$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: RgjffLlkxEvJ5skntzG7rLLqezj6cPu8bVrUPlQGots= Subject key identifier: F1:48:87:E4:1A:56:E0:45:EA:0C:BC:2C:18:8F:AC:DA:E2:5A:B0:DB Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 46FFF1CA3ADC61F3E60E60E308BCBF4DD9D00D96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 0295 Signing time: Wed 25 Mar 2026 11:42:00 +0000 Manifest this update: Wed 25 Mar 2026 11:37:00 +0000 Manifest next update: Sat 28 Mar 2026 20:42:00 +0000 Files and hashes: 1: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: FU4m4uM0eOvuHrbeEWpDEWdnGc1mYzPxVGKE41GscXY=) 2: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: hUygR1F36BFXE6jZfKUn6z9xWtDxXwKMMrnfrGbDbrA=) 3: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=) 4: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: m8bEgsXHh+YgtwU+CzhiKPB40Ctt/xg3kqIW+ha1n94=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 20:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ff:f1:ca:3a:dc:61:f3:e6:0e:60:e3:08:bc:bf:4d:d9:d0:0d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Mar 25 11:37:00 2026 GMT Not After : Mar 28 20:42:00 2026 GMT Subject: CN=F14887E41A56E045EA0CBC2C188FACDAE25AB0DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1d:ed:7c:64:b4:b8:2a:40:aa:aa:05:a0:8c: f5:ca:e1:ca:d8:b4:b7:e6:64:89:43:3a:fc:cc:4f: 6b:d4:71:28:d2:38:94:8c:20:75:5c:9e:03:16:df: b7:1b:4d:bd:64:ec:8e:93:e8:ba:8c:3c:a3:bb:89: a8:8c:70:fa:b5:70:54:92:a8:71:e5:32:83:85:30: 14:98:f9:5e:31:1d:83:11:69:04:06:47:58:a5:a7: d5:5e:79:c3:a5:53:ce:23:b8:c2:2f:81:9a:f3:10: cf:f5:6c:e1:fa:e1:b7:a0:e3:2c:99:a2:41:88:81: aa:9d:12:54:60:29:d8:27:6e:ee:ac:37:12:8a:2d: 0b:74:eb:4b:22:0b:a2:b2:3d:19:80:71:fc:25:01: a1:67:41:cb:30:20:f0:1c:8e:74:1d:43:dc:18:71: 81:a4:77:d7:d4:a0:57:56:dc:17:5d:51:88:e6:4b: 0f:04:30:46:24:57:1d:8e:40:5c:a1:57:8f:66:b5: a3:df:84:c5:f2:2a:1e:33:05:37:41:ab:4c:35:eb: a9:c8:f8:cd:5d:84:ee:54:a2:e4:87:e5:13:0a:84: 37:40:9f:ac:78:d3:6b:45:05:3b:2f:b2:c7:7b:ef: 49:22:b3:03:25:a3:24:c1:80:5d:7e:52:25:06:13: 5d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:48:87:E4:1A:56:E0:45:EA:0C:BC:2C:18:8F:AC:DA:E2:5A:B0:DB X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:f0:e3:54:32:fe:49:06:2d:4c:6c:90:2e:17:3d:ac:80:3c: f4:8a:43:3f:74:4f:b3:5f:54:8d:86:bd:2f:7d:b9:f5:de:3b: 59:d0:81:30:b0:dc:97:fa:9a:b3:d7:e6:c5:e9:ad:59:64:78: 31:9e:04:de:c7:82:f6:7f:90:38:45:07:a2:19:c7:58:9f:01: d6:0d:69:0d:20:f8:20:c0:16:01:e4:ae:a9:73:44:7f:3f:66: 0f:fb:12:f0:81:2c:1b:f7:dd:71:26:db:f6:9d:4f:08:70:24: e7:05:70:cf:60:34:ed:8e:4e:de:02:33:d5:79:12:6e:dd:1b: 49:89:6f:e1:1d:44:2f:57:60:41:57:0e:8a:a6:a2:50:8d:22: 92:23:d3:31:48:c7:af:09:e1:27:bc:97:cc:1e:b5:12:49:00: 80:f3:25:25:8e:43:45:60:a0:fa:8d:d2:3e:f3:da:71:7a:6a: 99:95:2e:6c:94:25:2a:ae:33:5b:0f:16:00:a2:36:6b:55:ef: 85:a0:83:21:49:52:64:03:9b:bd:45:e5:44:55:8e:de:49:94: 36:54:98:54:ae:fc:3d:68:be:d0:49:ef:82:d6:7b:58:ae:5f: b2:c9:fc:fd:58:b7:d1:a4:47:7a:cc:84:a8:b1:48:47:69:a3: 56:a4:6d:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURv/xyjrcYfPmDmDjCLy/TdnQDZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNjAzMjUxMTM3MDBaFw0yNjAzMjgyMDQyMDBaMDMxMTAvBgNV BAMTKEYxNDg4N0U0MUE1NkUwNDVFQTBDQkMyQzE4OEZBQ0RBRTI1QUIwREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfHe18ZLS4KkCqqgWgjPXK4crY tLfmZIlDOvzMT2vUcSjSOJSMIHVcngMW37cbTb1k7I6T6LqMPKO7iaiMcPq1cFSS qHHlMoOFMBSY+V4xHYMRaQQGR1ilp9VeecOlU84juMIvgZrzEM/1bOH64beg4yyZ okGIgaqdElRgKdgnbu6sNxKKLQt060siC6KyPRmAcfwlAaFnQcswIPAcjnQdQ9wY cYGkd9fUoFdW3BddUYjmSw8EMEYkVx2OQFyhV49mtaPfhMXyKh4zBTdBq0w166nI +M1dhO5UouSH5RMKhDdAn6x402tFBTsvssd770kiswMloyTBgF1+UiUGE103AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8UiH5BpW4EXqDLwsGI+s2uJasNswHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAbw41Qy/kkGLUxskC4XPayAPPSKQz90T7Nf VI2GvS99ufXeO1nQgTCw3Jf6mrPX5sXprVlkeDGeBN7HgvZ/kDhFB6IZx1ifAdYN aQ0g+CDAFgHkrqlzRH8/Zg/7EvCBLBv33XEm2/adTwhwJOcFcM9gNO2OTt4CM9V5 Em7dG0mJb+EdRC9XYEFXDoqmolCNIpIj0zFIx68J4Se8l8wetRJJAIDzJSWOQ0Vg oPqN0j7z2nF6apmVLmyUJSquM1sPFgCiNmtV74WggyFJUmQDm71F5URVjt5JlDZU mFSu/D1ovtBJ74LWe1iuX7LJ/P1Yt9GkR3rMhKixSEdpo1akbdA= -----END CERTIFICATE-----Generated at Thu Mar 26 18:57:43 2026 by rpki-client