$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: 3VtOIA7Ev2TEh9rbKMNO54CoRC1HGtLXEYMF4/XEaYM= Subject key identifier: 3F:B1:35:94:D2:57:62:73:98:9E:F7:DA:3A:D1:1B:1D:DA:7E:06:F8 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 25D922BE8A8A28BBB69A90A87616F1EACB639171 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 0319 Signing time: Mon 20 Oct 2025 17:30:50 +0000 Manifest this update: Mon 20 Oct 2025 17:25:50 +0000 Manifest next update: Fri 24 Oct 2025 00:25:50 +0000 Files and hashes: 1: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: Eks2/sXZBFdbKc0iWiWC0VJZDPPtJcLoD20CZ8sdRqc=) 2: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: gIT/zHc/1K0b1PiVmUPHw03fHkctz7eSoTHWuLp5tjo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:d9:22:be:8a:8a:28:bb:b6:9a:90:a8:76:16:f1:ea:cb:63:91:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Oct 20 17:25:50 2025 GMT Not After : Oct 24 00:25:50 2025 GMT Subject: CN=3FB13594D2576273989EF7DA3AD11B1DDA7E06F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:b8:28:15:aa:36:11:ef:d4:d2:37:95:5f: 87:fc:be:d7:9c:e4:2c:a2:b3:31:c6:35:49:81:f6: 09:40:ef:12:5c:90:6a:2e:ad:f2:4f:53:98:1d:d7: 2d:cb:e2:04:10:b2:8a:54:f4:23:d0:fa:08:d5:7e: 04:0a:78:e7:ba:c9:31:a2:e4:59:b9:32:05:a0:24: 25:bb:40:c9:81:3f:ce:8c:f8:b3:17:f1:21:b9:01: e0:eb:39:6f:20:14:5b:8b:04:41:07:99:e1:9b:2e: 79:dd:0d:5a:2c:98:33:08:3f:14:ac:ea:48:89:ad: 57:ac:c2:63:14:77:4e:28:cf:38:46:7d:28:6f:1d: 35:28:62:23:41:54:1c:df:d8:fe:91:43:d1:22:ba: da:10:d6:5b:9e:bc:3b:8f:1c:5c:1b:49:5e:a7:12: 0f:a5:38:81:3a:13:de:84:d5:36:8d:ea:0a:12:ca: b9:8c:77:56:b7:1c:45:77:f6:72:3c:01:d5:86:b8: 42:20:1f:f3:e2:8a:6e:47:6c:02:a7:e1:dc:64:56: ee:a5:df:d2:d7:8a:85:d2:b4:79:00:2e:e6:5a:88: ec:ab:bd:b1:a2:96:78:68:ee:58:40:d0:58:d2:0a: 8f:74:c6:62:c6:78:56:ce:45:bb:6c:21:5c:db:6a: 4d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B1:35:94:D2:57:62:73:98:9E:F7:DA:3A:D1:1B:1D:DA:7E:06:F8 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d2:e8:16:9f:6c:e7:fa:3c:5e:f6:67:f5:a8:f0:22:58:24: 9d:5b:1a:99:98:34:b0:f7:16:ed:c2:42:db:8d:2b:0e:5f:71: b4:3f:0c:47:e7:de:e4:30:92:30:7e:71:bd:2e:2c:c5:c1:84: 2d:df:af:6c:bc:d9:02:63:1f:ab:90:14:f6:8a:b6:55:97:97: 9a:1d:f2:8c:12:99:52:b6:08:01:bb:d8:44:e0:c2:d0:d0:e6: ff:cd:27:9d:b2:d0:f8:28:6a:f3:8b:b8:26:fe:02:06:29:d8: bc:fd:a0:8a:45:3e:82:0b:37:4e:91:22:b9:90:da:0c:6a:df: 49:2b:08:94:5c:7b:73:8d:c1:d3:10:ee:7f:f4:62:c8:7b:e0: ba:8b:e2:f4:55:fc:d8:1e:04:c4:46:47:45:9b:50:a0:f5:6f: a0:0f:10:b8:a9:53:da:c6:41:f9:14:d9:ca:9c:ea:c8:14:c3: 19:6e:20:0e:5d:30:74:ab:88:50:ea:17:f8:1c:df:c9:45:76: 80:4a:ec:a1:96:78:37:ea:58:cd:14:db:ed:6c:1e:10:6f:ff: 2f:2f:50:2b:79:cd:47:87:9a:83:d9:bf:f6:24:93:49:de:14: c2:b6:ff:93:20:62:7c:bd:d5:83:12:9c:86:41:79:38:4a:51: 7f:aa:bf:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJdkivoqKKLu2mpCodhbx6stjkXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNTEwMjAxNzI1NTBaFw0yNTEwMjQwMDI1NTBaMDMxMTAvBgNV BAMTKDNGQjEzNTk0RDI1NzYyNzM5ODlFRjdEQTNBRDExQjFEREE3RTA2RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyjbgoFao2Ee/U0jeVX4f8vtec 5CyiszHGNUmB9glA7xJckGourfJPU5gd1y3L4gQQsopU9CPQ+gjVfgQKeOe6yTGi 5Fm5MgWgJCW7QMmBP86M+LMX8SG5AeDrOW8gFFuLBEEHmeGbLnndDVosmDMIPxSs 6kiJrVeswmMUd04ozzhGfShvHTUoYiNBVBzf2P6RQ9EiutoQ1luevDuPHFwbSV6n Eg+lOIE6E96E1TaN6goSyrmMd1a3HEV39nI8AdWGuEIgH/Piim5HbAKn4dxkVu6l 39LXioXStHkALuZaiOyrvbGilnho7lhA0FjSCo90xmLGeFbORbtsIVzbak0rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUP7E1lNJXYnOYnvfaOtEbHdp+BvgwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFrS6BafbOf6PF72Z/Wo8CJYJJ1bGpmYNLD3 Fu3CQtuNKw5fcbQ/DEfn3uQwkjB+cb0uLMXBhC3fr2y82QJjH6uQFPaKtlWXl5od 8owSmVK2CAG72ETgwtDQ5v/NJ52y0PgoavOLuCb+AgYp2Lz9oIpFPoILN06RIrmQ 2gxq30krCJRce3ONwdMQ7n/0Ysh74LqL4vRV/NgeBMRGR0WbUKD1b6APELipU9rG QfkU2cqc6sgUwxluIA5dMHSriFDqF/gc38lFdoBK7KGWeDfqWM0U2+1sHhBv/y8v UCt5zUeHmoPZv/Ykk0neFMK2/5MgYny91YMSnIZBeThKUX+qv9s= -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:27 2025 by rpki-client