$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft File: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft (raw, json) Hash identifier: FQVDrqnUoqO9fNKChldN8h0KLD4CUpAFYw37T/RPYno= Subject key identifier: CF:26:5F:5F:EF:8F:1C:38:3E:06:0A:06:F6:A4:D1:EA:C6:50:56:F3 Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Certificate serial: 5F40C08DFBA26F09A30FB1A76D8C60390A8EDAC1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft Manifest number: BB Signing time: Wed 23 Jul 2025 01:11:59 +0000 Manifest this update: Wed 23 Jul 2025 01:06:59 +0000 Manifest next update: Sat 26 Jul 2025 12:42:59 +0000 Files and hashes: 1: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (hash: VPuK+1+6ePV1CKusC5qXhYaOQr6/W2sAl7gu8K+R3ug=) 2: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl (hash: VcUWKRIPPR05fOn9Eqn14+c7we0GraT7w6hd7MpHNdw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 12:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:40:c0:8d:fb:a2:6f:09:a3:0f:b1:a7:6d:8c:60:39:0a:8e:da:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Validity Not Before: Jul 23 01:06:59 2025 GMT Not After : Jul 26 12:42:59 2025 GMT Subject: CN=CF265F5FEF8F1C383E060A06F6A4D1EAC65056F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d6:be:cc:d9:b0:bc:9a:24:90:aa:30:63:a5: 88:aa:dd:3e:7d:a8:f7:f8:19:33:50:f0:8a:18:de: 1b:0c:4c:c6:a2:0d:2e:fe:6d:13:86:01:dd:81:9b: 31:05:67:d0:c9:96:f3:1e:b2:25:3d:80:b1:92:5e: e3:cb:cb:70:df:7c:9e:b1:ef:87:ca:a6:20:ce:6f: 87:60:38:6a:f1:b1:8a:81:37:e1:2f:4b:9a:a7:62: 1d:77:0f:af:90:4b:89:5c:72:44:7f:17:b4:18:22: 10:b6:db:30:a6:7e:14:17:2a:74:ce:c5:ca:5c:10: 3f:b9:c5:d1:e7:01:36:e3:20:5b:c6:61:77:5a:00: 16:e8:09:f6:76:1e:89:40:9a:11:1c:61:1a:23:46: 6e:9a:78:03:2e:39:29:4a:90:06:96:d2:54:3d:7e: 63:29:45:ed:e5:94:a1:b4:c7:37:40:44:91:6e:ed: dc:f2:c5:90:bd:73:b0:e8:6c:06:d6:78:da:e1:98: de:95:1f:1c:9f:3c:94:95:fb:a1:e4:a8:cd:18:fd: 83:cd:ae:f6:cd:38:db:72:05:c5:25:f0:11:4c:d6: 1c:fc:e5:20:14:9b:77:42:02:25:8a:e3:9b:3a:cd: ad:da:55:ec:39:73:66:eb:e1:ac:20:ca:65:f6:df: 6b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:26:5F:5F:EF:8F:1C:38:3E:06:0A:06:F6:A4:D1:EA:C6:50:56:F3 X509v3 Authority Key Identifier: keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:a8:cf:4c:4c:e8:b2:c2:af:46:88:80:eb:b6:2b:06:10:6e: 45:aa:db:b2:df:bc:84:79:7d:bf:c2:43:74:6f:91:6b:06:d1: b9:10:a3:92:df:b6:5d:29:63:7b:de:c3:c1:69:65:96:14:d7: b0:66:86:a7:ca:4c:24:2e:51:fc:0a:65:2d:12:ee:97:ee:d1: d2:91:40:c3:66:b5:9a:3d:8e:4e:41:24:57:41:20:62:70:d2: a3:c7:f4:99:98:4a:8a:f6:e0:58:3e:82:c0:84:c4:ff:b4:67: db:c9:7a:48:ef:00:a2:5a:0a:43:3f:07:2b:34:b0:07:4f:a6: 0b:fb:6d:77:f6:d9:15:10:d5:1f:1d:b1:c7:ee:bf:f2:3a:ed: 76:88:d2:91:05:2c:e0:5d:15:ce:24:b5:1d:0a:be:d5:b0:19: a4:11:4d:e8:1a:6c:bb:fa:74:84:a5:26:17:5a:cf:9e:b7:b2: 4b:aa:67:e1:5d:eb:df:6f:67:dc:37:b1:2c:a5:e9:be:2d:e8: e9:da:91:43:dd:b7:b6:f7:51:1f:1b:e6:51:52:ee:ac:db:12: e1:58:6c:85:91:a0:11:e9:38:38:d7:59:9e:50:ba:be:4b:d3: 36:17:d1:d8:ca:f0:fb:d8:5b:97:35:98:13:ab:24:76:11:43: d0:a3:00:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX0DAjfuibwmjD7GnbYxgOQqO2sEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4 Rjg1MkJBQTAeFw0yNTA3MjMwMTA2NTlaFw0yNTA3MjYxMjQyNTlaMDMxMTAvBgNV BAMTKENGMjY1RjVGRUY4RjFDMzgzRTA2MEEwNkY2QTREMUVBQzY1MDU2RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01r7M2bC8miSQqjBjpYiq3T59 qPf4GTNQ8IoY3hsMTMaiDS7+bROGAd2BmzEFZ9DJlvMesiU9gLGSXuPLy3DffJ6x 74fKpiDOb4dgOGrxsYqBN+EvS5qnYh13D6+QS4lcckR/F7QYIhC22zCmfhQXKnTO xcpcED+5xdHnATbjIFvGYXdaABboCfZ2HolAmhEcYRojRm6aeAMuOSlKkAaW0lQ9 fmMpRe3llKG0xzdARJFu7dzyxZC9c7DobAbWeNrhmN6VHxyfPJSV+6HkqM0Y/YPN rvbNONtyBcUl8BFM1hz85SAUm3dCAiWK45s6za3aVew5c2br4awgymX232uRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzyZfX++PHDg+BgoG9qTR6sZQVvMwHwYDVR0j BBgwFoAUQJScfJ3Q0/iZaB/y61PknI+FK6owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWRhZTk3Zi0xYWQxLTRiMzQtOGZlOS0xYmM2NWIwOTA4ZjMvMC80MDk0OUM3QzlE RDBEM0Y4OTk2ODFGRjJFQjUzRTQ5QzhGODUyQkFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4Rjg1 MkJBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODlkYWU5N2YtMWFkMS00YjM0LThm ZTktMWJjNjViMDkwOGYzLzAvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0 OUM4Rjg1MkJBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALaoz0xM6LLCr0aIgOu2KwYQbkWq27LfvIR5 fb/CQ3RvkWsG0bkQo5Lftl0pY3vew8FpZZYU17BmhqfKTCQuUfwKZS0S7pfu0dKR QMNmtZo9jk5BJFdBIGJw0qPH9JmYSor24Fg+gsCExP+0Z9vJekjvAKJaCkM/Bys0 sAdPpgv7bXf22RUQ1R8dscfuv/I67XaI0pEFLOBdFc4ktR0KvtWwGaQRTegabLv6 dISlJhdaz563skuqZ+Fd699vZ9w3sSyl6b4t6OnakUPdt7b3UR8b5lFS7qzbEuFY bIWRoBHpODjXWZ5Qur5L0zYX0djK8PvYW5c1mBOrJHYRQ9CjACs= -----END CERTIFICATE-----Generated at Thu Jul 24 04:51:29 2025 by rpki-client