$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: NkzgKn/tx/U3X9SqDvyyo7sTowfUoVL9ZFgdNwuK9wU= Subject key identifier: 2D:7D:50:0A:0A:F0:F4:34:5D:1B:8A:D6:BB:91:86:94:DF:D5:AF:76 Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 2049FD74160EADA18780D069E7C281A756E7FBBE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 41 Signing time: Sat 19 Jul 2025 17:51:16 +0000 Manifest this update: Sat 19 Jul 2025 17:46:16 +0000 Manifest next update: Tue 22 Jul 2025 23:20:16 +0000 Files and hashes: 1: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) 2: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: 2uN/KmnCnp4npgjhNYtxlxcOQPyDaNKrCgMhBjBqhHY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 23:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:49:fd:74:16:0e:ad:a1:87:80:d0:69:e7:c2:81:a7:56:e7:fb:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Jul 19 17:46:16 2025 GMT Not After : Jul 22 23:20:16 2025 GMT Subject: CN=2D7D500A0AF0F4345D1B8AD6BB918694DFD5AF76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:50:f9:31:4f:e7:57:a7:0f:53:e5:46:0c:ad: 5d:8e:56:66:b9:77:3e:6a:5f:35:3d:01:f4:d4:b4: 20:69:e0:ef:53:b6:5e:4a:5d:51:24:6f:e4:d9:a1: 2a:a2:c9:d9:ad:0d:ba:ab:3c:89:3d:f5:e6:2d:b8: 62:51:9a:3d:9d:4a:63:9e:cb:ce:c3:25:a2:1c:a1: a7:73:53:c7:8c:2f:dd:26:02:c4:57:52:69:a9:1f: 3b:f5:b6:45:fe:a3:66:a4:fc:09:76:8b:ba:d5:19: bb:10:4a:7d:1a:0d:f6:26:bb:59:2b:7f:aa:d2:10: 43:eb:c1:07:3f:e7:eb:10:63:2b:c2:eb:50:b5:c2: 28:98:9a:9a:b1:ee:e8:79:f5:b7:5e:db:fe:a9:fb: 2d:8e:82:09:80:19:d9:e6:c7:b8:8c:98:16:d2:95: 47:44:e1:af:a8:bd:8a:ea:7c:7c:87:2d:a4:4f:9b: bb:b9:c8:43:35:ec:62:52:a4:d7:8d:4e:50:d7:5d: b8:3c:10:e6:64:88:da:76:a6:9c:3c:7e:db:68:4d: 5d:8d:6a:04:e5:71:3d:f2:ce:b5:c6:27:e6:27:09: 3d:44:0a:a2:27:a6:57:fa:75:19:47:7c:2d:d1:84: 50:8b:33:97:38:ae:a6:21:4a:02:71:b1:2f:67:48: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7D:50:0A:0A:F0:F4:34:5D:1B:8A:D6:BB:91:86:94:DF:D5:AF:76 X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:97:ae:df:8c:0c:44:cc:53:83:eb:c3:fc:35:87:fa:54:34: e3:d8:ae:48:aa:c9:d4:b9:ed:3e:86:cf:bd:fe:d5:6f:d7:17: 1b:1d:99:e6:73:3f:b2:c3:5a:ed:45:5d:c9:82:27:20:17:b7: 67:46:2d:60:d0:8b:a9:7a:55:c3:b1:d5:07:d8:a6:49:74:4c: 75:96:93:5f:45:58:e6:72:a6:07:37:ac:6c:14:3e:5f:16:fd: e0:02:b1:4f:3e:a2:0b:8c:4e:b2:b3:71:bf:b3:2e:3c:b8:fd: 3a:5e:e2:e8:56:7d:ca:b4:38:20:48:76:a6:b8:c3:83:a6:0a: d4:77:b4:e5:cb:85:c3:f8:a9:6d:ca:ef:d3:62:a1:3b:e1:ba: 4c:9c:3d:02:71:13:43:a0:8d:0a:a8:b1:98:75:b0:62:06:b8: 6b:8e:10:04:c3:bc:26:09:65:98:26:26:fa:85:d6:7b:72:a7: 3d:17:53:5a:53:a4:ce:c4:bb:e9:aa:70:b0:c2:10:5c:0a:ad: b6:3e:ad:66:a5:c7:0f:e9:ea:9a:a4:3d:af:6c:f2:fc:39:0b: b8:9e:1a:15:dc:71:1b:e0:07:fb:04:e1:8b:fa:ee:6a:c2:6a: 98:5d:bd:c4:bd:f5:c8:b7:c0:9d:b8:12:69:f9:fc:a9:bc:35: ac:5d:95:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIEn9dBYOraGHgNBp58KBp1bn+74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTA3MTkxNzQ2MTZaFw0yNTA3MjIyMzIwMTZaMDMxMTAvBgNV BAMTKDJEN0Q1MDBBMEFGMEY0MzQ1RDFCOEFENkJCOTE4Njk0REZENUFGNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmUPkxT+dXpw9T5UYMrV2OVma5 dz5qXzU9AfTUtCBp4O9Ttl5KXVEkb+TZoSqiydmtDbqrPIk99eYtuGJRmj2dSmOe y87DJaIcoadzU8eML90mAsRXUmmpHzv1tkX+o2ak/Al2i7rVGbsQSn0aDfYmu1kr f6rSEEPrwQc/5+sQYyvC61C1wiiYmpqx7uh59bde2/6p+y2OggmAGdnmx7iMmBbS lUdE4a+ovYrqfHyHLaRPm7u5yEM17GJSpNeNTlDXXbg8EOZkiNp2ppw8fttoTV2N agTlcT3yzrXGJ+YnCT1ECqInplf6dRlHfC3RhFCLM5c4rqYhSgJxsS9nSFONAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULX1QCgrw9DRdG4rWu5GGlN/Vr3YwHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGSXrt+MDETMU4Prw/w1h/pUNOPYrkiqydS5 7T6Gz73+1W/XFxsdmeZzP7LDWu1FXcmCJyAXt2dGLWDQi6l6VcOx1QfYpkl0THWW k19FWOZypgc3rGwUPl8W/eACsU8+oguMTrKzcb+zLjy4/Tpe4uhWfcq0OCBIdqa4 w4OmCtR3tOXLhcP4qW3K79NioTvhukycPQJxE0OgjQqosZh1sGIGuGuOEATDvCYJ ZZgmJvqF1ntypz0XU1pTpM7Eu+mqcLDCEFwKrbY+rWalxw/p6pqkPa9s8vw5C7ie GhXccRvgB/sE4Yv67mrCaphdvcS99ci3wJ24Emn5/Km8NaxdlYg= -----END CERTIFICATE-----Generated at Mon Jul 21 10:36:53 2025 by rpki-client