$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: qSQ2t7Xfh7T9n/tce1MJm2R2RigY1t5m8mR1Z573CkY= Subject key identifier: 31:10:96:71:12:C3:17:27:19:9A:4F:AA:58:42:01:B9:C6:23:49:8C Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 4268EC520EE5F6FBBB428E0E2C0B56C65ECCF6BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 02C1 Signing time: Thu 16 Apr 2026 18:02:51 +0000 Manifest this update: Thu 16 Apr 2026 17:57:51 +0000 Manifest next update: Mon 20 Apr 2026 00:43:51 +0000 Files and hashes: 1: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) 2: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 3: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: NASKG/oRh2KZWb5wojwUcO29GPn4UC8En4Sjma0LRY0=) 4: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:68:ec:52:0e:e5:f6:fb:bb:42:8e:0e:2c:0b:56:c6:5e:cc:f6:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Apr 16 17:57:51 2026 GMT Not After : Apr 20 00:43:51 2026 GMT Subject: CN=3110967112C31727199A4FAA584201B9C623498C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:be:ac:de:ab:6b:01:f1:5c:37:ba:e5:d1: 7d:44:d0:36:7e:45:4d:0a:ea:d5:c9:6d:b3:12:50: 79:18:9e:fc:1e:f0:8c:33:30:86:7c:42:1d:23:21: 92:ee:fa:a3:81:c4:a0:15:40:fa:d2:9b:ad:b7:b8: df:8a:da:44:46:e5:e2:4a:b2:e2:cd:41:f3:2d:f9: 8c:c4:ee:a8:44:d0:9d:a0:7c:e0:f8:61:3a:a3:2f: 6e:e6:ff:79:0e:f5:b0:1b:a2:3a:b5:d1:fc:20:77: 10:ed:cb:e0:c6:b2:c3:5b:fd:b9:d3:89:47:c8:95: b8:5f:47:ab:7b:2c:a0:86:f7:09:ef:a6:ff:d9:75: 30:ba:e3:1e:3e:3e:bb:9e:1a:81:f0:ec:8a:12:67: d2:61:13:0b:53:19:47:28:01:65:83:4c:08:de:82: 34:77:5b:13:51:c4:21:94:49:cf:35:e5:f7:fb:67: 95:bf:dd:70:a9:2b:ef:39:79:14:87:d0:b8:14:18: a0:1d:b0:e6:19:5f:f8:34:ed:4c:19:2a:3b:58:fd: 70:b1:ba:f3:a8:9b:75:ce:60:01:d4:c5:66:65:0f: 92:c0:00:c1:7f:63:fa:3d:02:8d:14:5e:18:46:af: f7:c6:02:46:da:a5:04:3c:6b:8f:d3:45:d9:74:b5: d4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:10:96:71:12:C3:17:27:19:9A:4F:AA:58:42:01:B9:C6:23:49:8C X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:77:6b:bf:ae:52:27:c5:41:46:2a:60:36:44:be:d1:46:8f: 68:6e:95:5b:6b:d5:52:65:3a:28:aa:8a:03:a9:30:ca:71:bc: b1:e9:02:e4:b8:9f:10:e8:7d:77:19:51:94:66:54:2d:9c:c1: a2:56:f0:b2:49:4e:ba:0a:20:a9:34:8b:1d:07:89:82:9c:62: c5:fa:80:58:bf:1c:52:87:15:3f:ca:d3:88:1e:b0:0e:3b:02: be:d1:14:9e:cd:7c:8a:88:07:d7:10:2a:75:da:c7:92:c4:c4: 27:db:94:f8:c7:d1:9c:8c:a6:b4:b2:94:a0:dd:71:2e:a9:3f: 17:90:76:1b:1a:89:29:c2:41:cc:7c:79:9a:e3:92:d8:2b:67: 5f:ee:c9:56:d7:81:cd:7e:0b:fa:17:19:2a:72:45:20:f4:3f: 7c:fc:75:5a:af:97:59:7e:fb:d4:48:8b:8d:96:78:be:26:1b: 7c:bd:d6:47:98:09:b0:df:5d:b6:65:3b:22:9b:a5:ce:68:8e: 07:67:3c:5c:f1:98:41:4d:48:10:be:ba:95:52:ca:83:e5:16: c8:e4:14:2f:5c:73:6f:66:05:69:8d:65:9e:39:8f:80:81:29: b2:87:a6:30:b4:80:eb:dd:ad:67:75:47:1b:c0:e7:48:b8:a0: d0:23:60:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQmjsUg7l9vu7Qo4OLAtWxl7M9rowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNjA0MTYxNzU3NTFaFw0yNjA0MjAwMDQzNTFaMDMxMTAvBgNV BAMTKDMxMTA5NjcxMTJDMzE3MjcxOTlBNEZBQTU4NDIwMUI5QzYyMzQ5OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJor6s3qtrAfFcN7rl0X1E0DZ+ RU0K6tXJbbMSUHkYnvwe8IwzMIZ8Qh0jIZLu+qOBxKAVQPrSm623uN+K2kRG5eJK suLNQfMt+YzE7qhE0J2gfOD4YTqjL27m/3kO9bAbojq10fwgdxDty+DGssNb/bnT iUfIlbhfR6t7LKCG9wnvpv/ZdTC64x4+PrueGoHw7IoSZ9JhEwtTGUcoAWWDTAje gjR3WxNRxCGUSc815ff7Z5W/3XCpK+85eRSH0LgUGKAdsOYZX/g07UwZKjtY/XCx uvOom3XOYAHUxWZlD5LAAMF/Y/o9Ao0UXhhGr/fGAkbapQQ8a4/TRdl0tdRZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMRCWcRLDFycZmk+qWEIBucYjSYwwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFF3a7+uUifFQUYqYDZEvtFGj2hulVtr1VJl OiiqigOpMMpxvLHpAuS4nxDofXcZUZRmVC2cwaJW8LJJTroKIKk0ix0HiYKcYsX6 gFi/HFKHFT/K04gesA47Ar7RFJ7NfIqIB9cQKnXax5LExCfblPjH0ZyMprSylKDd cS6pPxeQdhsaiSnCQcx8eZrjktgrZ1/uyVbXgc1+C/oXGSpyRSD0P3z8dVqvl1l+ +9RIi42WeL4mG3y91keYCbDfXbZlOyKbpc5ojgdnPFzxmEFNSBC+upVSyoPlFsjk FC9cc29mBWmNZZ45j4CBKbKHpjC0gOvdrWd1RxvA50i4oNAjYOU= -----END CERTIFICATE-----Generated at Fri Apr 17 20:47:49 2026 by rpki-client