$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: ff2FIQwPbL742Wf/pDgwKZhP2Dw6FdQkDQBa1j6RoSU= Subject key identifier: C0:F5:78:A9:F5:87:B0:60:A8:A9:6F:0C:DB:C6:52:6B:ED:52:20:C8 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 5C4A5736A01990A990CC3083A316EED079408D23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 0379 Signing time: Fri 05 Sep 2025 11:02:15 +0000 Manifest this update: Fri 05 Sep 2025 10:57:15 +0000 Manifest next update: Mon 08 Sep 2025 16:42:15 +0000 Files and hashes: 1: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: iv2SAjyHSWCSm/Qp+qCzqgF4lXDrzm6Us1pHd8OSMEA=) 2: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: fYk1A/6JlSofdoRQTxZ35IGs4jax1F7uqVxTxU6HBk4=) 3: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: rNa2on5+DMAnzayjr8XpEII8JqHWgOprf/5TlZrlTb0=) 4: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: 3rV4uFv8c8tZxiWRv5wyAwB0fp3hqTafe/mncjA0QMc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 16:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4a:57:36:a0:19:90:a9:90:cc:30:83:a3:16:ee:d0:79:40:8d:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Sep 5 10:57:15 2025 GMT Not After : Sep 8 16:42:15 2025 GMT Subject: CN=C0F578A9F587B060A8A96F0CDBC6526BED5220C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:81:cf:00:17:02:63:8a:5f:c8:5b:ca:9f:ea: 4d:65:40:49:c3:62:0b:c1:00:87:b4:3d:3c:95:78: 99:39:2a:b7:82:71:71:3c:0c:4b:68:c9:d6:aa:8d: ca:56:97:a1:5e:fd:90:9a:f8:28:46:30:51:bd:c2: 8f:94:94:b5:e6:54:3e:8e:aa:b0:5b:ef:39:59:4d: e4:d6:c5:d1:54:a6:1f:fc:7a:7e:c6:d4:07:9d:2a: 0b:13:1c:a2:24:43:54:4c:18:f8:87:c0:91:22:03: 96:f5:db:02:4b:02:3c:a4:80:83:01:4a:2e:ec:67: ae:b7:5e:dd:5a:d7:e4:eb:50:27:f0:5f:a0:fa:a2: 10:0e:c8:60:a8:94:61:9d:a6:a9:e2:5e:4d:15:3d: 2a:d0:c5:6b:75:65:80:98:0f:81:0c:be:8a:db:73: b6:12:a9:8e:2c:71:bd:5f:75:02:5d:75:2d:29:1b: 01:56:31:46:49:2f:e3:f3:71:af:02:5e:33:0c:8c: 2c:61:b2:66:03:b5:04:9c:35:b8:f3:e9:eb:b6:13: ec:ee:93:0f:be:7b:b9:10:fc:a1:c1:6e:34:d7:0b: a7:e2:16:55:db:ae:f1:a2:74:bf:e4:3d:b5:51:ac: 4d:ff:c1:b1:e0:26:9b:69:1c:d0:de:0d:2e:77:61: d0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F5:78:A9:F5:87:B0:60:A8:A9:6F:0C:DB:C6:52:6B:ED:52:20:C8 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:18:96:73:4b:6e:ea:60:bb:b6:bc:af:21:7f:67:4c:8e:7c: 49:63:64:d4:65:e0:f7:89:dd:3c:45:d6:ad:58:be:ca:46:c9: 4a:31:90:ee:c2:00:37:f9:f5:58:69:2e:5e:d6:70:18:4e:ff: c8:b2:1d:13:fb:e4:5c:f3:b5:c2:86:49:94:db:2d:4a:86:64: df:da:7c:b4:6d:3e:a1:7f:5c:64:a5:b2:c8:cb:e2:72:1c:00: 3d:80:28:ca:90:4e:a0:e5:ca:27:0d:fa:e3:14:f6:6e:fb:12: c9:fa:c2:73:84:61:e4:3d:52:67:09:3d:7f:e3:8e:b1:f9:0e: 31:aa:55:e2:65:83:ff:35:7e:0e:43:cf:b9:fb:bf:59:d8:c7: a8:57:02:c4:82:3c:d5:2b:41:2b:ee:e4:e6:cf:1b:a3:16:f3: 09:fa:fa:77:a7:cc:a8:4e:24:c1:50:89:7f:de:9d:93:47:f4: 6d:41:7a:40:bc:ba:11:52:3a:08:46:2e:75:b6:a5:25:b4:72: 9d:bf:7d:aa:18:2f:a7:e5:13:d5:d3:08:d2:58:c9:c2:06:cd: 03:e7:50:e3:3e:38:40:54:ff:77:58:79:49:4d:85:79:49:47: d2:61:96:ae:ce:b6:04:f5:fe:b5:0c:fc:9f:d1:e2:24:b4:40: c4:d5:f7:57 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXEpXNqAZkKmQzDCDoxbu0HlAjSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNTA5MDUxMDU3MTVaFw0yNTA5MDgxNjQyMTVaMDMxMTAvBgNV BAMTKEMwRjU3OEE5RjU4N0IwNjBBOEE5NkYwQ0RCQzY1MjZCRUQ1MjIwQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGgc8AFwJjil/IW8qf6k1lQEnD YgvBAIe0PTyVeJk5KreCcXE8DEtoydaqjcpWl6Fe/ZCa+ChGMFG9wo+UlLXmVD6O qrBb7zlZTeTWxdFUph/8en7G1AedKgsTHKIkQ1RMGPiHwJEiA5b12wJLAjykgIMB Si7sZ663Xt1a1+TrUCfwX6D6ohAOyGColGGdpqniXk0VPSrQxWt1ZYCYD4EMvorb c7YSqY4scb1fdQJddS0pGwFWMUZJL+Pzca8CXjMMjCxhsmYDtQScNbjz6eu2E+zu kw++e7kQ/KHBbjTXC6fiFlXbrvGidL/kPbVRrE3/wbHgJptpHNDeDS53YdDfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwPV4qfWHsGCoqW8M28ZSa+1SIMgwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKUYlnNLbupgu7a8ryF/Z0yOfEljZNRl4PeJ 3TxF1q1YvspGyUoxkO7CADf59VhpLl7WcBhO/8iyHRP75FzztcKGSZTbLUqGZN/a fLRtPqF/XGSlssjL4nIcAD2AKMqQTqDlyicN+uMU9m77Esn6wnOEYeQ9UmcJPX/j jrH5DjGqVeJlg/81fg5Dz7n7v1nYx6hXAsSCPNUrQSvu5ObPG6MW8wn6+nenzKhO JMFQiX/enZNH9G1BekC8uhFSOghGLnW2pSW0cp2/faoYL6flE9XTCNJYycIGzQPn UOM+OEBU/3dYeUlNhXlJR9Jhlq7OtgT1/rUM/J/R4iS0QMTV91c= -----END CERTIFICATE-----Generated at Sun Sep 7 14:03:59 2025 by rpki-client