$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: mdJz5dVNktJbj3GGz8eXhLnostFcM67Qo2argBt0buU= Subject key identifier: 7F:B0:52:C8:CD:44:BB:34:48:58:CA:C7:B4:65:0C:F2:25:F9:72:BE Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 474F35114D6CEA8A7D42B68E0307960AC1DDADA2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0241 Signing time: Mon 30 Jun 2025 17:12:47 +0000 Manifest this update: Mon 30 Jun 2025 17:07:47 +0000 Manifest next update: Fri 04 Jul 2025 04:01:47 +0000 Files and hashes: 1: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 2: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: a7dcFmmrInl2sfunbDjkDus58PLPMWWSkYpgdtOXw1Q=) 3: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) 4: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 04:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:4f:35:11:4d:6c:ea:8a:7d:42:b6:8e:03:07:96:0a:c1:dd:ad:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jun 30 17:07:47 2025 GMT Not After : Jul 4 04:01:47 2025 GMT Subject: CN=7FB052C8CD44BB344858CAC7B4650CF225F972BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f3:3a:b8:68:7a:19:fd:05:4f:a0:fc:06:a9: cc:68:c2:8f:e4:36:f0:db:27:37:40:b1:7c:b0:81: 3e:9f:db:74:c3:fb:a9:19:6f:50:d9:3b:cc:73:bd: 16:48:dd:4b:db:17:e8:24:47:e1:38:4e:f5:0b:07: 5f:e2:5f:2b:3e:81:56:b2:0a:2e:72:5f:b2:fd:ee: 0b:9e:e2:6b:cf:9e:0b:8f:01:e8:9c:79:31:ba:fa: 0f:2a:75:46:da:8f:27:30:f6:eb:48:1d:42:c0:24: 5b:40:1a:14:93:38:20:27:c8:73:90:00:33:68:28: bb:cd:4f:d9:01:a6:26:9a:e9:3e:e6:72:9d:46:d3: 98:51:f5:29:59:3f:84:e0:a0:bd:b3:af:39:38:05: 8e:0d:99:9d:ed:32:93:98:31:a1:3b:2f:9a:8e:df: 87:45:43:03:cf:37:78:d5:4a:1d:7e:35:21:b1:c7: 75:f6:d8:d2:7e:81:f1:ea:7e:88:a4:ce:67:61:6c: fe:3a:10:69:61:5e:7a:f0:e1:df:b4:ae:bb:83:f0: 56:b9:49:f4:eb:ed:bf:67:a5:38:09:38:0f:52:75: 61:cd:03:96:c4:fd:7b:6a:f6:08:e8:82:1b:2e:95: 95:1c:eb:0a:38:78:a2:4d:81:e5:c9:56:e0:f8:76: 2f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B0:52:C8:CD:44:BB:34:48:58:CA:C7:B4:65:0C:F2:25:F9:72:BE X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:1b:f0:08:e1:87:bf:67:20:b6:1c:59:9d:53:59:b2:18:21: 78:a0:96:ce:02:cd:93:cf:ec:e8:cc:26:ca:ae:ad:d5:22:39: a2:6e:99:ec:f4:1c:4a:95:7d:88:b4:fb:9f:e3:fc:91:d8:c4: 8a:bf:1a:3a:40:41:84:97:79:9f:40:65:c3:36:c5:34:05:1c: 01:f9:96:51:e0:95:24:46:8b:ea:d0:81:95:b4:7d:5b:36:5d: cd:88:5a:ad:1e:fa:3e:e7:c8:3a:08:99:09:8e:54:b8:78:09: de:18:b1:17:26:bd:f9:e2:10:3c:f0:69:e6:95:46:e6:57:00: 30:aa:de:75:aa:28:97:fe:a8:43:6e:ad:f6:26:87:93:9c:33: 03:f9:f8:72:26:66:32:72:42:27:f5:30:8f:a7:6d:08:55:64: 41:ee:6c:51:5a:08:85:6d:9f:b4:d8:22:77:73:27:b4:0e:cb: 93:9c:e0:72:88:84:6c:4b:d0:50:9a:8e:dd:54:35:a9:71:f6: 96:42:73:eb:19:91:e8:8c:ff:ba:f0:a0:56:82:ee:9f:cd:c2: a7:6a:bd:2d:ed:e2:d4:0b:cf:07:e7:2b:d0:ee:6e:44:76:57: 9f:df:49:7f:48:1f:97:b2:e0:20:1a:22:1e:0d:be:38:53:1f: 2c:6e:66:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR081EU1s6op9QraOAweWCsHdraIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA2MzAxNzA3NDdaFw0yNTA3MDQwNDAxNDdaMDMxMTAvBgNV BAMTKDdGQjA1MkM4Q0Q0NEJCMzQ0ODU4Q0FDN0I0NjUwQ0YyMjVGOTcyQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC78zq4aHoZ/QVPoPwGqcxowo/k NvDbJzdAsXywgT6f23TD+6kZb1DZO8xzvRZI3UvbF+gkR+E4TvULB1/iXys+gVay Ci5yX7L97gue4mvPnguPAeiceTG6+g8qdUbajycw9utIHULAJFtAGhSTOCAnyHOQ ADNoKLvNT9kBpiaa6T7mcp1G05hR9SlZP4TgoL2zrzk4BY4NmZ3tMpOYMaE7L5qO 34dFQwPPN3jVSh1+NSGxx3X22NJ+gfHqfoikzmdhbP46EGlhXnrw4d+0rruD8Fa5 SfTr7b9npTgJOA9SdWHNA5bE/Xtq9gjoghsulZUc6wo4eKJNgeXJVuD4di/1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf7BSyM1EuzRIWMrHtGUM8iX5cr4wHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJUb8Ajhh79nILYcWZ1TWbIYIXigls4CzZPP 7OjMJsqurdUiOaJumez0HEqVfYi0+5/j/JHYxIq/GjpAQYSXeZ9AZcM2xTQFHAH5 llHglSRGi+rQgZW0fVs2Xc2IWq0e+j7nyDoImQmOVLh4Cd4YsRcmvfniEDzwaeaV RuZXADCq3nWqKJf+qENurfYmh5OcMwP5+HImZjJyQif1MI+nbQhVZEHubFFaCIVt n7TYIndzJ7QOy5Oc4HKIhGxL0FCajt1UNalx9pZCc+sZkeiM/7rwoFaC7p/Nwqdq vS3t4tQLzwfnK9DubkR2V5/fSX9IH5ey4CAaIh4NvjhTHyxuZuA= -----END CERTIFICATE-----Generated at Tue Jul 1 09:25:10 2025 by rpki-client