$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: d5J50AXdzaSI1pN5MQs8F6MXGap69JBz1wqes4ZdvE8= Subject key identifier: 9E:BD:B9:D2:BA:A1:22:89:F7:45:D5:BB:09:F3:85:2B:FB:E0:27:C1 Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 1B63F5ECD688D2033723F57A36C2779EB0461EE0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 0243 Signing time: Sat 28 Jun 2025 14:31:11 +0000 Manifest this update: Sat 28 Jun 2025 14:26:11 +0000 Manifest next update: Wed 02 Jul 2025 01:26:11 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: gLStYnptht5TyqoGXBL5Rk0CVBS4ZoGmnO4HsnZPkL0=) 2: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: Ocl6vv6RtyBn7Qu/eC8mMokKHnBoa+YotnxZxgBZC9s=) 3: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: VpIKxGpnGG5kY+TxgaFm5MAMJ5OPwOweNd+seLyS58Q=) 4: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Q5pvwdFKL1lgBG6fYcr2yl0tesQth6vA5guIwHg8TXM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 01:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:63:f5:ec:d6:88:d2:03:37:23:f5:7a:36:c2:77:9e:b0:46:1e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Jun 28 14:26:11 2025 GMT Not After : Jul 2 01:26:11 2025 GMT Subject: CN=9EBDB9D2BAA12289F745D5BB09F3852BFBE027C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e6:34:a1:4b:4a:88:c2:3a:a5:b4:00:fc:11: 9e:df:96:a9:d8:69:06:10:2c:4f:62:d4:6f:a5:61: c9:6b:69:68:89:58:fa:9e:31:d6:27:3c:e7:6c:28: 7e:9f:b4:64:61:3f:8f:93:21:2d:25:0b:54:43:ae: 56:c1:98:2c:a7:4e:4a:8d:f2:bb:ca:ff:51:da:67: e5:5a:29:02:7d:36:a4:20:cc:52:56:c4:41:c5:41: e4:f9:53:c4:a2:14:28:c4:66:4c:ba:76:7e:fa:ec: 9a:4d:08:1c:c7:ad:b7:74:d6:6a:25:00:6d:5f:ae: 8a:42:ae:f8:89:30:21:a5:6f:3a:0c:d7:48:a5:1d: a5:7e:67:cf:b0:1b:12:5b:f7:18:5b:f0:eb:95:45: 99:7f:15:9d:b4:7f:29:e5:50:e5:e6:d8:4a:a1:0f: d7:56:23:f7:06:1e:a0:b5:6e:0b:5f:80:2d:4c:3b: c9:d0:78:e5:3b:85:38:36:41:a5:0e:29:b8:84:da: 42:38:bb:0c:20:00:84:f8:c9:e5:b0:33:90:19:1f: 65:49:c7:f0:c2:cd:71:d3:86:06:61:88:d8:4e:b3: 30:ba:ca:0e:54:2f:b3:70:49:9a:b4:3c:77:07:b9: 8e:be:a7:5e:28:c9:b9:51:df:bf:9c:05:e1:a4:89: 35:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:BD:B9:D2:BA:A1:22:89:F7:45:D5:BB:09:F3:85:2B:FB:E0:27:C1 X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:c1:18:93:aa:c7:03:99:e7:98:1b:12:bd:93:d2:9a:8c:47: 56:9b:58:6c:68:7c:7a:90:a7:d8:7b:a3:47:e7:b5:7d:3b:80: 2f:1f:7f:90:40:e6:83:5c:07:8d:9e:8a:f1:8f:58:88:05:90: 25:1b:70:f1:54:7c:0b:3b:34:f4:9e:ba:fc:4d:ab:7b:64:68: fc:77:a6:64:61:07:67:e2:f2:76:64:b4:0a:04:5b:9a:3f:56: d9:7a:7c:86:e7:dd:ed:02:90:bb:5b:45:33:b8:1a:34:9e:7c: 77:6f:85:9a:03:fe:e8:c1:c8:0d:e6:91:9c:e8:a6:31:46:df: fe:a5:82:c6:86:d1:62:19:81:e7:1a:0e:5b:88:04:24:d1:a6: 69:82:29:70:db:f7:38:ba:2a:06:71:8a:fe:08:f1:37:33:2a: 41:c7:ba:3b:fb:78:31:c6:80:3f:75:70:57:1b:03:9f:ef:84: 9e:b1:d1:9c:0e:38:2c:4d:57:e2:ff:90:db:09:a5:1d:60:39: c7:9c:38:2a:f9:cc:db:b6:8d:bf:fc:a9:47:6c:4f:75:9f:38: 58:b5:06:f8:64:59:17:95:fe:39:04:07:37:fe:ad:06:d6:1c: f3:6f:7a:c7:37:1e:1f:12:2a:45:69:8d:5a:d9:5a:fc:35:86: 19:97:b1:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG2P17NaI0gM3I/V6NsJ3nrBGHuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNTA2MjgxNDI2MTFaFw0yNTA3MDIwMTI2MTFaMDMxMTAvBgNV BAMTKDlFQkRCOUQyQkFBMTIyODlGNzQ1RDVCQjA5RjM4NTJCRkJFMDI3QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT5jShS0qIwjqltAD8EZ7flqnY aQYQLE9i1G+lYclraWiJWPqeMdYnPOdsKH6ftGRhP4+TIS0lC1RDrlbBmCynTkqN 8rvK/1HaZ+VaKQJ9NqQgzFJWxEHFQeT5U8SiFCjEZky6dn767JpNCBzHrbd01mol AG1fropCrviJMCGlbzoM10ilHaV+Z8+wGxJb9xhb8OuVRZl/FZ20fynlUOXm2Eqh D9dWI/cGHqC1bgtfgC1MO8nQeOU7hTg2QaUOKbiE2kI4uwwgAIT4yeWwM5AZH2VJ x/DCzXHThgZhiNhOszC6yg5UL7NwSZq0PHcHuY6+p14oyblR37+cBeGkiTWfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnr250rqhIon3RdW7CfOFK/vgJ8EwHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFLBGJOqxwOZ55gbEr2T0pqMR1abWGxofHqQ p9h7o0fntX07gC8ff5BA5oNcB42eivGPWIgFkCUbcPFUfAs7NPSeuvxNq3tkaPx3 pmRhB2fi8nZktAoEW5o/Vtl6fIbn3e0CkLtbRTO4GjSefHdvhZoD/ujByA3mkZzo pjFG3/6lgsaG0WIZgecaDluIBCTRpmmCKXDb9zi6KgZxiv4I8TczKkHHujv7eDHG gD91cFcbA5/vhJ6x0ZwOOCxNV+L/kNsJpR1gOcecOCr5zNu2jb/8qUdsT3WfOFi1 BvhkWReV/jkEBzf+rQbWHPNvesc3Hh8SKkVpjVrZWvw1hhmXseM= -----END CERTIFICATE-----Generated at Mon Jun 30 10:53:32 2025 by rpki-client