$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: S27jVDGKLiqIWrH5EvdK1qGC/iZ93MvYCFcQIDrXg30= Subject key identifier: 87:B7:E1:C9:91:3A:3D:A3:7A:F9:7A:65:D6:ED:E9:79:36:58:58:3E Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 472DFF1FB4FE498F5B637559B36AA5126CDB8414 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 57 Signing time: Sat 06 Sep 2025 15:41:23 +0000 Manifest this update: Sat 06 Sep 2025 15:36:23 +0000 Manifest next update: Tue 09 Sep 2025 23:15:23 +0000 Files and hashes: 1: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) 2: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: 94yOA9WvXDF8YLUWVwwgrTCqMnO29iLqvwV+lo3pbUI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 23:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:2d:ff:1f:b4:fe:49:8f:5b:63:75:59:b3:6a:a5:12:6c:db:84:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Sep 6 15:36:23 2025 GMT Not After : Sep 9 23:15:23 2025 GMT Subject: CN=87B7E1C9913A3DA37AF97A65D6EDE9793658583E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:05:8b:57:8f:22:73:92:81:27:43:eb:0f:ed: 01:e5:96:1e:03:55:6c:80:3f:42:8c:5e:9e:67:75: d1:dc:05:6b:2b:05:cb:a0:61:1c:8b:55:65:a5:18: 6b:11:2e:66:89:36:4d:d2:9c:ad:9b:af:b8:0b:3f: 28:91:68:59:00:96:9a:28:f4:d3:51:39:33:ab:c5: 96:2a:57:bf:6c:14:78:ad:82:90:98:fc:15:1d:0e: 0d:ae:7b:e8:ef:c8:ee:42:f7:aa:ae:cd:4e:52:aa: 9b:82:74:77:39:a4:35:2f:7a:6c:fe:da:ff:4e:53: ef:b4:b8:e6:57:07:2c:7d:6e:22:21:ef:60:be:39: f4:49:e6:c7:1a:8c:9d:64:2b:f1:fc:77:4f:e2:7b: 0c:ad:99:c8:48:72:3e:12:6b:ff:2a:8c:0e:f6:fb: 71:ed:72:2f:73:03:5c:be:ad:9e:bb:d6:be:59:bd: a8:19:c8:2a:ec:d2:84:c4:fa:dd:ec:53:d8:86:bb: cb:30:95:62:ab:08:17:77:1d:cf:59:0c:9f:32:1c: 11:f8:41:79:48:a6:5a:68:37:81:d7:a3:64:80:28: 32:95:8f:30:87:8b:70:76:83:1e:c7:c7:04:af:49: 1a:97:bd:18:90:24:c2:dd:9b:02:cf:e5:f3:43:79: a0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B7:E1:C9:91:3A:3D:A3:7A:F9:7A:65:D6:ED:E9:79:36:58:58:3E X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:21:82:56:99:33:f7:d9:21:db:d4:77:2e:54:5f:8a:2e:34: 85:54:bd:85:62:66:93:3e:1d:8c:1d:e3:28:48:7e:23:c2:03: fd:f7:1b:b9:22:a8:13:2a:de:51:99:44:ae:00:e7:7a:d5:f9: 0a:4f:71:7f:be:06:98:f6:26:95:c6:7b:35:97:59:8d:44:23: 49:e4:58:26:37:bb:38:f6:39:7d:5f:62:7c:bb:ba:2a:d4:76: 38:09:4a:f3:5d:1b:5f:fa:0a:ef:35:2c:95:8e:b5:aa:81:d0: f2:e6:66:7d:af:6c:6d:30:d8:e1:25:3e:d3:94:8f:9a:d7:c3: 2a:f9:94:fd:83:ea:be:7f:1d:1f:a1:ae:88:97:f0:67:32:73: 63:38:34:1f:d2:07:89:ef:f8:8d:86:19:31:08:c9:0b:fe:df: d3:3b:9d:ae:eb:99:e6:71:19:af:41:26:af:82:45:cd:6c:cc: 5a:b6:a1:eb:94:a0:ac:4e:af:85:a5:24:a7:ef:0f:d1:ae:29: 46:c9:34:b3:88:4f:6a:11:e4:ed:28:3d:e3:f7:e6:bd:51:16: 17:bf:bd:ab:f5:e2:7c:06:93:96:9b:20:4d:74:f2:26:45:00: 2d:52:e4:c9:e2:44:b0:13:56:d8:47:25:8d:06:54:ce:f8:71: bf:a8:fb:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURy3/H7T+SY9bY3VZs2qlEmzbhBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTA5MDYxNTM2MjNaFw0yNTA5MDkyMzE1MjNaMDMxMTAvBgNV BAMTKDg3QjdFMUM5OTEzQTNEQTM3QUY5N0E2NUQ2RURFOTc5MzY1ODU4M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYBYtXjyJzkoEnQ+sP7QHllh4D VWyAP0KMXp5nddHcBWsrBcugYRyLVWWlGGsRLmaJNk3SnK2br7gLPyiRaFkAlpoo 9NNROTOrxZYqV79sFHitgpCY/BUdDg2ue+jvyO5C96quzU5SqpuCdHc5pDUvemz+ 2v9OU++0uOZXByx9biIh72C+OfRJ5scajJ1kK/H8d0/iewytmchIcj4Sa/8qjA72 +3Htci9zA1y+rZ671r5ZvagZyCrs0oTE+t3sU9iGu8swlWKrCBd3Hc9ZDJ8yHBH4 QXlIplpoN4HXo2SAKDKVjzCHi3B2gx7HxwSvSRqXvRiQJMLdmwLP5fNDeaBLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh7fhyZE6PaN6+Xpl1u3peTZYWD4wHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIUhglaZM/fZIdvUdy5UX4ouNIVUvYViZpM+ HYwd4yhIfiPCA/33G7kiqBMq3lGZRK4A53rV+QpPcX++Bpj2JpXGezWXWY1EI0nk WCY3uzj2OX1fYny7uirUdjgJSvNdG1/6Cu81LJWOtaqB0PLmZn2vbG0w2OElPtOU j5rXwyr5lP2D6r5/HR+hroiX8Gcyc2M4NB/SB4nv+I2GGTEIyQv+39M7na7rmeZx Ga9BJq+CRc1szFq2oeuUoKxOr4WlJKfvD9GuKUbJNLOIT2oR5O0oPeP35r1RFhe/ vav14nwGk5abIE108iZFAC1S5MniRLATVthHJY0GVM74cb+o+zU= -----END CERTIFICATE-----Generated at Mon Sep 8 05:11:04 2025 by rpki-client