$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: VzzgyehUbOSr13QXHiPYLN6+Lcg8AuyL/i4crcTbNx0= Subject key identifier: 24:D1:C6:53:5F:B2:1B:EE:03:D8:80:A1:A2:92:FB:BE:41:71:8E:E4 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 63F336964FFDCD9DD681561897D0637B087E0FD5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0259 Signing time: Sat 23 Aug 2025 13:42:22 +0000 Manifest this update: Sat 23 Aug 2025 13:37:22 +0000 Manifest next update: Tue 26 Aug 2025 13:59:22 +0000 Files and hashes: 1: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: 9He7cxqRNbPj9XHNRBS7XygXxsZE44jSPiIfEh+Yusg=) 2: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 3: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) 4: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 13:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f3:36:96:4f:fd:cd:9d:d6:81:56:18:97:d0:63:7b:08:7e:0f:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Aug 23 13:37:22 2025 GMT Not After : Aug 26 13:59:22 2025 GMT Subject: CN=24D1C6535FB21BEE03D880A1A292FBBE41718EE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:66:4f:3e:38:aa:a9:6c:6e:22:bf:4f:08:60: dd:31:1f:e7:3b:ef:02:8d:29:d0:1e:81:d8:e0:f2: 5e:a5:83:59:b4:80:be:1f:25:67:68:1d:e9:c8:a1: 37:f8:c1:1c:8e:66:0c:3d:56:7a:d2:7b:6e:a6:3f: c4:de:48:62:2e:ad:af:20:58:95:f9:5a:6c:5a:50: 13:ad:9d:60:1f:a3:d8:59:51:e3:f7:c1:c9:ca:aa: a0:1c:34:a4:a1:55:96:7b:0b:0b:ed:00:7a:89:77: b8:9b:09:5f:95:c7:61:a9:b6:e3:f0:77:9f:cc:bc: 34:94:5e:8d:75:87:bb:a2:e5:80:00:cb:27:aa:38: 56:85:3c:8a:04:83:47:30:5f:a8:b0:7e:54:e2:8e: 7f:ea:4d:88:ae:48:a8:f3:c1:32:8a:ff:78:9a:85: 43:34:72:6a:a7:f9:ff:95:73:51:1c:10:d8:49:44: e7:6c:81:b3:2f:24:30:62:ce:c9:ba:6a:63:14:ea: ad:9d:06:6b:6e:36:14:da:57:4b:c3:3a:36:ae:89: a6:f3:e1:4a:a7:36:7b:42:58:fd:10:d8:32:68:39: fd:48:15:9c:4d:5f:9a:ec:24:38:da:06:18:93:49: 16:88:c1:a2:a7:9d:14:b7:33:22:ed:bc:17:f5:02: e0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D1:C6:53:5F:B2:1B:EE:03:D8:80:A1:A2:92:FB:BE:41:71:8E:E4 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:8f:bd:cd:ba:93:d4:b6:4c:f5:ba:0e:57:ba:57:19:1f:da: cf:d4:81:bd:f3:31:5c:bd:49:79:a6:c6:0f:ad:ba:aa:d2:36: e6:61:5c:5d:39:18:d2:fd:ba:1d:f0:a3:e3:b6:31:a9:cb:aa: 42:28:03:57:8a:f8:62:d0:82:d1:69:0e:8e:a3:36:6d:2a:21: e3:67:8b:fb:9b:ea:23:ac:99:dd:53:c1:27:2d:d3:3c:25:4f: b4:34:96:57:a9:99:51:39:ce:50:52:e9:74:13:1a:8d:55:31: e0:ae:27:a2:68:9f:d8:53:d3:9a:2e:ba:6e:01:31:8b:18:52: bf:91:16:5b:87:e3:21:f3:4b:61:b4:27:10:51:4a:30:dc:83: 62:30:85:b8:20:34:46:94:35:d0:40:0b:71:e5:e5:e7:a3:4b: 74:72:a0:b6:18:78:85:85:fe:27:95:2f:25:3c:93:91:39:1b: 03:7a:63:2c:84:b5:ca:8c:66:1d:c3:5f:ed:08:b8:8b:42:5e: bd:e6:5c:f8:5b:3d:3d:58:8f:3a:cf:e2:0d:66:39:70:49:30: 54:84:86:4d:1d:c4:88:7a:ce:76:68:e2:ea:21:91:8d:62:73: ed:32:70:be:7f:aa:cd:c2:a4:8b:03:ec:8f:48:8b:c7:2b:55: d8:8b:69:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY/M2lk/9zZ3WgVYYl9Bjewh+D9UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA4MjMxMzM3MjJaFw0yNTA4MjYxMzU5MjJaMDMxMTAvBgNV BAMTKDI0RDFDNjUzNUZCMjFCRUUwM0Q4ODBBMUEyOTJGQkJFNDE3MThFRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxZk8+OKqpbG4iv08IYN0xH+c7 7wKNKdAegdjg8l6lg1m0gL4fJWdoHenIoTf4wRyOZgw9VnrSe26mP8TeSGIura8g WJX5WmxaUBOtnWAfo9hZUeP3wcnKqqAcNKShVZZ7CwvtAHqJd7ibCV+Vx2GptuPw d5/MvDSUXo11h7ui5YAAyyeqOFaFPIoEg0cwX6iwflTijn/qTYiuSKjzwTKK/3ia hUM0cmqn+f+Vc1EcENhJROdsgbMvJDBizsm6amMU6q2dBmtuNhTaV0vDOjauiabz 4UqnNntCWP0Q2DJoOf1IFZxNX5rsJDjaBhiTSRaIwaKnnRS3MyLtvBf1AuDTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJNHGU1+yG+4D2IChopL7vkFxjuQwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABmPvc26k9S2TPW6Dle6Vxkf2s/Ugb3zMVy9 SXmmxg+tuqrSNuZhXF05GNL9uh3wo+O2ManLqkIoA1eK+GLQgtFpDo6jNm0qIeNn i/ub6iOsmd1TwSct0zwlT7Q0llepmVE5zlBS6XQTGo1VMeCuJ6Jon9hT05ouum4B MYsYUr+RFluH4yHzS2G0JxBRSjDcg2IwhbggNEaUNdBAC3Hl5eejS3RyoLYYeIWF /ieVLyU8k5E5GwN6YyyEtcqMZh3DX+0IuItCXr3mXPhbPT1YjzrP4g1mOXBJMFSE hk0dxIh6znZo4uohkY1ic+0ycL5/qs3CpIsD7I9Ii8crVdiLaQ4= -----END CERTIFICATE-----Generated at Sat Aug 23 19:54:34 2025 by rpki-client