$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: 8eg68anpv2KBvNgsj1GS9465dMmaJK3C081ByJM/QrE= Subject key identifier: C7:4E:56:1D:64:E6:DB:43:5E:A4:D1:DA:56:15:01:EE:11:1E:C0:CA Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 1C75D86F65C5F9594DC52F4CB9093EB738E7003D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 0137 Signing time: Tue 24 Mar 2026 18:01:15 +0000 Manifest this update: Tue 24 Mar 2026 17:56:15 +0000 Manifest next update: Sat 28 Mar 2026 01:02:15 +0000 Files and hashes: 1: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (hash: O5uJEpO5oilAXqiR31tNYgCroCKbL1/bMOK5Er+Qs0U=) 2: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 3: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: AZ6TSGCr13ybsTt+kF7WW1rFyEmK5lU3DNCF19s0+NY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:75:d8:6f:65:c5:f9:59:4d:c5:2f:4c:b9:09:3e:b7:38:e7:00:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Mar 24 17:56:15 2026 GMT Not After : Mar 28 01:02:15 2026 GMT Subject: CN=C74E561D64E6DB435EA4D1DA561501EE111EC0CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:47:c7:05:d2:93:a9:b5:1e:3c:17:cf:01:1d: dd:ba:80:35:fa:b9:c9:57:fb:88:de:1e:f0:62:54: db:ce:83:28:71:a5:91:73:e3:53:68:5c:67:90:1e: 9e:80:40:f7:a9:4a:fb:c3:57:c6:eb:42:52:b8:54: 1c:52:1c:a7:da:0e:35:fc:bb:f0:48:fd:7e:26:0e: e9:ce:e0:d7:11:b8:22:89:00:d3:9c:f0:7e:e1:72: b9:66:25:15:e9:e6:f9:0e:98:dc:d4:d5:66:5b:8b: e9:0f:50:ed:d9:21:c0:a9:e8:18:c0:f1:0b:75:ba: 05:76:0c:61:ff:92:09:d1:b2:9d:ac:e3:21:58:e7: 27:58:a7:1f:c2:dd:a8:ff:07:ec:f7:85:9a:52:5b: 51:fe:e6:b9:1e:6e:be:d0:70:2e:bf:88:28:41:4e: 15:f2:bb:6d:ab:73:f8:2c:6b:72:0f:94:2c:95:01: 2a:b1:2a:92:e6:d7:f2:3c:c3:a8:ec:a5:71:57:ae: 91:f8:d1:ff:6d:81:9c:f5:4c:af:62:e6:db:1d:05: ec:6b:5c:d4:4f:73:24:2b:68:0a:01:aa:27:1b:7b: 21:2c:60:b8:7f:2a:8f:db:db:e1:99:18:95:68:d9: ee:50:b7:aa:42:5c:74:c1:38:c2:3a:7b:24:9e:63: ea:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4E:56:1D:64:E6:DB:43:5E:A4:D1:DA:56:15:01:EE:11:1E:C0:CA X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:a2:b1:77:5a:f0:bb:5f:7d:ba:a6:55:f8:59:d4:a4:a6:3e: ed:82:0b:cb:16:56:48:2a:89:00:5d:11:a0:ce:7a:60:de:08: 12:31:c9:98:fe:6f:bb:a6:68:66:2d:c6:d4:1a:08:56:83:12: a1:43:ab:cd:45:5b:3a:11:fc:7d:09:c4:c9:08:ff:b5:e5:e2: b0:15:7c:cc:d5:c9:2e:30:63:0b:c8:87:93:43:48:19:2d:9c: 12:e2:da:2d:86:20:6a:c4:96:5d:4d:60:17:1f:8a:9b:bf:88: ae:07:f2:db:54:af:c2:c8:fc:3e:09:78:09:b9:1d:52:1e:24: da:6d:fb:40:a0:63:1e:7f:6c:f5:66:5e:fd:2e:88:38:7c:d0: a2:fe:24:80:0c:68:77:bd:80:6d:50:9e:cb:ba:28:be:82:c9: 67:68:b0:47:de:29:6f:68:6f:37:00:6a:4c:c4:23:43:46:23: 1e:2b:2f:07:91:a3:3a:9b:0b:32:1a:7e:c2:e2:78:61:e1:1c: 64:b2:c6:6e:94:bd:38:38:7b:a9:60:10:de:be:9c:45:f5:94: 52:f2:14:5a:12:1c:35:80:81:ab:58:42:54:3c:3b:0e:48:96: 79:63:6e:e9:06:71:a5:79:61:14:b9:2c:3a:78:82:02:13:7d: 51:f2:65:3d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHHXYb2XF+VlNxS9MuQk+tzjnAD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNjAzMjQxNzU2MTVaFw0yNjAzMjgwMTAyMTVaMDMxMTAvBgNV BAMTKEM3NEU1NjFENjRFNkRCNDM1RUE0RDFEQTU2MTUwMUVFMTExRUMwQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCR8cF0pOptR48F88BHd26gDX6 uclX+4jeHvBiVNvOgyhxpZFz41NoXGeQHp6AQPepSvvDV8brQlK4VBxSHKfaDjX8 u/BI/X4mDunO4NcRuCKJANOc8H7hcrlmJRXp5vkOmNzU1WZbi+kPUO3ZIcCp6BjA 8Qt1ugV2DGH/kgnRsp2s4yFY5ydYpx/C3aj/B+z3hZpSW1H+5rkebr7QcC6/iChB ThXyu22rc/gsa3IPlCyVASqxKpLm1/I8w6jspXFXrpH40f9tgZz1TK9i5tsdBexr XNRPcyQraAoBqicbeyEsYLh/Ko/b2+GZGJVo2e5Qt6pCXHTBOMI6eySeY+phAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUx05WHWTm20NepNHaVhUB7hEewMowHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABaisXda8LtffbqmVfhZ1KSmPu2CC8sWVkgq iQBdEaDOemDeCBIxyZj+b7umaGYtxtQaCFaDEqFDq81FWzoR/H0JxMkI/7Xl4rAV fMzVyS4wYwvIh5NDSBktnBLi2i2GIGrEll1NYBcfipu/iK4H8ttUr8LI/D4JeAm5 HVIeJNpt+0CgYx5/bPVmXv0uiDh80KL+JIAMaHe9gG1Qnsu6KL6CyWdosEfeKW9o bzcAakzEI0NGIx4rLweRozqbCzIafsLieGHhHGSyxm6UvTg4e6lgEN6+nEX1lFLy FFoSHDWAgatYQlQ8Ow5IlnljbukGcaV5YRS5LDp4ggITfVHyZT0= -----END CERTIFICATE-----Generated at Thu Mar 26 19:25:02 2026 by rpki-client