$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft File: D1E28E396E82778793018513BD084854BE663886.mft (raw, json) Hash identifier: eorLKcK0r9rIfIlUDMFa2/OlYRu3Y8+XoJp9M5m2c0s= Subject key identifier: E3:3F:32:98:8C:51:D8:AC:65:74:43:57:D6:7C:F2:0C:6E:BF:0A:1D Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 48D4F3FBB4F0D959957DA8D0295322FDA0ADAB00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft Manifest number: 02B9 Signing time: Wed 25 Mar 2026 15:40:53 +0000 Manifest this update: Wed 25 Mar 2026 15:35:53 +0000 Manifest next update: Sun 29 Mar 2026 01:58:53 +0000 Files and hashes: 1: D1E28E396E82778793018513BD084854BE663886.crl (hash: 6xNBSKUrSimIpqkuNT6au/5qJvjok2I807xh2tZIuwI=) 2: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (hash: dbeooOEymowfTHu7nnG695fAge4T8FaVO8HgIWjN8ng=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 01:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d4:f3:fb:b4:f0:d9:59:95:7d:a8:d0:29:53:22:fd:a0:ad:ab:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: Mar 25 15:35:53 2026 GMT Not After : Mar 29 01:58:53 2026 GMT Subject: CN=E33F32988C51D8AC65744357D67CF20C6EBF0A1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d0:ca:26:84:15:5b:24:2a:e8:82:ce:b2:1c: 2d:7f:7d:bd:04:37:d6:10:4b:63:47:c0:3d:63:aa: e2:ec:28:7c:2f:1f:c4:f8:2a:a7:c9:32:51:b8:db: 96:3c:35:b3:79:c2:bd:a5:9f:7e:a6:4e:3b:36:31: 76:d6:26:6c:ca:a4:b3:6e:9e:6d:35:f8:4b:f4:2d: 26:df:96:90:be:b5:7c:8b:5d:1c:7a:af:42:a9:5f: 75:96:24:2f:e4:03:ae:5f:10:d9:d2:00:aa:be:41: 1a:fc:58:db:62:ab:a0:e2:09:a2:77:12:55:53:65: 5d:81:81:32:8f:f2:12:98:84:c8:33:c6:25:fa:86: 59:11:5d:93:83:97:62:28:8d:cb:9d:7e:df:29:9d: 20:91:05:1d:e1:5a:1e:79:f5:e0:fe:f5:df:e4:66: 7e:23:66:41:e8:ec:c9:2d:29:92:94:f2:63:fd:c6: 48:57:43:60:99:ce:66:11:24:95:fb:46:7c:62:69: ea:a8:47:e3:09:6c:96:a5:73:48:8b:d4:17:76:1d: 71:bf:ed:0a:dd:5c:e2:64:81:7f:03:4d:33:5c:e3: 6d:e1:99:fa:04:ca:c8:c1:90:7c:2a:d6:a4:20:9a: 25:a9:17:99:bf:81:31:14:0a:77:03:41:62:8a:73: 01:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3F:32:98:8C:51:D8:AC:65:74:43:57:D6:7C:F2:0C:6E:BF:0A:1D X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:b1:8f:be:f0:e4:24:ce:bb:8f:01:d1:65:5d:8b:82:ae:35: f8:6a:06:c6:da:14:4d:a5:65:0b:87:c5:1e:30:25:e0:72:9a: 98:79:68:4e:7b:85:91:e2:cb:da:af:1b:62:24:42:55:3e:a5: e9:72:d0:c9:d6:2b:b1:42:a1:b3:b9:8d:f0:ef:d1:e5:49:1e: 22:bc:f8:28:6d:dd:dd:e0:1e:67:43:8d:d0:97:85:7b:e4:ea: 7b:6c:25:76:80:f1:46:11:5b:eb:0d:7e:9c:54:63:15:f7:2a: 19:d4:d5:db:d5:ad:db:fd:46:bf:39:11:ae:e1:56:b7:ea:76: 2e:56:84:d3:c3:99:d1:db:2e:b4:21:f6:59:5b:42:6a:eb:77: 39:6a:b5:98:93:35:ab:1f:28:b2:47:dd:1f:4b:3a:14:52:7c: 98:09:d6:6b:a2:f1:9e:49:ad:52:66:9c:23:9f:27:20:34:26: be:88:21:52:40:a0:21:b0:65:ce:c7:3e:1c:c1:f1:53:fa:fb: 1c:de:2d:f0:23:63:c7:81:4b:b2:fd:f6:b4:39:22:04:2a:63: 6e:6a:36:df:a2:13:56:c6:50:a3:77:66:ba:c0:af:c1:98:aa: c3:5b:5c:b7:7d:9b:1a:07:96:d3:29:18:92:93:c5:a2:cf:07: 41:d1:a7:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSNTz+7Tw2VmVfajQKVMi/aCtqwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNjAzMjUxNTM1NTNaFw0yNjAzMjkwMTU4NTNaMDMxMTAvBgNV BAMTKEUzM0YzMjk4OEM1MUQ4QUM2NTc0NDM1N0Q2N0NGMjBDNkVCRjBBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY0MomhBVbJCrogs6yHC1/fb0E N9YQS2NHwD1jquLsKHwvH8T4KqfJMlG425Y8NbN5wr2ln36mTjs2MXbWJmzKpLNu nm01+Ev0LSbflpC+tXyLXRx6r0KpX3WWJC/kA65fENnSAKq+QRr8WNtiq6DiCaJ3 ElVTZV2BgTKP8hKYhMgzxiX6hlkRXZODl2Iojcudft8pnSCRBR3hWh559eD+9d/k Zn4jZkHo7MktKZKU8mP9xkhXQ2CZzmYRJJX7RnxiaeqoR+MJbJalc0iL1Bd2HXG/ 7QrdXOJkgX8DTTNc423hmfoEysjBkHwq1qQgmiWpF5m/gTEUCncDQWKKcwHhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4z8ymIxR2KxldENX1nzyDG6/Ch0wHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTZkNjExMzUtNzVlNC00NmM2LWJk ZGQtZmJhNjgzNGRjZTQxLzAvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4 NTRCRTY2Mzg4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAmxj77w5CTOu48B0WVdi4KuNfhqBsbaFE2l ZQuHxR4wJeBymph5aE57hZHiy9qvG2IkQlU+pely0MnWK7FCobO5jfDv0eVJHiK8 +Cht3d3gHmdDjdCXhXvk6ntsJXaA8UYRW+sNfpxUYxX3KhnU1dvVrdv9Rr85Ea7h Vrfqdi5WhNPDmdHbLrQh9llbQmrrdzlqtZiTNasfKLJH3R9LOhRSfJgJ1mui8Z5J rVJmnCOfJyA0Jr6IIVJAoCGwZc7HPhzB8VP6+xzeLfAjY8eBS7L99rQ5IgQqY25q Nt+iE1bGUKN3ZrrAr8GYqsNbXLd9mxoHltMpGJKTxaLPB0HRp/4= -----END CERTIFICATE-----Generated at Fri Mar 27 00:37:57 2026 by rpki-client