$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft File: C70A343932991281F91796DB87B011987603BBF4.mft (raw, json) Hash identifier: DfscWN/aS21WwWWAFCT/KEYin0V5XCxPh0trkEPJ8Es= Subject key identifier: CF:C9:AB:76:8A:AB:99:97:49:9E:16:81:F1:1C:12:6C:AE:53:6A:AE Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 0B3C9F274B572D6A55D826CC6932F3CFA9F74CE1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft Manifest number: 0220 Signing time: Fri 22 Aug 2025 04:41:31 +0000 Manifest this update: Fri 22 Aug 2025 04:36:31 +0000 Manifest next update: Mon 25 Aug 2025 11:28:31 +0000 Files and hashes: 1: C70A343932991281F91796DB87B011987603BBF4.crl (hash: QdY7mn8caTK6+pRJzoDSwJzpW3lOSw5hI8qPr1VPto4=) 2: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (hash: K/te+OOqq38HfLYFBM6maqhYABgY51ViE5jJN8jRKPY=) 3: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (hash: 7CE9BXOCk+npQ95V1OHYui5nCFjD3JZ2DBCvcvu4/Kk=) 4: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (hash: TB7U9GvlAmHnGk0/8JpxDBGjqTq2O6M0WEaScBuoS/g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:3c:9f:27:4b:57:2d:6a:55:d8:26:cc:69:32:f3:cf:a9:f7:4c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Aug 22 04:36:31 2025 GMT Not After : Aug 25 11:28:31 2025 GMT Subject: CN=CFC9AB768AAB9997499E1681F11C126CAE536AAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:7c:31:26:09:21:83:6a:80:b7:67:72:14: 21:d9:70:d9:7d:b2:69:24:da:77:54:af:c2:5d:06: 66:b9:ef:a4:49:bb:ed:11:43:bb:4a:f5:25:02:13: 8e:10:fb:e5:e1:86:b7:e7:4c:cf:34:b1:a7:a8:ae: de:89:f8:44:1c:07:0c:af:3f:b2:d5:89:c0:0a:ff: b9:bb:14:ee:44:87:cf:a3:3a:6a:79:7f:50:23:32: c4:e2:60:8c:b6:78:5e:76:c1:1f:7a:73:50:6a:15: 41:9e:3f:c9:fb:df:a4:08:db:21:34:6d:12:57:44: 57:72:3a:36:02:5c:6c:cf:2d:b1:73:b0:69:48:6e: 99:7c:49:ce:3a:26:98:15:07:d4:ba:7b:1f:5f:bf: da:ab:43:68:86:f3:60:df:3d:b6:2f:9b:e5:f6:33: 32:c1:d0:f7:68:bf:d2:f0:89:8a:9a:c8:11:9f:65: 1b:2d:0a:1a:b5:6e:dc:dc:a1:4f:3b:af:ca:e4:3a: 4e:35:8d:b6:ae:69:e4:e3:c8:b8:be:ec:f3:56:11: 0d:29:5d:ed:9b:42:48:c5:67:44:6b:33:c2:c1:91: 6c:71:88:52:9b:49:aa:8d:37:b9:31:5d:8e:7b:e9: 1e:72:b6:7d:c2:28:b1:1a:35:06:26:39:0e:f4:01: 18:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C9:AB:76:8A:AB:99:97:49:9E:16:81:F1:1C:12:6C:AE:53:6A:AE X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ec:a8:5d:66:63:53:85:38:be:f2:c9:78:0d:4d:90:65:c9: 3b:f0:77:a9:8a:05:ef:42:29:99:59:6a:7a:7a:f8:85:56:43: 66:8f:41:7b:f9:f2:5c:66:46:65:40:04:81:2c:2d:cf:f2:f9: 89:c1:a5:cc:d7:ff:18:97:ba:53:d4:3a:54:c6:11:82:1e:ab: ad:1d:58:7a:9b:ed:31:f3:2d:75:f2:17:75:2a:8d:ea:40:7c: 35:e5:40:d7:09:8f:6a:d9:05:cd:f3:81:7a:89:8b:48:33:1f: 13:f5:22:21:66:24:9b:48:f7:d9:2f:dc:98:23:8a:56:6a:bb: 54:b0:ad:f3:a6:2a:2d:90:fc:22:0e:e5:11:8b:24:2c:c0:9a: 0b:0b:1b:f5:18:b6:05:8f:f5:a4:52:6d:f3:62:c9:d0:23:c5: d6:e5:89:55:29:39:2c:71:20:d9:4a:77:5c:69:f7:8e:ce:9e: 92:13:6c:04:fe:21:f5:db:03:a8:ae:0c:38:65:84:b0:11:03: 21:aa:2c:ad:dd:d9:16:86:b4:e3:9e:b2:90:07:96:6c:69:49: 24:84:fe:c7:30:1d:22:1c:e2:3d:a7:bd:0f:a8:4f:49:27:32: 4c:6e:4a:af:d8:f8:6e:19:88:97:92:54:52:ee:ab:b3:a3:9f: d4:f3:a8:3e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzyfJ0tXLWpV2CbMaTLzz6n3TOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNTA4MjIwNDM2MzFaFw0yNTA4MjUxMTI4MzFaMDMxMTAvBgNV BAMTKENGQzlBQjc2OEFBQjk5OTc0OTlFMTY4MUYxMUMxMjZDQUU1MzZBQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxnwxJgkhg2qAt2dyFCHZcNl9 smkk2ndUr8JdBma576RJu+0RQ7tK9SUCE44Q++XhhrfnTM80saeort6J+EQcBwyv P7LVicAK/7m7FO5Eh8+jOmp5f1AjMsTiYIy2eF52wR96c1BqFUGeP8n736QI2yE0 bRJXRFdyOjYCXGzPLbFzsGlIbpl8Sc46JpgVB9S6ex9fv9qrQ2iG82DfPbYvm+X2 MzLB0Pdov9LwiYqayBGfZRstChq1btzcoU87r8rkOk41jbauaeTjyLi+7PNWEQ0p Xe2bQkjFZ0RrM8LBkWxxiFKbSaqNN7kxXY576R5ytn3CKLEaNQYmOQ70ARgxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz8mrdoqrmZdJnhaB8RwSbK5Taq4wHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZjMTdjYzItZjRhMi00MTVlLThl YTItZjljNDdmNzVjNGNhLzAvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDEx OTg3NjAzQkJGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFvsqF1mY1OFOL7yyXgNTZBlyTvwd6mKBe9C KZlZanp6+IVWQ2aPQXv58lxmRmVABIEsLc/y+YnBpczX/xiXulPUOlTGEYIeq60d WHqb7THzLXXyF3UqjepAfDXlQNcJj2rZBc3zgXqJi0gzHxP1IiFmJJtI99kv3Jgj ilZqu1SwrfOmKi2Q/CIO5RGLJCzAmgsLG/UYtgWP9aRSbfNiydAjxdbliVUpOSxx INlKd1xp947OnpITbAT+IfXbA6iuDDhlhLARAyGqLK3d2RaGtOOespAHlmxpSSSE /scwHSIc4j2nvQ+oT0knMkxuSq/Y+G4ZiJeSVFLuq7Ojn9TzqD4= -----END CERTIFICATE-----Generated at Sat Aug 23 14:10:28 2025 by rpki-client