$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: 40YIWibVhBiG93z/TgCwQiGV8p+/4fAr673ARD9N2BM= Subject key identifier: AC:D0:6A:54:29:C9:BE:3A:5D:FB:DF:75:8C:FB:4F:0B:41:78:4A:DE Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 1F6E1171F7BDE94A59BDED474C28001E8A432E45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 0274 Signing time: Sun 19 Oct 2025 02:51:14 +0000 Manifest this update: Sun 19 Oct 2025 02:46:14 +0000 Manifest next update: Wed 22 Oct 2025 06:50:14 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Q5pvwdFKL1lgBG6fYcr2yl0tesQth6vA5guIwHg8TXM=) 2: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: VpIKxGpnGG5kY+TxgaFm5MAMJ5OPwOweNd+seLyS58Q=) 3: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: CgzEVhFmgd2rvqTiyfaTI1cPCbzk4LcxpqF65XqvwHs=) 4: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: gLStYnptht5TyqoGXBL5Rk0CVBS4ZoGmnO4HsnZPkL0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6e:11:71:f7:bd:e9:4a:59:bd:ed:47:4c:28:00:1e:8a:43:2e:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Oct 19 02:46:14 2025 GMT Not After : Oct 22 06:50:14 2025 GMT Subject: CN=ACD06A5429C9BE3A5DFBDF758CFB4F0B41784ADE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:f9:55:10:5f:8c:35:8f:5e:85:8e:0c:94: 3a:15:29:c4:4a:1d:99:95:65:21:b9:04:f3:e3:23: 3d:a1:7b:cf:90:40:24:44:4d:b9:1c:37:9b:26:66: 56:0b:2b:77:54:ef:da:17:2a:af:ac:f0:13:53:3a: e2:89:12:23:17:a6:b6:80:72:5e:fa:a0:80:e4:ab: 90:14:d0:2c:88:25:92:5c:e5:58:40:88:2d:41:12: f5:97:b2:c9:ed:63:da:d5:87:18:60:58:89:cf:f3: 94:61:4e:48:36:ae:82:8f:23:63:ac:24:5c:3c:c7: 56:b8:65:29:87:8f:07:03:2b:35:46:55:1b:57:00: c4:95:91:75:dc:23:8b:a3:95:24:32:e1:4b:a7:6d: e0:16:fb:74:d8:00:3e:08:80:19:bb:ff:ab:f4:f8: a2:15:f3:1f:31:5c:dc:a6:1b:64:e1:b3:35:b9:4c: 31:c5:d0:6e:6e:cb:6e:da:50:14:53:0e:78:ce:2f: 9f:9e:27:20:7e:69:22:c6:82:fb:15:30:c0:cb:53: 92:7c:2e:cc:94:45:1a:db:17:52:6f:1c:b1:fc:ed: 0b:3c:de:4c:cc:81:72:8e:ac:33:54:7d:48:7c:48: d0:b3:79:78:97:64:5c:6f:9c:b7:7a:0d:5f:29:16: 11:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D0:6A:54:29:C9:BE:3A:5D:FB:DF:75:8C:FB:4F:0B:41:78:4A:DE X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:db:d4:9b:97:8a:cb:45:7f:54:3f:f1:c3:19:1a:5e:3d:dc: fc:8b:40:8e:8b:f8:d4:a3:36:ab:60:68:5a:cc:28:9b:54:7a: 8b:56:75:8c:03:e5:67:11:cb:5c:8a:5e:5e:0e:1f:ff:0c:b1: 4c:40:eb:1a:34:15:6a:20:a5:7d:c1:d2:61:9d:e0:70:bf:50: 76:48:dc:b0:3b:52:86:a6:e1:a2:52:c5:8c:f3:54:c7:b2:4d: d2:40:65:cf:b9:1c:bc:1c:31:82:3f:e2:e6:01:23:a7:d5:23: 45:65:fd:d4:cd:51:3d:40:91:73:ec:f1:6a:e8:7b:96:33:1e: dc:ab:22:d9:d2:86:d7:04:00:7e:c8:69:93:9c:7a:97:d4:75: 19:32:c7:67:55:e0:57:aa:6f:1d:d7:99:99:bf:3c:4a:d9:79: 67:da:a1:e3:0b:43:5a:46:78:71:30:f0:27:f1:05:96:2f:a3: 32:ad:fa:49:c7:c8:96:2a:54:d5:2c:95:a4:bb:c6:77:14:e2: fc:34:48:04:2c:89:fb:b0:b6:e1:e3:1d:bc:90:b3:3a:81:30: 6d:81:ec:f4:85:0e:76:1b:8e:f7:0c:15:2f:bf:3a:f3:43:12: 6f:f4:43:f4:11:9e:39:f7:99:1a:cf:06:c3:3b:e5:1c:92:80: af:c9:c4:a6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH24Rcfe96UpZve1HTCgAHopDLkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNTEwMTkwMjQ2MTRaFw0yNTEwMjIwNjUwMTRaMDMxMTAvBgNV BAMTKEFDRDA2QTU0MjlDOUJFM0E1REZCREY3NThDRkI0RjBCNDE3ODRBREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCOflVEF+MNY9ehY4MlDoVKcRK HZmVZSG5BPPjIz2he8+QQCRETbkcN5smZlYLK3dU79oXKq+s8BNTOuKJEiMXpraA cl76oIDkq5AU0CyIJZJc5VhAiC1BEvWXssntY9rVhxhgWInP85RhTkg2roKPI2Os JFw8x1a4ZSmHjwcDKzVGVRtXAMSVkXXcI4ujlSQy4UunbeAW+3TYAD4IgBm7/6v0 +KIV8x8xXNymG2ThszW5TDHF0G5uy27aUBRTDnjOL5+eJyB+aSLGgvsVMMDLU5J8 LsyURRrbF1JvHLH87Qs83kzMgXKOrDNUfUh8SNCzeXiXZFxvnLd6DV8pFhF1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrNBqVCnJvjpd+991jPtPC0F4St4wHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI/b1JuXistFf1Q/8cMZGl493PyLQI6L+NSj NqtgaFrMKJtUeotWdYwD5WcRy1yKXl4OH/8MsUxA6xo0FWogpX3B0mGd4HC/UHZI 3LA7Uoam4aJSxYzzVMeyTdJAZc+5HLwcMYI/4uYBI6fVI0Vl/dTNUT1AkXPs8Wro e5YzHtyrItnShtcEAH7IaZOcepfUdRkyx2dV4Feqbx3XmZm/PErZeWfaoeMLQ1pG eHEw8CfxBZYvozKt+knHyJYqVNUslaS7xncU4vw0SAQsifuwtuHjHbyQszqBMG2B 7PSFDnYbjvcMFS+/OvNDEm/0Q/QRnjn3mRrPBsM75RySgK/JxKY= -----END CERTIFICATE-----Generated at Mon Oct 20 14:40:47 2025 by rpki-client