e:88:3f:06: 17:db:fb:61:7a:17:15:0a:99:21:8a:31:5f:ad:16: 1c:4c:75:27:27:9c:e9:5e:6b:30:9d:59:aa:a6:6c: d7:62:51:df:3e:22:e4:ba:31:c6:1a:58:a9:0e:48: 8e:08:f7:08:07:04:eb:0b:ec:b6:47:5d:07:97:9c: 8c:a7:fe:6a:e8:db:10:89:36:88:04:e3:3d:45:be: 28:1d:2f:03:07:7b:ef:2f:77:ea:b0:45:14:fc:36: 66:d9:3b:ef:d8:50:61:e2:62:3a:37:9b:ac:6c:e1: d6:9a:12:c0:4b:2e:77:24:be:4f:cd:9f:0e:88:75: 79:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:10:1D:FF:A3:E2:F3:DD:19:27:1F:90:D1:10:36:EB:0E:F6:E1:62 X509v3 Authority Key Identifier: keyid:AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9c:5a:3b:09:d6:db:42:07:b8:d5:7e:68:be:63:ad:46:1d: c3:a0:5a:88:b6:86:60:74:1b:fe:05:b5:2a:64:a1:61:a9:94: c5:30:bf:dd:a1:b3:97:a0:1f:7d:d2:43:0d:4c:58:5a:aa:4a: c6:eb:04:28:17:d9:f2:58:6d:56:ab:f6:af:de:df:31:ca:27: e5:2e:d3:5a:92:7f:91:e7:73:f6:a5:29:05:73:1b:f4:15:1b: 5d:3f:87:0c:bb:f2:cc:7b:eb:ab:64:af:33:0c:ad:c7:e3:a4: 88:99:7b:e0:15:ec:35:3d:e4:a5:27:22:7f:f3:66:fc:8d:f3: 00:eb:53:5a:1c:ae:9c:c0:8d:70:60:a6:19:95:d1:12:1f:c0: ef:ea:88:81:24:4a:69:bf:90:e1:20:e5:66:6a:68:54:a1:b0: 08:4b:04:28:ec:4e:b6:bb:db:2a:12:b4:97:29:8a:c2:cf:95: 29:21:7f:3a:99:b0:75:a6:da:a5:fc:f4:c8:fb:c2:75:a0:25: c8:31:90:ca:3c:09:02:98:ec:23:37:91:02:c9:da:ca:8c:e7: eb:7a:4e:46:4a:2c:56:40:a6:55:53:5d:7b:25:8c:4d:c5:8c: 59:e7:d8:a9:d0:5e:6a:02:7e:b3:48:55:f3:f6:6c:d7:e0:cd: 2c:6e:c3:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHFBf4KdkXU+xqhbW5Jn13SiqDvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUNDQjVD QTdFMEQ5MzAeFw0yNTA2MjkxNzU3MDFaFw0yNTA3MDMwNTM0MDFaMDMxMTAvBgNV BAMTKDcyMTAxREZGQTNFMkYzREQxOTI3MUY5MEQxMTAzNkVCMEVGNkUxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHN90wL6fVWzUYYEdHG6VJs11a +arFQ+9NmzgcPynrKjWz6/r+2VOLZ+AwSYDJOkvg7+dpe7Bi6pbBXbEg2Z4ohYBO gRcahVhqGKJwJp64hA2OB8MPZ10Boi8HB9GFn9MHcdFSZV456UDxVGAHNP4gi4Sk YvKmuy+DHimQ+PMN5BXrLog/Bhfb+2F6FxUKmSGKMV+tFhxMdScnnOleazCdWaqm bNdiUd8+IuS6McYaWKkOSI4I9wgHBOsL7LZHXQeXnIyn/mro2xCJNogE4z1Fvigd LwMHe+8vd+qwRRT8NmbZO+/YUGHiYjo3m6xs4daaEsBLLnckvk/Nnw6IdXlXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUchAd/6Pi890ZJx+Q0RA26w724WIwHwYDVR0j BBgwFoAUqnJ2j90MYVoF5KMqBvnMtcp+DZMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzcyZWUzYy1lMTgwLTQyOTYtOWRhZC05NTAwZWZkOTQ4OTAvMC9BQTcyNzY4RkRE MEM2MTVBMDVFNEEzMkEwNkY5Q0NCNUNBN0UwRDkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUNDQjVDQTdF MEQ5My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWM3MmVlM2MtZTE4MC00Mjk2LTlk YWQtOTUwMGVmZDk0ODkwLzAvQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUND QjVDQTdFMEQ5My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACycWjsJ1ttCB7jVfmi+Y61GHcOgWoi2hmB0 G/4FtSpkoWGplMUwv92hs5egH33SQw1MWFqqSsbrBCgX2fJYbVar9q/e3zHKJ+Uu 01qSf5Hnc/alKQVzG/QVG10/hwy78sx766tkrzMMrcfjpIiZe+AV7DU95KUnIn/z ZvyN8wDrU1ocrpzAjXBgphmV0RIfwO/qiIEkSmm/kOEg5WZqaFShsAhLBCjsTra7 2yoStJcpisLPlSkhfzqZsHWm2qX89Mj7wnWgJcgxkMo8CQKY7CM3kQLJ2sqM5+t6 TkZKLFZAplVTXXsljE3FjFnn2KnQXmoCfrNIVfP2bNfgzSxuw78= -----END CERTIFICATE-----Generated at Mon Jun 30 16:42:59 2025 by rpki-client