$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: nRGllc4+ipCIxFMxeIPZJvywLmp88nhKJY2gFXKi40Q= Subject key identifier: 0C:97:9E:5D:0C:B2:56:B6:D0:33:72:79:B0:38:37:4B:38:B6:B0:29 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 7B3071B39E82751A0BFF90A7904953395B7C5F9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0251 Signing time: Tue 05 Aug 2025 07:12:25 +0000 Manifest this update: Tue 05 Aug 2025 07:07:25 +0000 Manifest next update: Fri 08 Aug 2025 17:57:25 +0000 Files and hashes: 1: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 2: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) 3: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: /DFCqZopHcmslCWT/YUS/niWhGLekKmb/DxXCEZobuk=) 4: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 17:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:30:71:b3:9e:82:75:1a:0b:ff:90:a7:90:49:53:39:5b:7c:5f:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Aug 5 07:07:25 2025 GMT Not After : Aug 8 17:57:25 2025 GMT Subject: CN=0C979E5D0CB256B6D0337279B038374B38B6B029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e4:4a:97:42:cf:d1:47:3a:bd:e5:a0:ca:67: 30:eb:c0:da:a8:d4:03:1b:2e:36:e4:28:87:30:c1: 23:38:30:68:d9:97:f2:f6:54:97:65:3e:05:2d:57: 83:45:b9:f6:e0:2a:f1:ff:fa:36:a5:fb:be:ae:bf: 43:93:ab:55:0f:c5:93:92:81:6b:d9:76:e4:17:5f: bc:d1:3b:dc:cd:a8:92:ed:3a:3b:00:0d:e8:63:13: 2b:2d:5c:67:a2:3e:4b:c6:2c:79:b3:82:8c:4e:a7: 7d:5d:fc:4d:ed:90:9b:77:75:cd:61:db:b0:82:b2: ee:b5:7d:50:32:2a:3b:14:fc:41:4a:83:7f:97:ea: 52:cb:50:bc:76:67:bf:dc:b2:22:7e:b1:bc:71:42: a5:9b:d0:4d:58:75:0b:47:89:47:1e:4a:3c:eb:eb: 04:61:a4:ff:dc:cd:48:1d:c0:f1:ba:ec:7e:7e:3e: 89:6b:0a:ab:4a:54:2a:23:b6:ee:ca:24:21:3c:20: 5e:ee:51:90:9b:9f:08:d5:c2:a7:d4:97:ff:fb:c0: 26:ea:3a:7d:c1:ff:ff:9e:d1:13:cd:38:b4:00:66: 40:be:2b:3b:0a:bf:86:3d:27:56:f0:d3:41:63:0d: a7:fe:f0:eb:de:3c:da:0e:5b:04:00:9d:16:df:3f: 07:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:97:9E:5D:0C:B2:56:B6:D0:33:72:79:B0:38:37:4B:38:B6:B0:29 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:6c:81:d1:e6:56:b4:49:26:18:6e:a6:bb:c8:fe:0f:dc:fc: 12:08:77:80:8d:ea:d5:02:59:3c:29:40:c0:56:fd:44:ea:3b: b0:ea:02:60:20:da:6a:c3:d0:5c:2b:76:f7:09:16:45:37:0a: 37:a7:f4:3c:2e:ea:fe:b9:97:8b:22:bf:86:b0:b1:c2:cd:91: da:98:91:35:6a:6b:b2:c3:dc:88:c9:76:67:b1:ba:59:b3:ba: 21:c7:12:80:6a:a8:43:42:a1:6b:5b:bf:a3:8c:f9:c1:a3:5f: 6d:74:eb:31:4d:71:a5:45:a6:90:2b:2d:0d:a3:64:df:41:3f: ec:ef:d6:0f:1f:84:bc:bd:2d:0e:c6:58:f9:63:04:40:b0:6d: f0:8d:a8:27:65:c6:7b:6d:22:b4:25:2f:c2:ca:4b:6e:46:78: c9:9e:55:c3:fe:08:9f:7a:d2:50:e1:9b:50:0a:63:76:ce:bc: 6d:a7:bd:a4:db:b3:c0:db:a3:2b:d2:9d:5a:8c:6b:5d:2f:d6: 50:a4:e1:86:35:23:47:94:1d:0b:26:b8:4d:a1:7b:d8:46:2c: 70:63:01:f1:dc:ce:5f:d5:dc:21:e2:96:71:8f:fd:49:29:fb: c1:21:fb:7e:f7:10:d0:6f:7f:c9:6e:e8:d4:7f:98:f5:65:db: 85:33:4b:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUezBxs56CdRoL/5CnkElTOVt8X50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTA4MDUwNzA3MjVaFw0yNTA4MDgxNzU3MjVaMDMxMTAvBgNV BAMTKDBDOTc5RTVEMENCMjU2QjZEMDMzNzI3OUIwMzgzNzRCMzhCNkIwMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj5EqXQs/RRzq95aDKZzDrwNqo 1AMbLjbkKIcwwSM4MGjZl/L2VJdlPgUtV4NFufbgKvH/+jal+76uv0OTq1UPxZOS gWvZduQXX7zRO9zNqJLtOjsADehjEystXGeiPkvGLHmzgoxOp31d/E3tkJt3dc1h 27CCsu61fVAyKjsU/EFKg3+X6lLLULx2Z7/csiJ+sbxxQqWb0E1YdQtHiUceSjzr 6wRhpP/czUgdwPG67H5+PolrCqtKVCojtu7KJCE8IF7uUZCbnwjVwqfUl//7wCbq On3B//+e0RPNOLQAZkC+KzsKv4Y9J1bw00FjDaf+8OvePNoOWwQAnRbfPwcnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDJeeXQyyVrbQM3J5sDg3Szi2sCkwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF5sgdHmVrRJJhhuprvI/g/c/BIId4CN6tUC WTwpQMBW/UTqO7DqAmAg2mrD0FwrdvcJFkU3Cjen9Dwu6v65l4siv4awscLNkdqY kTVqa7LD3IjJdmexulmzuiHHEoBqqENCoWtbv6OM+cGjX2106zFNcaVFppArLQ2j ZN9BP+zv1g8fhLy9LQ7GWPljBECwbfCNqCdlxnttIrQlL8LKS25GeMmeVcP+CJ96 0lDhm1AKY3bOvG2nvaTbs8DboyvSnVqMa10v1lCk4YY1I0eUHQsmuE2he9hGLHBj AfHczl/V3CHilnGP/Ukp+8Eh+373ENBvf8lu6NR/mPVl24UzS04= -----END CERTIFICATE-----Generated at Thu Aug 7 17:35:41 2025 by rpki-client