$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft File: 40F85FB380A012F2BB6D055D914C008674125D67.mft (raw, json) Hash identifier: yxqjZuIk/brD42UVHn1ZOUVgNVi53TvuDtfPKULXdLU= Subject key identifier: B1:22:FC:6F:58:98:1E:D0:B6:31:ED:4F:58:66:2D:0F:FA:D7:26:42 Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 315220B07496BCDE00A4269909AB956D89836F5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft Manifest number: 04EA Signing time: Tue 04 Nov 2025 11:51:26 +0000 Manifest this update: Tue 04 Nov 2025 11:46:26 +0000 Manifest next update: Fri 07 Nov 2025 15:27:26 +0000 Files and hashes: 1: 40F85FB380A012F2BB6D055D914C008674125D67.crl (hash: 4uzYz52wXD5Qo7JUPwjFO9LiP6K/w/6g6qNfRD//EgU=) 2: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (hash: VWZBwU3RWnROUShcpW3L74G67TSj+wYP3BWSlSltpjo=) 3: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (hash: 34Zwk2rQxI6/8F/IkX/shAQb+olpsRnc3h6OinfJJ/w=) 4: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (hash: 778Q5HjUkZ/WVTVzYaqPWOxb/BdNeOK8Id+aBKl0ego=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 15:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:52:20:b0:74:96:bc:de:00:a4:26:99:09:ab:95:6d:89:83:6f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Nov 4 11:46:26 2025 GMT Not After : Nov 7 15:27:26 2025 GMT Subject: CN=B122FC6F58981ED0B631ED4F58662D0FFAD72642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7b:8f:19:f7:45:16:88:87:32:05:09:13:40: c8:25:80:fe:f5:50:bd:d4:e7:29:2d:4e:d5:da:93: 8b:c5:68:03:3e:c0:a1:a3:21:ef:f9:08:e7:f0:79: a8:12:6c:44:96:42:a8:ee:d2:de:c8:c3:46:6c:bd: 3c:e7:3c:c8:fb:e6:6e:1a:e2:63:61:71:3f:96:dd: 24:31:b6:17:0c:ee:6d:5b:54:0d:66:3d:e3:99:39: f6:65:c0:4a:d2:a7:1d:3a:9e:1d:5a:56:1a:77:34: a1:ab:cd:76:8a:e8:54:55:c7:71:fc:c8:6f:e8:82: d8:3f:40:d3:ef:32:83:94:b3:0b:fb:7f:a1:ba:81: 25:c0:00:28:10:f2:e7:c4:3e:de:97:0f:92:32:1f: a5:4f:86:93:86:e4:9a:23:d2:5a:13:88:2d:fa:23: 64:82:d5:83:71:62:a8:f0:fb:ba:e3:14:0f:08:41: 0e:6f:72:8f:7f:1f:3f:8e:ce:b2:ba:6f:c8:b9:86: 8f:89:16:de:df:25:2a:4f:3f:67:79:00:24:3d:e2: fc:b4:1b:31:4b:2f:4a:19:0f:af:77:8e:dc:ef:23: cc:e7:02:2c:ec:6a:93:0b:22:15:9b:18:1c:85:bc: a7:4b:ee:7a:84:78:24:ec:3c:7b:92:15:03:76:35: 77:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:22:FC:6F:58:98:1E:D0:B6:31:ED:4F:58:66:2D:0F:FA:D7:26:42 X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:70:78:9a:70:99:46:c8:af:8f:6b:b4:aa:af:29:dc:26:eb: 1e:5f:ce:c8:4e:22:27:7e:3e:a1:62:ec:c2:f4:f0:ca:b3:c5: 59:55:30:9d:27:0d:46:81:82:e2:4f:c9:43:86:ac:9a:34:2a: c9:74:af:e5:0b:ca:d6:04:7d:06:09:56:17:6d:ca:c8:db:01: da:4c:6f:fa:ad:c9:5b:06:cc:88:b5:a6:56:1b:a0:d4:c8:3e: 56:03:10:b5:b6:69:cc:06:bc:c5:fe:37:53:d2:cf:a3:1c:39: 2c:40:49:7b:8e:6d:6d:e9:b2:82:d4:0f:d8:98:f2:96:4a:b7: 1f:81:6b:fb:77:c7:98:04:33:d2:67:b1:42:4c:2e:f5:48:72: 87:7b:2c:84:bd:fa:55:73:70:fc:d3:17:2a:27:5b:ce:e2:0a: 50:40:c3:fb:fb:dd:ef:73:f7:93:45:90:f9:6c:55:b7:68:aa: 7f:64:ae:d3:dc:77:d9:a5:58:8e:c4:53:44:c4:cc:d2:09:2f: b6:ed:9b:e8:6e:f5:53:0e:c3:94:33:f4:46:67:49:24:11:18: 39:a4:b4:ad:1c:95:f7:fb:37:e7:c3:72:66:f0:7f:93:c3:e9: 8c:80:0e:f6:8d:25:4f:e5:fa:b3:a5:88:53:ec:c2:ea:fa:7e: 29:33:44:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMVIgsHSWvN4ApCaZCauVbYmDb1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNTExMDQxMTQ2MjZaFw0yNTExMDcxNTI3MjZaMDMxMTAvBgNV BAMTKEIxMjJGQzZGNTg5ODFFRDBCNjMxRUQ0RjU4NjYyRDBGRkFENzI2NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCke48Z90UWiIcyBQkTQMglgP71 UL3U5yktTtXak4vFaAM+wKGjIe/5COfweagSbESWQqju0t7Iw0ZsvTznPMj75m4a 4mNhcT+W3SQxthcM7m1bVA1mPeOZOfZlwErSpx06nh1aVhp3NKGrzXaK6FRVx3H8 yG/ogtg/QNPvMoOUswv7f6G6gSXAACgQ8ufEPt6XD5IyH6VPhpOG5Joj0loTiC36 I2SC1YNxYqjw+7rjFA8IQQ5vco9/Hz+OzrK6b8i5ho+JFt7fJSpPP2d5ACQ94vy0 GzFLL0oZD693jtzvI8znAizsapMLIhWbGByFvKdL7nqEeCTsPHuSFQN2NXe1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsSL8b1iYHtC2Me1PWGYtD/rXJkIwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTk3MmY5YTItYjBmZi00Mjk4LThk YTYtZTJlMzgzNDhhMDdiLzAvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAw ODY3NDEyNUQ2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHJweJpwmUbIr49rtKqvKdwm6x5fzshOIid+ PqFi7ML08MqzxVlVMJ0nDUaBguJPyUOGrJo0Ksl0r+ULytYEfQYJVhdtysjbAdpM b/qtyVsGzIi1plYboNTIPlYDELW2acwGvMX+N1PSz6McOSxASXuObW3psoLUD9iY 8pZKtx+Ba/t3x5gEM9JnsUJMLvVIcod7LIS9+lVzcPzTFyonW87iClBAw/v73e9z 95NFkPlsVbdoqn9krtPcd9mlWI7EU0TEzNIJL7btm+hu9VMOw5Qz9EZnSSQRGDmk tK0clff7N+fDcmbwf5PD6YyADvaNJU/l+rOliFPswur6fikzRAM= -----END CERTIFICATE-----Generated at Wed Nov 5 07:48:57 2025 by rpki-client