$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: 171nrUGrxg9Vm6MoxiriFjtzVkqiycpn2UJypQUrclo= Subject key identifier: 0F:B9:80:E8:A8:25:EA:49:B5:7A:05:34:22:84:99:73:31:B2:95:C1 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 18AE1A779BAD9704473571F763F9F9561E4171AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0224 Signing time: Sun 27 Apr 2025 23:12:19 +0000 Manifest this update: Sun 27 Apr 2025 23:07:19 +0000 Manifest next update: Wed 30 Apr 2025 23:39:19 +0000 Files and hashes: 1: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: fRHgwFVAbox/oygHRQhaxOevCbdqblGOsVf+E5SPsfM=) 2: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: kwL1JREwxH10sgLMYdlWUdKS0D8gYxJYzVh+9DEMKo4=) 3: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: Ai97/AeZ67d5F3AYWobNbu9wLgxWIRH2a6eXmHZgojQ=) 4: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: 1AXu9VMwS+8knSVXl2hI8iHOcYa+VjnkUxjjL7VCI30=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 23:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ae:1a:77:9b:ad:97:04:47:35:71:f7:63:f9:f9:56:1e:41:71:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Apr 27 23:07:19 2025 GMT Not After : Apr 30 23:39:19 2025 GMT Subject: CN=0FB980E8A825EA49B57A05342284997331B295C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ec:32:fe:38:54:05:bd:e6:b8:b0:c7:da:90: 71:83:e6:28:0b:6a:d8:34:04:82:6e:bc:bd:ca:79: df:44:5c:f1:64:a6:ff:42:c9:84:95:92:33:6f:36: e1:d3:1e:e9:d9:68:93:20:97:2f:6e:51:fa:df:99: 2e:1a:13:75:52:84:63:e0:a7:6a:d0:85:3f:26:b5: 8e:4c:1e:d8:6f:8a:0d:0d:9f:0c:bf:ab:55:bf:64: 4a:99:c0:a6:c0:de:f0:0c:ba:2c:34:5e:46:85:1d: 3d:a6:2d:a7:25:31:11:96:6b:0c:6b:8b:d3:4a:e2: 5d:db:07:9d:2e:ee:8d:ad:bb:ae:92:c6:c9:57:f5: 3a:31:86:a2:1e:a9:20:a3:31:1b:75:29:89:61:75: f8:a1:b6:cc:e8:e8:91:6b:c3:aa:9d:0c:c6:d6:d1: 15:3b:17:cf:d2:5c:fe:91:28:4d:65:9b:02:70:5a: d8:54:09:6c:fa:39:ae:66:01:5a:4e:a6:17:26:7b: fb:56:e6:c9:34:f2:e8:c7:94:ee:df:40:41:b2:a0: 1d:b4:d0:36:85:28:24:64:73:dd:69:d0:c1:2b:9b: ca:9e:ba:5c:8a:17:c3:7f:65:8e:1a:9d:6c:3a:f0: 52:32:5b:1e:1f:d6:a7:81:68:5b:01:61:18:14:ee: e4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B9:80:E8:A8:25:EA:49:B5:7A:05:34:22:84:99:73:31:B2:95:C1 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:04:98:7e:78:8f:2f:59:a3:93:9e:cc:81:b1:8a:15:f0:37: 19:fa:dd:3c:4c:3d:e2:92:3e:0a:44:69:d2:ff:e3:a5:ed:d1: 73:4b:96:ca:72:38:9e:36:64:74:00:d2:38:f7:19:6f:44:33: 0c:de:8b:92:30:ed:c4:7c:c6:06:40:74:51:c6:66:e8:71:4a: 92:09:ad:0f:43:fc:f7:0d:79:5c:1d:cf:c0:fd:11:b1:e0:91: 6c:ab:f0:1e:8b:d8:01:95:17:a8:e9:15:76:22:1c:d8:66:1e: e0:4e:83:ed:d0:59:89:1b:67:cb:ce:7e:24:ce:b4:7a:61:83: 64:fc:fd:6b:95:d8:b9:30:a9:f4:67:3f:9a:e3:2b:b6:08:ca: 68:6c:6f:a9:78:a4:ed:02:d2:67:eb:60:4a:a0:0e:25:d4:8d: 4e:db:d9:fe:b5:3e:c9:dc:7e:31:14:ee:3e:c9:60:a1:7b:0d: 5a:d1:dc:5d:64:5f:cb:81:d2:3c:cd:84:07:98:8d:f9:39:af: 03:f4:1c:0b:2b:b5:f0:89:36:a4:f1:72:1d:64:3c:ab:8b:11: 93:f0:d8:15:47:3a:6a:4e:ad:a6:bc:6b:3c:97:15:25:81:f0: 32:94:2a:7f:e1:6c:ba:2e:75:82:51:3e:e3:5d:54:eb:6b:60: 6a:ba:c8:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGK4ad5utlwRHNXH3Y/n5Vh5BcaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA0MjcyMzA3MTlaFw0yNTA0MzAyMzM5MTlaMDMxMTAvBgNV BAMTKDBGQjk4MEU4QTgyNUVBNDlCNTdBMDUzNDIyODQ5OTczMzFCMjk1QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu7DL+OFQFvea4sMfakHGD5igL atg0BIJuvL3Ked9EXPFkpv9CyYSVkjNvNuHTHunZaJMgly9uUfrfmS4aE3VShGPg p2rQhT8mtY5MHthvig0Nnwy/q1W/ZEqZwKbA3vAMuiw0XkaFHT2mLaclMRGWawxr i9NK4l3bB50u7o2tu66SxslX9ToxhqIeqSCjMRt1KYlhdfihtszo6JFrw6qdDMbW 0RU7F8/SXP6RKE1lmwJwWthUCWz6Oa5mAVpOphcme/tW5sk08ujHlO7fQEGyoB20 0DaFKCRkc91p0MErm8qeulyKF8N/ZY4anWw68FIyWx4f1qeBaFsBYRgU7uTfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUD7mA6Kgl6km1egU0IoSZczGylcEwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG4EmH54jy9Zo5OezIGxihXwNxn63TxMPeKS PgpEadL/46Xt0XNLlspyOJ42ZHQA0jj3GW9EMwzei5Iw7cR8xgZAdFHGZuhxSpIJ rQ9D/PcNeVwdz8D9EbHgkWyr8B6L2AGVF6jpFXYiHNhmHuBOg+3QWYkbZ8vOfiTO tHphg2T8/WuV2LkwqfRnP5rjK7YIymhsb6l4pO0C0mfrYEqgDiXUjU7b2f61Psnc fjEU7j7JYKF7DVrR3F1kX8uB0jzNhAeYjfk5rwP0HAsrtfCJNqTxch1kPKuLEZPw 2BVHOmpOraa8azyXFSWB8DKUKn/hbLoudYJRPuNdVOtrYGq6yDw= -----END CERTIFICATE-----Generated at Tue Apr 29 22:50:14 2025 by rpki-client