$ rpki-client -vvf repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft File: 5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft (raw, json) Hash identifier: V6LUNv4RvKeF0zkDtqnHIcer+435fb6a6EvqkcpkW1M= Subject key identifier: 5A:9D:5D:01:5A:81:69:FD:71:9C:21:37:68:32:CA:80:89:C0:33:95 Authority key identifier: 5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B Certificate issuer: /CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B Certificate serial: 5DFE7BAA45625D914B60809B35AFAA33BFF4FC9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft Manifest number: 021B Signing time: Sat 19 Jul 2025 21:42:17 +0000 Manifest this update: Sat 19 Jul 2025 21:37:17 +0000 Manifest next update: Wed 23 Jul 2025 03:46:17 +0000 Files and hashes: 1: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (hash: 4BUtx10alv/ZZ9FJolZJ3I8WhlB5v1F5iKW6alQrr7c=) 2: 5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl (hash: WQNKLY3GlgMXaKzt4z/LC6Exm0dhhJ4AvVqOMVOqeTg=) 3: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (hash: QzihEc5MkFa7NqybYwRpohd7XvTO9rPruJzvUalzVM8=) 4: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (hash: 8hPXkuW34xkK66/r5oL+jYYUmOueTjKMrZh36goENDw=) 5: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (hash: i4XCxm32VCNZ/zacmmSjbAzxATWwcS43fZzejb3pvRo=) 6: 3130332e3138342e31382e302f32342d3234203d3e203438343635.roa (hash: 0IGopCvXSRXbCg3kz6wjCn1/1Kczl4zkhji2/R4GIz4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 03:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:fe:7b:aa:45:62:5d:91:4b:60:80:9b:35:af:aa:33:bf:f4:fc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B Validity Not Before: Jul 19 21:37:17 2025 GMT Not After : Jul 23 03:46:17 2025 GMT Subject: CN=5A9D5D015A8169FD719C21376832CA8089C03395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:55:98:c4:65:e5:d1:e6:52:86:cc:dc:9d: c4:30:1e:55:35:81:30:68:ff:f6:ac:ec:08:d6:35: da:5b:6e:d5:a4:81:9c:43:a1:87:e7:9b:c2:cf:a0: 59:6c:09:e7:70:b3:2e:cb:be:1d:ea:d1:a8:12:9f: 3d:eb:11:6f:29:ed:8b:69:99:0c:72:f7:78:3c:03: 3c:6d:42:de:76:5a:81:e1:56:ca:aa:c9:91:61:5f: 48:00:3f:d8:0c:12:a0:94:c3:9d:44:10:a6:9e:29: 2c:a9:15:02:c4:0e:74:11:c2:f7:60:9d:e0:59:bd: a9:5d:5a:a0:7a:29:6a:37:22:7c:e6:59:7d:17:37: e8:fb:fa:f2:de:5d:b0:c1:30:87:d9:0e:ee:fe:89: 14:fc:a0:a1:08:b2:9b:4f:93:50:77:02:99:ed:12: c2:12:8c:d1:77:df:25:c8:c6:81:e3:a3:e0:d7:6b: e9:66:0b:95:85:43:a0:b9:ca:39:71:11:01:1b:58: 9a:33:47:89:cf:13:4c:30:e7:a9:2c:21:75:f7:d3: 94:a0:b6:40:71:ee:a4:3c:e6:1e:c0:2a:50:12:a5: 22:46:4a:d0:1e:5f:f9:d2:31:25:01:01:42:dc:a9: 91:ce:f4:be:ed:87:78:c6:fc:7d:58:44:3c:18:6f: d2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9D:5D:01:5A:81:69:FD:71:9C:21:37:68:32:CA:80:89:C0:33:95 X509v3 Authority Key Identifier: keyid:5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:16:ec:37:b7:5e:d3:2c:e4:72:70:46:f2:eb:ca:5a:93:7b: 96:9e:40:b1:b5:73:05:1e:df:14:d0:17:37:d0:d3:eb:b9:70: 80:ba:98:99:56:aa:09:5b:07:a4:1f:a7:b8:40:76:b0:c5:75: e4:ca:cb:27:c4:de:09:04:d5:bf:56:c3:b2:77:86:f9:11:69: 03:07:9c:cd:b4:5b:df:bd:a5:e8:92:9f:a6:e3:74:6b:2d:7b: 09:84:c9:ba:0a:ee:8a:0a:b9:84:de:e4:01:da:ad:51:35:46: da:d2:01:62:88:f9:90:63:8b:6e:f1:fe:1b:6c:a7:aa:dc:c5: 8a:ce:a4:f2:a0:46:92:dd:bd:08:b1:72:cf:38:b9:fe:7e:b9: 22:d6:33:ae:5f:92:55:61:3c:3a:27:2a:8d:41:21:cf:be:2e: 45:94:55:37:32:35:fa:df:e9:43:97:12:51:27:24:a9:9c:0b: 06:c2:6b:3b:94:f6:bf:01:ac:57:5e:ab:1c:59:d3:9f:24:b9: c5:1c:00:e5:a7:2e:85:79:52:ef:5c:40:3e:f7:68:9c:7b:58: ec:31:92:c0:82:97:16:8d:69:66:3b:66:e4:f5:25:4b:6b:76: bd:0a:3e:5c:04:f6:a3:07:b7:ab:1c:14:6a:0a:d8:b8:12:8b: 5f:82:3e:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXf57qkViXZFLYICbNa+qM7/0/JowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIyMkY5 MDg5NTUyQjAeFw0yNTA3MTkyMTM3MTdaFw0yNTA3MjMwMzQ2MTdaMDMxMTAvBgNV BAMTKDVBOUQ1RDAxNUE4MTY5RkQ3MTlDMjEzNzY4MzJDQTgwODlDMDMzOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl/FWYxGXl0eZShszcncQwHlU1 gTBo//as7AjWNdpbbtWkgZxDoYfnm8LPoFlsCedwsy7Lvh3q0agSnz3rEW8p7Ytp mQxy93g8AzxtQt52WoHhVsqqyZFhX0gAP9gMEqCUw51EEKaeKSypFQLEDnQRwvdg neBZvaldWqB6KWo3InzmWX0XN+j7+vLeXbDBMIfZDu7+iRT8oKEIsptPk1B3Apnt EsISjNF33yXIxoHjo+DXa+lmC5WFQ6C5yjlxEQEbWJozR4nPE0ww56ksIXX305Sg tkBx7qQ85h7AKlASpSJGStAeX/nSMSUBAULcqZHO9L7th3jG/H1YRDwYb9IJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWp1dAVqBaf1xnCE3aDLKgInAM5UwHwYDVR0j BBgwFoAUWkD9GeLdU4DLblAvFtsiL5CJVSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGQ5MTRlZi0wYjFmLTQ5MGItODA4ZC1hMjdiODNmZjlhM2UvMC81QTQwRkQxOUUy REQ1MzgwQ0I2RTUwMkYxNkRCMjIyRjkwODk1NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIyMkY5MDg5 NTUyQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjBkOTE0ZWYtMGIxZi00OTBiLTgw OGQtYTI3YjgzZmY5YTNlLzAvNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIy MkY5MDg5NTUyQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADkW7De3XtMs5HJwRvLrylqTe5aeQLG1cwUe 3xTQFzfQ0+u5cIC6mJlWqglbB6Qfp7hAdrDFdeTKyyfE3gkE1b9Ww7J3hvkRaQMH nM20W9+9peiSn6bjdGstewmEyboK7ooKuYTe5AHarVE1RtrSAWKI+ZBji27x/hts p6rcxYrOpPKgRpLdvQixcs84uf5+uSLWM65fklVhPDonKo1BIc++LkWUVTcyNfrf 6UOXElEnJKmcCwbCazuU9r8BrFdeqxxZ058kucUcAOWnLoV5Uu9cQD73aJx7WOwx ksCClxaNaWY7ZuT1JUtrdr0KPlwE9qMHt6scFGoK2LgSi1+CPpc= -----END CERTIFICATE-----Generated at Sun Jul 20 21:24:21 2025 by rpki-client