$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft File: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft (raw, json) Hash identifier: eweFDgzgI4rfi+nNOUemLEqBm7rGHswTv613FOWBlqM= Subject key identifier: B2:4E:36:36:FE:7A:8A:0A:3B:B2:4A:04:48:0B:8A:66:B8:42:E2:4B Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 1176698A20CE6FAAFC2B7F0E6E547EF0D6E50986 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft Manifest number: 024E Signing time: Wed 25 Mar 2026 22:11:37 +0000 Manifest this update: Wed 25 Mar 2026 22:06:37 +0000 Manifest next update: Sat 28 Mar 2026 22:56:37 +0000 Files and hashes: 1: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (hash: hy+/jpVeqW5ZdBPpsEQxih0c4zQVAJjPaRw4KAPp/Ro=) 2: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl (hash: fmict1tVDoAl55ClPhCDLJbVhwhmirqdZjjG6OvHfPg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:76:69:8a:20:ce:6f:aa:fc:2b:7f:0e:6e:54:7e:f0:d6:e5:09:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: Mar 25 22:06:37 2026 GMT Not After : Mar 28 22:56:37 2026 GMT Subject: CN=B24E3636FE7A8A0A3BB24A04480B8A66B842E24B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:75:e9:aa:87:bb:bc:ef:5b:f2:98:3a:49:91: 42:94:31:bf:12:b2:3c:cb:bc:1f:78:96:c7:1d:3e: c4:2c:a1:86:c3:a9:8d:f5:72:05:37:94:83:8b:ba: 9e:4a:7d:cc:bb:b1:9e:c5:f8:83:bd:b0:14:84:4f: e4:77:40:bc:02:54:88:59:60:21:d2:ce:8d:73:04: 1a:f4:13:3d:7b:10:da:f7:d2:52:1f:1b:64:a0:a0: ca:4a:c3:0c:bd:d7:a4:18:57:87:ef:12:df:09:48: c7:a0:c9:df:c2:2b:7d:19:11:f5:94:2f:0b:b4:23: 87:35:fe:a2:0e:0b:e4:73:5d:99:f6:4d:2e:df:8b: 3d:29:ea:f6:27:96:02:c8:90:ae:35:61:7b:b2:77: 8e:de:fa:ff:fc:d2:f0:65:f5:8c:07:83:b3:ef:01: d5:61:d9:dc:da:d5:f0:12:c6:21:c3:7f:8a:d9:04: 94:53:56:0d:dc:09:2d:06:77:a6:82:90:75:19:7d: 3f:ed:82:ef:04:e1:b9:8d:ce:4f:f4:40:2d:1d:8c: f2:85:79:3a:7c:58:f8:f4:58:58:76:35:c9:6d:2f: fb:61:d4:f0:ef:f1:47:80:5e:df:eb:95:bc:f0:d5: 34:b6:fd:e2:a8:9d:37:1b:e1:26:ce:e9:3a:11:b6: c2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:36:36:FE:7A:8A:0A:3B:B2:4A:04:48:0B:8A:66:B8:42:E2:4B X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a1:53:e1:e1:19:ed:35:11:bb:3a:71:c2:37:a0:af:a9:84: 7c:b2:53:42:e6:d2:46:48:f7:b6:45:ae:33:13:c3:e3:2f:08: 4d:97:2b:a8:29:ba:fb:61:25:ed:dc:b1:1b:22:a3:b0:15:76: eb:d1:79:c4:4d:59:0b:30:e7:51:df:b3:5d:8a:04:61:ea:a5: bb:af:c1:32:aa:ac:eb:e3:70:00:fb:8f:41:0e:f2:2f:bc:eb: 0a:33:5f:77:f6:12:dc:be:f9:16:05:f4:a0:08:af:65:74:5e: be:0e:d1:f4:b8:d3:f3:c9:87:34:c0:f1:b8:c2:f4:62:4f:e7: 82:55:18:55:47:ab:51:54:1f:1f:10:11:d7:85:15:76:e6:5c: 53:9b:37:37:39:ac:08:80:31:7f:d3:b3:94:c3:a1:27:32:f2: ad:b0:c4:4e:56:61:55:53:70:01:38:60:06:e0:9d:69:17:2d: 3b:9f:f8:73:f6:69:c4:8f:bc:c6:db:e7:18:01:a7:d2:da:77: 55:8f:4a:50:8a:50:ae:20:0a:e1:4b:38:83:f6:9f:24:4f:73: c2:16:97:01:00:0b:4e:d5:4e:05:61:9f:7a:7f:61:bb:cb:bd: 62:cb:aa:2c:6c:44:09:7a:ed:ab:1e:5e:58:99:25:81:52:e3: 45:90:91:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEXZpiiDOb6r8K38OblR+8NblCYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNjAzMjUyMjA2MzdaFw0yNjAzMjgyMjU2MzdaMDMxMTAvBgNV BAMTKEIyNEUzNjM2RkU3QThBMEEzQkIyNEEwNDQ4MEI4QTY2Qjg0MkUyNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjdemqh7u871vymDpJkUKUMb8S sjzLvB94lscdPsQsoYbDqY31cgU3lIOLup5Kfcy7sZ7F+IO9sBSET+R3QLwCVIhZ YCHSzo1zBBr0Ez17ENr30lIfG2SgoMpKwwy916QYV4fvEt8JSMegyd/CK30ZEfWU Lwu0I4c1/qIOC+RzXZn2TS7fiz0p6vYnlgLIkK41YXuyd47e+v/80vBl9YwHg7Pv AdVh2dza1fASxiHDf4rZBJRTVg3cCS0Gd6aCkHUZfT/tgu8E4bmNzk/0QC0djPKF eTp8WPj0WFh2NcltL/th1PDv8UeAXt/rlbzw1TS2/eKonTcb4SbO6ToRtsJRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsk42Nv56igo7skoESAuKZrhC4kswHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGRmNDI5NmYtMWNhOS00NWZjLWJi MDgtODQxMzVlYjAwZmE3LzAvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENE QTE5MTVBQzc2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6hU+HhGe01Ebs6ccI3oK+phHyyU0Lm0kZI 97ZFrjMTw+MvCE2XK6gpuvthJe3csRsio7AVduvRecRNWQsw51Hfs12KBGHqpbuv wTKqrOvjcAD7j0EO8i+86wozX3f2Ety++RYF9KAIr2V0Xr4O0fS40/PJhzTA8bjC 9GJP54JVGFVHq1FUHx8QEdeFFXbmXFObNzc5rAiAMX/Ts5TDoScy8q2wxE5WYVVT cAE4YAbgnWkXLTuf+HP2acSPvMbb5xgBp9Lad1WPSlCKUK4gCuFLOIP2nyRPc8IW lwEAC07VTgVhn3p/YbvLvWLLqixsRAl67aseXliZJYFS40WQkUg= -----END CERTIFICATE-----Generated at Thu Mar 26 12:55:28 2026 by rpki-client