$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: ML/+4ia+N7NYIJ8J6XyZdDdNLx1YlBFbyIjY5EFyVQ4= Subject key identifier: 29:F0:3A:41:0F:6F:04:7F:39:3C:58:2E:1E:11:0E:5D:DD:E8:F9:4E Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 0B3677D045543B444A364E0F910FC44A85181316 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 02E8 Signing time: Wed 02 Jul 2025 15:40:48 +0000 Manifest this update: Wed 02 Jul 2025 15:35:48 +0000 Manifest next update: Sat 05 Jul 2025 23:56:48 +0000 Files and hashes: 1: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: gIT/zHc/1K0b1PiVmUPHw03fHkctz7eSoTHWuLp5tjo=) 2: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: 29sg++ZhpdufPRadu79EBAQ2SCevyRK0tzFrd+D/0dE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:36:77:d0:45:54:3b:44:4a:36:4e:0f:91:0f:c4:4a:85:18:13:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Jul 2 15:35:48 2025 GMT Not After : Jul 5 23:56:48 2025 GMT Subject: CN=29F03A410F6F047F393C582E1E110E5DDDE8F94E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:27:b9:05:30:60:a8:17:2e:f3:06:90:fc: 29:24:ce:17:15:d3:e2:d5:9a:f6:a0:b7:3b:7a:29: d9:66:10:35:d1:22:5c:41:01:8b:aa:ad:cc:21:cd: 4d:26:2f:82:af:7e:d9:99:38:1d:cf:22:a1:06:77: 82:40:13:7c:bf:da:ca:a5:0e:5f:db:a2:e0:23:de: 17:38:b7:bf:d4:e8:6f:4a:8f:48:0e:ed:de:8c:1d: 00:bf:71:f1:02:ed:95:bd:21:38:e3:31:f5:21:ac: e4:76:b2:e7:a6:ef:fd:75:4e:08:6d:56:a5:b9:9c: 68:35:5e:b7:08:3d:f4:11:01:39:07:be:ee:78:59: 9d:78:a2:05:f1:4f:3d:fb:13:ee:2b:35:66:c8:fb: 34:2e:85:24:e4:7e:57:37:f9:0e:02:20:62:f1:c4: aa:75:f7:88:47:6c:51:26:a1:b6:e4:0d:c9:77:de: cc:0f:7e:c3:48:f5:fb:66:9c:4e:92:eb:80:c2:51: 06:a7:e6:49:e4:cf:ec:65:dc:f3:a2:50:10:a7:74: 47:f3:0c:11:35:20:b6:1b:b8:94:17:80:78:f2:46: e6:a6:53:64:dc:e4:c7:a6:6d:74:14:2b:bf:1d:ef: 07:a8:fb:c8:5d:1d:33:25:08:fe:4a:6d:7f:b1:47: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F0:3A:41:0F:6F:04:7F:39:3C:58:2E:1E:11:0E:5D:DD:E8:F9:4E X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:e9:0d:a2:ab:69:78:61:cc:4a:97:70:5c:93:b7:3e:ef:ec: c7:7d:d4:03:8b:17:18:d5:ce:d1:bd:99:e0:3c:f2:f2:5c:11: 25:b2:57:f1:8f:f8:09:cb:41:06:2f:d1:61:7f:ee:50:47:7a: 2f:5a:30:f1:92:6d:58:68:45:fb:d8:b9:15:fc:bc:62:3d:07: 8c:4d:53:ba:66:df:7c:7b:0e:06:4a:39:1c:df:f2:17:34:8a: f3:b4:86:d2:8a:d9:1e:0f:61:29:25:c2:ac:d9:69:f9:ab:0a: 76:3e:0a:4f:96:13:9f:ec:48:56:4a:d7:64:2f:54:6d:86:31: d6:bf:37:28:33:30:a7:a7:e8:cb:bb:a1:e8:a1:7a:3c:50:23: b9:dd:6c:c5:5c:8d:aa:f5:4a:90:f3:79:e5:ce:0a:cc:55:dc: 9f:ae:e3:1e:61:78:b3:45:d4:88:99:b7:78:93:eb:97:2c:14: 44:37:67:dc:9c:38:a3:5f:de:17:50:38:35:be:50:c6:dc:e1: ee:00:9e:41:39:1e:32:5a:fa:61:32:a1:c4:7a:11:21:3c:ae: 9d:95:b1:ed:d3:04:ab:99:da:a8:0c:35:c0:b5:b5:c4:c2:84: 9a:1c:11:a8:a2:fe:f1:fa:b6:d5:74:fe:16:e5:1a:6e:19:ad: 14:35:9c:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzZ30EVUO0RKNk4PkQ/ESoUYExYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNTA3MDIxNTM1NDhaFw0yNTA3MDUyMzU2NDhaMDMxMTAvBgNV BAMTKDI5RjAzQTQxMEY2RjA0N0YzOTNDNTgyRTFFMTEwRTVERERFOEY5NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNSe5BTBgqBcu8waQ/CkkzhcV 0+LVmvagtzt6KdlmEDXRIlxBAYuqrcwhzU0mL4KvftmZOB3PIqEGd4JAE3y/2sql Dl/bouAj3hc4t7/U6G9Kj0gO7d6MHQC/cfEC7ZW9ITjjMfUhrOR2suem7/11Tght VqW5nGg1XrcIPfQRATkHvu54WZ14ogXxTz37E+4rNWbI+zQuhSTkflc3+Q4CIGLx xKp194hHbFEmobbkDcl33swPfsNI9ftmnE6S64DCUQan5knkz+xl3POiUBCndEfz DBE1ILYbuJQXgHjyRuamU2Tc5MembXQUK78d7weo+8hdHTMlCP5KbX+xRw9RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKfA6QQ9vBH85PFguHhEOXd3o+U4wHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMbpDaKraXhhzEqXcFyTtz7v7Md91AOLFxjV ztG9meA88vJcESWyV/GP+AnLQQYv0WF/7lBHei9aMPGSbVhoRfvYuRX8vGI9B4xN U7pm33x7DgZKORzf8hc0ivO0htKK2R4PYSklwqzZafmrCnY+Ck+WE5/sSFZK12Qv VG2GMda/NygzMKen6Mu7oeihejxQI7ndbMVcjar1SpDzeeXOCsxV3J+u4x5heLNF 1IiZt3iT65csFEQ3Z9ycOKNf3hdQODW+UMbc4e4AnkE5HjJa+mEyocR6ESE8rp2V se3TBKuZ2qgMNcC1tcTChJocEaii/vH6ttV0/hblGm4ZrRQ1nMw= -----END CERTIFICATE-----Generated at Thu Jul 3 08:13:46 2025 by rpki-client