$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: rnQJ6JaIWwBKCHxA0B8I0vc21iKpvCYBNO2KVV2fYUk= Subject key identifier: A2:D8:99:50:93:7D:1A:9C:AC:B6:E0:95:20:0F:C9:A9:58:F7:22:5E Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 1C5B347D56AF74CFAB48E696438709D21BF83832 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 01F9 Signing time: Tue 24 Mar 2026 12:02:35 +0000 Manifest this update: Tue 24 Mar 2026 11:57:35 +0000 Manifest next update: Fri 27 Mar 2026 23:56:35 +0000 Files and hashes: 1: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: 96CJnoxRV4HGvhsn3PFsL8qIqJQvuSs5NCO8lzcHZm0=) 2: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: U3QvM9qWK+TJhBGDojanDKA8oPNCYIB5ZhNuA/z08gw=) 3: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: ZwgzI70cRIGGjzgb61kVNqQevJhfsp18mVlNPja2oRg=) 4: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: OMSstG+v7qZjFWCJ4NvuRl4cKaVI80js4sry1SoLSN0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 23:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5b:34:7d:56:af:74:cf:ab:48:e6:96:43:87:09:d2:1b:f8:38:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Mar 24 11:57:35 2026 GMT Not After : Mar 27 23:56:35 2026 GMT Subject: CN=A2D89950937D1A9CACB6E095200FC9A958F7225E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:74:eb:6e:de:8f:56:70:a8:d2:ae:e6:69: 9e:1c:42:4b:a1:07:d0:52:0b:23:bb:d8:12:be:a7: 49:3a:f4:02:01:08:28:c1:56:36:40:1a:93:73:7f: 30:35:08:99:26:be:7a:cb:a2:ec:3d:3b:03:52:e7: 94:05:9b:68:d0:4a:da:82:2b:11:83:2d:f7:d6:6f: db:1e:a3:5d:35:4d:d2:35:a2:92:73:83:6a:f5:c8: fa:51:5e:ec:2a:bc:68:4c:cd:20:77:57:6e:51:a8: 32:c1:21:a2:4f:2b:bd:ab:03:cb:78:16:84:47:61: 7f:5d:66:ad:ff:6b:d3:7f:12:ac:9c:90:b8:67:b0: b9:50:2b:8e:40:93:fb:c7:f3:49:0b:50:af:8b:58: 09:02:ff:d0:e5:7d:6f:74:a4:87:33:4c:4f:51:c4: 25:a7:ec:de:c4:e1:f5:6d:d8:4a:2c:52:f0:18:3e: 2d:59:3e:44:09:f5:23:29:9c:02:b5:4c:31:0b:67: 01:ab:a5:97:11:09:41:90:b0:17:66:69:9e:8b:83: 5e:aa:96:fa:f0:60:d1:69:e4:ea:b4:5b:ee:c1:fd: 19:29:f7:56:1c:7e:78:62:af:9c:7d:50:19:f1:f6: bf:31:0d:15:3d:2f:48:83:26:d6:af:64:7b:81:c3: 5f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D8:99:50:93:7D:1A:9C:AC:B6:E0:95:20:0F:C9:A9:58:F7:22:5E X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:a7:b5:f5:1e:a7:14:1d:4c:c4:06:a1:7a:79:89:99:dc:c8: 6a:61:8c:7e:82:15:6d:85:58:0d:dd:37:3b:fa:21:f1:ac:91: b2:e0:6d:69:6b:3a:30:5d:52:9b:18:e0:e5:f3:93:37:41:ba: 6d:b5:dd:eb:73:53:4a:33:6b:eb:2d:c9:ec:bd:14:7d:34:e3: 69:39:b6:c5:99:b2:74:bc:cc:12:ee:b8:7f:8b:77:f9:9c:f0: 1d:31:a5:67:a1:49:40:85:5e:cb:17:9b:54:ce:89:13:6f:6b: 37:24:67:2e:52:7a:c0:2d:b1:a8:16:20:e2:76:2e:0d:b1:37: 20:b6:61:ff:73:e0:dc:96:32:13:ca:18:33:d9:2d:86:17:ce: bc:71:12:77:23:5b:04:4a:3a:15:58:b6:2b:a7:c6:c2:75:3b: c6:be:17:ff:06:ff:77:76:e4:d5:98:f4:b8:35:a4:bf:c0:e3: 5a:45:f3:fd:3b:35:fd:2e:df:3e:80:99:d3:07:ed:82:39:c1: db:c9:e8:74:6d:a9:bb:34:42:65:67:33:94:e5:cb:3c:67:8a: 17:c1:aa:08:73:ad:f8:53:7a:95:6d:91:dd:a4:ca:9b:87:39: c8:27:7f:c2:cf:35:2d:64:21:f8:d7:ad:f8:ca:9f:6f:38:f8: 6e:1b:eb:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHFs0fVavdM+rSOaWQ4cJ0hv4ODIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNjAzMjQxMTU3MzVaFw0yNjAzMjcyMzU2MzVaMDMxMTAvBgNV BAMTKEEyRDg5OTUwOTM3RDFBOUNBQ0I2RTA5NTIwMEZDOUE5NThGNzIyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAgnTrbt6PVnCo0q7maZ4cQkuh B9BSCyO72BK+p0k69AIBCCjBVjZAGpNzfzA1CJkmvnrLouw9OwNS55QFm2jQStqC KxGDLffWb9seo101TdI1opJzg2r1yPpRXuwqvGhMzSB3V25RqDLBIaJPK72rA8t4 FoRHYX9dZq3/a9N/EqyckLhnsLlQK45Ak/vH80kLUK+LWAkC/9DlfW90pIczTE9R xCWn7N7E4fVt2EosUvAYPi1ZPkQJ9SMpnAK1TDELZwGrpZcRCUGQsBdmaZ6Lg16q lvrwYNFp5Oq0W+7B/Rkp91Ycfnhir5x9UBnx9r8xDRU9L0iDJtavZHuBw18dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUotiZUJN9GpystuCVIA/JqVj3Il4wHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEqntfUepxQdTMQGoXp5iZncyGphjH6CFW2F WA3dNzv6IfGskbLgbWlrOjBdUpsY4OXzkzdBum213etzU0oza+styey9FH0042k5 tsWZsnS8zBLuuH+Ld/mc8B0xpWehSUCFXssXm1TOiRNvazckZy5SesAtsagWIOJ2 Lg2xNyC2Yf9z4NyWMhPKGDPZLYYXzrxxEncjWwRKOhVYtiunxsJ1O8a+F/8G/3d2 5NWY9Lg1pL/A41pF8/07Nf0u3z6AmdMH7YI5wdvJ6HRtqbs0QmVnM5TlyzxnihfB qghzrfhTepVtkd2kypuHOcgnf8LPNS1kIfjXrfjKn284+G4b6/g= -----END CERTIFICATE-----Generated at Thu Mar 26 18:18:46 2026 by rpki-client