$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft File: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft (raw, json) Hash identifier: Ui6p4l0yUBZm9tel9AaOtvocKPjjg2JSFh1CymPdW14= Subject key identifier: 27:5E:C2:FB:10:6D:A2:0F:9F:BF:2B:81:E9:34:AF:7D:95:7A:7B:37 Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 1A69E8BE54D6F595D0B16CCA0DB525B985FE93FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft Manifest number: 01EF Signing time: Sat 23 Aug 2025 06:21:23 +0000 Manifest this update: Sat 23 Aug 2025 06:16:23 +0000 Manifest next update: Tue 26 Aug 2025 15:19:23 +0000 Files and hashes: 1: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl (hash: 5DBG6/PUbLiemete2tRg0qn3fTRCvXLOiK/08U5MX7I=) 2: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (hash: hy+/jpVeqW5ZdBPpsEQxih0c4zQVAJjPaRw4KAPp/Ro=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:69:e8:be:54:d6:f5:95:d0:b1:6c:ca:0d:b5:25:b9:85:fe:93:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: Aug 23 06:16:23 2025 GMT Not After : Aug 26 15:19:23 2025 GMT Subject: CN=275EC2FB106DA20F9FBF2B81E934AF7D957A7B37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f5:28:14:ee:4b:24:65:3b:31:d0:23:2c:2e: fe:01:e8:37:d8:dd:30:49:6f:d4:c8:27:86:1a:b6: e4:a3:6b:b6:ce:bf:98:d2:d0:08:df:68:52:99:0a: d7:80:03:cb:46:04:24:db:55:6d:0e:5d:4d:89:3f: c8:68:54:f0:4e:0f:d1:af:0b:7d:ed:ae:c0:cf:f3: 8a:d6:73:0f:63:a6:8c:0c:2c:a9:5e:43:3a:38:27: 25:ab:4e:33:63:ac:e8:c8:0e:2f:05:70:f5:7c:2b: 90:6b:e5:bc:d2:1a:66:33:4a:11:97:06:1d:45:9e: d4:4d:bf:70:55:46:63:40:e3:e2:b0:7c:a7:c0:7a: 2c:36:d1:c4:13:cf:0e:97:68:c5:da:ca:8f:de:4b: fd:68:2a:ec:8a:c7:f4:0c:4d:4a:bc:22:34:26:a1: f7:70:1a:9d:d1:71:85:e6:ee:21:c0:49:23:84:7c: 74:12:cb:ca:98:cf:81:d8:44:bb:49:de:1a:67:74: 35:bf:b8:20:3c:ad:75:e8:20:3a:47:fc:c8:ba:16: c7:2c:9b:24:21:bb:b8:d9:6e:c3:02:32:a6:fa:48: d2:fe:a8:16:46:10:36:9b:63:f3:2d:06:bc:3e:81: ca:79:1d:66:66:7e:29:c4:02:11:31:e5:33:95:dd: 3a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5E:C2:FB:10:6D:A2:0F:9F:BF:2B:81:E9:34:AF:7D:95:7A:7B:37 X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:0f:99:f4:db:50:f6:9c:6c:1d:34:96:43:87:00:ab:84:d5: 67:e5:f8:ed:84:3b:2e:d0:03:4d:66:53:c6:db:32:8e:d8:7b: 03:8a:6c:5e:ab:43:c7:80:72:63:79:9d:7d:b8:13:62:de:c2: 5c:70:34:8f:9e:c8:56:0a:39:06:64:8f:c6:df:50:da:7e:5f: e0:f6:fd:cb:0a:d3:6e:dc:1d:60:4d:b7:2d:3a:8a:ab:50:09: 4a:65:a6:71:1b:bc:3b:a4:2a:1a:72:47:48:6a:3f:da:40:ae: 32:2b:28:c0:49:80:c5:79:1e:0a:d7:3c:2e:93:c8:c6:69:b0: 1d:73:90:73:de:16:d6:c3:5d:69:ea:68:a2:ca:d2:92:13:0f: 11:d8:f7:38:1b:db:aa:09:dc:e4:78:57:b3:a0:e0:ae:2e:20: 51:12:45:ac:f1:a7:2e:7a:17:e8:8b:1b:6f:fe:a5:4d:bb:5f: de:4c:9b:dd:6d:73:9e:31:64:f6:1c:25:8f:3a:4a:12:ce:27: b6:9d:c4:8a:3e:62:ef:2c:01:36:26:fc:3f:37:d0:95:a8:46: 36:d5:c3:cc:63:2f:8e:9b:4d:a4:bf:a3:04:0d:5b:16:b9:84: ae:18:2f:cb:19:8f:07:9b:8d:d8:79:b5:a6:45:13:10:ca:22: cb:5f:84:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGmnovlTW9ZXQsWzKDbUluYX+k/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNTA4MjMwNjE2MjNaFw0yNTA4MjYxNTE5MjNaMDMxMTAvBgNV BAMTKDI3NUVDMkZCMTA2REEyMEY5RkJGMkI4MUU5MzRBRjdEOTU3QTdCMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp9SgU7kskZTsx0CMsLv4B6DfY 3TBJb9TIJ4YatuSja7bOv5jS0AjfaFKZCteAA8tGBCTbVW0OXU2JP8hoVPBOD9Gv C33trsDP84rWcw9jpowMLKleQzo4JyWrTjNjrOjIDi8FcPV8K5Br5bzSGmYzShGX Bh1FntRNv3BVRmNA4+KwfKfAeiw20cQTzw6XaMXayo/eS/1oKuyKx/QMTUq8IjQm ofdwGp3RcYXm7iHASSOEfHQSy8qYz4HYRLtJ3hpndDW/uCA8rXXoIDpH/Mi6Fscs myQhu7jZbsMCMqb6SNL+qBZGEDabY/MtBrw+gcp5HWZmfinEAhEx5TOV3TqxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ17C+xBtog+fvyuB6TSvfZV6ezcwHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGRmNDI5NmYtMWNhOS00NWZjLWJi MDgtODQxMzVlYjAwZmE3LzAvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENE QTE5MTVBQzc2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFkPmfTbUPacbB00lkOHAKuE1Wfl+O2EOy7Q A01mU8bbMo7YewOKbF6rQ8eAcmN5nX24E2LewlxwNI+eyFYKOQZkj8bfUNp+X+D2 /csK027cHWBNty06iqtQCUplpnEbvDukKhpyR0hqP9pArjIrKMBJgMV5HgrXPC6T yMZpsB1zkHPeFtbDXWnqaKLK0pITDxHY9zgb26oJ3OR4V7Og4K4uIFESRazxpy56 F+iLG2/+pU27X95Mm91tc54xZPYcJY86ShLOJ7adxIo+Yu8sATYm/D830JWoRjbV w8xjL46bTaS/owQNWxa5hK4YL8sZjwebjdh5taZFExDKIstfhAQ= -----END CERTIFICATE-----Generated at Sat Aug 23 12:28:19 2025 by rpki-client