$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft File: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft (raw, json) Hash identifier: t6mCoyej/SytKIFGGfGLhjfoRIwb+KMR4B/x2o68xrE= Subject key identifier: 96:47:4D:07:63:27:8B:BC:AF:D6:BE:43:66:1E:09:15:3F:C1:3E:22 Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 1F7A4869A3B20528B319BD657141DEAF3E6791C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft Manifest number: 01D7 Signing time: Mon 30 Jun 2025 03:31:20 +0000 Manifest this update: Mon 30 Jun 2025 03:26:20 +0000 Manifest next update: Thu 03 Jul 2025 10:59:20 +0000 Files and hashes: 1: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl (hash: WQxe+oDVDBJX1q3qRs1paQnAUPUgobZA1TQCqs0icGM=) 2: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (hash: hy+/jpVeqW5ZdBPpsEQxih0c4zQVAJjPaRw4KAPp/Ro=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 10:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:7a:48:69:a3:b2:05:28:b3:19:bd:65:71:41:de:af:3e:67:91:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: Jun 30 03:26:20 2025 GMT Not After : Jul 3 10:59:20 2025 GMT Subject: CN=96474D0763278BBCAFD6BE43661E09153FC13E22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:3b:0f:8e:73:21:27:c6:4d:df:29:82:72: be:7f:23:df:cc:d3:80:4c:85:02:20:3e:fd:2d:b6: b4:55:65:79:0a:a6:8e:9d:c3:fd:6e:37:bc:5d:8e: 5d:f8:87:2d:42:ff:f7:51:ed:00:c8:f9:b6:44:ae: 66:a9:aa:ef:94:85:c2:0e:a7:bb:75:07:ef:cf:72: c9:64:4d:84:13:ad:5c:8e:c3:51:f2:06:fb:83:c6: 17:e7:61:a2:84:8f:ea:f0:0e:01:d4:d6:3a:1a:fa: 5a:5d:c4:01:3b:21:6d:17:4f:e0:08:60:21:5c:7f: 0b:34:1f:be:14:e2:63:fd:ff:19:dc:2e:ee:86:68: e6:a9:bf:32:16:65:e6:e7:33:42:f2:5f:00:c5:9b: d3:9c:d5:eb:51:53:17:3a:ac:b2:9c:ff:ba:ba:d3: a2:4f:fb:53:13:44:9d:ab:2e:85:b0:25:a2:64:e2: 19:32:37:16:28:62:8b:49:9e:72:05:d2:bd:d2:ed: 12:c4:ad:30:e1:1a:d2:77:b7:df:f9:67:2b:de:d4: 81:24:69:da:0c:68:8a:40:d9:78:a8:36:aa:c1:c1: b5:e8:cb:4f:40:65:c0:d0:cb:04:b4:bb:d8:c1:60: 47:86:19:24:a8:99:2f:ac:dc:54:9a:0d:c8:dd:ca: 8d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:47:4D:07:63:27:8B:BC:AF:D6:BE:43:66:1E:09:15:3F:C1:3E:22 X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:1e:7c:64:a7:02:ef:0f:ed:f0:e5:86:91:d0:f7:36:6a:9d: 02:0e:db:67:b9:d8:9d:af:36:f9:e7:fb:18:31:b5:56:08:17: e3:9e:4b:2f:ee:8c:2a:c6:35:bd:6f:1a:19:38:b8:88:d5:be: e8:d3:c0:d8:24:0c:72:0a:98:a7:55:bc:82:c3:d6:51:0f:dd: 7c:89:9c:a8:28:2c:53:1b:a0:b7:10:67:c9:0d:61:e7:db:45: cc:7e:30:d3:53:c2:b1:e1:7e:3c:ff:5d:99:cb:14:67:70:ad: a4:94:e3:ee:7d:a4:65:54:60:8c:2c:b4:5f:22:fc:9a:25:33: d0:6f:2e:cc:15:a2:2e:6c:2b:01:73:40:13:17:36:cf:c5:f1: 18:32:53:12:7f:9a:13:e4:40:c7:6d:68:70:14:a4:98:ee:3d: b5:83:60:83:b1:39:84:02:45:7f:9c:c7:a4:43:32:2a:af:9b: f3:17:15:15:55:f3:bd:89:f1:7f:3f:e9:d7:b6:c8:d1:26:6a: c6:9e:ce:80:a0:1a:d3:72:04:77:14:fd:75:4e:fa:2b:69:08: a4:7a:b0:bf:3a:97:0c:a4:3a:32:72:a9:b4:3b:7d:be:35:93: 6c:04:87:44:41:5b:79:06:88:ed:f0:f4:c8:11:87:e3:36:5e: 3f:a9:29:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH3pIaaOyBSizGb1lcUHerz5nkcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNTA2MzAwMzI2MjBaFw0yNTA3MDMxMDU5MjBaMDMxMTAvBgNV BAMTKDk2NDc0RDA3NjMyNzhCQkNBRkQ2QkU0MzY2MUUwOTE1M0ZDMTNFMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIWjsPjnMhJ8ZN3ymCcr5/I9/M 04BMhQIgPv0ttrRVZXkKpo6dw/1uN7xdjl34hy1C//dR7QDI+bZErmapqu+UhcIO p7t1B+/PcslkTYQTrVyOw1HyBvuDxhfnYaKEj+rwDgHU1joa+lpdxAE7IW0XT+AI YCFcfws0H74U4mP9/xncLu6GaOapvzIWZebnM0LyXwDFm9Oc1etRUxc6rLKc/7q6 06JP+1MTRJ2rLoWwJaJk4hkyNxYoYotJnnIF0r3S7RLErTDhGtJ3t9/5Zyve1IEk adoMaIpA2XioNqrBwbXoy09AZcDQywS0u9jBYEeGGSSomS+s3FSaDcjdyo3BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlkdNB2Mni7yv1r5DZh4JFT/BPiIwHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGRmNDI5NmYtMWNhOS00NWZjLWJi MDgtODQxMzVlYjAwZmE3LzAvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENE QTE5MTVBQzc2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAYefGSnAu8P7fDlhpHQ9zZqnQIO22e52J2v Nvnn+xgxtVYIF+OeSy/ujCrGNb1vGhk4uIjVvujTwNgkDHIKmKdVvILD1lEP3XyJ nKgoLFMboLcQZ8kNYefbRcx+MNNTwrHhfjz/XZnLFGdwraSU4+59pGVUYIwstF8i /JolM9BvLswVoi5sKwFzQBMXNs/F8RgyUxJ/mhPkQMdtaHAUpJjuPbWDYIOxOYQC RX+cx6RDMiqvm/MXFRVV872J8X8/6de2yNEmasaezoCgGtNyBHcU/XVO+itpCKR6 sL86lwykOjJyqbQ7fb41k2wEh0RBW3kGiO3w9MgRh+M2Xj+pKbA= -----END CERTIFICATE-----Generated at Tue Jul 1 23:54:32 2025 by rpki-client