$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft File: C70A343932991281F91796DB87B011987603BBF4.mft (raw, json) Hash identifier: BXvGE+lWWcPoO0CO7RYw3KzPBjIJCLD7ufHohKW8qU4= Subject key identifier: 4D:64:7C:15:60:02:F4:FD:2F:A7:42:CA:2C:A5:D5:13:B6:B0:80:DB Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 741BD2B5D1BDA780BD6D6CBF17663BD964EB6B2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft Manifest number: 0208 Signing time: Sat 28 Jun 2025 22:51:35 +0000 Manifest this update: Sat 28 Jun 2025 22:46:35 +0000 Manifest next update: Wed 02 Jul 2025 08:47:35 +0000 Files and hashes: 1: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (hash: 7CE9BXOCk+npQ95V1OHYui5nCFjD3JZ2DBCvcvu4/Kk=) 2: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (hash: TB7U9GvlAmHnGk0/8JpxDBGjqTq2O6M0WEaScBuoS/g=) 3: C70A343932991281F91796DB87B011987603BBF4.crl (hash: o18BB4u1zdusB29L4lRRcvuru7qnOhy16Tcx+OKDB6Y=) 4: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (hash: K/te+OOqq38HfLYFBM6maqhYABgY51ViE5jJN8jRKPY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 08:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1b:d2:b5:d1:bd:a7:80:bd:6d:6c:bf:17:66:3b:d9:64:eb:6b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Jun 28 22:46:35 2025 GMT Not After : Jul 2 08:47:35 2025 GMT Subject: CN=4D647C156002F4FD2FA742CA2CA5D513B6B080DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b6:19:19:b9:77:25:b5:99:15:c7:5e:cb:d6: 8f:ac:ae:8b:a5:6b:22:25:00:ff:a9:97:26:10:b5: de:53:eb:a4:0d:63:bf:78:cf:31:cf:ee:34:5f:fb: 8f:c7:0e:0e:ac:d0:8f:d5:5f:be:b7:64:2f:bf:12: b1:18:bd:df:e3:03:83:a9:3b:79:3a:a2:ee:c0:d8: d9:55:7d:d4:01:dc:7e:50:13:24:4e:48:7a:a3:f9: aa:6b:56:42:de:ac:fb:9e:50:05:5b:75:4a:a9:65: 74:8d:61:83:e3:3a:9a:79:0c:ea:25:32:8a:30:ee: 5e:af:6e:ef:e2:77:1b:9b:61:aa:57:54:fb:4c:e9: 71:34:40:ab:b9:83:77:97:49:75:88:74:a9:ef:6b: 61:8f:67:43:d3:63:46:3d:69:4d:3e:59:0d:05:44: 81:60:a4:24:b4:90:cf:04:7a:f8:5e:50:bd:bc:8c: 86:3e:6a:5c:b7:c0:a3:df:63:e0:60:be:32:37:bd: 25:25:c6:c7:ad:21:9e:e2:68:69:1c:a8:3e:9c:a5: 44:5c:fe:d7:48:52:88:56:18:82:06:d1:27:5d:e7: 52:bb:61:4e:b4:50:ae:e1:dd:b6:3a:4c:aa:c0:3c: cb:dc:2a:f3:a0:2d:4b:27:8e:fa:0b:e9:73:de:7b: 3f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:64:7C:15:60:02:F4:FD:2F:A7:42:CA:2C:A5:D5:13:B6:B0:80:DB X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:a7:10:3b:c3:1c:69:54:f8:ec:a0:76:29:51:0a:f6:ee:e0: b5:57:ec:b1:7e:73:06:a1:31:67:4d:2b:d2:70:f8:5e:cb:ff: a8:49:0c:5c:ce:84:85:74:fc:b7:09:2d:6a:40:f9:48:eb:e7: a6:c8:30:10:42:d9:2b:fd:3b:e8:f0:bb:48:d0:b9:d2:f0:2b: b5:48:04:16:6d:0f:46:73:65:6f:16:f1:8f:e5:ce:20:7e:3b: 17:0c:e7:ee:3e:93:75:06:d7:b4:38:ed:3a:18:ae:59:15:0a: e8:49:67:c7:5b:e3:7c:d4:48:4a:c4:6b:d5:df:e6:e7:db:0f: b8:4b:d6:89:93:63:a6:5e:99:a1:af:1c:74:d7:48:3b:da:22: 80:34:33:ae:b5:0b:ab:f4:72:b6:d5:41:19:bf:43:22:61:41: bb:ef:c8:72:0d:40:fe:1e:cf:ff:b7:36:32:9a:45:3d:a5:6d: 29:14:40:87:37:e1:00:c7:b3:c1:29:5c:c3:bd:47:29:f9:1a: 51:c8:b0:a3:0f:59:1d:c5:a5:f6:ff:64:63:d5:d3:1e:40:32: 67:e4:51:48:39:0b:05:bc:57:27:e8:9c:0d:00:4a:5f:ab:8f: 3b:7b:13:29:e7:f5:3b:42:0c:df:bd:2c:cc:f5:5a:5f:30:48: ae:6b:a8:54 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdBvStdG9p4C9bWy/F2Y72WTraywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNTA2MjgyMjQ2MzVaFw0yNTA3MDIwODQ3MzVaMDMxMTAvBgNV BAMTKDRENjQ3QzE1NjAwMkY0RkQyRkE3NDJDQTJDQTVENTEzQjZCMDgwREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkthkZuXcltZkVx17L1o+sroul ayIlAP+plyYQtd5T66QNY794zzHP7jRf+4/HDg6s0I/VX763ZC+/ErEYvd/jA4Op O3k6ou7A2NlVfdQB3H5QEyROSHqj+aprVkLerPueUAVbdUqpZXSNYYPjOpp5DOol Moow7l6vbu/idxubYapXVPtM6XE0QKu5g3eXSXWIdKnva2GPZ0PTY0Y9aU0+WQ0F RIFgpCS0kM8EevheUL28jIY+aly3wKPfY+BgvjI3vSUlxsetIZ7iaGkcqD6cpURc /tdIUohWGIIG0Sdd51K7YU60UK7h3bY6TKrAPMvcKvOgLUsnjvoL6XPeez+FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTWR8FWAC9P0vp0LKLKXVE7awgNswHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZjMTdjYzItZjRhMi00MTVlLThl YTItZjljNDdmNzVjNGNhLzAvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDEx OTg3NjAzQkJGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADenEDvDHGlU+OygdilRCvbu4LVX7LF+cwah MWdNK9Jw+F7L/6hJDFzOhIV0/LcJLWpA+Ujr56bIMBBC2Sv9O+jwu0jQudLwK7VI BBZtD0ZzZW8W8Y/lziB+OxcM5+4+k3UG17Q47ToYrlkVCuhJZ8db43zUSErEa9Xf 5ufbD7hL1omTY6ZemaGvHHTXSDvaIoA0M661C6v0crbVQRm/QyJhQbvvyHINQP4e z/+3NjKaRT2lbSkUQIc34QDHs8EpXMO9Ryn5GlHIsKMPWR3Fpfb/ZGPV0x5AMmfk UUg5CwW8VyfonA0ASl+rjzt7Eynn9TtCDN+9LMz1Wl8wSK5rqFQ= -----END CERTIFICATE-----Generated at Tue Jul 1 05:02:00 2025 by rpki-client