$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft File: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft (raw, json) Hash identifier: 6HLifqs97gKHoafmL2FiaFa40AFP4+8OKpQxl5I9JUw= Subject key identifier: 6E:D8:C6:A1:02:2B:B7:D4:02:6D:36:A3:1A:35:4D:5D:AC:23:67:90 Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 6809F07D38A828FDA1407D37375032794B1081D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft Manifest number: 01BF Signing time: Fri 09 May 2025 13:11:21 +0000 Manifest this update: Fri 09 May 2025 13:06:21 +0000 Manifest next update: Mon 12 May 2025 17:57:21 +0000 Files and hashes: 1: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (hash: yNuk/WaxNIr8hCitKM0Fj2fYpqSLEg7Ounb0durD57g=) 2: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl (hash: 087ucKl+ETpEvyNbPCYBL6eMoHo1hFnYQvCgyP++KlE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 17:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:09:f0:7d:38:a8:28:fd:a1:40:7d:37:37:50:32:79:4b:10:81:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: May 9 13:06:21 2025 GMT Not After : May 12 17:57:21 2025 GMT Subject: CN=6ED8C6A1022BB7D4026D36A31A354D5DAC236790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:74:84:bf:08:77:cb:3d:ad:70:80:28:88:bc: 92:7e:96:f5:dd:3e:c7:ab:d9:17:8b:e3:53:41:c4: f2:f5:c4:46:02:76:a8:57:fd:a9:60:c4:79:76:6b: 7a:3a:aa:34:6b:c7:78:2d:e3:1b:e3:32:ab:7a:5a: 1d:a0:28:3d:78:be:3f:7b:09:04:37:e7:87:92:73: 13:33:99:50:ae:c1:14:d5:54:ad:78:f8:4a:05:1a: 29:f5:a3:dd:7a:1a:9c:9e:ee:c4:bf:5f:4c:a4:1e: a1:39:22:01:47:a3:39:c9:1d:fa:05:ff:b1:ee:a0: dc:aa:6c:15:d6:f8:69:43:14:25:d3:3b:02:06:42: 72:85:6f:57:e6:a4:15:8c:ee:72:0e:63:92:0b:de: e5:5c:d7:e1:6d:79:d9:61:17:db:59:79:d7:be:49: 62:71:7d:d9:2f:13:dc:06:6d:4e:14:f9:dd:7a:47: e4:72:b1:e0:68:ae:11:f1:c1:81:79:65:23:8a:03: 75:de:4c:b0:ae:bb:3e:11:be:b4:18:e5:dd:86:c3: 81:bc:63:1a:0e:05:3d:c4:c8:8c:6b:e0:39:68:ce: 86:c4:4b:bf:5e:c6:bc:e9:6b:80:42:bb:ab:b0:ea: 59:a5:85:d1:c2:eb:e6:69:67:a7:a3:ae:59:c3:da: 45:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D8:C6:A1:02:2B:B7:D4:02:6D:36:A3:1A:35:4D:5D:AC:23:67:90 X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:cb:ff:7b:ef:93:15:ad:d7:d0:71:d7:a6:62:55:37:a8:8a: cd:6c:11:93:7d:c5:01:e4:ab:c3:28:73:f5:42:0e:d3:b3:0e: 9d:fb:f1:60:4d:c4:45:d1:c7:84:8e:26:60:8e:4f:46:2e:3e: 18:17:76:54:06:b1:34:2b:23:d0:28:2f:1a:3e:18:f2:b7:c9: ee:80:65:aa:75:bc:25:97:cc:4e:e6:0f:37:6f:01:41:25:8f: 6e:22:60:c3:2a:14:e5:8d:78:d7:6b:22:d1:77:9d:11:8d:c8: c3:c1:85:29:a2:77:e6:90:86:7f:51:66:68:22:d8:32:e5:4d: 57:1e:f6:77:e5:9f:5d:75:01:10:38:25:d2:45:9a:27:a4:33: 75:32:4a:d9:fe:06:6d:a0:b8:97:05:63:93:bf:2a:13:d8:f3: 91:81:96:f7:11:1d:96:6d:68:07:ec:56:d1:b5:5b:94:c6:b4: 12:ae:5d:be:0a:bf:07:ee:36:b5:6a:06:ad:16:61:c3:9d:02: 24:8a:db:2d:00:9d:6a:39:ae:08:ed:a4:d3:a0:a8:05:0f:d6: e4:ea:12:de:cb:af:0a:55:41:c7:2a:74:09:b6:fb:3a:34:4c: 9a:04:21:7e:87:8a:cc:f8:be:00:83:a3:4e:1d:86:2d:03:50: f5:bc:6d:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaAnwfTioKP2hQH03N1AyeUsQgdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNTA1MDkxMzA2MjFaFw0yNTA1MTIxNzU3MjFaMDMxMTAvBgNV BAMTKDZFRDhDNkExMDIyQkI3RDQwMjZEMzZBMzFBMzU0RDVEQUMyMzY3OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSdIS/CHfLPa1wgCiIvJJ+lvXd Pser2ReL41NBxPL1xEYCdqhX/algxHl2a3o6qjRrx3gt4xvjMqt6Wh2gKD14vj97 CQQ354eScxMzmVCuwRTVVK14+EoFGin1o916Gpye7sS/X0ykHqE5IgFHoznJHfoF /7HuoNyqbBXW+GlDFCXTOwIGQnKFb1fmpBWM7nIOY5IL3uVc1+FtedlhF9tZede+ SWJxfdkvE9wGbU4U+d16R+RyseBorhHxwYF5ZSOKA3XeTLCuuz4RvrQY5d2Gw4G8 YxoOBT3EyIxr4DlozobES79exrzpa4BCu6uw6lmlhdHC6+ZpZ6ejrlnD2kXpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbtjGoQIrt9QCbTajGjVNXawjZ5AwHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGRmNDI5NmYtMWNhOS00NWZjLWJi MDgtODQxMzVlYjAwZmE3LzAvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENE QTE5MTVBQzc2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHnL/3vvkxWt19Bx16ZiVTeois1sEZN9xQHk q8Moc/VCDtOzDp378WBNxEXRx4SOJmCOT0YuPhgXdlQGsTQrI9AoLxo+GPK3ye6A Zap1vCWXzE7mDzdvAUElj24iYMMqFOWNeNdrItF3nRGNyMPBhSmid+aQhn9RZmgi 2DLlTVce9nfln111ARA4JdJFmiekM3UyStn+Bm2guJcFY5O/KhPY85GBlvcRHZZt aAfsVtG1W5TGtBKuXb4KvwfuNrVqBq0WYcOdAiSK2y0AnWo5rgjtpNOgqAUP1uTq Et7LrwpVQccqdAm2+zo0TJoEIX6Hisz4vgCDo04dhi0DUPW8bTw= -----END CERTIFICATE-----Generated at Sat May 10 05:19:38 2025 by rpki-client