$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft File: AA97B959271291FBE142491B81063AD5B04487FA.mft (raw, json) Hash identifier: EiLWhbZy8g1ihAjfahebho8MzKs5Z8si3Q9XcmklbGQ= Subject key identifier: 8E:82:EF:2C:46:F3:46:1D:58:F8:59:CA:F9:F6:CB:5B:0D:DB:FC:F0 Authority key identifier: AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA Certificate issuer: /CN=AA97B959271291FBE142491B81063AD5B04487FA Certificate serial: 7685045FB54C5C3626EF420326291BC7BEC5FE5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft Manifest number: E1 Signing time: Thu 21 Aug 2025 19:30:39 +0000 Manifest this update: Thu 21 Aug 2025 19:25:39 +0000 Manifest next update: Sun 24 Aug 2025 21:57:39 +0000 Files and hashes: 1: AA97B959271291FBE142491B81063AD5B04487FA.crl (hash: ZgyJ2cNfGdPeJmS5I65tffRFG1L4d/xVm8tHv9Iecow=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 21:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:85:04:5f:b5:4c:5c:36:26:ef:42:03:26:29:1b:c7:be:c5:fe:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA97B959271291FBE142491B81063AD5B04487FA Validity Not Before: Aug 21 19:25:39 2025 GMT Not After : Aug 24 21:57:39 2025 GMT Subject: CN=8E82EF2C46F3461D58F859CAF9F6CB5B0DDBFCF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:4a:d8:0a:e5:2d:1a:e1:b7:57:3c:46:63: d2:a7:65:20:46:78:b0:9a:79:43:e4:27:41:9c:b1: e5:b1:25:64:94:b9:44:30:e8:92:e3:25:43:38:d3: 62:7f:c1:32:6c:a2:82:dc:15:6a:fc:33:f8:5a:6e: 60:b4:5b:b8:66:f4:ef:24:11:e5:d6:03:cf:cc:e9: fc:f9:cd:46:e8:de:c5:84:50:d5:2d:8a:95:5d:b8: 9b:3c:30:cb:6f:e2:d8:3e:0e:ec:44:2c:42:de:21: 7c:2c:8d:b4:39:10:d4:b8:e4:cf:17:79:cb:40:70: 12:c4:25:a8:1f:9a:23:cb:4f:ec:e9:45:bb:e6:fd: d4:4a:0b:3b:b7:9e:9b:a5:9b:b9:1f:d2:db:66:d5: a7:3a:36:95:ee:44:43:69:88:e7:8a:1e:40:9d:ee: cf:e0:62:83:61:4e:24:54:82:95:27:b5:72:ba:ec: 28:54:eb:82:95:50:6d:b7:b3:7e:ee:31:d1:38:99: 17:74:e1:b6:d5:be:22:82:a0:0e:3f:2f:08:64:51: 35:4b:08:19:eb:20:b1:bf:ce:13:4e:3b:36:2a:78: f9:40:7e:79:58:84:28:c1:8b:39:70:64:96:13:33: 01:ee:60:b3:30:5a:59:7d:ee:f7:9c:2c:94:46:ba: 0d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:82:EF:2C:46:F3:46:1D:58:F8:59:CA:F9:F6:CB:5B:0D:DB:FC:F0 X509v3 Authority Key Identifier: keyid:AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:0b:f2:d6:15:fe:c0:c3:af:69:a2:86:6e:9c:5a:49:5f:af: 2e:41:fa:79:ca:50:5b:63:16:e2:30:d7:f6:62:e7:fa:a8:a8: 2b:8f:1f:88:21:a5:a2:a8:cc:9a:4e:e0:6d:46:d6:2a:61:db: 98:e3:c7:96:18:d2:3f:21:42:00:bb:6a:70:40:45:d5:6b:b4: 70:8b:19:95:ad:03:7a:69:f6:5b:02:79:63:70:dc:67:fd:c8: fd:a8:e3:78:a6:ea:3d:a7:b1:1a:21:c4:12:33:e3:b0:a5:ca: 45:df:d8:58:29:31:6d:81:f6:dd:1b:46:c1:11:62:c8:b0:ba: 1c:0d:44:19:ff:51:b2:a6:f1:f2:a8:ed:e6:6c:0d:20:2a:a9: 1d:4b:bc:11:b8:d9:3a:56:66:30:79:0c:f4:47:5a:c4:9f:36: bf:a0:3e:df:9b:6f:66:d0:43:a8:1f:35:4a:be:12:00:89:a6: 2a:31:d3:05:11:f7:1c:e7:0b:08:49:35:5e:3f:e5:c3:19:27: 2c:0a:35:d4:77:d8:b8:0f:88:a9:3b:71:12:78:10:77:b9:19: 77:c0:cf:50:b0:07:73:1b:86:9c:01:ee:77:f3:e1:3b:64:06: bc:45:7e:cf:8c:6f:6b:25:73:48:90:82:7c:21:83:cd:48:8d: c6:3c:81:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdoUEX7VMXDYm70IDJikbx77F/lowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVC MDQ0ODdGQTAeFw0yNTA4MjExOTI1MzlaFw0yNTA4MjQyMTU3MzlaMDMxMTAvBgNV BAMTKDhFODJFRjJDNDZGMzQ2MUQ1OEY4NTlDQUY5RjZDQjVCMEREQkZDRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMRUrYCuUtGuG3VzxGY9KnZSBG eLCaeUPkJ0GcseWxJWSUuUQw6JLjJUM402J/wTJsooLcFWr8M/habmC0W7hm9O8k EeXWA8/M6fz5zUbo3sWEUNUtipVduJs8MMtv4tg+DuxELELeIXwsjbQ5ENS45M8X ectAcBLEJagfmiPLT+zpRbvm/dRKCzu3npulm7kf0ttm1ac6NpXuRENpiOeKHkCd 7s/gYoNhTiRUgpUntXK67ChU64KVUG23s37uMdE4mRd04bbVviKCoA4/LwhkUTVL CBnrILG/zhNOOzYqePlAfnlYhCjBizlwZJYTMwHuYLMwWll97vecLJRGug3lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjoLvLEbzRh1Y+FnK+fbLWw3b/PAwHwYDVR0j BBgwFoAUqpe5WScSkfvhQkkbgQY61bBEh/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4Y2NiOS0wYTYzLTQ5YTktYWE4YS1lZDAxNmVlMzUxZjAvMC9BQTk3Qjk1OTI3 MTI5MUZCRTE0MjQ5MUI4MTA2M0FENUIwNDQ4N0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVCMDQ0 ODdGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGNjYjktMGE2My00OWE5LWFh OGEtZWQwMTZlZTM1MWYwLzAvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNB RDVCMDQ0ODdGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGIL8tYV/sDDr2mihm6cWklfry5B+nnKUFtj FuIw1/Zi5/qoqCuPH4ghpaKozJpO4G1G1iph25jjx5YY0j8hQgC7anBARdVrtHCL GZWtA3pp9lsCeWNw3Gf9yP2o43im6j2nsRohxBIz47ClykXf2FgpMW2B9t0bRsER YsiwuhwNRBn/UbKm8fKo7eZsDSAqqR1LvBG42TpWZjB5DPRHWsSfNr+gPt+bb2bQ Q6gfNUq+EgCJpiox0wUR9xznCwhJNV4/5cMZJywKNdR32LgPiKk7cRJ4EHe5GXfA z1CwB3MbhpwB7nfz4TtkBrxFfs+Mb2slc0iQgnwhg81IjcY8geM= -----END CERTIFICATE-----Generated at Sat Aug 23 21:53:02 2025 by rpki-client