$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: V+ZKtZ3QU83SqYS8BDuamRcXbHcqWMU/ihUFCiwHJKg= Subject key identifier: E6:DF:3F:3D:4C:7B:48:1A:60:81:9E:B0:DC:78:80:53:65:49:3E:B4 Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 7F6F9F201C11406F65B56632EB623BA6E23DAD3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 025B Signing time: Sat 23 Aug 2025 05:51:45 +0000 Manifest this update: Sat 23 Aug 2025 05:46:45 +0000 Manifest next update: Tue 26 Aug 2025 12:55:45 +0000 Files and hashes: 1: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: cSUslInWPPzpjslLA/rAYaq0okhnUSxB34CzfHdtrFM=) 2: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: gLStYnptht5TyqoGXBL5Rk0CVBS4ZoGmnO4HsnZPkL0=) 3: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Q5pvwdFKL1lgBG6fYcr2yl0tesQth6vA5guIwHg8TXM=) 4: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: VpIKxGpnGG5kY+TxgaFm5MAMJ5OPwOweNd+seLyS58Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6f:9f:20:1c:11:40:6f:65:b5:66:32:eb:62:3b:a6:e2:3d:ad:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Aug 23 05:46:45 2025 GMT Not After : Aug 26 12:55:45 2025 GMT Subject: CN=E6DF3F3D4C7B481A60819EB0DC78805365493EB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:57:c2:2f:9d:c6:ac:62:66:28:da:26:cc:29: 46:2c:a6:fb:95:09:9e:42:f8:cd:0b:0c:85:84:cf: da:69:e1:85:03:1b:c4:9e:5a:fc:75:08:b4:e5:7e: 88:cd:4c:6f:a9:6c:1b:66:3a:ee:8e:e6:00:60:3a: fc:da:b0:5b:49:50:23:90:79:12:91:8a:3f:3b:7a: 84:29:e4:c4:02:82:36:34:55:cb:3c:6b:4d:17:ba: 3f:0a:77:f2:c4:70:bb:00:15:0c:06:de:9c:4b:f9: b1:9f:2d:77:57:c6:7e:84:e4:d6:9a:e5:d5:12:4b: 33:59:48:75:36:d5:07:57:9b:08:34:f4:10:a8:ce: 2e:8c:ec:46:67:ea:81:59:0e:25:80:bc:ed:2e:30: f8:56:5c:23:75:54:8c:07:7b:99:31:61:49:ee:28: 30:56:92:a0:45:01:5b:ed:4b:b7:14:64:92:88:f9: 8f:65:1a:46:e1:de:0e:c5:c9:61:26:f3:64:8d:61: de:f1:c1:1a:54:f9:46:bb:92:53:96:fd:f8:52:62: c5:47:9b:ef:84:17:93:70:6c:52:06:d2:bd:8f:89: b0:cb:2d:d1:85:78:64:31:a8:6e:17:fe:c1:03:37: bd:85:e0:f5:42:7e:f4:fb:a5:75:fc:40:1d:67:79: 8f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DF:3F:3D:4C:7B:48:1A:60:81:9E:B0:DC:78:80:53:65:49:3E:B4 X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d0:fa:c0:38:8d:91:00:55:6e:b5:68:cd:d7:d5:0f:a8:67: a0:59:8c:e7:43:31:f5:1d:60:39:f8:6f:97:1a:25:75:d3:b9: 9f:ce:50:de:c9:f8:2e:e6:70:e6:35:b7:e9:db:49:41:8d:d3: 4a:6f:55:5b:4e:87:7a:0f:e1:fc:93:6f:ef:c2:ac:da:99:33: 06:46:b3:a4:62:ee:c1:6a:bb:a3:19:14:4a:fd:7f:04:30:f7: 55:84:7e:c9:6e:92:31:7e:ca:0c:3f:a1:15:eb:75:ed:68:2d: ff:c0:ed:a4:16:7b:d3:ac:81:2b:91:c9:af:dd:36:fb:58:4f: 3c:33:fb:00:21:32:2d:4a:43:21:a5:88:3a:fa:77:ce:90:94: 5a:7d:40:1c:a3:c0:8f:71:e0:b6:4f:fe:bd:5d:82:44:ad:8a: e2:16:4e:b6:dd:27:21:be:2f:3e:14:e8:59:8c:21:47:86:34: 15:0e:48:b0:48:7a:5d:54:6e:ef:9f:ea:c7:0e:19:91:d5:2a: 6d:6c:a3:3a:89:e4:5e:5c:81:c6:99:f3:2d:66:82:4f:e4:9b: e1:67:9e:7a:b8:f1:3e:e8:a9:70:29:f8:dd:52:37:1b:42:09: 0c:60:52:4e:fc:b0:80:f0:3b:fa:34:85:fa:5e:98:cf:3c:89: 80:8b:4e:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf2+fIBwRQG9ltWYy62I7puI9rTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNTA4MjMwNTQ2NDVaFw0yNTA4MjYxMjU1NDVaMDMxMTAvBgNV BAMTKEU2REYzRjNENEM3QjQ4MUE2MDgxOUVCMERDNzg4MDUzNjU0OTNFQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfV8IvncasYmYo2ibMKUYspvuV CZ5C+M0LDIWEz9pp4YUDG8SeWvx1CLTlfojNTG+pbBtmOu6O5gBgOvzasFtJUCOQ eRKRij87eoQp5MQCgjY0Vcs8a00Xuj8Kd/LEcLsAFQwG3pxL+bGfLXdXxn6E5Naa 5dUSSzNZSHU21QdXmwg09BCozi6M7EZn6oFZDiWAvO0uMPhWXCN1VIwHe5kxYUnu KDBWkqBFAVvtS7cUZJKI+Y9lGkbh3g7FyWEm82SNYd7xwRpU+Ua7klOW/fhSYsVH m++EF5NwbFIG0r2PibDLLdGFeGQxqG4X/sEDN72F4PVCfvT7pXX8QB1neY9PAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5t8/PUx7SBpggZ6w3HiAU2VJPrQwHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACzQ+sA4jZEAVW61aM3X1Q+oZ6BZjOdDMfUd YDn4b5caJXXTuZ/OUN7J+C7mcOY1t+nbSUGN00pvVVtOh3oP4fyTb+/CrNqZMwZG s6Ri7sFqu6MZFEr9fwQw91WEfslukjF+ygw/oRXrde1oLf/A7aQWe9OsgSuRya/d NvtYTzwz+wAhMi1KQyGliDr6d86QlFp9QByjwI9x4LZP/r1dgkStiuIWTrbdJyG+ Lz4U6FmMIUeGNBUOSLBIel1Ubu+f6scOGZHVKm1sozqJ5F5cgcaZ8y1mgk/km+Fn nnq48T7oqXAp+N1SNxtCCQxgUk78sIDwO/o0hfpemM88iYCLTl4= -----END CERTIFICATE-----Generated at Sat Aug 23 13:04:09 2025 by rpki-client