$ rpki-client -vvf repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft File: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft (raw, json) Hash identifier: c/z/A35D+hV6vdxwDrhMcASKTmwGx9puJngM36i4IrE= Subject key identifier: 2C:32:93:16:F2:26:BB:47:F4:CB:0B:76:A3:F6:30:0B:34:97:E2:AB Authority key identifier: 52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 Certificate issuer: /CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Certificate serial: 1710D75AD51586285550B7AFA9A369067CBA3A18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft Manifest number: 02B8 Signing time: Wed 25 Mar 2026 12:00:59 +0000 Manifest this update: Wed 25 Mar 2026 11:55:59 +0000 Manifest next update: Sat 28 Mar 2026 16:15:59 +0000 Files and hashes: 1: 3130332e3138302e3136352e302f32342d3234203d3e20313338313331.roa (hash: UDP5vaqP++IAcM6lMBhTtGhgbdITohHwdo+pbRZf5tI=) 2: 3130332e3138302e3136342e302f32332d3233203d3e20313338313331.roa (hash: YBihOSXIj0+TsV9w8FB5TlmuTjj67BcUuD5PWZy4luk=) 3: 52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl (hash: q0MAyktl/i/FbKDhxxiiyKdFFqQT1PQV9LY0CkyzmDo=) 4: 3130332e3138302e3136342e302f32342d3234203d3e20313338313331.roa (hash: fKMeJeAwMbkwf1kmZ/AB9YQDJH0OhHULVGJWeX+RPu0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 16:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:10:d7:5a:d5:15:86:28:55:50:b7:af:a9:a3:69:06:7c:ba:3a:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52E77B06BC2691C613C7A9872EE1E28FCB8AA245 Validity Not Before: Mar 25 11:55:59 2026 GMT Not After : Mar 28 16:15:59 2026 GMT Subject: CN=2C329316F226BB47F4CB0B76A3F6300B3497E2AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:73:0a:9b:87:ef:57:46:74:1d:0e:85:1b:8e: ec:25:e0:b0:72:c4:c5:53:84:2f:59:c6:8f:a4:92: b1:a9:ab:95:3b:58:6a:53:09:be:2e:d7:eb:7f:8a: b4:c9:d5:3a:83:d9:7c:8c:5e:02:51:cc:18:74:35: b8:1c:d7:18:7d:ff:68:c0:d7:02:76:a5:45:b8:cf: be:e9:bb:1d:45:e5:54:79:4b:90:89:7a:9a:3c:07: ec:0d:a4:b2:84:f1:1b:f3:06:c2:1b:6f:74:d6:46: b3:32:8f:01:d7:71:23:1c:1f:4d:9e:f8:91:dc:c0: c9:fc:0f:f3:71:88:e2:8c:fb:af:92:eb:7f:9c:64: b9:eb:bc:19:31:bb:c2:59:fb:cc:1e:ec:2e:bf:32: ab:e7:6c:3d:cf:3d:c6:02:4f:d9:6a:f6:0a:37:08: bc:96:5e:d3:a8:95:fa:38:49:a0:c0:7b:e8:08:1c: 69:4c:c6:e3:31:d6:45:8f:58:1f:95:36:42:da:5a: 9f:d7:26:f2:e7:d1:42:e6:65:4e:20:63:1f:54:97: cb:3c:bc:39:a0:6c:a4:8f:4e:d7:6e:48:ac:37:b8: 18:ee:b9:f6:5e:08:7e:61:c1:41:65:2a:36:b9:19: f8:eb:fb:62:fa:3e:ff:ad:fe:a1:60:12:7a:4e:c2: 34:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:32:93:16:F2:26:BB:47:F4:CB:0B:76:A3:F6:30:0B:34:97:E2:AB X509v3 Authority Key Identifier: keyid:52:E7:7B:06:BC:26:91:C6:13:C7:A9:87:2E:E1:E2:8F:CB:8A:A2:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03908782-4520-45b4-99ed-193e51df51c3/0/52E77B06BC2691C613C7A9872EE1E28FCB8AA245.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:e3:12:52:f6:d6:50:a3:93:f5:b4:04:7b:fb:c2:ca:33:4a: 91:21:81:87:bc:50:ef:fb:93:d5:e5:7e:d1:11:56:a5:87:5e: d9:7d:16:5b:a4:ae:ce:aa:22:cc:08:bf:1f:26:cf:ff:48:15: 16:2f:9f:55:d0:13:b6:e7:7a:a8:8a:92:68:1c:35:db:79:63: 0c:b6:08:6c:f9:44:e3:5a:a8:67:56:bb:41:48:4b:e5:9b:74: 6e:87:62:48:6c:30:eb:1b:fb:d4:d7:4a:7f:f1:18:ab:8b:49: 3e:5b:1a:f7:27:c6:6c:ce:9f:3f:36:38:71:03:7f:8b:44:78: 2a:25:f1:18:bb:7c:69:ef:a2:7f:e3:65:c7:be:d9:c2:74:43: 92:cd:fa:74:28:8f:e8:16:91:fa:61:ef:39:25:ef:2a:fb:b9: 0d:b9:f8:3d:81:4e:d9:9f:47:6e:32:0e:63:f3:8a:4b:cf:18: 34:cd:d1:fc:29:1d:ed:be:dd:7b:05:15:7a:0e:ed:52:8e:3f: 70:99:88:9c:87:a4:98:4d:1f:f8:dc:51:bd:73:5e:36:5b:2a: 45:17:8f:ba:44:40:11:57:82:db:54:5e:1f:45:02:79:08:71: 22:a2:9d:d9:7d:e6:ec:4a:b4:79:f7:5e:a5:61:ad:83:8b:fc: 54:d1:fa:3b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFxDXWtUVhihVULevqaNpBny6OhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZD QjhBQTI0NTAeFw0yNjAzMjUxMTU1NTlaFw0yNjAzMjgxNjE1NTlaMDMxMTAvBgNV BAMTKDJDMzI5MzE2RjIyNkJCNDdGNENCMEI3NkEzRjYzMDBCMzQ5N0UyQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDucwqbh+9XRnQdDoUbjuwl4LBy xMVThC9Zxo+kkrGpq5U7WGpTCb4u1+t/irTJ1TqD2XyMXgJRzBh0Nbgc1xh9/2jA 1wJ2pUW4z77pux1F5VR5S5CJepo8B+wNpLKE8RvzBsIbb3TWRrMyjwHXcSMcH02e +JHcwMn8D/NxiOKM+6+S63+cZLnrvBkxu8JZ+8we7C6/MqvnbD3PPcYCT9lq9go3 CLyWXtOolfo4SaDAe+gIHGlMxuMx1kWPWB+VNkLaWp/XJvLn0ULmZU4gYx9Ul8s8 vDmgbKSPTtduSKw3uBjuufZeCH5hwUFlKja5Gfjr+2L6Pv+t/qFgEnpOwjQTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULDKTFvImu0f0ywt2o/YwCzSX4qswHwYDVR0j BBgwFoAUUud7BrwmkcYTx6mHLuHij8uKokUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzkwODc4Mi00NTIwLTQ1YjQtOTllZC0xOTNlNTFkZjUxYzMvMC81MkU3N0IwNkJD MjY5MUM2MTNDN0E5ODcyRUUxRTI4RkNCOEFBMjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUyOEZDQjhB QTI0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDM5MDg3ODItNDUyMC00NWI0LTk5 ZWQtMTkzZTUxZGY1MWMzLzAvNTJFNzdCMDZCQzI2OTFDNjEzQzdBOTg3MkVFMUUy OEZDQjhBQTI0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAALjElL21lCjk/W0BHv7wsozSpEhgYe8UO/7 k9XlftERVqWHXtl9Flukrs6qIswIvx8mz/9IFRYvn1XQE7bneqiKkmgcNdt5Ywy2 CGz5RONaqGdWu0FIS+WbdG6HYkhsMOsb+9TXSn/xGKuLST5bGvcnxmzOnz82OHED f4tEeCol8Ri7fGnvon/jZce+2cJ0Q5LN+nQoj+gWkfph7zkl7yr7uQ25+D2BTtmf R24yDmPzikvPGDTN0fwpHe2+3XsFFXoO7VKOP3CZiJyHpJhNH/jcUb1zXjZbKkUX j7pEQBFXgttUXh9FAnkIcSKindl95uxKtHn3XqVhrYOL/FTR+js= -----END CERTIFICATE-----Generated at Thu Mar 26 21:18:31 2026 by rpki-client