$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft File: C70A343932991281F91796DB87B011987603BBF4.mft (raw, json) Hash identifier: NOx289a2cYzQo3ecKYJql/KVLGF39GsDcV8KbtGpb84= Subject key identifier: 50:78:33:3D:02:B8:BD:3E:E7:EF:BF:DD:9E:0E:30:E1:87:61:F5:4D Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 7D2209BB64EAFCD8C09B6560009CAB3B22C6FCB4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft Manifest number: 023A Signing time: Sun 19 Oct 2025 15:51:33 +0000 Manifest this update: Sun 19 Oct 2025 15:46:33 +0000 Manifest next update: Thu 23 Oct 2025 02:42:33 +0000 Files and hashes: 1: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (hash: 7CE9BXOCk+npQ95V1OHYui5nCFjD3JZ2DBCvcvu4/Kk=) 2: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (hash: K/te+OOqq38HfLYFBM6maqhYABgY51ViE5jJN8jRKPY=) 3: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (hash: TB7U9GvlAmHnGk0/8JpxDBGjqTq2O6M0WEaScBuoS/g=) 4: C70A343932991281F91796DB87B011987603BBF4.crl (hash: Wi8IPc36OHfVBl26K8VY2wSpIFP0yQANM2BlVHrDZKU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 02:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:22:09:bb:64:ea:fc:d8:c0:9b:65:60:00:9c:ab:3b:22:c6:fc:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Oct 19 15:46:33 2025 GMT Not After : Oct 23 02:42:33 2025 GMT Subject: CN=5078333D02B8BD3EE7EFBFDD9E0E30E18761F54D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:13:fe:89:ab:d2:5c:8e:3a:94:d0:8b:d1:19: 86:7b:06:9d:21:8f:d1:29:75:5b:c5:06:c7:40:06: 81:44:22:d7:a9:3c:08:06:25:86:05:20:6d:a6:1d: f7:21:31:df:c7:8b:27:a0:88:4a:03:6d:a8:a8:3b: 6e:ca:43:22:e3:3b:22:5b:8c:a2:7c:6e:e0:6b:e1: bb:84:73:4b:c0:ee:0d:12:6c:f8:4f:51:17:74:57: f5:03:d7:31:13:3a:ab:34:4e:97:e9:31:ea:bb:5e: 9c:9d:74:f9:21:41:ac:c0:5c:ba:94:60:d6:36:83: 9b:c2:3f:86:e6:b7:70:8c:6c:4e:e4:9a:97:15:f4: e9:af:17:d2:ac:c5:e1:0d:cd:af:d4:97:41:f7:d5: 0a:7d:e5:b4:9d:92:00:97:9d:2b:ea:69:e1:14:15: 49:52:71:16:2a:2c:89:d9:6f:95:8c:a8:ee:2e:90: b7:95:59:e5:39:06:f7:e7:33:ae:8e:31:97:47:1a: 4a:ad:8f:30:9c:19:8d:35:d3:76:a4:8a:75:a6:3c: 5b:30:95:34:91:b2:c8:00:f0:8d:11:eb:3d:9c:17: 14:05:e9:1d:55:70:57:08:0c:20:02:ea:5b:b7:53: 8c:a3:4c:37:56:8d:aa:b1:c9:9f:f7:26:1b:74:be: 11:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:78:33:3D:02:B8:BD:3E:E7:EF:BF:DD:9E:0E:30:E1:87:61:F5:4D X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:6f:78:73:40:04:98:ca:19:bc:21:af:1a:80:10:f5:61:3f: e2:37:14:cb:58:14:c6:37:7f:38:c9:d3:99:96:19:ac:ff:f5: 1e:4c:4e:94:ae:8a:59:0a:4d:22:a4:05:21:51:72:0d:23:6a: 66:bd:6b:30:18:5b:38:a2:e1:1a:9a:91:b6:47:b8:85:4b:37: c6:92:c4:02:2e:69:fd:98:46:85:6e:f6:3a:70:e9:67:00:c9: 90:df:e1:0e:78:16:72:a5:dc:23:84:f1:b4:a3:cb:25:0f:9f: 8e:a1:13:6c:3e:08:26:f4:9a:97:9c:8a:22:c1:42:62:00:fb: 53:4c:ab:c5:a5:50:c0:8f:11:7c:4e:54:f1:55:e2:eb:04:75: c7:98:1e:a9:33:61:4b:d7:36:3e:6f:32:56:17:34:91:5a:8b: c1:66:6e:db:dd:da:6a:f8:ae:c4:65:5f:57:19:18:a3:d1:18: bb:81:23:1a:21:47:cb:c0:c1:70:71:be:d6:53:1d:1c:bb:a2: 88:6f:ee:09:8c:19:de:ce:df:04:2b:43:2d:32:c9:c0:a3:e3: cf:36:25:83:b5:0f:3d:57:27:cf:fd:b1:eb:a7:6e:1f:c6:d1: 58:f8:e4:9e:c0:db:a3:06:45:2e:e9:d8:8a:3e:ad:4d:be:df: 18:dd:8a:10 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfSIJu2Tq/NjAm2VgAJyrOyLG/LQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNTEwMTkxNTQ2MzNaFw0yNTEwMjMwMjQyMzNaMDMxMTAvBgNV BAMTKDUwNzgzMzNEMDJCOEJEM0VFN0VGQkZERDlFMEUzMEUxODc2MUY1NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIE/6Jq9JcjjqU0IvRGYZ7Bp0h j9EpdVvFBsdABoFEItepPAgGJYYFIG2mHfchMd/HiyegiEoDbaioO27KQyLjOyJb jKJ8buBr4buEc0vA7g0SbPhPURd0V/UD1zETOqs0TpfpMeq7XpyddPkhQazAXLqU YNY2g5vCP4bmt3CMbE7kmpcV9OmvF9KsxeENza/Ul0H31Qp95bSdkgCXnSvqaeEU FUlScRYqLInZb5WMqO4ukLeVWeU5BvfnM66OMZdHGkqtjzCcGY0103akinWmPFsw lTSRssgA8I0R6z2cFxQF6R1VcFcIDCAC6lu3U4yjTDdWjaqxyZ/3Jht0vhH3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUHgzPQK4vT7n77/dng4w4Ydh9U0wHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZjMTdjYzItZjRhMi00MTVlLThl YTItZjljNDdmNzVjNGNhLzAvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDEx OTg3NjAzQkJGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGZveHNABJjKGbwhrxqAEPVhP+I3FMtYFMY3 fzjJ05mWGaz/9R5MTpSuilkKTSKkBSFRcg0jama9azAYWzii4RqakbZHuIVLN8aS xAIuaf2YRoVu9jpw6WcAyZDf4Q54FnKl3COE8bSjyyUPn46hE2w+CCb0mpeciiLB QmIA+1NMq8WlUMCPEXxOVPFV4usEdceYHqkzYUvXNj5vMlYXNJFai8Fmbtvd2mr4 rsRlX1cZGKPRGLuBIxohR8vAwXBxvtZTHRy7oohv7gmMGd7O3wQrQy0yycCj4882 JYO1Dz1XJ8/9seunbh/G0Vj45J7A26MGRS7p2Io+rU2+3xjdihA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:21:25 2025 by rpki-client