$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: pyd3UtmWNwQCiB+Hhhwsw9b3ZFAKUty2wNOJki/ID5I= Subject key identifier: 00:52:D5:53:46:4C:79:70:5C:47:EE:57:F6:C6:87:4A:21:18:BB:72 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 313BE71C86A0212DEE105359C0B3DC910B955C9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: 015A Signing time: Wed 25 Mar 2026 09:20:00 +0000 Manifest this update: Wed 25 Mar 2026 09:15:00 +0000 Manifest next update: Sat 28 Mar 2026 16:14:00 +0000 Files and hashes: 1: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: UFtU9o1kB921h69yhul4TqQ6uCr83bAhKMCbeN5Rh4s=) 2: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: s2utPuT9/Rrfn+3q49rkE18sSG/2dm9VSsVmVu4LpF4=) 3: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: aAScp8IjqsY2CuVPSrU8aKaQppxc8AjfgFBueh9FUNg=) 4: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: SUamCO6hFRRECd6YOsV3frJr4xTHA6yMIWiVBv2Urhg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 16:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:3b:e7:1c:86:a0:21:2d:ee:10:53:59:c0:b3:dc:91:0b:95:5c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Mar 25 09:15:00 2026 GMT Not After : Mar 28 16:14:00 2026 GMT Subject: CN=0052D553464C79705C47EE57F6C6874A2118BB72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0d:2a:53:0d:00:23:e5:25:9f:dd:2e:b1:bc: a5:71:96:e4:76:36:07:bb:15:ae:a4:02:37:58:a5: 76:78:0e:64:cb:47:5b:80:52:fc:4f:69:f6:5e:28: be:49:3e:78:7e:f3:10:ed:70:d7:7a:1e:dd:c7:bb: 27:6f:1e:25:67:b2:f9:da:d6:74:fd:b3:12:a3:7a: bc:c4:fc:95:58:83:e1:ec:4e:07:66:1c:1f:53:f3: a4:c4:b9:f2:7a:15:9d:6c:47:08:fa:52:75:72:ef: 84:ac:f2:58:06:b4:72:80:6f:65:17:83:12:b2:f0: 9e:d8:7d:ab:00:c5:83:b4:0b:e1:8f:16:97:18:25: 8d:44:4c:df:e4:33:d5:45:c0:b9:65:b9:7a:5b:00: bf:ed:63:a8:95:e5:45:5f:17:c8:f5:6f:60:a2:96: b8:a9:6b:7d:ab:42:b4:9c:c1:43:06:1b:40:01:10: 21:71:03:6f:ae:a8:55:82:d5:dd:c0:6d:1f:0b:9b: a2:95:79:7f:44:8d:04:bc:fc:b3:37:4c:e5:40:55: d6:99:62:5d:35:83:38:d7:f7:cc:cb:68:15:ba:b7: 5c:e9:d3:fc:e6:ce:01:e4:99:d2:3d:8a:dc:56:b9: f2:a8:6c:fb:ce:ae:cb:fa:5e:d4:60:e2:1a:ae:ae: fa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:52:D5:53:46:4C:79:70:5C:47:EE:57:F6:C6:87:4A:21:18:BB:72 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:f4:34:6b:a9:ed:0f:b4:bd:15:a6:d1:3f:3e:18:6e:a2:b5: b6:ad:0e:3a:0d:80:16:04:74:90:bb:99:29:a5:4c:b4:fc:75: 3e:dd:22:b7:b9:2a:3b:20:1c:da:1f:a4:d3:55:0b:b1:c4:aa: 5e:33:2e:37:e7:4c:63:bd:3d:ae:9c:d2:a5:5a:1f:ff:88:70: be:f0:73:d4:f6:9a:8f:82:56:6b:87:61:86:cb:6a:ef:a4:36: 1e:63:8b:28:fb:84:59:eb:1a:43:be:45:5a:a0:2b:33:b3:8a: 78:c7:f1:b2:4e:58:89:c8:6f:a6:40:99:ef:6e:49:ac:04:5d: b2:ef:5b:0f:f5:39:2a:76:3d:a3:a7:aa:fa:54:95:90:a3:9f: bb:11:18:fa:c0:a7:e2:4b:3a:d1:b8:75:7d:37:86:99:e3:f3: d0:d6:0f:74:09:33:4f:f9:98:ca:69:cf:71:bd:f5:d1:cb:4b: 68:2d:85:18:f6:73:87:d6:d1:99:b5:e8:75:34:ca:80:52:b1: d8:cf:6e:86:0c:2f:64:b4:e1:36:ec:7c:5c:ff:20:0f:db:ae: 36:30:37:3c:7d:b4:35:17:ec:5f:1c:66:4e:4d:47:12:67:19: 99:eb:44:ec:11:10:73:ce:e4:35:9d:5f:2d:08:47:0d:ff:b3: 5c:1d:0b:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMTvnHIagIS3uEFNZwLPckQuVXJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNjAzMjUwOTE1MDBaFw0yNjAzMjgxNjE0MDBaMDMxMTAvBgNV BAMTKDAwNTJENTUzNDY0Qzc5NzA1QzQ3RUU1N0Y2QzY4NzRBMjExOEJCNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDDSpTDQAj5SWf3S6xvKVxluR2 Nge7Fa6kAjdYpXZ4DmTLR1uAUvxPafZeKL5JPnh+8xDtcNd6Ht3HuydvHiVnsvna 1nT9sxKjerzE/JVYg+HsTgdmHB9T86TEufJ6FZ1sRwj6UnVy74Ss8lgGtHKAb2UX gxKy8J7YfasAxYO0C+GPFpcYJY1ETN/kM9VFwLlluXpbAL/tY6iV5UVfF8j1b2Ci lripa32rQrScwUMGG0ABECFxA2+uqFWC1d3AbR8Lm6KVeX9EjQS8/LM3TOVAVdaZ Yl01gzjX98zLaBW6t1zp0/zmzgHkmdI9itxWufKobPvOrsv6XtRg4hqurvonAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAFLVU0ZMeXBcR+5X9saHSiEYu3IwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACX0NGup7Q+0vRWm0T8+GG6itbatDjoNgBYE dJC7mSmlTLT8dT7dIre5KjsgHNofpNNVC7HEql4zLjfnTGO9Pa6c0qVaH/+IcL7w c9T2mo+CVmuHYYbLau+kNh5jiyj7hFnrGkO+RVqgKzOzinjH8bJOWInIb6ZAme9u SawEXbLvWw/1OSp2PaOnqvpUlZCjn7sRGPrAp+JLOtG4dX03hpnj89DWD3QJM0/5 mMppz3G99dHLS2gthRj2c4fW0Zm16HU0yoBSsdjPboYML2S04TbsfFz/IA/brjYw Nzx9tDUX7F8cZk5NRxJnGZnrROwREHPO5DWdXy0IRw3/s1wdC1k= -----END CERTIFICATE-----Generated at Thu Mar 26 17:54:32 2026 by rpki-client