$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft File: 40843A77AEE521660751DBF1A013A810ECDA68CB.mft (raw, json) Hash identifier: pk+8FqVbIpSz7A4p5//A93/G40HqMrciCb2rLCirLY4= Subject key identifier: 0A:BE:3C:D3:87:C6:F5:F7:83:CC:31:EE:BA:E8:9A:A9:74:E0:69:97 Authority key identifier: 40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB Certificate issuer: /CN=40843A77AEE521660751DBF1A013A810ECDA68CB Certificate serial: 2743B0B44DB54FDB6431DD418413A7B1BD9DDE90 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft Manifest number: 38 Signing time: Fri 12 Jun 2026 22:32:31 +0000 Manifest this update: Fri 12 Jun 2026 22:27:31 +0000 Manifest next update: Sat 13 Jun 2026 22:32:31 +0000 Files and hashes: 1: 3136302e32322e32362e302f32332d3233203d3e20313532383036.roa (hash: ZJsLINR6yrZpMV0P3OWS3tNwIUQ4L1mzkeCbn9j9AAk=) 2: 40843A77AEE521660751DBF1A013A810ECDA68CB.crl (hash: +IZ5CPnKWU/dCpdMZflKn8xarem/hpj8TdakhIMAlmo=) 3: 3136302e32322e32362e302f32342d3234203d3e20313532383036.roa (hash: UjtgXUBXiX2ZPtfdD6mcZP4pu2sdT+yFrlQ9rDupqgk=) 4: 3136302e32322e32372e302f32342d3234203d3e20313532383036.roa (hash: S0T+hyOCAghiRygWu6d42hM+XDbg7JBg+vTQkNSgMn4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.crl rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 21:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:43:b0:b4:4d:b5:4f:db:64:31:dd:41:84:13:a7:b1:bd:9d:de:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40843A77AEE521660751DBF1A013A810ECDA68CB Validity Not Before: Jun 12 22:27:31 2026 GMT Not After : Jun 13 22:32:31 2026 GMT Subject: CN=0ABE3CD387C6F5F783CC31EEBAE89AA974E06997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c9:4f:dc:61:1c:40:69:9d:e7:0c:a8:8b:a9: c3:5a:88:f0:de:05:2b:b0:b3:d8:20:74:e8:b5:99: de:db:e3:d3:f0:19:b7:85:f6:af:5b:02:83:fb:31: 61:47:29:12:78:b7:b8:7b:55:85:22:19:45:6d:35: 4e:fb:1a:54:88:69:39:ce:1c:84:25:bb:41:de:31: 36:31:d3:4a:3a:28:9c:bf:02:dd:8c:8c:21:ed:2d: 32:11:ce:8b:de:a9:f2:3b:17:59:cc:9c:04:b8:50: 6a:d9:fd:a7:9d:aa:0d:ef:30:68:2b:ff:ac:e9:4d: 9a:5c:6d:fa:ec:c7:b3:ff:87:df:95:72:8a:b5:31: ed:1b:53:e7:e7:6a:ac:32:a5:43:48:00:7e:30:92: 4a:73:0e:59:cb:95:a4:a8:96:09:17:ee:89:77:77: 61:f0:d0:b5:0b:eb:fd:44:ca:a1:a9:90:78:82:83: d1:ca:97:9a:49:66:cc:7b:ed:7d:1c:70:cf:85:b7: 83:60:69:d5:14:f0:52:68:47:a5:09:f4:c4:28:69: c6:d7:40:b9:e8:3d:df:3f:ec:8c:d2:b7:7e:dd:c4: 2f:54:23:89:53:0f:56:63:28:86:b3:83:e0:e6:f8: e3:8c:31:01:14:17:a8:c9:6c:95:22:ad:b2:8b:f0: 9f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:BE:3C:D3:87:C6:F5:F7:83:CC:31:EE:BA:E8:9A:A9:74:E0:69:97 X509v3 Authority Key Identifier: keyid:40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:5c:4d:3f:c4:3d:d9:7c:45:ed:f5:1c:87:47:a7:6b:d2:e9: 46:9e:c5:1a:f0:11:3b:b7:fc:dd:f8:a6:28:47:a0:5a:55:64: 80:f4:4a:9c:e8:67:74:72:c1:60:ab:95:4a:d9:45:5c:8e:60: 35:75:ec:16:59:29:12:46:d7:5a:7f:15:a6:6e:a5:8f:cc:8c: 38:35:a2:f3:ba:21:27:df:47:67:d1:f8:6a:28:6e:1d:9c:94: 93:58:ad:f9:54:1c:9d:98:6b:25:18:80:90:c6:34:3f:b0:49: fc:5d:58:36:c9:68:d8:66:69:cb:c1:0d:53:ae:69:b6:51:b0: c1:c3:e3:42:f2:83:ef:56:db:6c:eb:39:46:6c:42:89:61:d1: ce:79:80:e5:f4:d9:ad:c8:16:14:36:fe:1a:e6:e1:8e:0f:60: 60:f6:11:fb:a0:e4:6e:63:94:30:4b:49:7b:8c:36:22:8a:1f: 28:9c:5a:59:30:07:c6:75:ea:a6:59:80:ca:24:74:71:55:3e: ce:a5:05:72:d0:1c:b5:e3:98:58:fc:e0:40:9f:80:20:55:17: 12:df:f1:d2:38:89:bf:e8:4d:2d:f7:3f:19:64:aa:2c:82:6a: 4f:63:46:ed:35:44:cb:87:18:3e:a5:b3:d1:cd:26:13:a4:5a: c5:4f:42:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ0OwtE21T9tkMd1BhBOnsb2d3pAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NDNBNzdBRUU1MjE2NjA3NTFEQkYxQTAxM0E4MTBF Q0RBNjhDQjAeFw0yNjA2MTIyMjI3MzFaFw0yNjA2MTMyMjMyMzFaMDMxMTAvBgNV BAMTKDBBQkUzQ0QzODdDNkY1Rjc4M0NDMzFFRUJBRTg5QUE5NzRFMDY5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqyU/cYRxAaZ3nDKiLqcNaiPDe BSuws9ggdOi1md7b49PwGbeF9q9bAoP7MWFHKRJ4t7h7VYUiGUVtNU77GlSIaTnO HIQlu0HeMTYx00o6KJy/At2MjCHtLTIRzoveqfI7F1nMnAS4UGrZ/aedqg3vMGgr /6zpTZpcbfrsx7P/h9+Vcoq1Me0bU+fnaqwypUNIAH4wkkpzDlnLlaSolgkX7ol3 d2Hw0LUL6/1EyqGpkHiCg9HKl5pJZsx77X0ccM+Ft4NgadUU8FJoR6UJ9MQoacbX QLnoPd8/7IzSt37dxC9UI4lTD1ZjKIazg+Dm+OOMMQEUF6jJbJUirbKL8J9RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCr4804fG9feDzDHuuuiaqXTgaZcwHwYDVR0j BBgwFoAUQIQ6d67lIWYHUdvxoBOoEOzaaMswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJkY2UzOTEtYTVkMy00MTFiLWE5N2ItZTg2MmZiZjU2MzFjLzAvNDA4NDNBNzdB RUU1MjE2NjA3NTFEQkYxQTAxM0E4MTBFQ0RBNjhDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC80MDg0M0E3N0FFRTUyMTY2MDc1MURCRjFBMDEzQTgxMEVDREE2 OENCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMWJkY2UzOTEtYTVkMy00MTFiLWE5 N2ItZTg2MmZiZjU2MzFjLzAvNDA4NDNBNzdBRUU1MjE2NjA3NTFEQkYxQTAxM0E4 MTBFQ0RBNjhDQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACBcTT/EPdl8Re31HIdHp2vS6UaexRrwETu3 /N34pihHoFpVZID0SpzoZ3RywWCrlUrZRVyOYDV17BZZKRJG11p/FaZupY/MjDg1 ovO6ISffR2fR+Goobh2clJNYrflUHJ2YayUYgJDGND+wSfxdWDbJaNhmacvBDVOu abZRsMHD40Lyg+9W22zrOUZsQolh0c55gOX02a3IFhQ2/hrm4Y4PYGD2Efug5G5j lDBLSXuMNiKKHyicWlkwB8Z16qZZgMokdHFVPs6lBXLQHLXjmFj84ECfgCBVFxLf 8dI4ib/oTS33PxlkqiyCak9jRu01RMuHGD6ls9HNJhOkWsVPQgQ= -----END CERTIFICATE-----Generated at Sat Jun 13 12:42:18 2026 by rpki-client