$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: iRSwd7BbV+R1SavfH5sORNlH7HFw8hCQS9fk5UY11so= Subject key identifier: DB:ED:5E:36:E1:CE:5B:47:AA:A3:B2:E3:45:47:12:48:B9:76:F0:4A Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 57D81DCEA49AEA7E7AE348BE18280735C58D9A48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 02AC Signing time: Sat 28 Feb 2026 00:22:35 +0000 Manifest this update: Sat 28 Feb 2026 00:17:35 +0000 Manifest next update: Tue 03 Mar 2026 00:41:35 +0000 Files and hashes: 1: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) 2: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: +q3tkohNveIyG0t4uXOFy9Isy3kgxTHZOEElgxEZU4s=) 3: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 4: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 00:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d8:1d:ce:a4:9a:ea:7e:7a:e3:48:be:18:28:07:35:c5:8d:9a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Feb 28 00:17:35 2026 GMT Not After : Mar 3 00:41:35 2026 GMT Subject: CN=DBED5E36E1CE5B47AAA3B2E345471248B976F04A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9e:53:91:03:2b:be:a7:1b:fa:d8:cb:f0:6f: 92:46:a8:8d:91:2d:25:ff:cf:81:7c:fc:c4:d4:1b: 4e:4c:4f:82:3a:e8:c7:1e:af:ee:28:1a:54:86:a1: 01:65:ce:65:33:45:0d:d0:e1:5d:25:b7:5c:d7:4a: 8d:eb:fa:f8:4c:81:56:ef:97:4a:33:31:a4:db:ba: b9:a3:ac:98:35:cd:71:61:54:e0:68:63:2b:da:64: b7:35:7f:d2:2d:c4:7c:e9:c2:e2:8b:d1:aa:55:7e: a8:80:e7:b9:4e:a2:0e:3f:e8:6c:1b:b0:29:ff:0e: b4:31:cf:17:55:f3:b7:37:f2:9c:af:19:ae:74:37: 4c:85:fa:53:56:2e:d8:ed:0f:4b:0a:3d:7c:03:8b: fd:4b:1a:8c:57:fa:e2:3e:b6:48:61:1f:a6:c6:1f: ef:13:63:16:df:61:e7:64:4c:75:53:4f:f6:f8:f7: 29:8c:51:bc:46:37:79:8d:0a:3d:60:a9:48:79:2b: cc:1c:93:f0:25:70:3c:fa:c4:04:75:aa:65:69:ce: 99:e6:78:2f:e5:06:82:60:15:73:6c:66:d6:9a:30: dd:a8:e3:c8:e1:7f:9e:5c:a0:05:11:5a:f8:d5:25: e4:a9:e3:a8:53:83:d0:e4:97:4b:11:39:d5:1e:7e: 19:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:ED:5E:36:E1:CE:5B:47:AA:A3:B2:E3:45:47:12:48:B9:76:F0:4A X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c7:d0:19:7b:b1:66:d0:a0:c6:fc:78:15:42:07:b5:25:4c: 82:6e:59:c9:7d:e8:d3:cd:c9:69:31:9f:05:4c:b5:da:25:0f: a8:80:85:cf:5c:56:e7:38:59:3b:e8:a3:55:74:41:2a:60:11: 07:83:5b:40:08:df:3f:48:05:29:00:da:aa:0d:b1:68:bd:db: 6e:0b:e1:68:b4:71:07:46:d0:7c:58:cb:13:87:be:e8:93:f9: be:ee:11:28:53:ab:36:97:15:ac:12:01:1b:40:1d:f1:d2:51: be:7b:44:42:c5:fa:77:d6:36:35:97:1d:c5:49:42:20:35:58: e1:c1:64:cc:d5:b4:08:11:31:d1:b2:6d:e4:ba:31:92:d0:02: 8a:d0:cf:d3:ae:3c:97:de:d5:9d:5e:03:82:ef:60:ad:58:de: 32:e7:00:dc:86:41:10:b7:bb:3c:06:2f:9a:ec:f9:1d:86:7f: dd:98:46:6b:47:01:55:a6:e3:35:d7:da:d8:01:c6:a1:f4:f3: b3:7e:2e:94:38:7a:6f:57:ec:2e:2f:75:8d:62:13:05:64:42: c9:4c:15:9a:73:3c:68:58:f9:fe:c7:57:84:c4:52:d8:2c:72: a4:83:69:10:10:14:e9:47:53:34:0f:3e:74:43:aa:35:fb:02: 16:87:8a:73 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV9gdzqSa6n5640i+GCgHNcWNmkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNjAyMjgwMDE3MzVaFw0yNjAzMDMwMDQxMzVaMDMxMTAvBgNV BAMTKERCRUQ1RTM2RTFDRTVCNDdBQUEzQjJFMzQ1NDcxMjQ4Qjk3NkYwNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChnlORAyu+pxv62Mvwb5JGqI2R LSX/z4F8/MTUG05MT4I66Mcer+4oGlSGoQFlzmUzRQ3Q4V0lt1zXSo3r+vhMgVbv l0ozMaTburmjrJg1zXFhVOBoYyvaZLc1f9ItxHzpwuKL0apVfqiA57lOog4/6Gwb sCn/DrQxzxdV87c38pyvGa50N0yF+lNWLtjtD0sKPXwDi/1LGoxX+uI+tkhhH6bG H+8TYxbfYedkTHVTT/b49ymMUbxGN3mNCj1gqUh5K8wck/AlcDz6xAR1qmVpzpnm eC/lBoJgFXNsZtaaMN2o48jhf55coAURWvjVJeSp46hTg9Dkl0sROdUefhnrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2+1eNuHOW0eqo7LjRUcSSLl28EowHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACvH0Bl7sWbQoMb8eBVCB7UlTIJuWcl96NPN yWkxnwVMtdolD6iAhc9cVuc4WTvoo1V0QSpgEQeDW0AI3z9IBSkA2qoNsWi9224L 4Wi0cQdG0HxYyxOHvuiT+b7uEShTqzaXFawSARtAHfHSUb57RELF+nfWNjWXHcVJ QiA1WOHBZMzVtAgRMdGybeS6MZLQAorQz9OuPJfe1Z1eA4LvYK1Y3jLnANyGQRC3 uzwGL5rs+R2Gf92YRmtHAVWm4zXX2tgBxqH087N+LpQ4em9X7C4vdY1iEwVkQslM FZpzPGhY+f7HV4TEUtgscqSDaRAQFOlHUzQPPnRDqjX7AhaHinM= -----END CERTIFICATE-----Generated at Mon Mar 2 00:34:52 2026 by rpki-client