$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft File: 40F85FB380A012F2BB6D055D914C008674125D67.mft (raw, json) Hash identifier: tFudRkMQAluCGrIdADuMd+u8newsxUsRfpe7JeTtHJM= Subject key identifier: DA:C7:23:DA:1A:DD:CB:FD:FE:18:12:76:44:F5:BD:3C:46:ED:78:7C Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 78FEDCF76D88687FD044867069433319A306A527 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft Manifest number: 0532 Signing time: Thu 16 Apr 2026 16:01:38 +0000 Manifest this update: Thu 16 Apr 2026 15:56:38 +0000 Manifest next update: Sun 19 Apr 2026 17:21:38 +0000 Files and hashes: 1: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (hash: 34Zwk2rQxI6/8F/IkX/shAQb+olpsRnc3h6OinfJJ/w=) 2: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (hash: VWZBwU3RWnROUShcpW3L74G67TSj+wYP3BWSlSltpjo=) 3: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (hash: 778Q5HjUkZ/WVTVzYaqPWOxb/BdNeOK8Id+aBKl0ego=) 4: 40F85FB380A012F2BB6D055D914C008674125D67.crl (hash: E6qoNawECcZgdJ5+n3J8ijQX6QCv1Ce5utQzB0g3Dh4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 17:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:fe:dc:f7:6d:88:68:7f:d0:44:86:70:69:43:33:19:a3:06:a5:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Apr 16 15:56:38 2026 GMT Not After : Apr 19 17:21:38 2026 GMT Subject: CN=DAC723DA1ADDCBFDFE18127644F5BD3C46ED787C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:02:c9:8a:ba:15:a2:b8:85:8c:3b:87:7c: f5:90:24:ae:de:03:ea:04:18:ce:0c:a3:03:20:b2: 8e:eb:10:17:ba:a2:6e:3f:e4:41:87:c9:90:8f:16: 50:4f:55:87:8a:12:41:e2:25:5a:0e:eb:e4:d5:17: 16:88:60:d7:d0:c7:5f:fa:6f:83:39:a3:45:a5:71: aa:6d:5a:3b:dc:3b:62:ec:7e:6c:ac:7b:fb:53:1c: b6:9c:8c:64:c4:83:cb:78:8e:b7:b6:ed:b2:8b:c4: 80:bf:50:99:a0:02:fb:81:9d:af:de:98:4d:36:b4: 0c:91:6b:42:c4:f0:0b:1f:61:0c:c1:7b:7e:09:c8: 03:57:0f:38:df:a6:5d:cf:19:33:39:dd:c2:d8:fd: 22:c7:8d:ad:33:a1:a2:78:50:c1:cf:32:60:90:e4: 01:5d:75:f6:ae:38:be:72:74:6a:60:ea:f8:88:8c: 10:18:51:d9:b9:13:58:cf:f1:65:72:1d:37:0d:35: 5c:e3:10:bd:5c:eb:1a:6f:0c:6d:c1:ec:90:bb:78: 54:8e:81:95:64:c2:c8:76:89:cd:53:22:58:5a:3c: 21:ea:1d:11:9a:72:85:55:c2:6b:29:c1:5a:f8:87: ce:11:b5:be:4b:42:a7:63:2b:3b:97:59:5b:38:2b: 35:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C7:23:DA:1A:DD:CB:FD:FE:18:12:76:44:F5:BD:3C:46:ED:78:7C X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:52:b7:3e:19:44:bd:59:df:5e:7f:d5:64:b2:32:55:1f:a8: e7:84:d3:86:9f:5e:eb:2e:10:41:83:7f:99:d9:df:39:f0:2a: e2:e0:1d:66:cf:79:eb:79:5e:e5:93:1f:28:0d:4b:0f:06:44: e2:2a:4c:86:d4:92:ff:c1:65:aa:64:34:0a:65:1a:d6:34:a5: e2:67:cd:2a:16:d3:e0:3a:33:df:b5:c5:c8:43:36:57:8e:1c: 6a:8b:bf:73:a4:66:a6:9e:a7:77:96:ce:a7:48:41:e4:c6:69: e9:e8:12:4d:58:1a:56:fe:d9:a3:2a:da:14:0f:f4:32:03:8b: 0a:9d:2b:2d:73:c3:97:3d:32:a5:13:a1:90:7a:d7:18:2c:59: 2c:26:de:28:1e:0d:71:8b:06:b4:ca:c6:ee:eb:f3:3d:f3:8f: 51:12:d9:36:4f:b1:fc:52:1f:6a:71:43:52:32:ae:f1:6c:9b: b5:a5:dd:3d:03:ce:c9:08:a3:b9:a2:d8:ec:9d:96:32:5e:ae: e4:fd:fc:1f:ea:e5:3f:6f:d5:14:f6:bb:e4:f0:ac:8f:70:8a: 85:5d:78:9d:3c:16:13:e1:51:a4:7f:de:ed:c5:2a:a2:e4:93: 3e:3d:28:61:2b:57:d5:91:d0:fe:23:27:54:e0:73:b7:ae:38: bb:e6:9b:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeP7c922IaH/QRIZwaUMzGaMGpScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNjA0MTYxNTU2MzhaFw0yNjA0MTkxNzIxMzhaMDMxMTAvBgNV BAMTKERBQzcyM0RBMUFERENCRkRGRTE4MTI3NjQ0RjVCRDNDNDZFRDc4N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/PwLJiroVoriFjDuHfPWQJK7e A+oEGM4MowMgso7rEBe6om4/5EGHyZCPFlBPVYeKEkHiJVoO6+TVFxaIYNfQx1/6 b4M5o0WlcaptWjvcO2Lsfmyse/tTHLacjGTEg8t4jre27bKLxIC/UJmgAvuBna/e mE02tAyRa0LE8AsfYQzBe34JyANXDzjfpl3PGTM53cLY/SLHja0zoaJ4UMHPMmCQ 5AFddfauOL5ydGpg6viIjBAYUdm5E1jP8WVyHTcNNVzjEL1c6xpvDG3B7JC7eFSO gZVkwsh2ic1TIlhaPCHqHRGacoVVwmspwVr4h84Rtb5LQqdjKzuXWVs4KzUjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2scj2hrdy/3+GBJ2RPW9PEbteHwwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTk3MmY5YTItYjBmZi00Mjk4LThk YTYtZTJlMzgzNDhhMDdiLzAvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAw ODY3NDEyNUQ2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIVStz4ZRL1Z315/1WSyMlUfqOeE04afXusu EEGDf5nZ3znwKuLgHWbPeet5XuWTHygNSw8GROIqTIbUkv/BZapkNAplGtY0peJn zSoW0+A6M9+1xchDNleOHGqLv3OkZqaep3eWzqdIQeTGaenoEk1YGlb+2aMq2hQP 9DIDiwqdKy1zw5c9MqUToZB61xgsWSwm3igeDXGLBrTKxu7r8z3zj1ES2TZPsfxS H2pxQ1IyrvFsm7Wl3T0DzskIo7mi2OydljJeruT9/B/q5T9v1RT2u+TwrI9wioVd eJ08FhPhUaR/3u3FKqLkkz49KGErV9WR0P4jJ1Tgc7euOLvmmyw= -----END CERTIFICATE-----Generated at Fri Apr 17 20:52:20 2026 by rpki-client