$ rpki-client -vvf rpki-rsync.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/40FAE5A8EC712D9E6DB575D52972B69605542EEC.mft File: 40FAE5A8EC712D9E6DB575D52972B69605542EEC.mft (raw, json) Hash identifier: 0vgxik5zRjVkRsu7MxJY4liE3tSlh4Clxg2yykSaO3M= Subject key identifier: 5C:F9:6E:FF:FB:67:BF:B3:C8:3A:87:52:71:5E:87:BC:51:25:81:F6 Authority key identifier: 40:FA:E5:A8:EC:71:2D:9E:6D:B5:75:D5:29:72:B6:96:05:54:2E:EC Certificate issuer: /CN=40FAE5A8EC712D9E6DB575D52972B69605542EEC Certificate serial: 0A48A2898F5560593ED2EAEB6E45E44BD5BE4235 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40FAE5A8EC712D9E6DB575D52972B69605542EEC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/40FAE5A8EC712D9E6DB575D52972B69605542EEC.mft Manifest number: 0F Signing time: Wed 13 May 2026 03:01:56 +0000 Manifest this update: Wed 13 May 2026 02:56:56 +0000 Manifest next update: Thu 14 May 2026 04:11:56 +0000 Files and hashes: 1: 3230322e35382e3137362e302f32312d3234203d3e203234353236.roa (hash: tD3lCHzhXlz3IQI/wt9ZY4yLokS7e0eiL2Sj3ZiczNw=) 2: 40FAE5A8EC712D9E6DB575D52972B69605542EEC.crl (hash: HDtkzbU/1NtpZciHUknLcpn/6viGD/IXrOWxA53tz58=) 3: 323430323a646130303a3a2f33322d3438203d3e203234353236.roa (hash: d7g+2p+xoUWV+MwPYY5ADVkErhAIheoIAIDWV+3KQdA=) 4: 3230322e35382e3136302e302f32302d3234203d3e203234353236.roa (hash: V/iHEE2Ii8SNOk9oIk4Wl3p9bTut1waaMc3vv9GaoqA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/40FAE5A8EC712D9E6DB575D52972B69605542EEC.crl rsync://rpki-rsync.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/40FAE5A8EC712D9E6DB575D52972B69605542EEC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40FAE5A8EC712D9E6DB575D52972B69605542EEC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:48:a2:89:8f:55:60:59:3e:d2:ea:eb:6e:45:e4:4b:d5:be:42:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40FAE5A8EC712D9E6DB575D52972B69605542EEC Validity Not Before: May 13 02:56:56 2026 GMT Not After : May 14 04:11:56 2026 GMT Subject: CN=5CF96EFFFB67BFB3C83A8752715E87BC512581F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b2:ca:cd:6b:71:e4:80:db:e6:2b:09:47:e6: 1a:9c:1f:82:88:b2:a5:a6:49:9f:c9:28:4b:8a:c8: 9c:5a:b6:2a:f4:c7:1c:22:84:dd:53:c7:f2:95:c2: cd:ae:8b:fa:b0:90:67:32:1c:ce:b9:b0:be:ce:e9: 0b:97:8a:86:7e:f8:92:51:c9:97:61:4c:66:1f:2a: 27:1e:92:90:b5:01:0b:af:c7:2c:bf:5f:2c:6a:ea: d9:cd:00:f2:8f:89:23:90:1a:00:0f:c8:dd:cb:9b: 85:35:1f:1c:ad:c4:7c:b5:05:66:a9:6b:8e:f2:a5: 2a:99:10:a3:fd:06:92:de:cb:18:0a:17:b5:d3:72: 5c:ab:d2:76:b0:6a:12:1d:49:ac:dd:78:31:62:05: b8:3a:85:89:e5:73:27:8d:14:b6:c2:61:c2:6b:65: d4:cf:c6:a8:4c:3f:ec:6e:18:dd:30:fe:1f:20:d1: 5e:ef:18:95:c4:ce:a7:3b:6e:71:c5:6b:80:8b:90: 94:23:8b:a8:b8:25:aa:ef:e3:ab:f0:52:17:74:5d: d5:50:c6:58:27:a3:d2:9f:e3:a2:5e:2d:0c:0f:85: 9f:ab:b0:4b:00:16:3c:ac:6f:92:d8:8e:78:c0:ad: 62:3d:15:9d:65:23:4d:db:3c:9d:8e:1a:f7:37:63: c4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F9:6E:FF:FB:67:BF:B3:C8:3A:87:52:71:5E:87:BC:51:25:81:F6 X509v3 Authority Key Identifier: keyid:40:FA:E5:A8:EC:71:2D:9E:6D:B5:75:D5:29:72:B6:96:05:54:2E:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/40FAE5A8EC712D9E6DB575D52972B69605542EEC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40FAE5A8EC712D9E6DB575D52972B69605542EEC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/40FAE5A8EC712D9E6DB575D52972B69605542EEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:3b:0f:49:f3:a4:fb:01:aa:57:e1:67:70:4e:b0:f4:2c:1b: 97:20:b2:47:cf:6f:a7:40:8c:33:d5:7e:66:46:fb:95:16:58: c5:b9:bd:12:6c:b5:45:86:b3:29:16:4d:b8:ab:fc:14:2c:92: 27:84:b8:5a:ac:8c:77:3f:d8:64:f3:2a:a2:c9:68:3a:fc:31: d0:cf:12:4a:fc:b6:94:ca:db:49:67:22:11:40:74:fe:81:2a: 8b:ac:2e:66:26:f6:d2:a3:a5:38:55:04:6b:bf:1a:5f:dc:5c: ee:da:b7:a1:dc:0c:77:90:d0:58:82:0f:d5:8b:51:b4:39:3d: 93:1e:cc:80:10:14:b6:dc:f0:d8:55:05:93:99:a8:4e:1c:04: f1:99:38:60:f1:81:ef:56:30:da:71:c4:2d:8f:5d:a6:87:7e: 7f:ad:68:aa:2d:51:fd:e7:5d:51:32:7e:98:b7:d0:e6:7d:12: 09:5e:60:60:c2:91:a1:a8:84:04:d2:91:49:39:8a:96:0f:1a: 95:7d:b5:53:7a:d6:ca:1d:bc:8c:bb:43:23:dc:e2:cd:0b:17: 11:ae:26:35:1b:e6:a8:c6:53:4d:45:e2:13:3c:43:1a:98:d6: 07:d9:3f:52:61:2e:16:30:02:38:0c:65:dc:ec:6f:2e:2a:45: b0:a4:fd:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCkiiiY9VYFk+0urrbkXkS9W+QjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGQUU1QThFQzcxMkQ5RTZEQjU3NUQ1Mjk3MkI2OTYw NTU0MkVFQzAeFw0yNjA1MTMwMjU2NTZaFw0yNjA1MTQwNDExNTZaMDMxMTAvBgNV BAMTKDVDRjk2RUZGRkI2N0JGQjNDODNBODc1MjcxNUU4N0JDNTEyNTgxRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOssrNa3HkgNvmKwlH5hqcH4KI sqWmSZ/JKEuKyJxatir0xxwihN1Tx/KVws2ui/qwkGcyHM65sL7O6QuXioZ++JJR yZdhTGYfKicekpC1AQuvxyy/Xyxq6tnNAPKPiSOQGgAPyN3Lm4U1HxytxHy1BWap a47ypSqZEKP9BpLeyxgKF7XTclyr0nawahIdSazdeDFiBbg6hYnlcyeNFLbCYcJr ZdTPxqhMP+xuGN0w/h8g0V7vGJXEzqc7bnHFa4CLkJQji6i4Jarv46vwUhd0XdVQ xlgno9Kf46JeLQwPhZ+rsEsAFjysb5LYjnjArWI9FZ1lI03bPJ2OGvc3Y8TFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXPlu//tnv7PIOodScV6HvFElgfYwHwYDVR0j BBgwFoAUQPrlqOxxLZ5ttXXVKXK2lgVULuwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM1MTI5ZTQtMjMyOC00M2QyLWE0NTgtOWQzODI5NjE0ODE1LzAvNDBGQUU1QThF QzcxMkQ5RTZEQjU3NUQ1Mjk3MkI2OTYwNTU0MkVFQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MEZBRTVBOEVDNzEyRDlFNkRCNTc1RDUyOTcyQjY5NjA1NTQy RUVDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjM1MTI5ZTQtMjMyOC00M2QyLWE0 NTgtOWQzODI5NjE0ODE1LzAvNDBGQUU1QThFQzcxMkQ5RTZEQjU3NUQ1Mjk3MkI2 OTYwNTU0MkVFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAM7D0nzpPsBqlfhZ3BOsPQsG5cgskfPb6dA jDPVfmZG+5UWWMW5vRJstUWGsykWTbir/BQskieEuFqsjHc/2GTzKqLJaDr8MdDP Ekr8tpTK20lnIhFAdP6BKousLmYm9tKjpThVBGu/Gl/cXO7at6HcDHeQ0FiCD9WL UbQ5PZMezIAQFLbc8NhVBZOZqE4cBPGZOGDxge9WMNpxxC2PXaaHfn+taKotUf3n XVEyfpi30OZ9EgleYGDCkaGohATSkUk5ipYPGpV9tVN61sodvIy7QyPc4s0LFxGu JjUb5qjGU01F4hM8QxqY1gfZP1JhLhYwAjgMZdzsby4qRbCk/bI= -----END CERTIFICATE-----Generated at Wed May 13 05:43:26 2026 by rpki-client