$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: FkKqwtOAAPDkxZVFZWJRw7zk7Cyva6AfwYxhP2Icuuk= Subject key identifier: 14:2F:7B:AA:73:3B:D0:AC:03:D8:68:90:D9:C6:4A:96:51:5E:EE:64 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 224A8E965FDE4618385A0E9E0DE2BF7AF57A99BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 035D Signing time: Wed 25 Mar 2026 17:30:57 +0000 Manifest this update: Wed 25 Mar 2026 17:25:57 +0000 Manifest next update: Sat 28 Mar 2026 19:47:57 +0000 Files and hashes: 1: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: o+lz7dQtRFnFa5pjx9AH6SZQ2fd4zwcTSlO4dfMjEws=) 2: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: gIT/zHc/1K0b1PiVmUPHw03fHkctz7eSoTHWuLp5tjo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 19:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4a:8e:96:5f:de:46:18:38:5a:0e:9e:0d:e2:bf:7a:f5:7a:99:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Mar 25 17:25:57 2026 GMT Not After : Mar 28 19:47:57 2026 GMT Subject: CN=142F7BAA733BD0AC03D86890D9C64A96515EEE64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:30:40:d4:c5:57:d2:bf:57:bb:ed:d1:ed:3e: 2c:9f:df:2b:2c:48:5b:4c:ec:ad:3c:37:be:c0:a2: 41:58:8b:d6:26:37:54:2d:39:e0:e3:82:18:e2:fa: e7:f5:c6:97:4a:69:4b:66:0f:df:6d:89:d4:24:3e: ab:e7:16:a0:5b:23:6a:9e:b5:1c:87:79:48:26:c7: fb:a4:e2:87:6e:ad:a5:bf:3d:d5:aa:9e:14:b1:68: 09:1c:ab:2e:f5:2a:9e:9a:de:48:4c:89:a0:f2:17: 17:b8:3b:94:11:3b:f9:5a:7d:49:fe:32:c6:a4:22: 68:11:a3:26:d3:74:1d:ab:b5:74:26:f2:a4:1a:23: 0e:61:7c:1e:fb:5f:03:18:73:22:e9:40:d5:21:c3: 23:e7:4f:35:40:3b:ee:12:40:7a:d6:95:5c:c6:d4: ef:26:3c:b8:79:f4:c5:dc:5a:4e:76:0d:51:92:04: 14:b5:a7:4e:86:3a:57:ec:77:90:27:e4:a7:69:f1: ae:7a:eb:38:a7:b9:53:4a:f2:a8:95:08:bf:87:a5: 3b:ec:b7:54:88:d6:17:60:a0:51:3b:df:70:47:06: 24:4d:cb:ae:86:50:ca:c3:06:40:49:e3:d2:aa:6b: 22:5a:35:14:41:a5:93:8c:1c:69:a6:40:01:73:b8: a6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2F:7B:AA:73:3B:D0:AC:03:D8:68:90:D9:C6:4A:96:51:5E:EE:64 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:13:bd:84:6a:19:8c:2c:19:d6:95:5d:70:ec:99:2e:ab:6b: e1:d7:44:12:a2:4c:81:c2:35:33:d1:77:f7:19:f1:67:ad:f8: c0:27:b9:0f:e8:7e:81:31:45:ac:72:19:c4:a0:23:a5:56:e0: fa:82:de:a8:e6:a5:9d:ca:e3:62:93:5c:24:de:d0:b3:4e:6d: a2:a2:b2:59:7e:56:2e:14:2a:e9:ce:7d:bd:84:81:c5:ca:70: e2:eb:2d:1f:73:4b:ec:6a:1e:99:f4:7e:3c:cd:54:aa:fd:c7: b1:0f:34:9d:c3:8a:3b:48:c4:31:06:02:21:cc:d3:42:76:10: 43:4f:5a:9d:b9:2b:18:09:88:3b:c5:8e:76:03:b6:40:f3:a9: 3a:e3:91:4e:0d:7d:65:50:3d:3b:d3:ff:f7:22:e9:f2:2b:4a: 31:8f:5c:72:00:87:b6:5a:58:36:cc:dd:90:3d:95:00:ab:de: 0e:62:96:6b:63:e5:3b:87:89:39:19:87:5a:ae:be:9a:20:ed: e2:c6:10:95:26:95:8a:d7:0f:26:1d:6f:c3:e4:ac:5a:b6:71: 46:ec:7c:ed:bc:02:85:2b:c1:6c:1b:4f:c2:a0:72:97:8b:46: 27:7b:7f:3b:da:5f:31:c3:a6:88:46:0b:6d:35:08:6d:9e:24: 81:99:fa:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIkqOll/eRhg4Wg6eDeK/evV6mbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNjAzMjUxNzI1NTdaFw0yNjAzMjgxOTQ3NTdaMDMxMTAvBgNV BAMTKDE0MkY3QkFBNzMzQkQwQUMwM0Q4Njg5MEQ5QzY0QTk2NTE1RUVFNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcMEDUxVfSv1e77dHtPiyf3yss SFtM7K08N77AokFYi9YmN1QtOeDjghji+uf1xpdKaUtmD99tidQkPqvnFqBbI2qe tRyHeUgmx/uk4oduraW/PdWqnhSxaAkcqy71Kp6a3khMiaDyFxe4O5QRO/lafUn+ MsakImgRoybTdB2rtXQm8qQaIw5hfB77XwMYcyLpQNUhwyPnTzVAO+4SQHrWlVzG 1O8mPLh59MXcWk52DVGSBBS1p06GOlfsd5An5Kdp8a566zinuVNK8qiVCL+HpTvs t1SI1hdgoFE733BHBiRNy66GUMrDBkBJ49KqayJaNRRBpZOMHGmmQAFzuKb/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFC97qnM70KwD2GiQ2cZKllFe7mQwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHcTvYRqGYwsGdaVXXDsmS6ra+HXRBKiTIHC NTPRd/cZ8Wet+MAnuQ/ofoExRaxyGcSgI6VW4PqC3qjmpZ3K42KTXCTe0LNObaKi sll+Vi4UKunOfb2EgcXKcOLrLR9zS+xqHpn0fjzNVKr9x7EPNJ3DijtIxDEGAiHM 00J2EENPWp25KxgJiDvFjnYDtkDzqTrjkU4NfWVQPTvT//ci6fIrSjGPXHIAh7Za WDbM3ZA9lQCr3g5ilmtj5TuHiTkZh1quvpog7eLGEJUmlYrXDyYdb8PkrFq2cUbs fO28AoUrwWwbT8KgcpeLRid7fzvaXzHDpohGC201CG2eJIGZ+uc= -----END CERTIFICATE-----Generated at Thu Mar 26 16:43:56 2026 by rpki-client