$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: hPGMnPMzhWcAmb+nyd4r6rF/ipx3yXxeWHlrsagpe64= Subject key identifier: 46:CE:34:91:14:DB:F2:80:ED:F8:AA:47:3B:02:3F:D1:47:92:22:9C Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 2FD9C733A8F864F97304F29FF194850856887716 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 034F Signing time: Tue 03 Jun 2025 12:43:52 +0000 Manifest this update: Tue 03 Jun 2025 12:38:52 +0000 Manifest next update: Fri 06 Jun 2025 17:30:52 +0000 Files and hashes: 1: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: rNa2on5+DMAnzayjr8XpEII8JqHWgOprf/5TlZrlTb0=) 2: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: iv2SAjyHSWCSm/Qp+qCzqgF4lXDrzm6Us1pHd8OSMEA=) 3: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: fYk1A/6JlSofdoRQTxZ35IGs4jax1F7uqVxTxU6HBk4=) 4: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: Yjod9+Cn8FtdEZPlP5zTeV2SVmCpEiS3VMvZaLzBaMU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d9:c7:33:a8:f8:64:f9:73:04:f2:9f:f1:94:85:08:56:88:77:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Jun 3 12:38:52 2025 GMT Not After : Jun 6 17:30:52 2025 GMT Subject: CN=46CE349114DBF280EDF8AA473B023FD14792229C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e3:3f:6a:e8:ae:52:d7:29:4c:bb:32:01:cb: 49:e6:a4:03:d3:6d:ee:14:82:90:ec:a4:eb:5a:69: f2:58:3b:10:55:d8:23:b5:01:46:e2:ab:22:c5:bd: 3f:9d:b1:b1:5c:5d:45:5e:11:f0:2d:90:5c:98:8e: 12:ad:20:57:24:4a:ad:3d:98:2e:23:ff:e5:9f:8e: 58:6b:c3:27:e0:6f:f9:4b:3f:46:b6:09:7e:90:57: 1a:1c:6b:f4:cb:d1:59:4b:3f:14:59:57:84:6b:d2: bd:60:7f:43:a8:29:90:be:6b:32:70:5f:bf:e9:80: 38:d7:d7:25:a5:66:12:6a:ab:29:df:f9:d9:c8:35: 71:4c:3c:fb:f2:54:67:8c:42:c2:e0:5b:4e:96:47: 4d:b0:7c:84:08:be:78:61:33:50:86:11:d0:e4:83: 4c:ef:83:24:a2:9d:6f:fa:11:65:d4:84:ad:c7:86: 92:06:c0:32:17:6f:4b:fd:7c:eb:42:23:54:f6:48: 6d:97:a4:ed:a0:ba:48:13:f3:b6:7f:ac:93:af:5f: 93:c4:b6:37:29:b4:9c:99:bf:1f:5c:6f:ef:8d:5c: c5:c6:62:54:41:4d:86:e4:0c:9a:7e:f8:f0:cc:ad: 5a:62:70:18:46:3f:ff:f9:7d:58:fc:97:02:c5:90: 48:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CE:34:91:14:DB:F2:80:ED:F8:AA:47:3B:02:3F:D1:47:92:22:9C X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:6c:4b:dd:d1:5f:10:78:16:fb:97:ae:e5:79:0c:3d:c3:3c: 09:d6:06:27:ab:1d:2d:3a:95:41:6e:ca:f5:3e:48:92:86:45: 52:c5:ec:5f:71:f4:2d:45:aa:0a:d7:50:e8:d2:0e:9d:ef:71: 7f:35:b7:49:95:a0:a8:71:08:33:19:78:4a:34:34:d7:e2:e9: 3f:fa:69:70:b0:ef:6d:e2:c7:d7:c7:a7:f8:f0:89:82:41:38: 6f:fd:f1:56:b4:b4:7f:06:5c:71:c9:58:55:34:d3:6b:88:c8: 9d:1c:1b:2a:94:90:c5:33:7c:9a:21:2e:ab:2b:98:45:15:b5: a8:f0:8d:e7:96:2a:47:75:f8:20:e6:35:00:d0:9c:94:89:0b: 9f:94:d7:71:d8:86:3b:57:b1:52:a3:8b:40:e9:36:4d:e2:12: d4:d9:34:65:fd:2e:2f:71:e2:70:54:b9:32:80:4b:1c:2b:cf: cd:87:69:40:b0:b1:9b:5a:bf:d6:82:eb:2c:5e:12:74:7b:3a: e8:38:26:30:62:9f:bc:dd:bf:d4:67:27:7a:ba:4d:5a:8b:bd: 0d:9b:75:10:3a:6b:af:13:98:f1:5e:0d:ec:be:e6:5a:f6:8d: 84:8f:c2:1a:d0:02:cb:68:ba:b6:46:48:18:32:1e:2c:91:9e: 11:d1:d7:d5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL9nHM6j4ZPlzBPKf8ZSFCFaIdxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNTA2MDMxMjM4NTJaFw0yNTA2MDYxNzMwNTJaMDMxMTAvBgNV BAMTKDQ2Q0UzNDkxMTREQkYyODBFREY4QUE0NzNCMDIzRkQxNDc5MjIyOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA4z9q6K5S1ylMuzIBy0nmpAPT be4UgpDspOtaafJYOxBV2CO1AUbiqyLFvT+dsbFcXUVeEfAtkFyYjhKtIFckSq09 mC4j/+Wfjlhrwyfgb/lLP0a2CX6QVxoca/TL0VlLPxRZV4Rr0r1gf0OoKZC+azJw X7/pgDjX1yWlZhJqqynf+dnINXFMPPvyVGeMQsLgW06WR02wfIQIvnhhM1CGEdDk g0zvgySinW/6EWXUhK3HhpIGwDIXb0v9fOtCI1T2SG2XpO2gukgT87Z/rJOvX5PE tjcptJyZvx9cb++NXMXGYlRBTYbkDJp++PDMrVpicBhGP//5fVj8lwLFkEhfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURs40kRTb8oDt+KpHOwI/0UeSIpwwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEBsS93RXxB4FvuXruV5DD3DPAnWBierHS06 lUFuyvU+SJKGRVLF7F9x9C1FqgrXUOjSDp3vcX81t0mVoKhxCDMZeEo0NNfi6T/6 aXCw723ix9fHp/jwiYJBOG/98Va0tH8GXHHJWFU002uIyJ0cGyqUkMUzfJohLqsr mEUVtajwjeeWKkd1+CDmNQDQnJSJC5+U13HYhjtXsVKji0DpNk3iEtTZNGX9Li9x 4nBUuTKASxwrz82HaUCwsZtav9aC6yxeEnR7Oug4JjBin7zdv9RnJ3q6TVqLvQ2b dRA6a68TmPFeDey+5lr2jYSPwhrQAstourZGSBgyHiyRnhHR19U= -----END CERTIFICATE-----Generated at Tue Jun 3 23:08:34 2025 by rpki-client