$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft File: 40F85FB380A012F2BB6D055D914C008674125D67.mft (raw, json) Hash identifier: TSoAepp73/eMkBq56CWtepUbQRujIXovh3CV7ZjsYdM= Subject key identifier: F0:E4:22:B5:27:7E:D6:45:B8:68:2F:F7:D1:FF:65:42:CC:72:B2:8C Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 13954907EC5F5783F0ACC9C16A7806C5700C24B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft Manifest number: 04C3 Signing time: Thu 07 Aug 2025 20:01:31 +0000 Manifest this update: Thu 07 Aug 2025 19:56:31 +0000 Manifest next update: Mon 11 Aug 2025 06:19:31 +0000 Files and hashes: 1: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (hash: VWZBwU3RWnROUShcpW3L74G67TSj+wYP3BWSlSltpjo=) 2: 40F85FB380A012F2BB6D055D914C008674125D67.crl (hash: iaUZZzWf/39TmBRaaM2U3wxk+b9OB3RzNuI+Eto7Ew4=) 3: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (hash: 778Q5HjUkZ/WVTVzYaqPWOxb/BdNeOK8Id+aBKl0ego=) 4: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (hash: 34Zwk2rQxI6/8F/IkX/shAQb+olpsRnc3h6OinfJJ/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 06:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:95:49:07:ec:5f:57:83:f0:ac:c9:c1:6a:78:06:c5:70:0c:24:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Aug 7 19:56:31 2025 GMT Not After : Aug 11 06:19:31 2025 GMT Subject: CN=F0E422B5277ED645B8682FF7D1FF6542CC72B28C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:d3:2f:d3:13:dc:e3:ad:32:c2:45:8e:8b: 7c:2b:85:a7:95:a8:00:77:c1:25:16:1f:a4:9d:39: dd:c8:05:32:0e:dc:52:57:e4:58:25:02:d9:e0:c2: 69:cc:65:da:3d:cc:4e:8e:48:4e:3f:12:cb:41:f2: 92:62:f0:24:26:2b:47:3a:9a:61:93:1e:19:02:60: 35:bd:95:ce:2b:88:94:f7:f4:1d:2f:41:9e:66:94: b1:b9:09:8a:1e:af:db:4d:73:4f:52:23:70:fc:8d: 3e:0f:23:62:da:c8:d3:ec:a9:a3:73:e0:62:d3:30: 7b:dc:a1:3d:b2:51:8c:8c:59:dd:bb:26:d1:6e:e4: b2:d1:24:be:be:e7:f8:d1:18:f4:09:c2:4e:11:e5: 48:77:26:f7:b4:42:6c:36:ad:b6:95:a6:0f:41:7e: 76:20:b8:7d:ae:1a:3f:92:76:87:77:7f:14:d6:7e: 0a:18:5b:6d:c6:67:c4:1a:c2:4d:97:4a:27:70:62: bf:16:79:49:1a:11:2f:b4:6e:c4:84:98:55:da:d0: 41:f8:6a:5f:01:5f:20:0f:11:5b:de:d0:11:88:41: b0:5e:85:e0:d3:f2:fc:1b:92:09:b7:84:9c:63:87: 57:24:7b:96:eb:4f:26:45:f8:83:66:fa:80:a1:23: 6e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E4:22:B5:27:7E:D6:45:B8:68:2F:F7:D1:FF:65:42:CC:72:B2:8C X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:e1:f9:3e:d8:c5:37:67:de:d9:41:3d:71:8a:d1:b7:79:7d: 4f:58:07:50:d8:57:53:15:2a:17:7e:e3:14:0d:9d:68:05:3f: ab:f8:89:5d:73:78:e1:4a:7e:27:dc:ab:99:44:3b:d2:00:4a: 0b:0f:f7:67:bf:c3:2d:40:ae:4c:7b:ad:52:03:62:e1:25:40: 0a:e3:a4:99:ac:41:c1:06:0b:3c:c5:cd:e1:fa:70:3e:ee:fc: d7:76:ef:e1:7b:1a:67:cc:f6:86:2e:00:6f:23:e3:3f:15:5f: 46:bb:5e:85:9a:da:4d:7d:63:bb:de:d9:da:65:21:dc:49:08: 42:f4:4a:ec:12:e5:20:0b:f1:69:38:46:b8:00:c2:fa:9b:50: 5d:6e:40:fc:72:62:ff:a5:da:17:44:dc:b9:ef:6f:11:e5:65: f3:c0:ca:6b:83:77:cf:53:ee:08:22:4d:33:e3:62:c0:9c:39: 92:7e:ac:a6:98:9c:73:04:d6:53:04:98:16:99:cb:d9:70:4f: c9:22:01:6e:cd:7b:9f:ff:81:6a:8b:0b:67:cb:e5:c0:76:25: 82:23:ff:a8:f6:4d:ae:3c:6e:02:90:4f:bc:9b:98:1c:b1:b1: 20:74:67:77:8d:dc:38:75:a5:e7:d4:c2:c5:be:b1:1c:b3:ed: 81:89:f7:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE5VJB+xfV4PwrMnBangGxXAMJLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNTA4MDcxOTU2MzFaFw0yNTA4MTEwNjE5MzFaMDMxMTAvBgNV BAMTKEYwRTQyMkI1Mjc3RUQ2NDVCODY4MkZGN0QxRkY2NTQyQ0M3MkIyOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7mtMv0xPc460ywkWOi3wrhaeV qAB3wSUWH6SdOd3IBTIO3FJX5FglAtngwmnMZdo9zE6OSE4/EstB8pJi8CQmK0c6 mmGTHhkCYDW9lc4riJT39B0vQZ5mlLG5CYoer9tNc09SI3D8jT4PI2LayNPsqaNz 4GLTMHvcoT2yUYyMWd27JtFu5LLRJL6+5/jRGPQJwk4R5Uh3Jve0Qmw2rbaVpg9B fnYguH2uGj+Sdod3fxTWfgoYW23GZ8Qawk2XSidwYr8WeUkaES+0bsSEmFXa0EH4 al8BXyAPEVve0BGIQbBeheDT8vwbkgm3hJxjh1cke5brTyZF+INm+oChI27nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8OQitSd+1kW4aC/30f9lQsxysowwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTk3MmY5YTItYjBmZi00Mjk4LThk YTYtZTJlMzgzNDhhMDdiLzAvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAw ODY3NDEyNUQ2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGXh+T7YxTdn3tlBPXGK0bd5fU9YB1DYV1MV Khd+4xQNnWgFP6v4iV1zeOFKfifcq5lEO9IASgsP92e/wy1Arkx7rVIDYuElQArj pJmsQcEGCzzFzeH6cD7u/Nd27+F7GmfM9oYuAG8j4z8VX0a7XoWa2k19Y7ve2dpl IdxJCEL0SuwS5SAL8Wk4RrgAwvqbUF1uQPxyYv+l2hdE3LnvbxHlZfPAymuDd89T 7ggiTTPjYsCcOZJ+rKaYnHME1lMEmBaZy9lwT8kiAW7Ne5//gWqLC2fL5cB2JYIj /6j2Ta48bgKQT7ybmByxsSB0Z3eN3Dh1pefUwsW+sRyz7YGJ92c= -----END CERTIFICATE-----Generated at Sat Aug 9 20:40:17 2025 by rpki-client