$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft File: 7470038419B67CD1743CE4D96953077ECE6928FE.mft (raw, json) Hash identifier: SL/qcn/3h0t2j+Qk5rPpx+jOFrZaaE2xR4mHE2ULyX8= Subject key identifier: BA:02:BC:7F:03:5D:26:A7:F7:A6:3B:77:93:27:5B:E1:0B:1B:22:13 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 709B44CCC065D0BF77033C22B1AA9CE19961B03C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft Manifest number: 01E1 Signing time: Sat 18 Oct 2025 12:51:47 +0000 Manifest this update: Sat 18 Oct 2025 12:46:47 +0000 Manifest next update: Tue 21 Oct 2025 17:43:47 +0000 Files and hashes: 1: 323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa (hash: 3w+VK+tvKAA1AfC4liESzr0B7Kk6JlTbtXB9BTFuOGs=) 2: 323430363a353463303a3a2f33332d3333203d3e20313430343739.roa (hash: WKukFhTAk9Wfv4/OtDk/a2nJ3JcuJ/OWKwAPnS7JgvA=) 3: 3130332e3135342e35332e302f32342d3234203d3e20313430343739.roa (hash: XMfcxb2cyU/BTawAea91z/0xjspg0vqpK5L29ZTTMeY=) 4: 3130332e3135342e35322e302f32342d3234203d3e20313430343739.roa (hash: tMxmqnyNs+AqUZmzCKA8ba+dMpF5PucwNl1kbWxh19Q=) 5: 7470038419B67CD1743CE4D96953077ECE6928FE.crl (hash: cND4/GEVvEMSxTNBr10lJvgzrcy2NUPCEQJLBRr7ugA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 17:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:9b:44:cc:c0:65:d0:bf:77:03:3c:22:b1:aa:9c:e1:99:61:b0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Oct 18 12:46:47 2025 GMT Not After : Oct 21 17:43:47 2025 GMT Subject: CN=BA02BC7F035D26A7F7A63B7793275BE10B1B2213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ca:5d:94:4e:85:2d:4c:ed:0d:f4:ef:7e:da: 29:17:6a:01:2e:5b:f5:8e:b5:72:5f:bb:da:cd:fd: 4e:85:b1:73:4a:7f:5f:95:65:3a:ee:2d:cc:c9:f3: 97:3b:4d:96:72:49:82:2b:b5:e4:26:02:77:e3:2a: 8b:72:20:26:c7:c1:5d:04:8f:8b:2e:d7:19:f7:41: cc:a7:d5:21:32:62:7c:6f:81:c6:1b:5a:b0:db:9d: 6a:22:04:3e:d3:7f:a0:a4:7a:b9:df:c0:bd:94:b5: 80:62:9a:4a:1c:51:e6:75:7d:2d:83:b3:35:38:bf: 0b:c3:d6:a2:b9:e2:32:23:14:d8:60:f1:86:22:d7: 84:08:49:e5:1d:03:a0:39:48:47:78:93:ff:a0:8a: 6f:c6:81:dd:de:65:6c:00:14:77:2c:64:1c:62:01: 4f:67:08:16:c3:90:e5:3d:2e:c2:1b:f9:94:33:c9: f2:c5:e2:6d:ff:c2:84:45:4c:06:81:0a:d0:05:6a: c1:d1:9a:ad:ce:8f:a7:b3:ee:f0:51:74:1f:7a:3d: cd:8d:6a:37:15:d0:31:de:98:33:24:4f:17:3a:1c: 6c:d0:ef:a1:bd:97:f3:e3:87:8d:4c:7f:11:71:ed: f6:7c:f4:2a:08:bd:6f:ab:54:38:55:6a:73:a4:51: be:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:02:BC:7F:03:5D:26:A7:F7:A6:3B:77:93:27:5B:E1:0B:1B:22:13 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:66:45:0f:fe:7a:2a:0f:b8:02:77:f7:d0:86:8e:bd:7c:31: 21:ea:d5:ac:f3:a2:5d:e8:90:2a:99:06:8e:5f:e8:a3:0a:c3: c2:99:d6:5b:a6:70:f3:81:1e:35:7e:4a:c5:9c:0e:eb:5a:9d: 6e:eb:6b:6b:bc:a0:d5:a9:de:3f:a2:1e:10:2b:a5:67:e9:a7: 5e:7c:43:81:97:12:c7:5b:36:58:6c:2a:cf:98:cd:33:39:4f: 01:d1:8e:1f:2d:a2:6b:15:38:de:20:94:6f:c5:f1:b5:a8:85: a2:47:1f:34:d0:73:a7:c9:ae:f8:23:33:13:a9:9d:69:31:17: 59:00:b7:ce:ce:c3:63:19:34:28:36:bb:c9:5e:28:93:cd:05: 1e:86:22:45:d7:c5:7c:3f:d4:87:e0:a6:af:01:d0:d5:b4:67: cb:df:7c:89:92:2b:36:80:0d:d1:32:7a:e2:13:28:44:86:01: 1a:c3:1d:37:aa:47:7b:2d:f4:e2:e3:13:fe:89:16:71:31:a7: 2f:8f:c5:61:c4:69:ac:e3:59:68:65:b7:3c:27:11:63:f7:32: bc:9f:84:c5:33:cd:f0:c1:d8:d6:77:fb:49:5c:90:ee:9e:88: 07:ce:bb:ac:60:1a:8b:c8:75:6a:10:7b:d3:b2:27:2f:27:d4: f4:3c:9d:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcJtEzMBl0L93Azwisaqc4ZlhsDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNTEwMTgxMjQ2NDdaFw0yNTEwMjExNzQzNDdaMDMxMTAvBgNV BAMTKEJBMDJCQzdGMDM1RDI2QTdGN0E2M0I3NzkzMjc1QkUxMEIxQjIyMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXyl2UToUtTO0N9O9+2ikXagEu W/WOtXJfu9rN/U6FsXNKf1+VZTruLczJ85c7TZZySYIrteQmAnfjKotyICbHwV0E j4su1xn3Qcyn1SEyYnxvgcYbWrDbnWoiBD7Tf6CkernfwL2UtYBimkocUeZ1fS2D szU4vwvD1qK54jIjFNhg8YYi14QISeUdA6A5SEd4k/+gim/Ggd3eZWwAFHcsZBxi AU9nCBbDkOU9LsIb+ZQzyfLF4m3/woRFTAaBCtAFasHRmq3Oj6ez7vBRdB96Pc2N ajcV0DHemDMkTxc6HGzQ76G9l/Pjh41MfxFx7fZ89CoIvW+rVDhVanOkUb43AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUugK8fwNdJqf3pjt3kydb4QsbIhMwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGM3NjVkNTEtYjBiMS00MzVkLWE2 NmItNjA0YzZlNWQyOWVmLzAvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3 N0VDRTY5MjhGRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAhmRQ/+eioPuAJ399CGjr18MSHq1azzol3o kCqZBo5f6KMKw8KZ1lumcPOBHjV+SsWcDutanW7ra2u8oNWp3j+iHhArpWfpp158 Q4GXEsdbNlhsKs+YzTM5TwHRjh8tomsVON4glG/F8bWohaJHHzTQc6fJrvgjMxOp nWkxF1kAt87Ow2MZNCg2u8leKJPNBR6GIkXXxXw/1Ifgpq8B0NW0Z8vffImSKzaA DdEyeuITKESGARrDHTeqR3st9OLjE/6JFnExpy+PxWHEaazjWWhltzwnEWP3Mryf hMUzzfDB2NZ3+0lckO6eiAfOu6xgGovIdWoQe9OyJy8n1PQ8nQE= -----END CERTIFICATE-----Generated at Mon Oct 20 12:26:49 2025 by rpki-client