$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: aMjpUce4NRSixBZa/Fk16aSsgQLl1Wy3Be3ET7QNyCg= Subject key identifier: 51:5E:28:8B:16:8E:31:C1:42:20:EC:D2:68:2F:9C:18:8C:24:F9:1F Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 7775691DB6F8A2FEDD73CE3B33BF861CA8CA0AF4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 69 Signing time: Sat 18 Oct 2025 13:31:18 +0000 Manifest this update: Sat 18 Oct 2025 13:26:18 +0000 Manifest next update: Wed 22 Oct 2025 00:36:18 +0000 Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: 36XiO+eGsYKB32pcox0SHvh9XTo2bZ6SzwaUsNfEtUA=) 2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 00:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:75:69:1d:b6:f8:a2:fe:dd:73:ce:3b:33:bf:86:1c:a8:ca:0a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Oct 18 13:26:18 2025 GMT Not After : Oct 22 00:36:18 2025 GMT Subject: CN=515E288B168E31C14220ECD2682F9C188C24F91F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:61:ff:bb:e3:75:90:e2:5a:ac:7e:57:db: 93:8b:f5:61:65:df:40:8d:97:54:f0:d8:60:a9:c0: 05:50:19:15:52:ec:50:83:1d:35:5a:eb:22:9b:cb: 37:71:cd:b5:8e:12:4d:9d:23:f6:5b:d5:cf:c2:0e: 0b:45:d8:36:a0:f5:28:99:cc:99:3c:33:80:12:a3: 8c:6e:6d:92:21:e6:7b:12:e9:2b:ed:6f:bd:a0:d1: ad:97:10:c8:d4:1f:63:e3:d6:1c:9f:3c:fb:e0:32: f6:5d:ae:7c:e8:b7:95:6d:12:64:75:0b:44:2b:94: c4:91:1c:c1:8e:30:00:71:ed:25:80:84:ce:fe:eb: 8b:26:27:60:2a:52:87:91:29:22:f4:cf:a9:e3:14: 3a:cb:6e:45:37:52:04:15:5e:01:8b:11:53:3e:5a: 02:c3:f6:a0:8f:2c:50:49:85:10:88:9a:21:be:69: cd:42:94:b9:6a:9e:a4:14:01:67:d7:5d:83:ad:04: aa:c4:dd:fe:10:6c:52:ed:5f:93:5d:43:fc:48:20: b2:c0:6e:a8:47:99:da:d0:dc:f5:1f:e5:9a:9f:dd: e0:65:3f:0c:39:e1:f9:55:5a:ba:9f:d0:64:f1:90: 93:1f:80:bc:4c:b2:91:21:51:4a:83:4b:a5:b2:67: 53:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5E:28:8B:16:8E:31:C1:42:20:EC:D2:68:2F:9C:18:8C:24:F9:1F X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:12:70:0f:32:55:be:fe:51:db:59:49:80:a5:c8:33:4a:95: 1c:63:54:af:74:45:96:11:9e:a4:67:0e:a2:9c:9c:e9:46:79: d7:f2:62:86:3a:08:1e:3e:93:93:46:6f:e0:45:48:bd:79:91: 07:c1:23:a8:1f:eb:0e:72:6d:19:32:42:bf:ee:fe:e9:16:76: fc:78:13:6d:b4:ae:3a:a0:7e:5d:1e:75:5a:4b:dc:d0:20:d6: 5b:8e:3e:c9:e9:f1:dd:12:6b:a5:93:5f:58:ad:ed:27:ef:2f: 31:9a:5f:9c:5e:20:2e:6c:00:6d:d7:b0:09:e9:1f:f7:82:71: 93:bd:2e:f9:d5:61:69:de:20:b5:d4:21:c2:90:a6:99:1e:6e: ef:b4:ca:39:56:e9:2e:42:69:20:64:62:c6:44:af:61:87:c7: a3:bb:af:22:93:fd:6d:46:5d:ed:48:07:7b:64:db:32:92:c7: 9b:a7:be:34:78:6a:35:e5:80:43:d3:cf:49:7e:98:bc:c2:c2: 06:9c:e6:04:5a:74:ca:ee:30:6c:cc:05:95:ce:df:ba:60:12: 77:2a:ea:a5:d5:d6:da:ed:e5:ac:b1:a2:34:e7:c3:1f:b1:1b: 57:9a:e3:22:bf:7b:d6:72:fd:50:16:fa:bd:bd:72:1e:bb:9b: fd:91:a9:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd3VpHbb4ov7dc847M7+GHKjKCvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTEwMTgxMzI2MThaFw0yNTEwMjIwMDM2MThaMDMxMTAvBgNV BAMTKDUxNUUyODhCMTY4RTMxQzE0MjIwRUNEMjY4MkY5QzE4OEMyNEY5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz/WH/u+N1kOJarH5X25OL9WFl 30CNl1Tw2GCpwAVQGRVS7FCDHTVa6yKbyzdxzbWOEk2dI/Zb1c/CDgtF2Dag9SiZ zJk8M4ASo4xubZIh5nsS6Svtb72g0a2XEMjUH2Pj1hyfPPvgMvZdrnzot5VtEmR1 C0QrlMSRHMGOMABx7SWAhM7+64smJ2AqUoeRKSL0z6njFDrLbkU3UgQVXgGLEVM+ WgLD9qCPLFBJhRCImiG+ac1ClLlqnqQUAWfXXYOtBKrE3f4QbFLtX5NdQ/xIILLA bqhHmdrQ3PUf5Zqf3eBlPww54flVWrqf0GTxkJMfgLxMspEhUUqDS6WyZ1MPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUV4oixaOMcFCIOzSaC+cGIwk+R8wHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEAScA8yVb7+UdtZSYClyDNKlRxjVK90RZYR nqRnDqKcnOlGedfyYoY6CB4+k5NGb+BFSL15kQfBI6gf6w5ybRkyQr/u/ukWdvx4 E220rjqgfl0edVpL3NAg1luOPsnp8d0Sa6WTX1it7SfvLzGaX5xeIC5sAG3XsAnp H/eCcZO9LvnVYWneILXUIcKQppkebu+0yjlW6S5CaSBkYsZEr2GHx6O7ryKT/W1G Xe1IB3tk2zKSx5unvjR4ajXlgEPTz0l+mLzCwgac5gRadMruMGzMBZXO37pgEncq 6qXV1trt5ayxojTnwx+xG1ea4yK/e9Zy/VAW+r29ch67m/2RqcU= -----END CERTIFICATE-----Generated at Mon Oct 20 13:55:51 2025 by rpki-client