$ rpki-client -vvf rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.mft File: F840F8B6D332E57EA3DCB867DBB0D85427B24040.mft (raw, json) Hash identifier: TLzkemqyECYm0YZfg5UqoPbK5J/F0InbqOL/F54JcFI= Subject key identifier: 10:1A:AF:F2:77:61:27:CA:00:60:54:7F:D1:1D:0C:E0:CB:04:BB:CA Authority key identifier: F8:40:F8:B6:D3:32:E5:7E:A3:DC:B8:67:DB:B0:D8:54:27:B2:40:40 Certificate issuer: /CN=F840F8B6D332E57EA3DCB867DBB0D85427B24040 Certificate serial: 5D3C05088EE4A6098D0A1C68A5B7B206A9CB6395 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F840F8B6D332E57EA3DCB867DBB0D85427B24040.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.mft Manifest number: 0F Signing time: Tue 12 May 2026 21:24:01 +0000 Manifest this update: Tue 12 May 2026 21:19:01 +0000 Manifest next update: Wed 13 May 2026 23:28:01 +0000 Files and hashes: 1: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: NyzMvcvP5P8597pti0RlOgOJdexX/ZQfgDt+YCdTIKE=) 2: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: /vHPttEy0S/+L0N0xJZEd760O2VDEp7iklZoHe07g/s=) 3: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: aue2+kr7HTRk/tNCSk94pVQ+a17G6VqHTtAotfDji1I=) 4: F840F8B6D332E57EA3DCB867DBB0D85427B24040.crl (hash: yoMnObH8a8bMTRROI1uaaUMFo6WwG2erdkwvBKMOyFk=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.crl rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F840F8B6D332E57EA3DCB867DBB0D85427B24040.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3c:05:08:8e:e4:a6:09:8d:0a:1c:68:a5:b7:b2:06:a9:cb:63:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F840F8B6D332E57EA3DCB867DBB0D85427B24040 Validity Not Before: May 12 21:19:01 2026 GMT Not After : May 13 23:28:01 2026 GMT Subject: CN=101AAFF2776127CA0060547FD11D0CE0CB04BBCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:91:8a:66:24:e1:38:71:e1:2b:ec:53:b4: 45:31:ee:16:83:c1:5e:d1:53:32:11:8b:34:d6:df: 77:d8:ec:ea:a1:46:6d:f8:e7:68:2a:60:a8:08:af: 00:50:e8:17:28:0b:99:c7:30:4f:e8:4e:56:31:57: 2b:cc:ff:57:67:70:ec:0a:3a:a0:db:ee:56:9e:b0: 1c:29:63:62:14:9d:11:a9:1e:7b:83:64:cb:da:56: 6a:8a:6d:af:c8:8f:ec:68:fe:84:39:76:43:55:d3: 60:a9:52:90:ce:06:4d:e4:fa:24:4b:8f:c0:04:e4: 5f:c2:10:50:8c:7a:b9:cc:74:dc:b2:76:78:66:30: f3:3b:bc:df:c5:7a:8e:ec:b1:1c:8a:78:35:ca:f6: 13:b2:7e:23:e3:18:f0:2c:30:4b:9e:f4:03:7f:25: c5:e8:8e:00:2c:08:6b:78:75:c5:0f:93:83:3f:e5: 6e:ae:64:78:e4:6b:0f:6d:11:02:5a:16:95:69:d7: b5:5f:ff:d1:a7:bc:60:37:c9:8a:21:34:d8:97:56: 67:aa:49:c2:42:9f:9c:a0:4b:46:bf:50:39:a6:c2: a8:2c:32:65:f2:98:08:b7:9b:a2:fa:a5:2f:ad:d3: c8:17:9d:17:98:c5:ba:dc:8e:81:08:2d:c3:ee:a9: 75:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:1A:AF:F2:77:61:27:CA:00:60:54:7F:D1:1D:0C:E0:CB:04:BB:CA X509v3 Authority Key Identifier: keyid:F8:40:F8:B6:D3:32:E5:7E:A3:DC:B8:67:DB:B0:D8:54:27:B2:40:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F840F8B6D332E57EA3DCB867DBB0D85427B24040.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/F840F8B6D332E57EA3DCB867DBB0D85427B24040.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e4:22:7a:9f:eb:1a:8e:6f:25:3b:de:cd:79:82:f1:b3:4b:17: e9:17:02:35:fb:bf:d5:3f:e4:44:c6:ba:ef:92:72:3a:f1:e1: 3a:5e:45:12:26:21:1f:a9:e9:7d:6d:d0:9c:6c:dd:d7:42:7b: 0e:57:60:ae:c1:d6:95:5f:92:a5:11:61:df:fb:50:a6:f6:25: bc:d9:60:bc:06:01:0d:43:7c:c5:59:99:5f:67:54:63:d9:ce: ea:5d:5e:36:7c:b7:dd:66:bf:9b:54:dd:9a:0e:de:7e:90:24: 0a:f9:f4:97:56:9e:07:46:db:0e:82:02:89:cf:c7:7b:a6:b3: ed:23:93:83:02:6f:bd:dd:92:67:ce:c2:34:a7:50:f2:4c:18: a2:46:2f:c4:fa:66:b1:99:f7:d2:b4:90:0f:ff:5b:9d:21:00: c4:19:4d:1a:27:59:81:43:1a:9f:87:d9:82:8f:fb:ee:d5:4a: 21:4d:82:5b:39:4b:a4:c3:cf:ad:a0:53:8b:4a:c3:10:0e:27: 87:a0:27:b2:34:39:ec:a5:62:6b:16:66:b4:96:6b:1c:29:b8: cf:53:6b:41:73:4e:6b:1f:87:82:39:3b:b3:fa:21:68:94:24: cb:66:86:4e:ad:68:27:ac:20:77:8d:de:48:09:d9:b7:d7:b8: 66:8f:c9:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXTwFCI7kpgmNChxopbeyBqnLY5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjg0MEY4QjZEMzMyRTU3RUEzRENCODY3REJCMEQ4NTQy N0IyNDA0MDAeFw0yNjA1MTIyMTE5MDFaFw0yNjA1MTMyMzI4MDFaMDMxMTAvBgNV BAMTKDEwMUFBRkYyNzc2MTI3Q0EwMDYwNTQ3RkQxMUQwQ0UwQ0IwNEJCQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+M5GKZiThOHHhK+xTtEUx7haD wV7RUzIRizTW33fY7OqhRm3452gqYKgIrwBQ6BcoC5nHME/oTlYxVyvM/1dncOwK OqDb7laesBwpY2IUnRGpHnuDZMvaVmqKba/Ij+xo/oQ5dkNV02CpUpDOBk3k+iRL j8AE5F/CEFCMernMdNyydnhmMPM7vN/Feo7ssRyKeDXK9hOyfiPjGPAsMEue9AN/ JcXojgAsCGt4dcUPk4M/5W6uZHjkaw9tEQJaFpVp17Vf/9GnvGA3yYohNNiXVmeq ScJCn5ygS0a/UDmmwqgsMmXymAi3m6L6pS+t08gXnReYxbrcjoEILcPuqXXlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEBqv8ndhJ8oAYFR/0R0M4MsEu8owHwYDVR0j BBgwFoAU+ED4ttMy5X6j3Lhn27DYVCeyQEAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA0M2E4ODktYzg2MS00ZDI5LTlkNzctOTIzZDkyN2U3NjM0LzAvRjg0MEY4QjZE MzMyRTU3RUEzRENCODY3REJCMEQ4NTQyN0IyNDA0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GODQwRjhCNkQzMzJFNTdFQTNEQ0I4NjdEQkIwRDg1NDI3QjI0 MDQwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvRjg0MEY4QjZEMzMyRTU3RUEzRENCODY3REJCMEQ4 NTQyN0IyNDA0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOQiep/rGo5vJTvezXmC8bNLF+kXAjX7v9U/ 5ETGuu+Scjrx4TpeRRImIR+p6X1t0Jxs3ddCew5XYK7B1pVfkqURYd/7UKb2JbzZ YLwGAQ1DfMVZmV9nVGPZzupdXjZ8t91mv5tU3ZoO3n6QJAr59JdWngdG2w6CAonP x3ums+0jk4MCb73dkmfOwjSnUPJMGKJGL8T6ZrGZ99K0kA//W50hAMQZTRonWYFD Gp+H2YKP++7VSiFNgls5S6TDz62gU4tKwxAOJ4egJ7I0OeylYmsWZrSWaxwpuM9T a0FzTmsfh4I5O7P6IWiUJMtmhk6taCesIHeN3kgJ2bfXuGaPydA= -----END CERTIFICATE-----Generated at Wed May 13 01:37:04 2026 by rpki-client