$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft File: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft (raw, json) Hash identifier: l7SRZF4LW1RYAtJx8nXhebiiejjX/pB5nl0jB0STsQc= Subject key identifier: 1F:0D:DF:74:03:83:CB:DC:DE:AD:28:49:05:86:0E:C2:FD:32:6F:3F Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Certificate serial: 5DC4607AEB1A8C3D5A21EDA44250A7FDB8643F3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft Manifest number: 01E3 Signing time: Fri 22 Aug 2025 02:11:53 +0000 Manifest this update: Fri 22 Aug 2025 02:06:53 +0000 Manifest next update: Mon 25 Aug 2025 08:22:53 +0000 Files and hashes: 1: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl (hash: wRLMB4MeA1/czaJUchzBqXHmPK6imw9/TiNXMlg2obQ=) 2: 3130332e3136302e36392e302f32342d3234203d3e203438343635.roa (hash: K+vQljm+ExeOXd+J7K26cCdQKnYakCROUmRDg3WOiF4=) 3: 3130332e3136302e36382e302f32342d3234203d3e203438343635.roa (hash: s3cZDsm3eCD/zirL0oonykymWlAaugzxDIFPlg5sAUQ=) 4: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (hash: HLjZFq4/Jnmag82Gv7W9QKBRIGp+gW90e9wOgTOi2PE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 08:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c4:60:7a:eb:1a:8c:3d:5a:21:ed:a4:42:50:a7:fd:b8:64:3f:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Validity Not Before: Aug 22 02:06:53 2025 GMT Not After : Aug 25 08:22:53 2025 GMT Subject: CN=1F0DDF740383CBDCDEAD284905860EC2FD326F3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fd:ca:d0:45:5e:9b:e1:ff:53:c0:c2:cd:6c: 06:c2:63:45:b5:88:f7:b2:f4:f5:8d:50:59:3f:3f: c5:0e:30:73:80:c9:d6:19:3a:a7:26:9b:ee:f0:25: 6b:e1:d9:ca:94:5d:01:96:44:e9:82:5d:84:75:a2: 97:12:6f:ab:e5:0b:fb:12:5e:09:d9:4c:2a:e2:cc: e6:4a:02:99:c0:94:64:f3:4c:4f:99:02:de:e9:7f: 00:d1:cb:f9:b8:60:44:f3:41:40:11:09:c8:f5:0d: f7:84:cc:18:da:16:62:9b:53:bd:20:39:a8:cc:24: 9f:ca:25:60:b4:6d:51:70:f2:ac:7a:48:ec:29:cf: ac:58:80:ee:85:12:b2:5b:5b:3a:84:a3:b7:8b:f1: e9:80:af:b9:ff:05:3a:28:a0:17:58:fc:16:85:99: 55:9d:b9:c0:93:c0:9c:f6:a6:56:22:9c:f0:3f:e4: d1:2d:be:23:e1:46:0e:a0:b6:31:7e:69:0b:5f:5e: 31:66:59:e0:64:2b:cd:89:d1:54:be:98:32:98:79: 5a:c0:e8:1e:9b:87:18:c6:9b:f0:e6:9c:f1:2b:04: 96:58:dc:1f:1f:74:1b:09:0a:02:75:2e:d9:9e:5a: 67:66:66:8a:1d:53:6d:7c:df:a7:28:dd:81:f5:55: d8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0D:DF:74:03:83:CB:DC:DE:AD:28:49:05:86:0E:C2:FD:32:6F:3F X509v3 Authority Key Identifier: keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:64:37:98:d8:f7:5a:ef:05:d1:29:b1:28:9e:63:57:f6:0a: 53:40:c0:38:84:5e:7d:eb:de:4b:9d:ad:3d:54:6e:aa:3f:dc: 43:55:33:45:e4:e9:6f:14:ff:c3:02:37:c4:8d:a9:74:f4:6a: 2c:79:a2:b1:04:2b:17:01:12:fb:f2:d6:c8:b8:60:b4:86:cb: 0c:c6:da:55:3b:51:97:53:63:c9:10:1b:c4:c0:a6:d4:87:56: aa:1f:d7:b6:6e:2d:5f:da:e5:fc:3b:aa:31:21:47:4d:e5:e2: c6:7f:4f:23:29:5c:12:d1:e6:2f:50:ff:f9:89:12:25:90:e9: e6:83:1c:ca:67:e2:51:d8:1a:fa:8b:cf:4a:54:65:66:00:26: 6c:06:4e:d9:d8:38:4f:f0:c9:cc:cb:07:47:42:18:80:cd:89: a8:0e:66:7e:3b:33:10:2d:64:11:44:a6:46:9f:59:c9:1b:66: 0f:11:23:fd:ff:84:84:24:97:3e:a5:57:9e:fe:bb:0f:e3:d4: 00:81:62:64:bf:58:aa:4e:8b:f2:06:d3:4c:53:6a:2a:ed:40: af:4d:d7:5c:97:e5:f6:b3:34:32:fd:c7:12:db:d8:64:0f:cb: 96:27:f5:7d:5d:22:c1:11:2e:89:86:0d:dd:b2:d1:9c:9e:f8: 07:6b:65:73 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXcRgeusajD1aIe2kQlCn/bhkPz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZG OURERTNERDAeFw0yNTA4MjIwMjA2NTNaFw0yNTA4MjUwODIyNTNaMDMxMTAvBgNV BAMTKDFGMERERjc0MDM4M0NCRENERUFEMjg0OTA1ODYwRUMyRkQzMjZGM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu/crQRV6b4f9TwMLNbAbCY0W1 iPey9PWNUFk/P8UOMHOAydYZOqcmm+7wJWvh2cqUXQGWROmCXYR1opcSb6vlC/sS XgnZTCrizOZKApnAlGTzTE+ZAt7pfwDRy/m4YETzQUARCcj1DfeEzBjaFmKbU70g OajMJJ/KJWC0bVFw8qx6SOwpz6xYgO6FErJbWzqEo7eL8emAr7n/BToooBdY/BaF mVWducCTwJz2plYinPA/5NEtviPhRg6gtjF+aQtfXjFmWeBkK82J0VS+mDKYeVrA 6B6bhxjGm/DmnPErBJZY3B8fdBsJCgJ1LtmeWmdmZoodU21836co3YH1VdhPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHw3fdAODy9zerShJBYYOwv0ybz8wHwYDVR0j BBgwFoAUQBqlavWZzKLNcaaE/89T//nd490wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWM3OWZiZS00NzkwLTQ2YmUtYjliMi0wMzU5YjFhMThlMzMvMC80MDFBQTU2QUY1 OTlDQ0EyQ0Q3MUE2ODRGRkNGNTNGRkY5RERFM0RELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZGOURE RTNERC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGFjNzlmYmUtNDc5MC00NmJlLWI5 YjItMDM1OWIxYTE4ZTMzLzAvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUz RkZGOURERTNERC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGhkN5jY91rvBdEpsSieY1f2ClNAwDiEXn3r 3kudrT1Ubqo/3ENVM0Xk6W8U/8MCN8SNqXT0aix5orEEKxcBEvvy1si4YLSGywzG 2lU7UZdTY8kQG8TAptSHVqof17ZuLV/a5fw7qjEhR03l4sZ/TyMpXBLR5i9Q//mJ EiWQ6eaDHMpn4lHYGvqLz0pUZWYAJmwGTtnYOE/wyczLB0dCGIDNiagOZn47MxAt ZBFEpkafWckbZg8RI/3/hIQklz6lV57+uw/j1ACBYmS/WKpOi/IG00xTairtQK9N 11yX5fazNDL9xxLb2GQPy5Yn9X1dIsERLomGDd2y0Zye+AdrZXM= -----END CERTIFICATE-----Generated at Sat Aug 23 18:08:15 2025 by rpki-client