$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: Ts59erzGdlX1de6/5ohcvfG6xsoTNwd28jKAYtTRmUc= Subject key identifier: CF:7B:55:D3:81:81:78:1D:8E:BC:86:2C:BE:3F:E3:D7:4F:4D:5D:79 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 5ABF731B208A7266F1B6F1FC5209B9AAEBFF9966 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 023A Signing time: Sun 15 Jun 2025 20:02:39 +0000 Manifest this update: Sun 15 Jun 2025 19:57:39 +0000 Manifest next update: Thu 19 Jun 2025 04:06:39 +0000 Files and hashes: 1: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: XuuAjrzXZdnvpuj+s67ReMu1cvWxjowpBEpe9SyCqPU=) 2: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: Ai97/AeZ67d5F3AYWobNbu9wLgxWIRH2a6eXmHZgojQ=) 3: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: kwL1JREwxH10sgLMYdlWUdKS0D8gYxJYzVh+9DEMKo4=) 4: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: 1AXu9VMwS+8knSVXl2hI8iHOcYa+VjnkUxjjL7VCI30=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 04:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:bf:73:1b:20:8a:72:66:f1:b6:f1:fc:52:09:b9:aa:eb:ff:99:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jun 15 19:57:39 2025 GMT Not After : Jun 19 04:06:39 2025 GMT Subject: CN=CF7B55D38181781D8EBC862CBE3FE3D74F4D5D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:be:f2:79:2d:98:17:18:07:1b:b4:e1:89:b1: 85:02:4c:a2:d1:90:8c:48:c4:bf:5d:2d:d7:93:06: 64:7a:5e:5c:57:3a:53:ff:7d:66:22:34:c1:c3:f1: 89:69:2c:e8:0f:59:60:72:d0:c8:cd:27:1f:a4:b6: 0f:fc:53:e5:7f:e4:2e:ff:38:c9:9b:56:f5:fb:77: 93:a5:a6:bf:9b:87:54:97:0e:a3:3a:60:b3:c3:22: e6:79:f0:40:c3:78:87:8a:bf:ff:cc:e3:0a:91:2d: 6a:37:50:85:49:81:54:e1:22:04:f5:93:1a:1f:d3: 61:2b:8a:4f:51:b7:fe:c2:f1:3d:de:9c:52:61:a9: 21:c5:63:b9:59:6b:cb:82:76:81:1c:5b:65:e9:39: 46:66:0a:f4:8e:5e:7b:64:72:4a:b4:ab:51:46:80: b7:54:17:4a:5e:89:7a:3b:42:5a:d5:4a:08:3b:f6: 63:0c:b6:78:83:64:df:4a:2d:e7:b4:55:3a:ee:3e: 66:ab:5d:48:d1:38:b1:ba:81:24:4d:19:f5:8d:5c: 40:27:8d:1c:61:26:fe:74:5c:14:c6:6f:98:83:11: 7a:23:41:09:8e:ac:20:82:34:6d:de:89:76:87:47: de:34:5a:72:76:29:28:e3:26:ff:1f:49:c0:3a:b6: ae:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7B:55:D3:81:81:78:1D:8E:BC:86:2C:BE:3F:E3:D7:4F:4D:5D:79 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f5:13:34:d0:0a:06:d5:0b:19:1d:f0:a3:fb:82:a7:b5:e9: c0:50:a7:34:bd:91:4c:f7:1f:e5:31:91:85:66:7f:95:e4:1b: 6f:20:b0:6b:aa:12:74:79:dd:ea:1e:ae:77:e6:c2:5a:75:ab: 53:d5:b6:23:36:eb:df:f6:6b:03:86:26:7b:40:90:a0:27:0a: e2:ba:85:cb:d1:8e:fb:2e:55:de:8f:43:a3:0a:fc:34:bc:f8: 6e:91:51:8e:94:6d:79:fc:76:83:6f:e3:9d:e1:f7:16:90:7c: 12:8e:b3:18:6f:a7:c9:39:0d:5d:06:de:34:68:70:c8:7b:e7: f3:81:c6:b6:e6:ef:60:9f:ca:86:4b:b2:bc:48:fc:28:20:38: 9c:cf:74:73:16:bd:56:ff:83:7f:08:e8:57:58:db:b1:b0:07: f2:8d:3e:6b:9b:5b:d5:82:a1:24:d7:41:37:de:aa:8c:bd:85: 7a:27:92:73:93:84:27:6b:e3:1f:4e:a9:68:29:8f:dc:b2:a1: 77:9d:3e:d8:65:94:fb:86:37:a9:80:0d:d5:4f:17:8b:e4:d3: d8:ee:e3:af:83:d6:b2:d2:8c:0a:fd:2c:c7:b2:61:58:ba:53: 53:a8:96:2a:ac:8a:68:e8:d8:11:11:3c:9a:e4:96:8c:fb:b9: 99:93:02:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWr9zGyCKcmbxtvH8Ugm5quv/mWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA2MTUxOTU3MzlaFw0yNTA2MTkwNDA2MzlaMDMxMTAvBgNV BAMTKENGN0I1NUQzODE4MTc4MUQ4RUJDODYyQ0JFM0ZFM0Q3NEY0RDVENzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDevvJ5LZgXGAcbtOGJsYUCTKLR kIxIxL9dLdeTBmR6XlxXOlP/fWYiNMHD8YlpLOgPWWBy0MjNJx+ktg/8U+V/5C7/ OMmbVvX7d5Olpr+bh1SXDqM6YLPDIuZ58EDDeIeKv//M4wqRLWo3UIVJgVThIgT1 kxof02Erik9Rt/7C8T3enFJhqSHFY7lZa8uCdoEcW2XpOUZmCvSOXntkckq0q1FG gLdUF0peiXo7QlrVSgg79mMMtniDZN9KLee0VTruPmarXUjROLG6gSRNGfWNXEAn jRxhJv50XBTGb5iDEXojQQmOrCCCNG3eiXaHR940WnJ2KSjjJv8fScA6tq7dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz3tV04GBeB2OvIYsvj/j109NXXkwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGz1EzTQCgbVCxkd8KP7gqe16cBQpzS9kUz3 H+UxkYVmf5XkG28gsGuqEnR53eoernfmwlp1q1PVtiM269/2awOGJntAkKAnCuK6 hcvRjvsuVd6PQ6MK/DS8+G6RUY6UbXn8doNv453h9xaQfBKOsxhvp8k5DV0G3jRo cMh75/OBxrbm72CfyoZLsrxI/CggOJzPdHMWvVb/g38I6FdY27GwB/KNPmubW9WC oSTXQTfeqoy9hXonknOThCdr4x9OqWgpj9yyoXedPthllPuGN6mADdVPF4vk09ju 46+D1rLSjAr9LMeyYVi6U1Ooliqsimjo2BERPJrkloz7uZmTAqs= -----END CERTIFICATE-----Generated at Tue Jun 17 17:59:54 2025 by rpki-client