$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: 4REC7MDTvr6e+t64IBwIVypBjim4JhbInY4V0/GNpL0= Subject key identifier: 4B:FE:90:66:82:B4:D6:F5:6F:79:BE:5E:59:6B:6A:D1:1D:98:81:84 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 198C4D3CA39F7DF037A9A6D045C61DECC8F2A68E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 02FF Signing time: Sat 23 Aug 2025 05:51:21 +0000 Manifest this update: Sat 23 Aug 2025 05:46:21 +0000 Manifest next update: Tue 26 Aug 2025 07:17:21 +0000 Files and hashes: 1: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: gIT/zHc/1K0b1PiVmUPHw03fHkctz7eSoTHWuLp5tjo=) 2: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: pgSKdZ0uTp4oyGSOJulRHrxS/OYQHi0OSCfK6R46bhM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:8c:4d:3c:a3:9f:7d:f0:37:a9:a6:d0:45:c6:1d:ec:c8:f2:a6:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Aug 23 05:46:21 2025 GMT Not After : Aug 26 07:17:21 2025 GMT Subject: CN=4BFE906682B4D6F56F79BE5E596B6AD11D988184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:49:7a:50:6e:f8:79:9d:5e:89:b9:31:a8: 7c:56:a8:c5:70:1a:91:25:a7:ad:df:72:20:3f:d1: 08:e0:05:3e:4d:51:79:27:c4:92:cd:39:ce:8d:0b: 8e:3b:82:ab:91:6b:8a:11:a5:67:01:0d:ed:a5:03: 46:23:2f:05:4c:a2:d2:a0:78:4b:b7:a3:06:3e:e3: d0:ac:d0:6a:83:46:69:94:4d:8f:8f:48:7e:5f:7a: 52:d7:4d:6f:d5:ab:00:91:bd:a4:f7:d6:62:f2:2c: ff:7e:82:c3:af:13:62:bd:45:fa:b1:76:f3:c7:30: 93:f1:ff:4c:fd:87:3d:ee:33:68:d6:c7:f7:9a:3a: d3:78:7b:49:7e:21:4a:3d:52:57:f4:cd:5a:5b:12: 69:77:e2:7c:58:28:22:25:ff:6d:1d:fd:2c:4f:b0: 79:58:a7:7e:e0:d0:88:0e:d5:36:e6:1c:a7:62:24: e0:54:4c:2f:f3:4f:3b:9f:22:32:63:7e:33:a9:f4: 96:03:39:4a:13:2c:99:be:64:4f:e9:0a:e4:1f:ad: 76:31:0e:df:21:75:db:56:20:bb:76:dc:54:71:52: 81:49:56:58:e4:9b:71:e1:11:dc:53:71:5f:63:5c: fd:73:6b:91:35:a2:c3:e4:b6:b7:dc:1f:f7:e7:2e: ea:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FE:90:66:82:B4:D6:F5:6F:79:BE:5E:59:6B:6A:D1:1D:98:81:84 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:30:90:61:f6:dd:9e:f6:88:50:56:07:13:ba:7a:57:9b:87: 71:59:b1:2b:95:34:f0:d7:82:71:c5:47:f0:06:4e:4e:56:c6: 7c:18:55:01:aa:a7:3f:bd:3c:cb:38:7c:99:ea:af:cb:4e:b8: 38:cb:f6:26:ea:2a:44:27:af:69:4b:84:d2:f0:5d:d0:2e:48: e8:36:db:7c:a4:ca:82:79:c3:b2:ea:eb:67:fc:d3:65:73:69: ba:05:41:84:5d:e7:ab:e9:a3:1b:20:89:ee:19:04:a5:96:33: 4f:3a:c7:1a:f1:a3:27:4f:10:b3:ea:9e:d2:d7:01:c6:ef:dc: c1:54:23:76:8a:c5:c9:64:79:51:4b:68:9b:cd:0c:8f:d6:c4: 73:7f:60:ee:de:62:fd:56:f4:76:4b:dc:32:b2:51:02:13:78: 34:09:2d:95:e4:1e:e7:89:57:70:71:20:51:4e:4e:e1:17:4e: 61:1e:f1:cb:86:26:91:c9:b9:44:00:17:a7:8f:88:00:66:95: 4d:69:ae:26:29:b1:31:48:e7:45:b4:7f:ed:e5:6f:28:18:20: fc:1e:6e:d2:6d:c7:1d:87:16:2a:ca:9e:ba:53:b2:08:a6:ed: f8:cd:fa:03:8f:be:bb:2e:22:49:d0:a2:fb:c1:1f:bc:28:35: 70:14:ae:f3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGYxNPKOfffA3qabQRcYd7Mjypo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNTA4MjMwNTQ2MjFaFw0yNTA4MjYwNzE3MjFaMDMxMTAvBgNV BAMTKDRCRkU5MDY2ODJCNEQ2RjU2Rjc5QkU1RTU5NkI2QUQxMUQ5ODgxODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxOUl6UG74eZ1eibkxqHxWqMVw GpElp63fciA/0QjgBT5NUXknxJLNOc6NC447gquRa4oRpWcBDe2lA0YjLwVMotKg eEu3owY+49Cs0GqDRmmUTY+PSH5felLXTW/VqwCRvaT31mLyLP9+gsOvE2K9Rfqx dvPHMJPx/0z9hz3uM2jWx/eaOtN4e0l+IUo9Ulf0zVpbEml34nxYKCIl/20d/SxP sHlYp37g0IgO1TbmHKdiJOBUTC/zTzufIjJjfjOp9JYDOUoTLJm+ZE/pCuQfrXYx Dt8hddtWILt23FRxUoFJVljkm3HhEdxTcV9jXP1za5E1osPktrfcH/fnLuqpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS/6QZoK01vVveb5eWWtq0R2YgYQwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAowkGH23Z72iFBWBxO6elebh3FZsSuVNPDX gnHFR/AGTk5WxnwYVQGqpz+9PMs4fJnqr8tOuDjL9ibqKkQnr2lLhNLwXdAuSOg2 23ykyoJ5w7Lq62f802VzaboFQYRd56vpoxsgie4ZBKWWM086xxrxoydPELPqntLX Acbv3MFUI3aKxclkeVFLaJvNDI/WxHN/YO7eYv1W9HZL3DKyUQITeDQJLZXkHueJ V3BxIFFOTuEXTmEe8cuGJpHJuUQAF6ePiABmlU1priYpsTFI50W0f+3lbygYIPwe btJtxx2HFirKnrpTsgim7fjN+gOPvrsuIknQovvBH7woNXAUrvM= -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:47 2025 by rpki-client