$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: CVmvQAiVUVjSyHDZ09o5rl9Tmat6Um8IvoqpNeR9prw= Subject key identifier: 32:AC:C3:53:A7:61:A4:DD:FC:D8:66:9E:36:9E:81:FB:5A:B0:CB:94 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 53FFE94E858C7180A8FE5E22254FB9F09F132D73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0272 Signing time: Sun 19 Oct 2025 08:22:22 +0000 Manifest this update: Sun 19 Oct 2025 08:17:22 +0000 Manifest next update: Wed 22 Oct 2025 19:48:22 +0000 Files and hashes: 1: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) 2: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 3: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: gG2WTZiBd6kp3Y9yfohryjoXReCFX+3SFdSBwT5BChg=) 4: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ff:e9:4e:85:8c:71:80:a8:fe:5e:22:25:4f:b9:f0:9f:13:2d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Oct 19 08:17:22 2025 GMT Not After : Oct 22 19:48:22 2025 GMT Subject: CN=32ACC353A761A4DDFCD8669E369E81FB5AB0CB94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:be:e2:48:ff:27:52:29:aa:78:bc:02:a0:46: 40:88:95:2b:0e:ca:b0:69:f5:6a:f7:90:86:d0:fc: 92:db:49:46:a5:d2:d8:60:0b:00:80:31:df:0e:72: bf:58:bd:33:03:2a:60:04:0c:2e:96:93:fe:b4:ba: 5f:b7:56:e0:2d:08:5e:fa:81:67:af:9c:a3:d4:a9: d7:0a:03:12:ad:63:f1:a0:3b:01:a6:0b:d8:73:9f: a3:b4:57:26:88:1c:8d:b7:33:8c:7a:69:2c:5c:9d: 65:a6:bd:21:8f:90:fd:cf:c8:6a:15:78:f2:5c:30: 48:e8:83:3d:1d:73:f1:6f:58:52:4b:c0:08:37:d7: c1:9f:cd:85:be:f3:a5:c3:19:64:d5:6d:8b:87:2b: 71:e1:91:52:2e:96:9a:01:1f:5d:dc:40:23:59:93: 00:f2:12:33:52:20:2d:2b:cf:c0:98:63:3c:d7:c6: 4f:4a:63:a9:d2:06:67:2c:b1:c7:c4:ca:3d:a6:af: 4d:fe:af:d6:f1:9b:83:e5:7e:e9:ae:29:2c:17:5e: 05:4c:1f:65:9a:f0:90:84:cb:22:74:2b:43:91:9a: da:47:c9:c5:4b:bf:5b:5b:46:fe:f2:f8:c1:e6:e3: 8f:71:33:64:5c:0d:ba:b5:32:a5:d7:6b:31:6a:8d: 75:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AC:C3:53:A7:61:A4:DD:FC:D8:66:9E:36:9E:81:FB:5A:B0:CB:94 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:04:96:1c:91:2c:ae:20:4d:5b:79:78:a1:d5:2a:db:b7:c8: 86:bf:e1:f0:83:e5:03:19:d5:95:9e:f6:80:64:b4:91:87:7f: 3b:f4:2b:27:b8:2c:e8:db:65:85:4c:e7:13:ad:3e:9e:ae:79: 96:e5:b0:38:4e:49:3f:55:cb:29:0d:a9:d1:fb:96:bf:ef:ab: e7:0e:2f:63:b5:9f:9f:68:25:31:ad:91:8f:c4:0d:8c:64:06: a7:81:5c:e0:ee:ff:4d:2d:be:42:34:8b:36:90:88:dc:7d:a4: 49:95:55:0d:38:8b:dc:1c:c7:3a:45:42:8c:eb:f9:da:8e:04: 09:63:d9:fb:b6:57:a5:d0:d4:df:d5:93:5f:30:8f:27:97:9b: 90:92:42:1b:97:2d:32:55:c2:ea:2b:bc:d4:7b:70:ce:9d:3d: 23:84:20:4e:dd:33:d3:90:94:4a:25:3d:30:fd:84:7c:ef:4b: 23:93:0d:9f:65:29:1e:f0:13:88:d8:06:49:ad:e3:59:de:95: 99:e9:98:d4:42:3d:c4:a8:35:a9:f6:a3:79:5a:0b:1d:ae:ca: 90:b0:c7:45:a0:a3:82:e1:e5:b2:68:7f:af:c2:7e:eb:44:6d: c1:55:12:8c:d5:c6:93:35:22:60:78:56:8f:81:56:a9:8b:88: 44:d9:f1:1c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU//pToWMcYCo/l4iJU+58J8TLXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTEwMTkwODE3MjJaFw0yNTEwMjIxOTQ4MjJaMDMxMTAvBgNV BAMTKDMyQUNDMzUzQTc2MUE0RERGQ0Q4NjY5RTM2OUU4MUZCNUFCMENCOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgvuJI/ydSKap4vAKgRkCIlSsO yrBp9Wr3kIbQ/JLbSUal0thgCwCAMd8Ocr9YvTMDKmAEDC6Wk/60ul+3VuAtCF76 gWevnKPUqdcKAxKtY/GgOwGmC9hzn6O0VyaIHI23M4x6aSxcnWWmvSGPkP3PyGoV ePJcMEjogz0dc/FvWFJLwAg318GfzYW+86XDGWTVbYuHK3HhkVIulpoBH13cQCNZ kwDyEjNSIC0rz8CYYzzXxk9KY6nSBmcsscfEyj2mr03+r9bxm4PlfumuKSwXXgVM H2Wa8JCEyyJ0K0ORmtpHycVLv1tbRv7y+MHm449xM2RcDbq1MqXXazFqjXXpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMqzDU6dhpN382GaeNp6B+1qwy5QwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABQElhyRLK4gTVt5eKHVKtu3yIa/4fCD5QMZ 1ZWe9oBktJGHfzv0Kye4LOjbZYVM5xOtPp6ueZblsDhOST9VyykNqdH7lr/vq+cO L2O1n59oJTGtkY/EDYxkBqeBXODu/00tvkI0izaQiNx9pEmVVQ04i9wcxzpFQozr +dqOBAlj2fu2V6XQ1N/Vk18wjyeXm5CSQhuXLTJVwuorvNR7cM6dPSOEIE7dM9OQ lEolPTD9hHzvSyOTDZ9lKR7wE4jYBkmt41nelZnpmNRCPcSoNan2o3laCx2uypCw x0Wgo4Lh5bJof6/CfutEbcFVEozVxpM1ImB4Vo+BVqmLiETZ8Rw= -----END CERTIFICATE-----Generated at Mon Oct 20 07:16:23 2025 by rpki-client