$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: KRFeSbSUpnWs3yGQjRlH8cPpT7fqzdv4M/cAibN12+Q= Subject key identifier: BC:65:CF:7E:9C:49:4B:7C:B3:48:C1:31:9B:EF:BD:1F:E5:C0:42:D7 Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 78FDC6E7AB1250897BA9A4FB7C362FE039075406 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 50 Signing time: Fri 22 Aug 2025 10:51:19 +0000 Manifest this update: Fri 22 Aug 2025 10:46:19 +0000 Manifest next update: Mon 25 Aug 2025 14:13:19 +0000 Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: WiD202oRjtmaM/5pkkN3N559lyaGg/dUv/WeRVLSSgI=) 2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 14:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:fd:c6:e7:ab:12:50:89:7b:a9:a4:fb:7c:36:2f:e0:39:07:54:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Aug 22 10:46:19 2025 GMT Not After : Aug 25 14:13:19 2025 GMT Subject: CN=BC65CF7E9C494B7CB348C1319BEFBD1FE5C042D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:d8:f4:ad:4a:0c:7f:3e:c6:97:38:eb:1e: 83:8c:95:ce:2e:4b:33:54:9b:5b:56:85:c8:86:b5: c0:a5:b7:5c:9f:ec:a3:d4:36:af:df:55:db:a6:56: f4:6b:02:22:58:60:7f:b6:21:e0:06:0c:42:bb:06: 70:e9:30:9a:78:9f:b0:d0:a6:4a:ed:9a:5c:61:8a: ed:1d:fb:9e:67:90:5a:cf:f8:59:2a:98:9c:14:71: ac:eb:b3:cf:e8:67:23:39:69:ae:5a:75:b9:96:f1: 12:64:6b:00:3c:0e:18:3e:c0:6a:65:fb:37:2d:3e: 9f:2c:35:4f:48:92:10:ad:ee:a3:92:8d:85:04:2f: b7:24:d0:48:fd:c9:05:16:46:12:61:f5:f3:89:f0: 0a:70:6c:8f:98:c0:5a:e9:3c:e5:0f:c6:78:4b:dc: 0e:3e:cb:1f:36:60:bc:5a:f3:c8:e0:5f:7d:02:d4: b8:76:0a:c0:b6:e1:a9:2d:7c:f1:50:65:75:32:6b: 5e:48:69:24:e0:3f:d4:13:49:30:9c:df:8e:93:96: ee:98:bf:d2:fa:3c:36:dd:e9:e3:b0:07:7f:e7:56: 2c:08:31:b9:bf:c9:9f:c4:df:6f:f0:8d:66:e9:57: 25:84:f8:60:ee:80:3c:7e:e1:c4:8d:97:d1:ba:2a: cb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:65:CF:7E:9C:49:4B:7C:B3:48:C1:31:9B:EF:BD:1F:E5:C0:42:D7 X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:59:d2:31:72:79:db:c2:9b:d3:1c:56:46:18:fc:f4:bb:1c: 73:c3:bf:00:16:23:ab:4b:6b:eb:31:fe:66:fc:bb:01:b6:05: e7:cc:d3:9d:89:e9:22:8f:24:2f:fd:f7:54:93:47:57:23:c1: b1:80:0c:2c:43:f8:b5:d9:0e:63:9d:11:f2:db:6c:a3:bf:1c: a6:87:8a:c6:74:e0:de:eb:28:e3:3d:5c:a1:38:9e:29:1b:6e: 33:73:63:32:0c:33:21:c9:e9:f7:43:65:b9:07:eb:12:7a:55: 77:f2:92:12:2e:ee:f8:9e:12:79:c9:ec:be:81:b6:71:a8:67: dd:20:ea:77:46:75:83:71:39:6c:8c:e1:b9:d9:23:9b:c5:34: c0:ee:0d:43:59:5f:4e:a1:bf:20:df:6d:46:29:9d:73:79:e4: f0:9d:c8:82:44:7b:e2:38:25:a6:39:e1:8c:5a:17:9b:02:90: 57:18:59:45:49:2e:93:bf:af:71:e3:fc:79:67:f4:22:94:c3: 3e:8d:ad:36:9f:34:60:a1:d5:69:50:b5:44:a3:17:34:80:c0: 28:24:cb:f7:87:6d:09:71:35:e9:f0:a1:38:0d:da:7e:d4:3b: cb:54:10:77:97:03:c2:44:55:b3:36:a8:37:24:82:02:8f:66: f7:14:eb:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeP3G56sSUIl7qaT7fDYv4DkHVAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTA4MjIxMDQ2MTlaFw0yNTA4MjUxNDEzMTlaMDMxMTAvBgNV BAMTKEJDNjVDRjdFOUM0OTRCN0NCMzQ4QzEzMTlCRUZCRDFGRTVDMDQyRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFvNj0rUoMfz7GlzjrHoOMlc4u SzNUm1tWhciGtcClt1yf7KPUNq/fVdumVvRrAiJYYH+2IeAGDEK7BnDpMJp4n7DQ pkrtmlxhiu0d+55nkFrP+FkqmJwUcazrs8/oZyM5aa5adbmW8RJkawA8Dhg+wGpl +zctPp8sNU9IkhCt7qOSjYUEL7ck0Ej9yQUWRhJh9fOJ8ApwbI+YwFrpPOUPxnhL 3A4+yx82YLxa88jgX30C1Lh2CsC24aktfPFQZXUya15IaSTgP9QTSTCc346Tlu6Y v9L6PDbd6eOwB3/nViwIMbm/yZ/E32/wjWbpVyWE+GDugDx+4cSNl9G6Ksu9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvGXPfpxJS3yzSMExm++9H+XAQtcwHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAChZ0jFyedvCm9McVkYY/PS7HHPDvwAWI6tL a+sx/mb8uwG2BefM052J6SKPJC/991STR1cjwbGADCxD+LXZDmOdEfLbbKO/HKaH isZ04N7rKOM9XKE4nikbbjNzYzIMMyHJ6fdDZbkH6xJ6VXfykhIu7vieEnnJ7L6B tnGoZ90g6ndGdYNxOWyM4bnZI5vFNMDuDUNZX06hvyDfbUYpnXN55PCdyIJEe+I4 JaY54YxaF5sCkFcYWUVJLpO/r3Hj/Hln9CKUwz6NrTafNGCh1WlQtUSjFzSAwCgk y/eHbQlxNenwoTgN2n7UO8tUEHeXA8JEVbM2qDckggKPZvcU63U= -----END CERTIFICATE-----Generated at Sat Aug 23 20:02:03 2025 by rpki-client