$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft File: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft (raw, json) Hash identifier: spvNIPzbpkMJZaKMMWAYq1c8qFI5ys2WLu0EN6GCeZs= Subject key identifier: A4:FC:EA:FD:EC:4C:AC:2C:E2:51:F4:13:EE:D8:B9:6E:42:12:75:EB Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Certificate serial: 7FA6A81ADB798E7F32A7FD94EE86610E05479A09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft Manifest number: A7 Signing time: Sat 07 Jun 2025 09:31:58 +0000 Manifest this update: Sat 07 Jun 2025 09:26:58 +0000 Manifest next update: Tue 10 Jun 2025 20:34:58 +0000 Files and hashes: 1: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl (hash: oB2d8EDzFlw9TbJmMX1Mf65kVw6BplNfR9gEOkOJgS4=) 2: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (hash: VPuK+1+6ePV1CKusC5qXhYaOQr6/W2sAl7gu8K+R3ug=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:a6:a8:1a:db:79:8e:7f:32:a7:fd:94:ee:86:61:0e:05:47:9a:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Validity Not Before: Jun 7 09:26:58 2025 GMT Not After : Jun 10 20:34:58 2025 GMT Subject: CN=A4FCEAFDEC4CAC2CE251F413EED8B96E421275EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2d:22:46:93:88:14:e2:2e:3a:48:f9:19:df: 46:2e:1a:f8:6f:2f:f7:fb:c6:31:18:2a:95:8c:0c: f6:e1:2e:d1:1b:13:15:39:6e:30:74:94:70:4f:4c: 30:94:f5:3c:b6:9d:55:ba:76:05:2b:20:a0:f1:06: ae:2a:9e:7d:67:ef:b4:c6:2e:c0:5e:62:dd:dc:83: 82:7d:a5:96:9b:1d:7d:8c:4b:7a:94:0b:ae:56:c1: ed:a6:a3:70:ac:e4:2f:a1:43:a6:fd:bc:11:e9:99: 7f:36:b1:2c:c6:e0:02:78:69:99:7b:98:7e:b2:6e: 18:d3:f3:79:73:62:37:8e:d2:da:5d:25:82:29:2f: 27:57:6a:0e:9b:3d:a8:a9:1c:cf:01:a7:92:f8:2c: 98:ec:a1:aa:83:05:33:92:70:96:40:b8:55:75:4b: 24:d0:a1:e2:76:fd:0f:d6:ec:85:76:12:6b:23:58: fb:41:c7:5f:92:62:b4:11:78:5e:95:73:d7:8c:11: 2e:5f:cb:1b:be:0b:b7:42:23:52:8c:bc:48:6d:94: 81:2f:bd:62:8d:49:15:91:89:a5:c0:b2:fe:9f:64: 6d:1d:d7:34:b0:6f:b1:50:e0:90:32:d4:6d:48:82: 97:17:18:12:08:c3:9c:b0:0d:b8:dd:e0:94:6b:a4: ea:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FC:EA:FD:EC:4C:AC:2C:E2:51:F4:13:EE:D8:B9:6E:42:12:75:EB X509v3 Authority Key Identifier: keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:ca:93:63:d9:a6:1f:86:20:d7:04:69:62:1e:d7:be:c3:2f: 88:4c:e7:1d:51:6c:19:3f:ba:25:89:6b:b0:76:ae:d7:8e:73: 7e:4c:5e:54:5d:e3:32:a1:0f:12:d1:c7:af:3e:f6:0c:65:9e: c6:20:88:e9:a3:fd:5b:1b:63:97:36:a7:5e:50:d8:ae:59:a2: d9:a5:ea:2d:69:24:12:47:d0:48:b0:e3:5f:05:11:73:f4:fa: f7:45:06:1c:88:b9:88:86:b6:42:93:55:83:31:c6:32:d9:3d: e3:46:8d:5a:29:cd:a0:4a:cf:9d:cd:48:17:b3:4e:3b:9d:41: 69:ca:30:5e:c1:62:da:d9:b3:44:c4:3c:c5:f0:b4:19:82:a1: 17:53:35:05:0b:e3:e3:d3:77:86:19:40:02:b5:68:2b:3a:ca: a4:99:ad:f8:86:a0:01:ee:7a:a4:a7:b3:4c:f0:0a:56:c2:3c: 42:be:e7:92:e0:64:d7:24:1a:4b:f5:5e:1b:06:2c:b5:0f:5d: 12:d2:5e:c7:10:03:3b:cb:0f:09:49:b0:97:b0:61:12:4e:14: 54:ca:82:d6:d8:96:46:c0:c8:e6:da:46:9d:ad:57:59:e6:9e: 99:4c:67:7d:27:a4:82:19:94:ce:db:33:05:d7:51:cb:a6:b2: 60:97:f3:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf6aoGtt5jn8yp/2U7oZhDgVHmgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4 Rjg1MkJBQTAeFw0yNTA2MDcwOTI2NThaFw0yNTA2MTAyMDM0NThaMDMxMTAvBgNV BAMTKEE0RkNFQUZERUM0Q0FDMkNFMjUxRjQxM0VFRDhCOTZFNDIxMjc1RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5LSJGk4gU4i46SPkZ30YuGvhv L/f7xjEYKpWMDPbhLtEbExU5bjB0lHBPTDCU9Ty2nVW6dgUrIKDxBq4qnn1n77TG LsBeYt3cg4J9pZabHX2MS3qUC65Wwe2mo3Cs5C+hQ6b9vBHpmX82sSzG4AJ4aZl7 mH6ybhjT83lzYjeO0tpdJYIpLydXag6bPaipHM8Bp5L4LJjsoaqDBTOScJZAuFV1 SyTQoeJ2/Q/W7IV2EmsjWPtBx1+SYrQReF6Vc9eMES5fyxu+C7dCI1KMvEhtlIEv vWKNSRWRiaXAsv6fZG0d1zSwb7FQ4JAy1G1IgpcXGBIIw5ywDbjd4JRrpOrNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpPzq/exMrCziUfQT7ti5bkISdeswHwYDVR0j BBgwFoAUQJScfJ3Q0/iZaB/y61PknI+FK6owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWRhZTk3Zi0xYWQxLTRiMzQtOGZlOS0xYmM2NWIwOTA4ZjMvMC80MDk0OUM3QzlE RDBEM0Y4OTk2ODFGRjJFQjUzRTQ5QzhGODUyQkFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4Rjg1 MkJBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODlkYWU5N2YtMWFkMS00YjM0LThm ZTktMWJjNjViMDkwOGYzLzAvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0 OUM4Rjg1MkJBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM7Kk2PZph+GINcEaWIe177DL4hM5x1RbBk/ uiWJa7B2rteOc35MXlRd4zKhDxLRx68+9gxlnsYgiOmj/VsbY5c2p15Q2K5Zotml 6i1pJBJH0Eiw418FEXP0+vdFBhyIuYiGtkKTVYMxxjLZPeNGjVopzaBKz53NSBez TjudQWnKMF7BYtrZs0TEPMXwtBmCoRdTNQUL4+PTd4YZQAK1aCs6yqSZrfiGoAHu eqSns0zwClbCPEK+55LgZNckGkv1XhsGLLUPXRLSXscQAzvLDwlJsJewYRJOFFTK gtbYlkbAyObaRp2tV1nmnplMZ30npIIZlM7bMwXXUcumsmCX81M= -----END CERTIFICATE-----Generated at Sat Jun 7 20:27:38 2025 by rpki-client