$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: 9UyS/DKR/6T3EUuUPonH7uE+VJSTq/k/yUdq/yOIwAs= Subject key identifier: 2A:CF:05:1A:19:0A:65:2F:75:D5:92:42:6A:3B:EE:E2:6F:03:2F:F6 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 15D280400F975E66373AD643AA3361BF7791B116 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 01C4 Signing time: Tue 24 Mar 2026 20:52:33 +0000 Manifest this update: Tue 24 Mar 2026 20:47:33 +0000 Manifest next update: Fri 27 Mar 2026 22:53:33 +0000 Files and hashes: 1: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: jIYnBWpRIfNhSyhM33cDKNBLmiLxKPQj3seMnEXGPr0=) 2: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) 3: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 4: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 5: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 22:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:d2:80:40:0f:97:5e:66:37:3a:d6:43:aa:33:61:bf:77:91:b1:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Mar 24 20:47:33 2026 GMT Not After : Mar 27 22:53:33 2026 GMT Subject: CN=2ACF051A190A652F75D592426A3BEEE26F032FF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c9:85:c3:b2:0e:01:ec:6c:0e:bc:c9:6f:62: 65:dd:eb:a3:9a:66:be:40:80:e7:91:a0:0e:9a:c7: b8:a3:73:89:e9:d9:ab:07:c8:4c:d2:eb:b8:b1:a7: 4d:45:51:ea:b9:a9:7d:ec:49:8b:52:f2:57:12:8f: d2:22:59:ba:a3:12:fd:7a:35:af:1c:aa:ea:8f:09: a1:5e:0b:cf:77:91:d6:16:31:d3:2a:27:0f:3e:c3: 98:88:09:26:71:58:b6:e5:23:61:7a:53:e3:31:3a: 35:23:f0:aa:6c:8d:f9:e8:e3:da:1d:ca:3c:5c:cb: df:2e:b9:9a:43:57:f9:75:a6:43:43:3f:cb:9d:84: 8d:92:40:65:e2:e1:28:31:fe:fa:9b:83:8f:84:47: 7e:68:0f:05:f4:b5:b7:02:4c:6f:cd:c7:e2:83:7e: 82:ae:18:10:7d:a6:29:c0:57:79:38:f1:16:63:92: c4:3e:81:84:1a:b3:b2:60:94:93:eb:e3:40:d3:20: 1b:ca:d7:b4:bc:f7:d5:4f:fb:1b:0c:7a:d9:e5:81: 0e:09:e1:8a:89:79:e9:7f:b3:f5:c5:20:02:53:b4: b4:88:9a:57:df:b1:68:8c:0c:ed:e7:fc:bb:82:9d: 68:77:8e:25:cb:ef:9b:b7:f0:c6:4b:f7:7d:9c:95: b2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:CF:05:1A:19:0A:65:2F:75:D5:92:42:6A:3B:EE:E2:6F:03:2F:F6 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:74:3b:ed:85:1b:e7:0d:41:9b:ec:3a:57:9c:85:ee:59:8b: 1d:69:27:57:31:48:29:7b:0a:0b:f1:71:39:28:6c:ab:b4:46: f8:85:bf:a4:69:4e:ab:4d:19:7d:76:97:5e:e5:5b:2c:74:ec: 1d:44:b1:63:cd:a4:14:db:36:3d:a9:8f:95:e1:81:2d:5b:27: 2f:0f:cd:d4:59:1b:ae:28:bc:fa:4f:5f:fe:9b:12:e4:15:80: 57:bc:b7:d5:61:30:4d:e9:1a:6c:e6:da:60:9e:26:ee:74:27: a6:5e:90:df:db:5c:ff:e3:8c:14:2f:92:c9:a4:6c:57:51:2d: fb:01:b7:ff:cb:c2:99:b5:27:89:07:6c:fe:15:94:13:25:2c: 54:7f:57:6f:28:64:16:e3:e6:78:bf:5d:0b:39:97:92:7c:e9: 9f:1f:74:86:64:60:a3:fd:89:7a:d1:57:8c:5a:13:84:fc:db: f4:5c:75:c9:9b:5e:d3:53:4b:2c:83:35:74:48:36:3f:6a:c2: 75:a2:82:49:92:e2:04:3d:c7:29:7b:b4:77:1c:e4:6c:60:ae: 7c:c7:8b:2a:ec:60:9f:f4:2b:9b:18:ad:9c:34:45:4e:8b:4d: 8a:31:e7:ed:d2:01:ec:0f:8f:26:ea:77:7f:0e:14:40:77:c9: 64:3f:6f:5a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFdKAQA+XXmY3OtZDqjNhv3eRsRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNjAzMjQyMDQ3MzNaFw0yNjAzMjcyMjUzMzNaMDMxMTAvBgNV BAMTKDJBQ0YwNTFBMTkwQTY1MkY3NUQ1OTI0MjZBM0JFRUUyNkYwMzJGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0yYXDsg4B7GwOvMlvYmXd66Oa Zr5AgOeRoA6ax7ijc4np2asHyEzS67ixp01FUeq5qX3sSYtS8lcSj9IiWbqjEv16 Na8cquqPCaFeC893kdYWMdMqJw8+w5iICSZxWLblI2F6U+MxOjUj8Kpsjfno49od yjxcy98uuZpDV/l1pkNDP8udhI2SQGXi4Sgx/vqbg4+ER35oDwX0tbcCTG/Nx+KD foKuGBB9pinAV3k48RZjksQ+gYQas7JglJPr40DTIBvK17S899VP+xsMetnlgQ4J 4YqJeel/s/XFIAJTtLSImlffsWiMDO3n/LuCnWh3jiXL75u38MZL932clbKrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKs8FGhkKZS911ZJCajvu4m8DL/YwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALJ0O+2FG+cNQZvsOleche5Zix1pJ1cxSCl7 CgvxcTkobKu0RviFv6RpTqtNGX12l17lWyx07B1EsWPNpBTbNj2pj5XhgS1bJy8P zdRZG64ovPpPX/6bEuQVgFe8t9VhME3pGmzm2mCeJu50J6ZekN/bXP/jjBQvksmk bFdRLfsBt//Lwpm1J4kHbP4VlBMlLFR/V28oZBbj5ni/XQs5l5J86Z8fdIZkYKP9 iXrRV4xaE4T82/RcdcmbXtNTSyyDNXRINj9qwnWigkmS4gQ9xyl7tHcc5GxgrnzH iyrsYJ/0K5sYrZw0RU6LTYox5+3SAewPjybqd38OFEB3yWQ/b1o= -----END CERTIFICATE-----Generated at Thu Mar 26 18:28:19 2026 by rpki-client