$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: XNfy2oSmhr6+LB4D6x4zNxxHTjdyIr3G+dS5j4OnEjc= Subject key identifier: D1:9D:AC:BB:92:D6:34:9F:B1:2C:28:8B:ED:3C:10:AD:37:D0:5B:B7 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 2A290FF299FB51C2F49CF353DD2B0A8F3B8EDA42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0229 Signing time: Thu 08 May 2025 19:42:23 +0000 Manifest this update: Thu 08 May 2025 19:37:23 +0000 Manifest next update: Sun 11 May 2025 22:04:23 +0000 Files and hashes: 1: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: Ai97/AeZ67d5F3AYWobNbu9wLgxWIRH2a6eXmHZgojQ=) 2: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: kwL1JREwxH10sgLMYdlWUdKS0D8gYxJYzVh+9DEMKo4=) 3: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: kdV2z52bIGS+IPzuz0d7TTCD3oOLfgIXHIiZvPald0o=) 4: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: 1AXu9VMwS+8knSVXl2hI8iHOcYa+VjnkUxjjL7VCI30=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:29:0f:f2:99:fb:51:c2:f4:9c:f3:53:dd:2b:0a:8f:3b:8e:da:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: May 8 19:37:23 2025 GMT Not After : May 11 22:04:23 2025 GMT Subject: CN=D19DACBB92D6349FB12C288BED3C10AD37D05BB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:07:56:24:d0:08:75:17:fe:ec:09:e7:6a:df: 3c:38:90:89:67:34:02:43:37:55:3c:00:0e:1e:43: 56:bf:1e:cb:b5:73:ab:3b:e4:9d:1d:d8:ea:13:bc: fe:97:2d:0f:07:b9:fa:3d:7c:5f:9c:88:c4:52:d7: 06:e2:44:cb:0e:ec:14:a8:96:61:c9:ec:73:e7:7c: 67:08:cd:7b:46:31:75:63:d0:44:e6:66:cf:cd:74: de:3e:e8:da:29:4b:07:28:a9:76:8a:de:8a:9f:4b: 73:bb:40:fe:2b:ea:47:1c:ff:a4:ad:bd:d4:03:a7: 06:48:6e:7d:52:a9:0c:3c:f9:87:fa:d4:ea:1c:e2: 48:32:7a:54:90:cc:d8:5b:af:08:28:07:fc:d3:47: bb:f0:35:5f:7d:e9:ad:68:d4:b5:02:ea:15:5f:bc: 4c:27:e1:38:a6:5d:58:9a:76:ac:4e:1f:57:7f:95: 1e:07:fd:a2:59:77:02:12:06:a8:ef:1a:2e:cb:f8: 70:e0:19:32:86:d1:47:4c:b6:8f:4b:d2:39:d7:34: 68:a9:fa:39:10:a7:8f:93:74:7c:43:c7:4b:8d:0a: 45:9d:c7:db:73:6b:ee:a1:53:3f:8d:c0:93:11:77: 56:24:5e:a8:34:8a:9c:6a:35:6d:14:64:83:61:c0: 51:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9D:AC:BB:92:D6:34:9F:B1:2C:28:8B:ED:3C:10:AD:37:D0:5B:B7 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:30:e2:bf:8d:be:79:fc:47:c4:02:6c:eb:cb:44:54:a3:95: 92:bf:13:ac:d4:e6:96:c7:1c:f9:cb:73:48:87:df:59:ab:32: d5:a7:13:ab:1d:c2:12:c7:82:87:64:7b:36:6f:03:61:94:af: 7e:5e:25:ff:41:ec:40:91:56:9d:ae:c3:1d:9b:00:99:88:12: 59:9f:08:e8:0b:d6:68:ff:93:80:8b:51:0a:7c:33:22:5c:d9: 66:89:af:6e:36:75:96:2f:ae:19:01:f2:fc:cc:59:e5:8a:07: 09:49:ce:12:e1:11:65:d1:a8:7f:c1:7b:d5:c1:8c:38:b4:22: 22:3a:2f:e5:85:97:80:ed:f0:88:98:90:e8:fb:c0:4d:2d:6d: e5:dd:32:ce:56:2c:99:4b:f3:41:01:25:3a:7b:f8:39:d9:93: ba:1f:5b:25:ea:0c:2c:e3:2c:ff:9a:36:81:08:8d:e5:29:62: 28:36:f8:78:4c:05:3b:5d:30:c1:53:de:01:c6:9e:c1:1c:28: 8a:28:d7:ee:c6:46:97:0c:9f:6e:43:1e:d3:2f:f3:9e:5e:c2: 1d:5c:b8:76:0f:49:f6:4c:6a:15:e8:0b:4c:ff:4a:71:c2:ac: 66:22:f9:bf:93:08:1d:71:dc:f1:dd:c7:da:7b:a1:63:bb:75: 07:07:f4:0d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKikP8pn7UcL0nPNT3SsKjzuO2kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA1MDgxOTM3MjNaFw0yNTA1MTEyMjA0MjNaMDMxMTAvBgNV BAMTKEQxOURBQ0JCOTJENjM0OUZCMTJDMjg4QkVEM0MxMEFEMzdEMDVCQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpB1Yk0Ah1F/7sCedq3zw4kIln NAJDN1U8AA4eQ1a/Hsu1c6s75J0d2OoTvP6XLQ8Hufo9fF+ciMRS1wbiRMsO7BSo lmHJ7HPnfGcIzXtGMXVj0ETmZs/NdN4+6NopSwcoqXaK3oqfS3O7QP4r6kcc/6St vdQDpwZIbn1SqQw8+Yf61Ooc4kgyelSQzNhbrwgoB/zTR7vwNV996a1o1LUC6hVf vEwn4TimXViadqxOH1d/lR4H/aJZdwISBqjvGi7L+HDgGTKG0UdMto9L0jnXNGip +jkQp4+TdHxDx0uNCkWdx9tza+6hUz+NwJMRd1YkXqg0ipxqNW0UZINhwFGnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0Z2su5LWNJ+xLCiL7TwQrTfQW7cwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEow4r+Nvnn8R8QCbOvLRFSjlZK/E6zU5pbH HPnLc0iH31mrMtWnE6sdwhLHgodkezZvA2GUr35eJf9B7ECRVp2uwx2bAJmIElmf COgL1mj/k4CLUQp8MyJc2WaJr242dZYvrhkB8vzMWeWKBwlJzhLhEWXRqH/Be9XB jDi0IiI6L+WFl4Dt8IiYkOj7wE0tbeXdMs5WLJlL80EBJTp7+DnZk7ofWyXqDCzj LP+aNoEIjeUpYig2+HhMBTtdMMFT3gHGnsEcKIoo1+7GRpcMn25DHtMv855ewh1c uHYPSfZMahXoC0z/SnHCrGYi+b+TCB1x3PHdx9p7oWO7dQcH9A0= -----END CERTIFICATE-----Generated at Sat May 10 18:50:09 2025 by rpki-client