$ rpki-client -vvf rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.mft File: 40CAF98483C41DA7BDC759A128942EA7634B575E.mft (raw, json) Hash identifier: h7kl7e5GEFNl6X7fwUwaS/Y9lS5yVSyF2kqNmhuLLlA= Subject key identifier: B1:15:17:24:B0:B1:42:E4:37:04:D0:2E:69:D8:E1:B1:CF:28:EB:70 Authority key identifier: 40:CA:F9:84:83:C4:1D:A7:BD:C7:59:A1:28:94:2E:A7:63:4B:57:5E Certificate issuer: /CN=40CAF98483C41DA7BDC759A128942EA7634B575E Certificate serial: 5B983871C3FB901EF92F6AA021D9122D9AF5578B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40CAF98483C41DA7BDC759A128942EA7634B575E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.mft Manifest number: 42 Signing time: Sat 20 Jun 2026 03:59:38 +0000 Manifest this update: Sat 20 Jun 2026 03:54:38 +0000 Manifest next update: Sun 21 Jun 2026 07:48:38 +0000 Files and hashes: 1: 40CAF98483C41DA7BDC759A128942EA7634B575E.crl (hash: wCongqSXEWh152bKfjwQmHPJkddhE3tKuX/uKzgsZxo=) 2: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (hash: CWqy2Yz1lUV+bgx0wIDq9A3JsKeVTWQekOJKBjnBtxc=) 3: 3130332e3138392e3131302e302f32332d3233203d3e20313439373439.roa (hash: Meb8QhT2vDYvkg9nVv8g0QFyTeOgXHkvo1+qGouJHvs=) 4: 3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa (hash: XUWyeU0kh6yequAHewJPZ2w5whyQqogEceIV/kyUeMY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.crl rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40CAF98483C41DA7BDC759A128942EA7634B575E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 07:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:98:38:71:c3:fb:90:1e:f9:2f:6a:a0:21:d9:12:2d:9a:f5:57:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40CAF98483C41DA7BDC759A128942EA7634B575E Validity Not Before: Jun 20 03:54:38 2026 GMT Not After : Jun 21 07:48:38 2026 GMT Subject: CN=B1151724B0B142E43704D02E69D8E1B1CF28EB70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:b9:3b:06:33:9a:03:88:0b:4d:4d:e8:cb: 8f:3d:fd:8b:03:fb:47:bb:32:1a:db:88:65:9a:ae: 8d:e4:5b:bf:d1:e8:a2:e9:9f:95:73:04:f5:52:41: f9:4a:06:97:bc:85:3d:a4:28:bf:2a:a6:e5:d2:31: a6:52:b2:7c:c6:88:b0:98:9e:36:9a:90:80:1a:05: 96:bf:52:06:a7:12:7e:34:83:86:96:f0:d5:9c:ed: 17:26:c8:6e:be:80:b5:59:63:d9:65:8d:af:72:0f: a9:99:45:c3:18:5d:8d:ea:20:f0:40:34:ec:20:81: 90:22:50:4c:8d:11:63:98:ec:7c:f0:db:b5:d4:e9: 40:3f:07:3a:4f:2e:20:6a:48:01:82:f9:81:30:fd: bd:d6:33:c7:f9:de:87:a1:54:1d:55:90:2c:ff:48: 5f:e0:d5:d7:b0:2b:20:f5:d4:67:11:a4:db:61:10: 26:ab:68:b5:7b:19:42:fa:e3:ef:19:38:5c:9b:d2: 01:b6:66:95:d1:b8:7a:6e:fe:e0:3f:04:3f:6e:aa: 3b:d3:1f:f5:21:f3:66:af:14:6a:01:e3:61:9b:44: 4c:d9:56:4a:4c:37:8f:ef:94:6b:86:54:5c:5c:0c: 5f:f3:f2:f5:11:8a:85:d8:18:fd:e2:66:a6:0c:1a: 0a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:15:17:24:B0:B1:42:E4:37:04:D0:2E:69:D8:E1:B1:CF:28:EB:70 X509v3 Authority Key Identifier: keyid:40:CA:F9:84:83:C4:1D:A7:BD:C7:59:A1:28:94:2E:A7:63:4B:57:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40CAF98483C41DA7BDC759A128942EA7634B575E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/40CAF98483C41DA7BDC759A128942EA7634B575E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:5d:13:51:cd:42:54:fd:9f:55:0f:67:cc:3d:03:2e:ec:41: ce:7d:8e:21:ee:57:bb:13:d0:a6:aa:35:64:d0:bd:7e:41:22: 97:14:fe:ab:fc:d7:96:fa:06:50:63:d4:ac:dc:12:cb:1e:b4: b7:7c:9a:d1:78:2d:bb:87:64:9d:11:0d:ae:30:9e:cb:3c:22: 7f:8f:98:7a:77:cc:3f:13:62:21:51:af:ba:25:5f:de:7e:ee: 40:07:75:be:8b:1e:54:00:25:57:37:3d:13:4d:05:ce:35:fc: bd:20:89:42:67:1e:e8:98:6f:ee:3c:f6:2a:9e:9f:e2:83:00: 62:88:3d:36:9d:12:21:83:5f:39:b4:d4:ca:fb:7a:6d:48:cf: f8:76:d5:3a:95:1b:6e:16:61:3c:cd:17:f6:ce:a6:83:f7:67: 89:fd:9e:70:c8:00:42:f5:32:9c:91:17:9a:f5:a7:cb:f3:7e: 73:7e:df:89:de:df:08:ae:b9:2c:ad:1a:f2:f6:d0:95:7b:3e: 24:6c:91:7d:06:fe:f0:c9:af:9f:f0:06:75:00:7f:e3:1d:98: 2e:9a:d5:fe:d9:7d:c7:45:34:bf:49:c7:b5:df:10:b4:de:56: 1b:0c:d8:8f:94:40:2d:e8:d3:4d:f9:53:38:18:38:09:41:c4: e3:bd:70:d3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW5g4ccP7kB75L2qgIdkSLZr1V4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDQUY5ODQ4M0M0MURBN0JEQzc1OUExMjg5NDJFQTc2 MzRCNTc1RTAeFw0yNjA2MjAwMzU0MzhaFw0yNjA2MjEwNzQ4MzhaMDMxMTAvBgNV BAMTKEIxMTUxNzI0QjBCMTQyRTQzNzA0RDAyRTY5RDhFMUIxQ0YyOEVCNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/5bk7BjOaA4gLTU3oy489/YsD +0e7MhrbiGWaro3kW7/R6KLpn5VzBPVSQflKBpe8hT2kKL8qpuXSMaZSsnzGiLCY njaakIAaBZa/UganEn40g4aW8NWc7RcmyG6+gLVZY9llja9yD6mZRcMYXY3qIPBA NOwggZAiUEyNEWOY7Hzw27XU6UA/BzpPLiBqSAGC+YEw/b3WM8f53oehVB1VkCz/ SF/g1dewKyD11GcRpNthECaraLV7GUL64+8ZOFyb0gG2ZpXRuHpu/uA/BD9uqjvT H/Uh82avFGoB42GbREzZVkpMN4/vlGuGVFxcDF/z8vURioXYGP3iZqYMGgpjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsRUXJLCxQuQ3BNAuadjhsc8o63AwHwYDVR0j BBgwFoAUQMr5hIPEHae9x1mhKJQup2NLV14wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA1ZTVhMzAtMDgwMi00YzVjLTk0N2UtOThlZjI4NWY0ZjZiLzAvNDBDQUY5ODQ4 M0M0MURBN0JEQzc1OUExMjg5NDJFQTc2MzRCNTc1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MENBRjk4NDgzQzQxREE3QkRDNzU5QTEyODk0MkVBNzYzNEI1 NzVFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDA1ZTVhMzAtMDgwMi00YzVjLTk0 N2UtOThlZjI4NWY0ZjZiLzAvNDBDQUY5ODQ4M0M0MURBN0JEQzc1OUExMjg5NDJF QTc2MzRCNTc1RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABVdE1HNQlT9n1UPZ8w9Ay7sQc59jiHuV7sT 0KaqNWTQvX5BIpcU/qv815b6BlBj1KzcEssetLd8mtF4LbuHZJ0RDa4wnss8In+P mHp3zD8TYiFRr7olX95+7kAHdb6LHlQAJVc3PRNNBc41/L0giUJnHuiYb+489iqe n+KDAGKIPTadEiGDXzm01Mr7em1Iz/h21TqVG24WYTzNF/bOpoP3Z4n9nnDIAEL1 MpyRF5r1p8vzfnN+34ne3wiuuSytGvL20JV7PiRskX0G/vDJr5/wBnUAf+MdmC6a 1f7ZfcdFNL9Jx7XfELTeVhsM2I+UQC3o0035UzgYOAlBxOO9cNM= -----END CERTIFICATE-----Generated at Sat Jun 20 08:59:42 2026 by rpki-client