$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft File: 40F85FB380A012F2BB6D055D914C008674125D67.mft (raw, json) Hash identifier: V9BJjXNGCwbs/2P+7+8PQCrWwEym3A56N68cwPvIFLg= Subject key identifier: CF:44:B0:D9:6B:53:32:79:EC:5E:F9:98:26:EB:D5:77:6F:87:4E:6F Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 25698215E4F76824F75408C57D5D66BE4854F090 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft Manifest number: 051E Signing time: Sun 01 Mar 2026 22:11:35 +0000 Manifest this update: Sun 01 Mar 2026 22:06:35 +0000 Manifest next update: Wed 04 Mar 2026 22:11:35 +0000 Files and hashes: 1: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (hash: 34Zwk2rQxI6/8F/IkX/shAQb+olpsRnc3h6OinfJJ/w=) 2: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (hash: 778Q5HjUkZ/WVTVzYaqPWOxb/BdNeOK8Id+aBKl0ego=) 3: 40F85FB380A012F2BB6D055D914C008674125D67.crl (hash: c8TltdrZI6pQFiUGE3GeKIBJJpT4X6xArtX3XKB80D0=) 4: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (hash: VWZBwU3RWnROUShcpW3L74G67TSj+wYP3BWSlSltpjo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 22:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:69:82:15:e4:f7:68:24:f7:54:08:c5:7d:5d:66:be:48:54:f0:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Mar 1 22:06:35 2026 GMT Not After : Mar 4 22:11:35 2026 GMT Subject: CN=CF44B0D96B533279EC5EF99826EBD5776F874E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f4:c2:1c:1f:11:1e:1e:84:6a:5d:28:7d:f2: 8c:a4:6c:cb:92:dd:aa:6f:bc:ef:d2:ff:57:5a:f3: 1c:13:95:46:3d:e7:59:9b:88:60:cc:ab:17:42:19: 52:e3:54:0e:b2:89:65:b4:fe:ed:a7:8c:38:00:58: 82:67:72:66:8d:ce:76:20:c0:32:bf:7d:fb:53:32: 2b:c4:83:c6:a4:d2:52:b7:ee:79:e2:ce:e3:47:32: c2:eb:4a:b2:05:2a:fe:92:72:a5:d1:84:58:cf:f5: 19:b8:88:be:27:70:4c:84:55:f6:74:32:48:bd:b8: a3:ed:e6:e7:16:9a:09:6c:51:46:ef:30:19:3f:2c: 47:ff:89:6e:25:bf:7d:b1:9f:e4:13:fa:95:82:2f: 5d:0c:15:75:f2:5e:02:6c:dd:a8:53:80:7e:00:c9: 3f:77:52:1b:0d:f7:25:93:97:75:2d:88:e8:5a:9b: 93:24:93:ed:74:65:02:f6:54:d6:60:62:10:50:bc: 92:ef:a4:8b:98:40:83:3c:83:d1:5f:d6:d4:a8:7e: 3c:af:d7:92:8e:36:a2:5e:b0:1b:8f:02:38:63:e0: 6c:96:05:0f:a3:87:94:e7:58:b3:0c:12:37:bd:05: 4d:01:73:92:fb:17:c4:ed:fd:50:ce:1a:93:30:0b: a5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:44:B0:D9:6B:53:32:79:EC:5E:F9:98:26:EB:D5:77:6F:87:4E:6F X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:ec:0a:4e:be:76:ab:dd:73:f2:b8:5a:58:4e:dc:2b:58:3a: 6f:9d:0a:35:c0:66:3f:1a:fb:50:c1:8d:7b:5b:1d:20:c9:cd: e0:9f:fd:39:9c:87:04:79:43:94:b7:71:47:4c:95:d4:95:44: 68:3f:4b:ce:85:f0:88:fb:96:4a:ea:63:3f:40:80:c1:fd:38: 66:dd:1b:3d:05:3e:15:f6:c3:f1:1d:14:a4:94:ab:0c:98:b6: 98:82:c2:d9:55:4b:45:72:b6:2a:e5:b4:62:36:50:e9:dc:74: b3:65:8b:ff:2d:c8:21:0f:85:40:83:ad:df:cf:2d:56:d8:66: ef:e9:e0:37:ca:b8:81:0e:67:79:73:f3:4e:0f:a4:53:28:39: 22:65:28:8f:6e:e1:92:28:9b:05:32:80:5a:07:dd:39:2a:6c: 3e:ef:bc:4a:a0:a7:ea:3c:eb:6c:3b:19:40:8c:7d:14:cd:66: 8c:ca:7f:4a:c8:d4:a6:57:e6:75:cb:a9:b6:df:92:2f:38:8d: a4:dd:e1:4f:17:9a:a9:53:74:fe:13:08:5f:9a:6a:66:b2:88: 51:d9:4b:7c:ec:9d:aa:a7:c8:db:8d:07:a3:5e:58:b6:81:a0: f3:f1:72:a5:45:90:ce:db:55:b1:f2:70:f7:3b:e4:78:21:72: 6b:6f:0a:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJWmCFeT3aCT3VAjFfV1mvkhU8JAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNjAzMDEyMjA2MzVaFw0yNjAzMDQyMjExMzVaMDMxMTAvBgNV BAMTKENGNDRCMEQ5NkI1MzMyNzlFQzVFRjk5ODI2RUJENTc3NkY4NzRFNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl9MIcHxEeHoRqXSh98oykbMuS 3apvvO/S/1da8xwTlUY951mbiGDMqxdCGVLjVA6yiWW0/u2njDgAWIJncmaNznYg wDK/fftTMivEg8ak0lK37nnizuNHMsLrSrIFKv6ScqXRhFjP9Rm4iL4ncEyEVfZ0 Mki9uKPt5ucWmglsUUbvMBk/LEf/iW4lv32xn+QT+pWCL10MFXXyXgJs3ahTgH4A yT93UhsN9yWTl3UtiOham5Mkk+10ZQL2VNZgYhBQvJLvpIuYQIM8g9Ff1tSofjyv 15KONqJesBuPAjhj4GyWBQ+jh5TnWLMMEje9BU0Bc5L7F8Tt/VDOGpMwC6VnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz0Sw2WtTMnnsXvmYJuvVd2+HTm8wHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTk3MmY5YTItYjBmZi00Mjk4LThk YTYtZTJlMzgzNDhhMDdiLzAvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAw ODY3NDEyNUQ2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACHsCk6+dqvdc/K4WlhO3CtYOm+dCjXAZj8a +1DBjXtbHSDJzeCf/TmchwR5Q5S3cUdMldSVRGg/S86F8Ij7lkrqYz9AgMH9OGbd Gz0FPhX2w/EdFKSUqwyYtpiCwtlVS0VytirltGI2UOncdLNli/8tyCEPhUCDrd/P LVbYZu/p4DfKuIEOZ3lz804PpFMoOSJlKI9u4ZIomwUygFoH3TkqbD7vvEqgp+o8 62w7GUCMfRTNZozKf0rI1KZX5nXLqbbfki84jaTd4U8XmqlTdP4TCF+aamayiFHZ S3zsnaqnyNuNB6NeWLaBoPPxcqVFkM7bVbHycPc75HghcmtvCtA= -----END CERTIFICATE-----Generated at Mon Mar 2 12:43:47 2026 by rpki-client