$ rpki-client -vvf repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft File: 5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft (raw, json) Hash identifier: 8sT+NuwP+nzFFe2ZYzH4Jpk0UllTqQ5Q0qIzzhRi6hw= Subject key identifier: F4:B2:B8:27:B9:72:DD:0F:1C:58:DD:06:D8:E0:B7:D3:4D:BE:F4:C5 Authority key identifier: 5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B Certificate issuer: /CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B Certificate serial: 4928820F350AFACBB86D1B9EEDB9799553CBFDA8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft Manifest number: 0287 Signing time: Thu 19 Mar 2026 19:42:39 +0000 Manifest this update: Thu 19 Mar 2026 19:37:39 +0000 Manifest next update: Sun 22 Mar 2026 22:09:39 +0000 Files and hashes: 1: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (hash: oPdKvuSaVZv8alsSE2ACZ+vyXVDRBNBm8/f/QuNBFZU=) 2: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (hash: QzihEc5MkFa7NqybYwRpohd7XvTO9rPruJzvUalzVM8=) 3: 3130332e3138342e31382e302f32342d3234203d3e203438343635.roa (hash: 0IGopCvXSRXbCg3kz6wjCn1/1Kczl4zkhji2/R4GIz4=) 4: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (hash: LeeGwZNg1xeTEHyLpyP7xbBZEKxpkxbvCL0BfojuuRU=) 5: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (hash: rC9zDsuuHrRHxm490P5sveoMq6dVJ3UnsdtYS7hgs/E=) 6: 5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl (hash: GxDy9j2YmiX38OtpUx9mtK55Wtg9gcJYgIlZroV9dhI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 22:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:28:82:0f:35:0a:fa:cb:b8:6d:1b:9e:ed:b9:79:95:53:cb:fd:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A40FD19E2DD5380CB6E502F16DB222F9089552B Validity Not Before: Mar 19 19:37:39 2026 GMT Not After : Mar 22 22:09:39 2026 GMT Subject: CN=F4B2B827B972DD0F1C58DD06D8E0B7D34DBEF4C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dc:bc:5c:d1:68:2d:30:5f:43:72:85:67:2d: f0:63:22:73:ad:52:66:b8:4f:0d:43:cb:24:66:96: 38:f2:a8:91:55:46:b0:49:9a:57:14:ee:66:73:91: f4:be:38:72:94:f8:6a:2d:15:ab:7f:6b:02:06:eb: 1e:50:3a:79:22:24:59:b6:3f:fb:a0:23:b5:ff:9a: d9:d4:1f:88:c0:b7:82:09:9e:7e:36:08:8f:7f:bb: aa:7a:1a:9a:36:ee:f9:02:31:03:60:74:c4:d7:13: ef:42:e1:b3:e2:f6:c7:76:4e:ec:9a:c3:02:7f:11: 4c:85:5e:57:4d:25:94:8d:2f:be:0c:7b:6e:d6:a3: fd:b2:1c:e5:83:9b:36:c8:5f:c6:65:71:de:06:81: 88:84:0e:54:4a:ff:b8:21:35:6f:16:18:21:52:87: 01:fd:fb:21:f6:3f:52:ac:25:95:96:1b:4d:e9:78: 25:25:24:ed:a7:14:04:d7:69:f9:d8:dc:48:a2:ed: b2:97:86:2c:f3:e3:c5:eb:02:ef:46:d6:71:12:3f: 95:39:1a:b0:59:4e:e6:6c:b7:e7:b4:81:24:cf:c4: 5c:2b:27:cb:a6:41:19:4d:0c:72:b8:8b:93:1d:4b: df:3f:37:b1:a9:40:4f:a5:00:25:af:6b:f5:04:78: c9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B2:B8:27:B9:72:DD:0F:1C:58:DD:06:D8:E0:B7:D3:4D:BE:F4:C5 X509v3 Authority Key Identifier: keyid:5A:40:FD:19:E2:DD:53:80:CB:6E:50:2F:16:DB:22:2F:90:89:55:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A40FD19E2DD5380CB6E502F16DB222F9089552B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/5A40FD19E2DD5380CB6E502F16DB222F9089552B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:2b:aa:bf:c4:58:a5:58:9b:0a:93:02:b4:9a:d5:b0:1d:fc: 3d:57:60:aa:1e:b0:db:c2:6c:16:fc:2b:07:39:0f:19:e9:de: 0a:f5:b0:e3:81:e9:ff:ef:c8:6e:d5:2f:87:79:cb:21:0f:32: 7d:98:ff:53:8e:74:63:81:2a:2c:bb:16:a6:a7:56:1f:64:62: 78:34:54:28:5e:fb:0d:23:78:b7:fa:83:8a:c6:82:74:75:38: bf:8a:28:4b:4c:32:0b:94:8b:d1:eb:9c:8b:52:96:5f:80:f3: b4:45:a5:6c:b8:d9:8f:28:e4:ab:47:9c:9c:50:9c:12:2e:8d: 50:05:aa:e9:d4:c0:6d:7b:53:4d:1f:c4:6d:be:03:75:aa:a9: bd:ff:58:85:41:86:c6:88:e7:5d:bd:90:21:37:00:c1:ea:7a: f8:bb:c3:c0:16:37:5f:a1:b5:9d:87:84:26:63:17:03:79:af: 40:75:29:5b:ea:da:0b:67:93:c6:bd:51:13:d4:2c:1a:a4:d1: bb:3e:fb:1a:63:ac:9d:d3:8c:b2:71:91:77:b8:e0:d8:1f:7c: fc:4b:a4:a8:78:1a:2b:5b:1f:17:d1:a9:51:e8:36:11:c0:0d: 33:54:10:bf:81:57:b2:61:be:10:fa:0c:d5:d4:0d:81:80:58: 52:31:91:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSSiCDzUK+su4bRue7bl5lVPL/agwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIyMkY5 MDg5NTUyQjAeFw0yNjAzMTkxOTM3MzlaFw0yNjAzMjIyMjA5MzlaMDMxMTAvBgNV BAMTKEY0QjJCODI3Qjk3MkREMEYxQzU4REQwNkQ4RTBCN0QzNERCRUY0QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd3Lxc0WgtMF9DcoVnLfBjInOt Uma4Tw1DyyRmljjyqJFVRrBJmlcU7mZzkfS+OHKU+GotFat/awIG6x5QOnkiJFm2 P/ugI7X/mtnUH4jAt4IJnn42CI9/u6p6Gpo27vkCMQNgdMTXE+9C4bPi9sd2Tuya wwJ/EUyFXldNJZSNL74Me27Wo/2yHOWDmzbIX8Zlcd4GgYiEDlRK/7ghNW8WGCFS hwH9+yH2P1KsJZWWG03peCUlJO2nFATXafnY3Eii7bKXhizz48XrAu9G1nESP5U5 GrBZTuZst+e0gSTPxFwrJ8umQRlNDHK4i5MdS98/N7GpQE+lACWva/UEeMmBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9LK4J7ly3Q8cWN0G2OC3002+9MUwHwYDVR0j BBgwFoAUWkD9GeLdU4DLblAvFtsiL5CJVSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGQ5MTRlZi0wYjFmLTQ5MGItODA4ZC1hMjdiODNmZjlhM2UvMC81QTQwRkQxOUUy REQ1MzgwQ0I2RTUwMkYxNkRCMjIyRjkwODk1NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIyMkY5MDg5 NTUyQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjBkOTE0ZWYtMGIxZi00OTBiLTgw OGQtYTI3YjgzZmY5YTNlLzAvNUE0MEZEMTlFMkRENTM4MENCNkU1MDJGMTZEQjIy MkY5MDg5NTUyQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHArqr/EWKVYmwqTArSa1bAd/D1XYKoesNvC bBb8Kwc5Dxnp3gr1sOOB6f/vyG7VL4d5yyEPMn2Y/1OOdGOBKiy7FqanVh9kYng0 VChe+w0jeLf6g4rGgnR1OL+KKEtMMguUi9HrnItSll+A87RFpWy42Y8o5KtHnJxQ nBIujVAFqunUwG17U00fxG2+A3Wqqb3/WIVBhsaI5129kCE3AMHqevi7w8AWN1+h tZ2HhCZjFwN5r0B1KVvq2gtnk8a9URPULBqk0bs++xpjrJ3TjLJxkXe44NgffPxL pKh4GitbHxfRqVHoNhHADTNUEL+BV7JhvhD6DNXUDYGAWFIxkUk= -----END CERTIFICATE-----Generated at Sat Mar 21 03:00:08 2026 by rpki-client