$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: 56nvyyMI4QIoQOQsIwMrCd+2hJEOM2nlxReGLwC+BmY= Subject key identifier: 0D:B9:B2:F2:40:A9:60:C5:0D:1B:AA:14:D3:07:3F:6E:E7:60:11:27 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 26EEB525918A5A48B6D2D3EC18C64DE23A2F1FF4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 02D2 Signing time: Tue 13 May 2025 18:20:49 +0000 Manifest this update: Tue 13 May 2025 18:15:49 +0000 Manifest next update: Fri 16 May 2025 20:33:49 +0000 Files and hashes: 1: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: kQvwhxRIr0c9iOlMTcfmOkNMf8BdxcPNv83PJwJ+47k=) 2: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: GhYNW0uUacPUZOwQ79x38rkxrM39jsYPEWPTH0TfvJA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 20:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:ee:b5:25:91:8a:5a:48:b6:d2:d3:ec:18:c6:4d:e2:3a:2f:1f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: May 13 18:15:49 2025 GMT Not After : May 16 20:33:49 2025 GMT Subject: CN=0DB9B2F240A960C50D1BAA14D3073F6EE7601127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:40:67:52:af:2b:67:f1:58:8f:35:f0:88: 94:cc:99:a1:2a:04:5f:16:3f:d5:57:52:2a:15:35: 26:95:7b:43:8e:3d:95:0a:1b:fb:bd:b2:cc:17:0b: ef:41:75:bf:4a:93:75:16:61:56:14:95:47:52:90: 03:9a:8f:68:2d:79:6f:3e:bd:5c:d2:a9:da:f1:17: ea:c9:b4:9e:61:61:93:27:7e:3b:1f:80:9c:c4:b8: a4:b0:cd:4d:4f:94:3e:8c:cc:a7:58:ae:39:3d:ff: d5:0c:d2:92:f6:32:04:28:58:c8:1b:6d:0e:7e:db: e9:d9:9a:97:08:37:60:9b:30:9d:46:19:05:50:90: 31:fa:02:8a:81:39:05:e4:3e:40:2e:fd:a9:a7:bc: 17:2f:fa:08:f1:e9:b4:15:86:21:01:be:c1:17:04: 95:6b:02:7d:c6:0d:67:22:3c:15:4c:ca:b4:09:9a: 26:82:44:1f:57:21:65:c4:b3:b6:ee:c5:e7:7d:bf: 63:21:1b:56:2e:be:d5:74:cb:65:db:82:01:97:ae: 8b:5b:09:7c:38:29:07:b3:56:83:53:82:70:8b:df: 7e:3f:2d:75:fc:96:af:b8:85:29:c3:e0:94:56:31: 6b:7d:e7:b1:fa:95:40:18:3c:39:51:6a:a6:2e:f1: 09:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B9:B2:F2:40:A9:60:C5:0D:1B:AA:14:D3:07:3F:6E:E7:60:11:27 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:2d:d3:da:a4:16:22:3f:1c:85:9b:26:a7:a9:68:5d:cd:64: b0:17:2f:b1:39:2e:eb:e9:74:38:b9:1c:69:f5:6e:a3:5e:77: f7:ac:38:d1:e8:02:43:68:a6:0d:f4:99:f9:ad:b6:38:01:46: 94:1e:2e:d0:ac:df:84:06:e4:ed:4e:07:ed:c5:66:c3:05:a9: 88:41:9b:e9:41:36:89:af:97:81:c2:2c:75:fe:f3:f5:f3:a1: c8:e6:28:ab:1d:6f:84:40:d8:c4:93:d7:cb:52:e5:ee:bd:a7: 46:00:b2:b6:c8:a2:90:eb:d3:d6:90:2a:11:b5:89:a9:3b:18: 53:81:bd:cf:c8:fd:67:e7:2b:70:ef:a2:a1:fa:33:6b:d8:a0: 29:15:77:55:67:d6:22:b9:0e:72:65:3e:26:6c:1e:10:91:ff: 14:c3:5a:dd:3d:66:3f:cd:c9:56:4c:0d:48:a5:b5:86:76:33: 27:fa:35:7e:98:76:4a:7f:4a:90:8d:df:83:63:26:07:d7:4b: 30:1f:8a:46:fc:2b:9a:01:f2:23:17:d7:1e:2c:d2:e0:e1:0e: 02:86:35:e1:01:66:73:b8:46:44:c3:00:30:83:a8:b0:00:24: 3a:80:d3:c5:e8:a8:d2:61:67:e4:f7:d5:15:82:8d:ae:27:d6: e7:6b:c3:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJu61JZGKWki20tPsGMZN4jovH/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNTA1MTMxODE1NDlaFw0yNTA1MTYyMDMzNDlaMDMxMTAvBgNV BAMTKDBEQjlCMkYyNDBBOTYwQzUwRDFCQUExNEQzMDczRjZFRTc2MDExMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPqUBnUq8rZ/FYjzXwiJTMmaEq BF8WP9VXUioVNSaVe0OOPZUKG/u9sswXC+9Bdb9Kk3UWYVYUlUdSkAOaj2gteW8+ vVzSqdrxF+rJtJ5hYZMnfjsfgJzEuKSwzU1PlD6MzKdYrjk9/9UM0pL2MgQoWMgb bQ5+2+nZmpcIN2CbMJ1GGQVQkDH6AoqBOQXkPkAu/amnvBcv+gjx6bQVhiEBvsEX BJVrAn3GDWciPBVMyrQJmiaCRB9XIWXEs7buxed9v2MhG1YuvtV0y2XbggGXrotb CXw4KQezVoNTgnCL334/LXX8lq+4hSnD4JRWMWt957H6lUAYPDlRaqYu8QkpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDbmy8kCpYMUNG6oU0wc/budgEScwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD0t09qkFiI/HIWbJqepaF3NZLAXL7E5Luvp dDi5HGn1bqNed/esONHoAkNopg30mfmttjgBRpQeLtCs34QG5O1OB+3FZsMFqYhB m+lBNomvl4HCLHX+8/XzocjmKKsdb4RA2MST18tS5e69p0YAsrbIopDr09aQKhG1 iak7GFOBvc/I/WfnK3DvoqH6M2vYoCkVd1Vn1iK5DnJlPiZsHhCR/xTDWt09Zj/N yVZMDUiltYZ2Myf6NX6Ydkp/SpCN34NjJgfXSzAfikb8K5oB8iMX1x4s0uDhDgKG NeEBZnO4RkTDADCDqLAAJDqA08XoqNJhZ+T31RWCja4n1udrw8I= -----END CERTIFICATE-----Generated at Wed May 14 21:10:47 2025 by rpki-client