$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: FzJK+BLQM40mYfPEqKi6/x5TUXIZQvp3T18olhXsPYA= Subject key identifier: E2:A2:14:45:C4:A9:CA:DA:4D:EA:64:CB:75:3C:D4:19:B2:6C:E0:F4 Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 01021B7B7F896BBA79E6B28053574BD3E9CEEA34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 02B8 Signing time: Thu 19 Mar 2026 10:01:27 +0000 Manifest this update: Thu 19 Mar 2026 09:56:27 +0000 Manifest next update: Sun 22 Mar 2026 11:43:27 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Ov8NRVnVqFMBFhQjGCU710LWI7k2FUziabpa7227XyA=) 2: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: GvjM6k8+oDFzZKWhludwD0yx/MS2sQqrti6xYA6tnYY=) 3: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: +ZStO4qmRvdLYRUifxrnZ6iCCxDWhq1QC8uZT5sFhJk=) 4: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: mFq2b38/RUkUkCh1MVybkTba/DYg5kwfb6uDHIQj6Gk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 11:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:02:1b:7b:7f:89:6b:ba:79:e6:b2:80:53:57:4b:d3:e9:ce:ea:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Mar 19 09:56:27 2026 GMT Not After : Mar 22 11:43:27 2026 GMT Subject: CN=E2A21445C4A9CADA4DEA64CB753CD419B26CE0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:df:84:34:00:1f:a7:1d:2c:bb:59:55:db:78: b3:a9:29:bb:89:f2:f4:54:54:5f:29:17:6f:46:d8: cb:cb:bc:2b:3d:09:bd:78:5c:0b:ae:b3:d0:68:2c: 36:7c:58:3f:d4:7a:3a:b4:96:c8:63:bb:06:a4:59: 26:82:15:01:8d:f9:3a:9c:ed:5d:e6:97:6f:f5:34: 8b:a9:cb:91:3b:5f:84:8a:45:54:eb:0d:38:cc:b7: 26:74:ad:95:09:ba:0b:6a:3a:b5:4e:13:87:92:fa: 09:13:48:37:94:ed:c1:5e:74:d0:79:47:2d:b6:ec: 86:d0:e0:b3:fc:f6:84:a9:d2:44:e4:5b:2f:85:cd: 42:8c:7a:bf:5e:a2:9a:16:70:14:4c:dc:87:f8:dc: ff:44:f4:b5:72:b3:47:b8:b1:a2:e1:8e:32:0d:29: 35:38:d8:24:84:9e:1f:f4:73:d5:78:9b:6b:f1:23: e9:c3:46:0a:fb:a1:7e:41:74:8b:10:4f:6d:f6:c6: 80:68:d1:1b:f5:13:eb:0c:49:c4:4b:73:65:d0:c4: 03:24:02:5e:b4:e5:09:06:09:ed:ae:e6:0c:87:1b: 92:dd:df:41:4d:07:85:1e:81:53:9b:f6:e6:ca:28: 24:cd:fa:9f:11:8b:ef:c4:f9:8c:7c:83:64:ea:c1: e8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A2:14:45:C4:A9:CA:DA:4D:EA:64:CB:75:3C:D4:19:B2:6C:E0:F4 X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c8:83:c1:e5:98:a7:03:2d:c7:6a:d6:bf:dc:6b:ea:21:5e: f5:5f:7a:35:94:12:b5:55:e5:bd:96:86:12:11:60:43:bf:06: 40:15:73:a4:7a:f9:11:7d:50:4c:1b:35:55:e4:d3:a8:c1:66: 34:95:39:a7:1c:db:8a:5a:2e:05:15:3b:c5:cb:fe:8f:36:8d: 7c:8d:93:22:47:bf:05:c1:94:8b:5c:26:56:26:db:7c:05:d6: a7:43:e4:8d:cd:e5:cc:d8:ab:e4:09:1a:93:8c:20:29:a5:d8: 5b:86:f8:c2:a9:b5:32:cc:c6:88:54:c7:c1:05:2a:92:fb:d3: 8b:d0:84:dd:fc:ef:4e:45:94:70:99:ec:bf:91:12:64:0f:48: 18:18:6a:60:5a:8c:d5:17:a1:8d:9b:18:8d:c3:fd:13:64:85: a8:7c:ad:ac:20:20:9f:de:da:28:66:52:ff:6a:55:60:bc:a6: 6d:29:aa:9a:72:13:b6:32:2d:58:aa:8a:88:e0:f3:df:00:e2: a1:cb:64:c1:86:27:7c:a5:f3:eb:29:9b:40:76:d0:b4:eb:9b: 53:a7:1c:8e:8b:e6:df:d4:e9:ba:5c:93:1c:78:65:28:0b:05: d2:f1:ab:2a:a3:f7:21:da:f7:c2:86:5c:85:fa:ef:21:65:09: 60:4d:c8:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAQIbe3+Ja7p55rKAU1dL0+nO6jQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNjAzMTkwOTU2MjdaFw0yNjAzMjIxMTQzMjdaMDMxMTAvBgNV BAMTKEUyQTIxNDQ1QzRBOUNBREE0REVBNjRDQjc1M0NENDE5QjI2Q0UwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl34Q0AB+nHSy7WVXbeLOpKbuJ 8vRUVF8pF29G2MvLvCs9Cb14XAuus9BoLDZ8WD/Uejq0lshjuwakWSaCFQGN+Tqc 7V3ml2/1NIupy5E7X4SKRVTrDTjMtyZ0rZUJugtqOrVOE4eS+gkTSDeU7cFedNB5 Ry227IbQ4LP89oSp0kTkWy+FzUKMer9eopoWcBRM3If43P9E9LVys0e4saLhjjIN KTU42CSEnh/0c9V4m2vxI+nDRgr7oX5BdIsQT232xoBo0Rv1E+sMScRLc2XQxAMk Al605QkGCe2u5gyHG5Ld30FNB4UegVOb9ubKKCTN+p8Ri+/E+Yx8g2TqwejRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4qIURcSpytpN6mTLdTzUGbJs4PQwHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH/Ig8HlmKcDLcdq1r/ca+ohXvVfejWUErVV 5b2WhhIRYEO/BkAVc6R6+RF9UEwbNVXk06jBZjSVOacc24paLgUVO8XL/o82jXyN kyJHvwXBlItcJlYm23wF1qdD5I3N5czYq+QJGpOMICml2FuG+MKptTLMxohUx8EF KpL704vQhN38705FlHCZ7L+REmQPSBgYamBajNUXoY2bGI3D/RNkhah8rawgIJ/e 2ihmUv9qVWC8pm0pqppyE7YyLViqiojg898A4qHLZMGGJ3yl8+spm0B20LTrm1On HI6L5t/U6bpckxx4ZSgLBdLxqyqj9yHa98KGXIX67yFlCWBNyEY= -----END CERTIFICATE-----Generated at Fri Mar 20 12:41:15 2026 by rpki-client