$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft File: AA97B959271291FBE142491B81063AD5B04487FA.mft (raw, json) Hash identifier: 4F6eqD9ygHNis6RGPwh+Ua+rSUY0aUjO6ZZycIkj32E= Subject key identifier: A6:C7:59:08:AA:6B:AA:9B:2C:6A:8F:DB:AC:35:0F:78:03:46:91:C5 Authority key identifier: AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA Certificate issuer: /CN=AA97B959271291FBE142491B81063AD5B04487FA Certificate serial: 66D7538B3FFFB4582622E530A8EB1E3B473DF313 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft Manifest number: FB Signing time: Sun 19 Oct 2025 15:50:38 +0000 Manifest this update: Sun 19 Oct 2025 15:45:38 +0000 Manifest next update: Thu 23 Oct 2025 01:51:38 +0000 Files and hashes: 1: AA97B959271291FBE142491B81063AD5B04487FA.crl (hash: zYfc77RMK4Fbi5c//GS7zRbF3TxXfLGbZOZJKSTBFgY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 01:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d7:53:8b:3f:ff:b4:58:26:22:e5:30:a8:eb:1e:3b:47:3d:f3:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA97B959271291FBE142491B81063AD5B04487FA Validity Not Before: Oct 19 15:45:38 2025 GMT Not After : Oct 23 01:51:38 2025 GMT Subject: CN=A6C75908AA6BAA9B2C6A8FDBAC350F78034691C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3e:10:ed:85:06:29:7c:a0:83:79:d5:61:2d: 09:3b:78:5b:b6:fc:b0:54:32:dd:1d:0a:71:97:5d: 1e:67:7e:40:d1:f9:04:d7:6b:9d:bb:de:06:93:fc: f0:a7:77:13:f0:39:ce:f9:2d:e1:b1:e2:b4:fa:dc: 85:82:5c:95:aa:d1:96:89:d9:79:ac:a3:e1:89:81: 68:a3:13:e0:10:e9:0c:ac:f0:46:ae:2e:63:26:e0: 87:3c:fc:21:87:54:60:b9:f9:17:24:cb:e4:54:ee: e5:15:7c:67:8c:20:24:d4:0e:94:cd:51:f2:e3:e4: b3:bc:d9:c2:18:5c:4d:ea:c0:e2:53:81:0c:ff:49: cb:e1:e1:77:d1:5a:60:f7:bb:1d:e0:05:fd:2d:ce: 2c:a5:94:46:e7:0a:1f:a8:60:b6:81:80:38:54:dc: 33:84:bb:bf:04:0f:4d:06:41:58:e5:45:3b:5e:a7: ac:b3:22:54:f9:5a:8e:fe:dc:13:20:45:9d:a3:cc: 38:eb:08:89:33:05:9e:bb:74:00:0e:6a:2d:5b:4e: 7f:70:83:00:b2:eb:aa:73:4f:ad:34:08:ad:a9:a3: 04:87:ed:48:83:02:ea:c1:a6:62:52:f6:40:c0:4e: 94:44:10:0e:53:92:89:2d:ad:fa:7d:9c:d0:98:9e: c0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C7:59:08:AA:6B:AA:9B:2C:6A:8F:DB:AC:35:0F:78:03:46:91:C5 X509v3 Authority Key Identifier: keyid:AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:4c:85:7a:e2:6d:4a:2a:41:f6:55:f8:58:fe:cf:8b:62:5f: 62:24:fd:e5:33:e2:b2:21:26:c5:16:4a:ca:ad:85:b5:83:06: d3:e9:09:20:ff:71:df:bf:3b:aa:2c:e0:11:fc:75:7e:1c:94: e3:0c:84:5f:e5:3c:37:ec:fb:fa:b3:05:4e:36:4b:02:1b:b2: 25:ed:98:0a:c5:dd:fc:7f:57:14:d6:75:8d:8e:e3:17:d4:fd: 4c:38:80:86:19:54:9b:eb:8f:77:f1:5f:a9:1a:6a:4f:dd:08: 6b:66:2b:26:00:db:d6:09:53:ab:77:ef:30:c5:c4:4a:b3:b6: 4e:1a:e8:73:a1:6d:2d:15:cd:b5:12:e8:cb:60:d7:46:6d:f8: e7:91:b4:77:8e:ef:44:c3:df:c2:81:6f:f2:6c:28:2d:2f:f9: b6:c2:41:39:29:09:c0:6e:91:15:47:8d:8c:ad:e3:06:e9:62: 68:e5:05:6d:d2:84:28:57:63:2d:40:16:e9:b3:fe:db:2a:c5: 66:fa:72:15:9b:19:cc:3d:63:61:7b:60:ac:07:4a:ba:51:07: 62:10:28:b7:9c:d7:e6:99:a9:1e:3e:ca:80:71:4a:65:f7:54: 67:09:7a:30:54:ee:b6:3a:a9:31:9b:61:d5:9b:d0:ca:15:d4: a4:0d:de:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZtdTiz//tFgmIuUwqOseO0c98xMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVC MDQ0ODdGQTAeFw0yNTEwMTkxNTQ1MzhaFw0yNTEwMjMwMTUxMzhaMDMxMTAvBgNV BAMTKEE2Qzc1OTA4QUE2QkFBOUIyQzZBOEZEQkFDMzUwRjc4MDM0NjkxQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoPhDthQYpfKCDedVhLQk7eFu2 /LBUMt0dCnGXXR5nfkDR+QTXa5273gaT/PCndxPwOc75LeGx4rT63IWCXJWq0ZaJ 2Xmso+GJgWijE+AQ6Qys8EauLmMm4Ic8/CGHVGC5+Rcky+RU7uUVfGeMICTUDpTN UfLj5LO82cIYXE3qwOJTgQz/Scvh4XfRWmD3ux3gBf0tziyllEbnCh+oYLaBgDhU 3DOEu78ED00GQVjlRTtep6yzIlT5Wo7+3BMgRZ2jzDjrCIkzBZ67dAAOai1bTn9w gwCy66pzT600CK2powSH7UiDAurBpmJS9kDATpREEA5Tkoktrfp9nNCYnsB9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpsdZCKprqpssao/brDUPeANGkcUwHwYDVR0j BBgwFoAUqpe5WScSkfvhQkkbgQY61bBEh/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4Y2NiOS0wYTYzLTQ5YTktYWE4YS1lZDAxNmVlMzUxZjAvMC9BQTk3Qjk1OTI3 MTI5MUZCRTE0MjQ5MUI4MTA2M0FENUIwNDQ4N0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVCMDQ0 ODdGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGNjYjktMGE2My00OWE5LWFh OGEtZWQwMTZlZTM1MWYwLzAvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNB RDVCMDQ0ODdGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAARMhXribUoqQfZV+Fj+z4tiX2Ik/eUz4rIh JsUWSsqthbWDBtPpCSD/cd+/O6os4BH8dX4clOMMhF/lPDfs+/qzBU42SwIbsiXt mArF3fx/VxTWdY2O4xfU/Uw4gIYZVJvrj3fxX6kaak/dCGtmKyYA29YJU6t37zDF xEqztk4a6HOhbS0VzbUS6Mtg10Zt+OeRtHeO70TD38KBb/JsKC0v+bbCQTkpCcBu kRVHjYyt4wbpYmjlBW3ShChXYy1AFumz/tsqxWb6chWbGcw9Y2F7YKwHSrpRB2IQ KLec1+aZqR4+yoBxSmX3VGcJejBU7rY6qTGbYdWb0MoV1KQN3l0= -----END CERTIFICATE-----Generated at Mon Oct 20 21:31:06 2025 by rpki-client