$ rpki-client -vvf rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.mft File: 40064999DEC3F3BD85C4F883982B58D76246EE84.mft (raw, json) Hash identifier: jRlz9CIrTHF49L3xHOKIFtWlxNOe86rC9k3HE0xoyFo= Subject key identifier: 95:9E:ED:09:CB:38:3E:50:6D:37:EE:49:D9:1E:8B:1C:C2:A2:0C:DE Authority key identifier: 40:06:49:99:DE:C3:F3:BD:85:C4:F8:83:98:2B:58:D7:62:46:EE:84 Certificate issuer: /CN=40064999DEC3F3BD85C4F883982B58D76246EE84 Certificate serial: 40F58379D1C9B69527CCA47A5E9EB3224A5AD5FE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40064999DEC3F3BD85C4F883982B58D76246EE84.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 10:33:12 +0000 Manifest this update: Tue 02 Jun 2026 10:28:12 +0000 Manifest next update: Wed 03 Jun 2026 13:38:12 +0000 Files and hashes: 1: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (hash: 15DFdluo9UaifGQn5fMYNCJmiCD2xxrlbDWmIvigFwY=) 2: 40064999DEC3F3BD85C4F883982B58D76246EE84.crl (hash: HTRuqfxoCG5sl2D7VKOX2D1/EVzp7H3c7ysOAhLlXDU=) 3: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (hash: pVbAEY3jNiaOa2/I5+aOrojXUWJy/5MAJ3dSN22Pu3k=) 4: 3130332e33302e3134342e302f32322d3234203d3e203436303530.roa (hash: Ohcd5IRv432594So8px8ggqzCMekQcg85+VPfjz2MNY=) 5: 3130332e33302e3134372e302f32342d3234203d3e203436303530.roa (hash: DFH3OJkZQ9cFzoKHDc7LTDhy6MoupWNGOe7R0l60x2E=) 6: 3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa (hash: xfswO543iSh9SG/x27NWXDQKULYEPhHMqzXL1c7JMEI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.crl rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40064999DEC3F3BD85C4F883982B58D76246EE84.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f5:83:79:d1:c9:b6:95:27:cc:a4:7a:5e:9e:b3:22:4a:5a:d5:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40064999DEC3F3BD85C4F883982B58D76246EE84 Validity Not Before: Jun 2 10:28:12 2026 GMT Not After : Jun 3 13:38:12 2026 GMT Subject: CN=959EED09CB383E506D37EE49D91E8B1CC2A20CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:bf:52:ef:04:08:35:71:eb:d6:b9:a1:1b:d7: 53:7f:b8:23:ad:7a:f5:d9:50:a3:92:be:87:c0:96: 50:f2:06:3b:f5:19:49:75:5a:41:9c:b9:d5:00:8e: 1b:81:40:fc:e8:20:7f:9b:cc:04:59:2f:38:89:28: 9c:5e:76:72:2d:40:3a:08:a6:4a:e9:d7:47:f3:20: 8e:d6:68:96:2a:cc:c2:9c:af:6c:0f:61:2b:76:1e: 1a:55:15:e1:5d:27:c1:b9:a9:dd:f7:01:a3:97:48: 51:f5:c9:d8:77:6f:11:a6:f8:b8:16:71:74:76:ce: 9d:d6:1e:7b:d9:fb:5d:e5:75:f3:3d:0b:8a:ad:95: 38:cb:60:3d:89:bc:59:62:1f:52:5a:46:42:35:1b: 7f:5a:fe:fc:ed:31:10:ae:50:8d:07:b9:a6:c4:1a: 30:3c:ee:78:f7:a4:7f:2a:0e:13:25:88:21:8d:b7: 93:75:57:88:71:b1:e0:ed:a7:fe:dd:cd:af:ad:f9: 15:d6:92:7a:59:1b:a8:29:94:86:95:a8:dd:0e:97: 7d:06:0e:cf:d8:b5:3c:60:73:06:67:6a:52:97:35: a2:f2:b7:93:68:8f:f4:bb:13:1c:87:ab:92:f7:d7: 0f:81:d7:52:b7:3b:72:6c:c5:2c:83:13:a2:02:00: 4f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9E:ED:09:CB:38:3E:50:6D:37:EE:49:D9:1E:8B:1C:C2:A2:0C:DE X509v3 Authority Key Identifier: keyid:40:06:49:99:DE:C3:F3:BD:85:C4:F8:83:98:2B:58:D7:62:46:EE:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40064999DEC3F3BD85C4F883982B58D76246EE84.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:e1:81:84:d3:40:a0:5f:fe:23:d8:29:17:7a:e6:81:37:6f: 16:7d:4e:ce:f3:6a:89:a7:c4:35:9b:6c:72:82:6c:92:e5:1d: e4:67:da:38:cd:04:61:9a:46:db:02:4f:82:7c:9c:3c:13:ab: aa:6e:0c:77:c6:1e:b0:db:95:d8:72:23:51:7f:c2:cf:3f:cc: aa:5c:94:3a:fa:8e:e8:9a:62:80:21:39:62:f3:cc:86:dc:53: e8:85:76:dc:bc:d5:e7:ff:67:00:ba:06:63:82:29:a4:d3:a1: 1f:bb:b1:02:57:af:61:a1:e2:28:4e:47:82:59:6e:19:34:a5: 27:95:48:c5:ba:7a:14:08:13:57:98:26:da:3a:5e:30:c4:d3: a5:ef:2c:15:80:6f:ee:d6:64:26:94:25:8a:8d:fc:47:33:f6: ef:88:02:c2:82:7a:00:3f:7f:f7:de:10:dd:51:99:41:86:63: 61:a6:59:7b:09:68:3a:2a:29:83:e7:d0:ed:52:11:a5:35:be: 2c:46:d9:29:39:81:00:40:51:8d:43:f1:32:d9:35:8d:fe:90: 0a:99:cf:57:0a:f4:01:58:01:f5:66:49:30:4a:c0:68:6a:2d: a9:00:fc:fb:7d:95:d4:ee:de:47:b1:95:50:af:bb:0b:fc:63: 60:e1:a6:80 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQPWDedHJtpUnzKR6Xp6zIkpa1f4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAwNjQ5OTlERUMzRjNCRDg1QzRGODgzOTgyQjU4RDc2 MjQ2RUU4NDAeFw0yNjA2MDIxMDI4MTJaFw0yNjA2MDMxMzM4MTJaMDMxMTAvBgNV BAMTKDk1OUVFRDA5Q0IzODNFNTA2RDM3RUU0OUQ5MUU4QjFDQzJBMjBDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6v1LvBAg1cevWuaEb11N/uCOt evXZUKOSvofAllDyBjv1GUl1WkGcudUAjhuBQPzoIH+bzARZLziJKJxednItQDoI pkrp10fzII7WaJYqzMKcr2wPYSt2HhpVFeFdJ8G5qd33AaOXSFH1ydh3bxGm+LgW cXR2zp3WHnvZ+13ldfM9C4qtlTjLYD2JvFliH1JaRkI1G39a/vztMRCuUI0HuabE GjA87nj3pH8qDhMliCGNt5N1V4hxseDtp/7dza+t+RXWknpZG6gplIaVqN0Ol30G Ds/YtTxgcwZnalKXNaLyt5Noj/S7ExyHq5L31w+B11K3O3JsxSyDE6ICAE/ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlZ7tCcs4PlBtN+5J2R6LHMKiDN4wHwYDVR0j BBgwFoAUQAZJmd7D872FxPiDmCtY12JG7oQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDBkMmQzZTMtNGMyMC00YTkwLTgzM2UtZWFkNDNjMzM5OTFlLzAvNDAwNjQ5OTlE RUMzRjNCRDg1QzRGODgzOTgyQjU4RDc2MjQ2RUU4NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDA2NDk5OURFQzNGM0JEODVDNEY4ODM5ODJCNThENzYyNDZF RTg0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDBkMmQzZTMtNGMyMC00YTkwLTgz M2UtZWFkNDNjMzM5OTFlLzAvNDAwNjQ5OTlERUMzRjNCRDg1QzRGODgzOTgyQjU4 RDc2MjQ2RUU4NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHnhgYTTQKBf/iPYKRd65oE3bxZ9Ts7zaomn xDWbbHKCbJLlHeRn2jjNBGGaRtsCT4J8nDwTq6puDHfGHrDbldhyI1F/ws8/zKpc lDr6juiaYoAhOWLzzIbcU+iFdty81ef/ZwC6BmOCKaTToR+7sQJXr2Gh4ihOR4JZ bhk0pSeVSMW6ehQIE1eYJto6XjDE06XvLBWAb+7WZCaUJYqN/Ecz9u+IAsKCegA/ f/feEN1RmUGGY2GmWXsJaDoqKYPn0O1SEaU1vixG2Sk5gQBAUY1D8TLZNY3+kAqZ z1cK9AFYAfVmSTBKwGhqLakA/Pt9ldTu3kexlVCvuwv8Y2DhpoA= -----END CERTIFICATE-----Generated at Wed Jun 3 03:39:05 2026 by rpki-client