$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: ajg2I52pGGbILKeSBcv1nk+fRcIjyZAF16Pw18mNxNw= Subject key identifier: D5:4A:91:9E:E0:ED:05:32:95:D2:C4:92:0A:43:62:BB:C1:54:D3:3C Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 61855F43DE716C31D7051E5FC13AA4921DFA4495 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 02BB Signing time: Wed 25 Mar 2026 14:01:22 +0000 Manifest this update: Wed 25 Mar 2026 13:56:22 +0000 Manifest next update: Sat 28 Mar 2026 17:35:22 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: mFq2b38/RUkUkCh1MVybkTba/DYg5kwfb6uDHIQj6Gk=) 2: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: x8jXMDWoVinbYCq+9o0JJ3FldNcakLHKEb+iBQa0cEo=) 3: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Ov8NRVnVqFMBFhQjGCU710LWI7k2FUziabpa7227XyA=) 4: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: +ZStO4qmRvdLYRUifxrnZ6iCCxDWhq1QC8uZT5sFhJk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 17:35:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:85:5f:43:de:71:6c:31:d7:05:1e:5f:c1:3a:a4:92:1d:fa:44:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Mar 25 13:56:22 2026 GMT Not After : Mar 28 17:35:22 2026 GMT Subject: CN=D54A919EE0ED053295D2C4920A4362BBC154D33C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3f:39:74:1a:e9:bd:0b:10:d3:86:5f:3b:47: b8:bb:c3:47:0b:bd:f1:70:ae:34:a4:f0:80:0b:d9: 2f:e8:d2:b9:46:f8:a1:4c:12:3a:da:e4:24:ad:c3: 3c:2f:47:6d:92:99:ed:62:68:30:b4:45:ef:a0:20: 42:47:4c:ae:ed:d4:e3:59:78:7a:7d:04:fd:4a:dc: 02:c5:d5:a5:0c:b6:d1:10:4c:58:17:a8:42:9d:79: 20:fd:82:36:10:29:d2:b3:ac:6f:f6:30:4d:87:8e: d3:dd:6c:ca:5a:90:16:51:a3:c0:cb:6b:1a:1c:e0: c1:a6:fc:73:08:01:ee:6e:5c:f9:39:73:78:52:66: f4:d8:fd:2a:4f:e6:10:64:9b:a7:44:24:20:be:ab: ac:f7:a0:81:06:17:e4:19:38:9f:ec:fc:f2:1d:0d: ae:d0:0b:e8:56:6f:0c:2d:6c:46:d0:08:0d:f1:1a: 78:00:5e:4d:e6:d4:b1:97:9b:83:a0:76:fb:80:c9: 6f:6e:fa:cf:ac:63:d5:3f:21:e6:11:7a:60:e8:58: c2:59:9a:4f:1b:36:e0:93:5c:97:c4:79:fa:1d:a3: 38:04:c9:a3:eb:fb:08:f3:0a:4a:01:41:ed:cc:2b: 7d:49:8a:24:b1:5d:ec:60:66:d6:cb:3a:8f:e3:50: 4e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4A:91:9E:E0:ED:05:32:95:D2:C4:92:0A:43:62:BB:C1:54:D3:3C X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:49:9a:24:fc:e6:5e:57:27:2d:2f:b6:5f:d7:ed:bd:58:e1: 9d:80:fd:4b:ff:ed:20:eb:f4:28:c4:10:4d:1a:4f:74:0a:a5: 24:f4:52:c1:96:a9:ce:79:2c:08:ef:2c:88:9c:c8:fe:39:2c: 96:cc:d3:6f:14:94:b8:15:31:d5:7a:e9:33:c0:5e:69:c4:f7: ca:c5:b3:8c:52:4e:ae:ab:39:1f:99:29:6e:a9:91:5f:7d:df: 71:4c:09:e5:fb:6f:62:9b:8b:d8:55:d8:c5:09:36:a9:56:9e: 2b:b5:2a:7a:f7:6a:5a:86:8b:05:28:f2:ca:1b:d0:96:42:c3: ed:86:e2:29:a2:35:a7:87:41:10:93:e9:5b:36:69:51:a8:6f: 27:f7:20:dc:ad:d0:76:78:6e:f2:bf:2b:e8:39:d6:23:1a:9d: 39:72:83:fe:da:1f:c4:5b:e5:09:0a:9a:a6:39:e8:bb:cd:06: 3e:94:e8:38:b7:0a:dd:33:83:97:c9:9e:e6:24:07:87:60:cb: 42:a0:df:b6:52:86:6b:d9:36:27:31:84:43:42:5f:67:9f:90: ea:18:62:f7:cd:64:fc:36:f2:89:de:50:88:72:63:20:c5:80: f2:b2:73:84:c3:76:1a:1f:a5:8e:21:d8:e2:41:31:14:51:e1: a8:79:52:6e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYYVfQ95xbDHXBR5fwTqkkh36RJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNjAzMjUxMzU2MjJaFw0yNjAzMjgxNzM1MjJaMDMxMTAvBgNV BAMTKEQ1NEE5MTlFRTBFRDA1MzI5NUQyQzQ5MjBBNDM2MkJCQzE1NEQzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQPzl0Gum9CxDThl87R7i7w0cL vfFwrjSk8IAL2S/o0rlG+KFMEjra5CStwzwvR22Sme1iaDC0Re+gIEJHTK7t1ONZ eHp9BP1K3ALF1aUMttEQTFgXqEKdeSD9gjYQKdKzrG/2ME2HjtPdbMpakBZRo8DL axoc4MGm/HMIAe5uXPk5c3hSZvTY/SpP5hBkm6dEJCC+q6z3oIEGF+QZOJ/s/PId Da7QC+hWbwwtbEbQCA3xGngAXk3m1LGXm4OgdvuAyW9u+s+sY9U/IeYRemDoWMJZ mk8bNuCTXJfEefodozgEyaPr+wjzCkoBQe3MK31JiiSxXexgZtbLOo/jUE4fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1UqRnuDtBTKV0sSSCkNiu8FU0zwwHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIBJmiT85l5XJy0vtl/X7b1Y4Z2A/Uv/7SDr 9CjEEE0aT3QKpST0UsGWqc55LAjvLIicyP45LJbM028UlLgVMdV66TPAXmnE98rF s4xSTq6rOR+ZKW6pkV9933FMCeX7b2Kbi9hV2MUJNqlWniu1Knr3alqGiwUo8sob 0JZCw+2G4imiNaeHQRCT6Vs2aVGobyf3INyt0HZ4bvK/K+g51iManTlyg/7aH8Rb 5QkKmqY56LvNBj6U6Di3Ct0zg5fJnuYkB4dgy0Kg37ZShmvZNicxhENCX2efkOoY YvfNZPw28oneUIhyYyDFgPKyc4TDdhofpY4h2OJBMRRR4ah5Um4= -----END CERTIFICATE-----Generated at Thu Mar 26 15:04:36 2026 by rpki-client