$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft File: AA97B959271291FBE142491B81063AD5B04487FA.mft (raw, json) Hash identifier: QePeoCDBeXuu4427TZN5N5m28ZBmcHTxNB3gnbu6HOg= Subject key identifier: C9:47:CF:67:97:45:FC:8F:B6:BC:CB:2D:73:A0:A8:AE:9F:E7:13:60 Authority key identifier: AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA Certificate issuer: /CN=AA97B959271291FBE142491B81063AD5B04487FA Certificate serial: 76CA6E3C446AEDCFDDB5DDBFFF67E6D9D4811E44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft Manifest number: C9 Signing time: Sat 28 Jun 2025 23:40:37 +0000 Manifest this update: Sat 28 Jun 2025 23:35:37 +0000 Manifest next update: Wed 02 Jul 2025 02:00:37 +0000 Files and hashes: 1: AA97B959271291FBE142491B81063AD5B04487FA.crl (hash: vpM7Fb5VZhimCl/uZum9ub1cHGkII+/kG57e0RXoRuI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 02:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ca:6e:3c:44:6a:ed:cf:dd:b5:dd:bf:ff:67:e6:d9:d4:81:1e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA97B959271291FBE142491B81063AD5B04487FA Validity Not Before: Jun 28 23:35:37 2025 GMT Not After : Jul 2 02:00:37 2025 GMT Subject: CN=C947CF679745FC8FB6BCCB2D73A0A8AE9FE71360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:bd:d6:6e:27:3a:a5:42:a0:83:d7:ff:46:1c: 66:d9:58:3c:07:5d:00:a0:fe:b6:f6:a2:12:b8:e7: 71:b7:07:62:17:f7:99:b2:3c:2c:78:fd:d4:95:bf: ce:50:ef:1f:ed:7a:fd:c8:9c:15:dc:84:59:3c:80: 69:a3:d1:29:d8:4e:d1:0f:98:03:86:38:dd:b8:b2: 92:b0:31:dc:27:8c:4d:eb:7a:60:6f:cd:ea:a8:65: ab:eb:89:81:18:3d:65:18:40:62:d8:60:fe:f0:63: 2b:c7:79:de:36:df:1f:a5:be:01:d1:41:9d:14:78: 78:c5:2a:a1:14:82:1b:da:53:4c:74:36:db:45:4d: c2:06:2f:ab:1b:ff:bd:97:ee:c9:0f:8b:ff:57:25: 79:fa:6d:df:c1:24:0b:d9:1a:10:25:6a:ed:6e:b1: e5:81:c1:9e:34:c3:2c:05:59:6c:6b:e9:7f:f0:c1: d7:c0:ee:e0:04:41:f4:4e:ff:21:99:12:a4:2c:21: 92:20:dd:40:45:81:80:46:c0:a8:1e:90:c5:3a:fd: 63:92:b1:48:14:e2:eb:4d:76:32:36:3d:ee:d9:6a: 89:b4:e3:c2:4d:2d:e7:d9:92:49:f4:ed:37:61:71: 9a:8a:94:cd:c9:c7:76:35:f0:7e:f6:db:ac:65:15: 7e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:47:CF:67:97:45:FC:8F:B6:BC:CB:2D:73:A0:A8:AE:9F:E7:13:60 X509v3 Authority Key Identifier: keyid:AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:7e:e2:66:80:fa:92:04:11:47:39:cb:04:03:1e:8a:10:08: ca:56:64:fe:a6:23:ab:5e:09:d8:44:56:ba:5d:47:98:19:c7: a7:31:c1:2e:ee:03:de:07:9e:09:f2:e5:de:2f:64:84:4f:78: 9e:6e:86:fa:4d:2f:d3:d1:1b:c4:fb:b9:56:fb:e7:09:5b:4e: d5:55:9a:79:ca:38:26:95:1d:76:1a:b4:3d:06:3b:d5:16:15: 75:8a:0e:4e:eb:79:b6:cd:fd:e0:f1:52:ed:a3:7a:6e:93:ce: a7:18:54:25:0b:1e:32:e7:9a:72:5a:df:43:8f:b2:5c:37:4e: ff:9b:37:64:a2:7a:b2:76:3f:16:42:d4:1b:98:22:5b:1a:8e: b2:a8:0f:36:c2:d8:1f:ec:b9:5f:38:84:9b:ab:18:b6:ee:80: bc:57:83:d9:93:ac:b7:4b:b0:d5:45:2b:b1:ed:38:e8:e1:6e: 1b:f9:d0:7a:af:7f:45:13:22:0c:a9:95:03:0d:d4:fc:a4:ba: f7:43:ef:f5:39:bb:a8:c5:61:65:9b:f8:bb:89:5e:1b:35:12: 40:eb:a1:41:83:83:28:5e:7e:3f:bf:9d:11:e6:a2:25:92:57: 4c:cc:11:29:12:5f:25:f6:21:b6:06:5f:57:d8:0a:68:4f:a5: cd:8f:bb:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdspuPERq7c/dtd2//2fm2dSBHkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVC MDQ0ODdGQTAeFw0yNTA2MjgyMzM1MzdaFw0yNTA3MDIwMjAwMzdaMDMxMTAvBgNV BAMTKEM5NDdDRjY3OTc0NUZDOEZCNkJDQ0IyRDczQTBBOEFFOUZFNzEzNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1vdZuJzqlQqCD1/9GHGbZWDwH XQCg/rb2ohK453G3B2IX95myPCx4/dSVv85Q7x/tev3InBXchFk8gGmj0SnYTtEP mAOGON24spKwMdwnjE3remBvzeqoZavriYEYPWUYQGLYYP7wYyvHed423x+lvgHR QZ0UeHjFKqEUghvaU0x0NttFTcIGL6sb/72X7skPi/9XJXn6bd/BJAvZGhAlau1u seWBwZ40wywFWWxr6X/wwdfA7uAEQfRO/yGZEqQsIZIg3UBFgYBGwKgekMU6/WOS sUgU4utNdjI2Pe7Zaom048JNLefZkkn07TdhcZqKlM3Jx3Y18H7226xlFX67AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyUfPZ5dF/I+2vMstc6Corp/nE2AwHwYDVR0j BBgwFoAUqpe5WScSkfvhQkkbgQY61bBEh/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4Y2NiOS0wYTYzLTQ5YTktYWE4YS1lZDAxNmVlMzUxZjAvMC9BQTk3Qjk1OTI3 MTI5MUZCRTE0MjQ5MUI4MTA2M0FENUIwNDQ4N0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVCMDQ0 ODdGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGNjYjktMGE2My00OWE5LWFh OGEtZWQwMTZlZTM1MWYwLzAvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNB RDVCMDQ0ODdGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJV+4maA+pIEEUc5ywQDHooQCMpWZP6mI6te CdhEVrpdR5gZx6cxwS7uA94Hngny5d4vZIRPeJ5uhvpNL9PRG8T7uVb75wlbTtVV mnnKOCaVHXYatD0GO9UWFXWKDk7rebbN/eDxUu2jem6TzqcYVCULHjLnmnJa30OP slw3Tv+bN2SierJ2PxZC1BuYIlsajrKoDzbC2B/suV84hJurGLbugLxXg9mTrLdL sNVFK7HtOOjhbhv50Hqvf0UTIgyplQMN1PykuvdD7/U5u6jFYWWb+LuJXhs1EkDr oUGDgyhefj+/nRHmoiWSV0zMESkSXyX2IbYGX1fYCmhPpc2Pu00= -----END CERTIFICATE-----Generated at Mon Jun 30 16:28:41 2025 by rpki-client