$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: I2UDBOPb4lM9AjRO+zdmmGbuzaoyPXwlL0rW60HJA98= Subject key identifier: 64:A5:F8:27:43:A6:DA:2C:07:04:AC:29:E9:CC:10:89:78:6A:46:BD Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 7692060BAF1CBF7940594D1343460FE3F8C31672 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 022B Signing time: Mon 05 May 2025 05:41:10 +0000 Manifest this update: Mon 05 May 2025 05:36:10 +0000 Manifest next update: Thu 08 May 2025 13:49:10 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: gLStYnptht5TyqoGXBL5Rk0CVBS4ZoGmnO4HsnZPkL0=) 2: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Q5pvwdFKL1lgBG6fYcr2yl0tesQth6vA5guIwHg8TXM=) 3: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: nCLHM62RtsD9HwuY1I7lSZs5U/juWzXcTp3LSSsvhio=) 4: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: VpIKxGpnGG5kY+TxgaFm5MAMJ5OPwOweNd+seLyS58Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 13:49:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:92:06:0b:af:1c:bf:79:40:59:4d:13:43:46:0f:e3:f8:c3:16:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: May 5 05:36:10 2025 GMT Not After : May 8 13:49:10 2025 GMT Subject: CN=64A5F82743A6DA2C0704AC29E9CC1089786A46BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4b:0d:fc:0e:f0:95:1e:f7:e5:bf:35:50:78: 08:09:17:11:69:c0:16:19:1c:72:ac:ef:3a:19:dd: ca:79:d1:83:6e:9a:f9:4c:4b:05:e7:39:a9:91:22: a6:62:f3:c6:fb:7c:30:cd:a9:89:50:8f:03:85:dc: 0a:e4:3b:44:18:71:bb:05:c0:6a:b7:89:27:7b:b1: 44:1d:0f:90:2a:4a:d1:48:c6:a0:57:6f:29:06:7c: a4:cd:0b:4b:73:55:f8:b0:d8:d8:67:30:5e:45:60: 40:7a:a2:b4:9f:cf:fd:ed:3b:d7:00:97:5c:81:a8: 86:0c:3e:1e:74:6c:ce:7c:9b:99:a3:b3:c6:e5:cb: 59:46:ab:ba:ee:4e:31:ca:f5:89:a6:eb:35:8f:2e: 57:89:22:35:87:d8:bf:36:33:c7:4d:2b:4e:c1:30: d3:45:32:61:e8:2d:c2:73:18:22:76:ab:b7:91:a5: ab:8a:29:e2:b4:5d:a1:0a:dc:a9:4e:5e:da:6f:23: cf:a1:de:c8:45:06:42:3f:24:24:4e:c6:e4:82:c1: 63:81:99:42:c6:36:a9:a0:5a:b3:32:0b:fd:e9:df: 06:20:68:01:40:77:f7:96:a4:1e:e2:1a:0a:c5:e3: f1:72:ab:70:04:e4:18:f2:e9:f7:11:ed:0b:b0:5e: fa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A5:F8:27:43:A6:DA:2C:07:04:AC:29:E9:CC:10:89:78:6A:46:BD X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:f4:99:18:18:2c:f1:b2:6c:5c:a7:c2:ac:7d:87:e8:9a:71: 15:1e:7f:66:2d:e5:1a:db:3c:80:a8:b1:15:5f:83:b9:38:37: d1:51:3e:dc:29:c6:c1:18:fd:06:22:c1:20:90:fb:2c:48:bc: 38:e8:b0:b0:74:b7:68:4f:98:30:ec:12:39:ab:11:44:0a:b7: c8:e1:f7:0a:95:b2:f2:20:9a:1c:aa:b4:38:a6:09:0d:17:8b: 98:cb:23:ae:b4:69:f3:66:bc:55:d0:3f:10:4d:77:8f:c1:ad: 1d:01:64:10:83:04:ae:4e:0e:ef:6a:8c:29:16:9a:bb:64:ba: 3b:1b:58:3d:6b:ae:51:47:34:54:af:d5:23:3d:d0:52:80:22: 80:32:da:93:07:79:db:33:34:00:5c:71:db:bb:23:ad:a2:67: 23:a2:9a:d5:3d:04:86:7c:f2:d7:ab:92:ce:8f:28:cc:85:9f: 59:45:76:5f:f1:6c:e2:7b:fe:38:b5:5a:20:a9:68:22:e9:dd: b3:ea:33:af:08:4f:09:ff:5c:2c:f4:ad:e2:6c:2b:60:fc:a7: 16:cd:aa:68:05:d8:be:99:2d:6d:f2:62:24:2d:7b:18:5b:e4: fa:51:67:d6:e5:19:f4:41:35:69:be:4e:db:8f:81:06:72:a2: bf:ce:b0:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdpIGC68cv3lAWU0TQ0YP4/jDFnIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNTA1MDUwNTM2MTBaFw0yNTA1MDgxMzQ5MTBaMDMxMTAvBgNV BAMTKDY0QTVGODI3NDNBNkRBMkMwNzA0QUMyOUU5Q0MxMDg5Nzg2QTQ2QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjSw38DvCVHvflvzVQeAgJFxFp wBYZHHKs7zoZ3cp50YNumvlMSwXnOamRIqZi88b7fDDNqYlQjwOF3ArkO0QYcbsF wGq3iSd7sUQdD5AqStFIxqBXbykGfKTNC0tzVfiw2NhnMF5FYEB6orSfz/3tO9cA l1yBqIYMPh50bM58m5mjs8bly1lGq7ruTjHK9Ymm6zWPLleJIjWH2L82M8dNK07B MNNFMmHoLcJzGCJ2q7eRpauKKeK0XaEK3KlOXtpvI8+h3shFBkI/JCROxuSCwWOB mULGNqmgWrMyC/3p3wYgaAFAd/eWpB7iGgrF4/Fyq3AE5Bjy6fcR7QuwXvq/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZKX4J0Om2iwHBKwp6cwQiXhqRr0wHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALn0mRgYLPGybFynwqx9h+iacRUef2Yt5Rrb PICosRVfg7k4N9FRPtwpxsEY/QYiwSCQ+yxIvDjosLB0t2hPmDDsEjmrEUQKt8jh 9wqVsvIgmhyqtDimCQ0Xi5jLI660afNmvFXQPxBNd4/BrR0BZBCDBK5ODu9qjCkW mrtkujsbWD1rrlFHNFSv1SM90FKAIoAy2pMHedszNABccdu7I62iZyOimtU9BIZ8 8terks6PKMyFn1lFdl/xbOJ7/ji1WiCpaCLp3bPqM68ITwn/XCz0reJsK2D8pxbN qmgF2L6ZLW3yYiQtexhb5PpRZ9blGfRBNWm+TtuPgQZyor/OsLE= -----END CERTIFICATE-----Generated at Wed May 7 06:24:01 2025 by rpki-client