$ rpki-client -vvf repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft File: 656A72A6F38230D6A0DB097480D736B5C2FBA683.mft (raw, json) Hash identifier: 1ixIsbgayILONlN2DPpPdvWPG/r5pOv9GU+JM2iJEGk= Subject key identifier: CC:3E:33:96:7F:A8:DC:97:8B:1C:57:BA:76:DA:28:51:4D:AE:2F:DD Authority key identifier: 65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 Certificate issuer: /CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Certificate serial: 4353F4C7843005C92DD20FA32AFA6673A5E27F70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft Manifest number: 0294 Signing time: Wed 25 Mar 2026 07:52:38 +0000 Manifest this update: Wed 25 Mar 2026 07:47:38 +0000 Manifest next update: Sat 28 Mar 2026 14:31:38 +0000 Files and hashes: 1: 3130332e3138322e37322e302f32342d3234203d3e20313439343038.roa (hash: Tr9Xm455VVFwcMWVKgFVkQjW4pXUazCaoGIyqlMivog=) 2: 656A72A6F38230D6A0DB097480D736B5C2FBA683.crl (hash: r952x03JRAePAitLRUaOQXu+H+Q692j5sPJAfrLqNSw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 14:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:53:f4:c7:84:30:05:c9:2d:d2:0f:a3:2a:fa:66:73:a5:e2:7f:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Validity Not Before: Mar 25 07:47:38 2026 GMT Not After : Mar 28 14:31:38 2026 GMT Subject: CN=CC3E33967FA8DC978B1C57BA76DA28514DAE2FDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:74:7d:8a:cc:85:25:8d:9c:dd:54:8f:0c:34: e6:4e:89:32:e7:ea:12:65:23:24:a4:f3:44:ea:76: 2b:6d:f7:78:fd:08:58:2d:a7:5c:2b:c6:a2:e0:c1: 45:35:15:1e:76:98:44:e0:d1:f7:c8:ec:e4:36:41: 5b:1f:24:31:72:92:f9:35:b4:92:68:ad:ad:0f:5f: a5:60:25:38:61:c9:d2:90:0b:4e:ab:89:1d:40:47: 34:c9:df:56:77:f4:20:75:3c:e2:ce:69:6d:38:63: 61:95:7f:2a:9c:ac:76:ad:9d:45:17:02:62:b1:c9: 48:c0:12:d2:02:0c:75:dc:38:6e:80:ff:ad:a8:ce: 5b:08:1a:44:0b:9a:af:90:00:63:53:ff:b1:57:6f: 37:83:42:f3:33:da:b7:e4:71:dc:9b:e0:96:9d:e0: 00:c3:db:a2:f7:8e:1f:90:a5:59:7f:b3:c6:8d:34: c6:09:09:c5:ef:b5:96:25:b5:cf:9b:01:12:c6:6a: e5:bf:14:46:22:95:c1:d7:59:c9:85:e4:23:e8:70: b1:77:8a:3e:38:c8:df:ef:38:f9:db:19:d8:1e:30: 3f:4e:a2:07:be:7f:30:6f:2a:14:dd:c6:fe:54:ad: a9:14:32:67:12:63:23:78:35:c0:c8:8d:8d:fd:87: 15:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3E:33:96:7F:A8:DC:97:8B:1C:57:BA:76:DA:28:51:4D:AE:2F:DD X509v3 Authority Key Identifier: keyid:65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:ca:63:da:bf:41:b6:fe:1a:b5:4b:62:8a:90:1a:04:c5:3a: 9d:a3:dc:f4:c3:f9:7f:44:ea:b2:4c:61:fa:09:ae:0d:65:40: 25:50:6a:47:db:12:ae:0e:36:51:03:20:59:ac:8a:e6:a2:15: bb:23:9e:51:1c:c3:55:be:10:1e:b9:f7:b3:40:72:62:91:ae: 3e:d2:9d:91:e0:0b:e1:33:19:f2:b6:ca:ba:63:e8:e9:9d:e2: 61:65:eb:5a:11:7e:a9:bb:3b:a7:21:d5:0d:43:98:c1:10:59: 68:cc:b4:e7:5a:a2:1c:e2:27:0a:df:82:7f:58:a8:5c:d1:a6: c6:31:9d:f9:c8:e2:9b:d5:cd:a3:bc:73:ae:6c:d4:81:37:cc: bd:9d:17:e1:f4:91:9f:5c:b6:cb:2c:d3:2a:25:68:21:02:4b: 7d:54:7e:04:b3:00:8d:3b:1e:a5:12:c5:27:02:0e:f0:71:8f: 3f:81:70:9a:3a:1c:e2:fd:a1:7d:a0:33:3d:f8:41:56:a7:bf: 90:aa:77:04:e7:d8:1d:89:15:2a:17:85:b8:10:fe:05:7d:17: 0b:a2:50:e4:53:57:c3:36:1c:4a:80:42:d3:9e:31:05:64:f0: 08:7f:c6:ea:ec:d2:1a:2a:e3:f6:3f:99:1d:fb:4f:b1:e2:5e: aa:14:e8:6d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ1P0x4QwBckt0g+jKvpmc6Xif3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVD MkZCQTY4MzAeFw0yNjAzMjUwNzQ3MzhaFw0yNjAzMjgxNDMxMzhaMDMxMTAvBgNV BAMTKENDM0UzMzk2N0ZBOERDOTc4QjFDNTdCQTc2REEyODUxNERBRTJGREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZdH2KzIUljZzdVI8MNOZOiTLn 6hJlIySk80Tqditt93j9CFgtp1wrxqLgwUU1FR52mETg0ffI7OQ2QVsfJDFykvk1 tJJora0PX6VgJThhydKQC06riR1ARzTJ31Z39CB1POLOaW04Y2GVfyqcrHatnUUX AmKxyUjAEtICDHXcOG6A/62ozlsIGkQLmq+QAGNT/7FXbzeDQvMz2rfkcdyb4Jad 4ADD26L3jh+QpVl/s8aNNMYJCcXvtZYltc+bARLGauW/FEYilcHXWcmF5CPocLF3 ij44yN/vOPnbGdgeMD9Ooge+fzBvKhTdxv5UrakUMmcSYyN4NcDIjY39hxUfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzD4zln+o3JeLHFe6dtooUU2uL90wHwYDVR0j BBgwFoAUZWpypvOCMNag2wl0gNc2tcL7poMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjczNzVmOS1lOGI1LTRkOTQtODBhOC0zNWUwMmRkMGY2ZjIvMC82NTZBNzJBNkYz ODIzMEQ2QTBEQjA5NzQ4MEQ3MzZCNUMyRkJBNjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVDMkZC QTY4My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY3Mzc1ZjktZThiNS00ZDk0LTgw YTgtMzVlMDJkZDBmNmYyLzAvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2 QjVDMkZCQTY4My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHfKY9q/Qbb+GrVLYoqQGgTFOp2j3PTD+X9E 6rJMYfoJrg1lQCVQakfbEq4ONlEDIFmsiuaiFbsjnlEcw1W+EB6597NAcmKRrj7S nZHgC+EzGfK2yrpj6Omd4mFl61oRfqm7O6ch1Q1DmMEQWWjMtOdaohziJwrfgn9Y qFzRpsYxnfnI4pvVzaO8c65s1IE3zL2dF+H0kZ9ctsss0yolaCECS31UfgSzAI07 HqUSxScCDvBxjz+BcJo6HOL9oX2gMz34QVanv5CqdwTn2B2JFSoXhbgQ/gV9Fwui UORTV8M2HEqAQtOeMQVk8Ah/xurs0hoq4/Y/mR37T7HiXqoU6G0= -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:56 2026 by rpki-client