$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft File: CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft (raw, json) Hash identifier: XUldoKpjhAGVkkKuYzZzMH2hznTbeTqQ11DSklbeUP8= Subject key identifier: BE:8A:2E:04:7B:B5:28:18:D2:49:40:72:3D:BF:C5:80:75:CB:A9:D9 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 24AA810D899C504C193A403AB606807764AB5A85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft Manifest number: 0589 Signing time: Thu 26 Mar 2026 05:02:03 +0000 Manifest this update: Thu 26 Mar 2026 04:57:03 +0000 Manifest next update: Sun 29 Mar 2026 10:53:03 +0000 Files and hashes: 1: 3230322e3135322e3132382e302f31392d3234203d3e203233393531.roa (hash: 0r1qT8I3KYKeRC/g+vu3+beTQV2dYBEegiYAXFw3fs8=) 2: 3230322e36352e3132322e302f32342d3234203d3e203233393531.roa (hash: 09wWxPVAnpsug3YZq5fezhFaG7QDA9T1Mjs7NiJLE+g=) 3: 3230322e36352e3132332e302f32342d3234203d3e203233393531.roa (hash: uYljhWPFI38b1Nx1UtlQJyqp8X7WWWNXDKkB58nW4HI=) 4: 3130332e3130312e3133362e302f32322d3232203d3e203233393531.roa (hash: L+cExX3/7uWr/hDyt2UkMn9zUU41LC6rMVWy+5SJhTc=) 5: 323430313a656530303a3a2f33322d3438203d3e203233393531.roa (hash: NzMEm3c3sVacQZSWsj7eCdzP+65DR1/M0h04y+5YJYE=) 6: 3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa (hash: iGsP4VUogsadbwnWd/AM/1aXy+hpua+BCk1eWXzoRzA=) 7: 3230322e36352e3131322e302f32312d3234203d3e203233393531.roa (hash: 42OUxulwbAB1CTRXrAGVc4itTg6RD7nCc12Z/wbxKk0=) 8: 3230322e36352e3131322e302f32312d3231203d3e203233393531.roa (hash: hfhM/jWQ9jt+ZUHNnJtrtoOuudPpKc+J350QWYXtC40=) 9: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (hash: bHw7ucEbh58xjruyf4VXXtftgFiKqgJhqbjayjPsTrs=) 10: 3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa (hash: SHObZCSyQ759rOoQJ/JZR3beQgRHBAmiHG/b7NwBiWM=) 11: 3130332e3130312e3133362e302f32332d3233203d3e203233393531.roa (hash: 8QPIleK9jMxRrZo8MGpSwWvTnJ7WLwlPDZ1i0haixbA=) 12: 3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa (hash: 6WhqetXB0Qru1Hk4/GxM3BsbsVKsqVduKrzOxiby6RM=) 13: 3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa (hash: gYdjbrllcxVsFjz+69ccDbd/xh/3XuSos0MpuObt62I=) 14: CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl (hash: mut4Hk/K7lLsn8RpIYr9slrEQr1dCReyRutC6aq3Kr0=) 15: 3131372e32302e34382e302f32302d3234203d3e203233393531.roa (hash: jzYSflbMwJIU7OJmfhxLLNRmLBX8xfDaE+EvcpXWcPM=) 16: 3230322e36352e3132342e302f32322d3234203d3e203436303531.roa (hash: nCRffZlynF4CiEOh2iuotIMhJ1K47T3UdPYWHYFk4iY=) 17: 3230322e36352e3132322e302f32332d3233203d3e203233393531.roa (hash: uySOy+S8Xsy4H4ygVfn9FFZSJNP2ZKNqDsizB5B+qv8=) 18: 3230322e36352e3131322e302f32342d3234203d3e203233393531.roa (hash: PLDNLWRC4Np5IJQ9gJkzQFwg5d2Imd+U4PVSM94Wh9c=) 19: 3230322e36352e3131322e302f32302d3231203d3e203233393531.roa (hash: la3Lo26Aa17Lz+dfnwUc2WZ/Zq7gWX7qsfEvtWc9abY=) 20: 3230322e36352e3132312e302f32342d3234203d3e203233393531.roa (hash: W+avD/27cuz8u7PAdTFS+byjySE6cCdTL/goNcaSuQ0=) 21: 3230322e36352e3132302e302f32342d3234203d3e203233393531.roa (hash: HWfHUrPU0i0A++2BYGkQMMOMjrzhDkKb6wybSU/0t9A=) 22: 3230322e36352e3132302e302f32332d3234203d3e203233393531.roa (hash: C1WvxvbH5IPUep7eQYoHGhXLqRMtWOqOKZMr05i/OjU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:aa:81:0d:89:9c:50:4c:19:3a:40:3a:b6:06:80:77:64:ab:5a:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Mar 26 04:57:03 2026 GMT Not After : Mar 29 10:53:03 2026 GMT Subject: CN=BE8A2E047BB52818D24940723DBFC58075CBA9D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8b:34:1b:86:c2:0f:43:6a:ae:bb:c8:c9:76: ce:87:47:46:1a:8a:66:92:33:5a:fb:69:93:40:33: 20:07:df:c9:7f:0b:e4:c6:ab:ed:9d:a3:90:b2:13: f3:0c:b8:74:bd:bf:37:fc:6a:56:26:28:97:2c:57: a1:3e:df:d8:ff:cc:92:75:14:7b:e8:25:aa:ea:e2: a0:12:7f:3c:78:ad:d0:e9:6a:c2:7a:57:0a:29:84: 22:98:ba:c0:d0:44:fc:46:57:bd:f0:47:97:33:8f: d8:9e:8f:20:e5:9f:b7:96:ba:10:06:6c:a7:2d:5a: 91:0d:ac:2e:bc:46:bb:61:6f:04:46:95:f0:22:36: 80:04:d0:ae:cd:4e:22:0c:56:7b:22:5a:79:44:36: 7f:91:a4:9e:1a:28:88:af:69:b4:6b:a4:9b:3e:1b: ba:39:b3:fc:30:26:fe:52:8e:03:a2:ac:dd:fc:46: e5:58:53:80:77:c0:04:a3:c9:86:e8:97:17:7b:3f: 13:48:b0:69:3b:d0:1d:d6:cf:93:4d:86:51:d5:55: f3:2a:0e:d6:11:d5:5c:f1:9b:29:b2:dd:75:b7:12: c1:c6:3c:35:81:c0:cb:8b:38:be:25:16:75:37:b9: d7:2d:a2:4a:51:b7:74:1f:fa:bb:35:01:26:28:fd: 77:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8A:2E:04:7B:B5:28:18:D2:49:40:72:3D:BF:C5:80:75:CB:A9:D9 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:0f:db:8f:b3:57:95:64:f9:7f:78:74:02:4b:0f:ff:c3:85: cb:56:45:09:38:cb:bf:b9:ac:34:ba:c0:2a:1a:1f:55:76:0c: 99:aa:4d:8b:ab:a2:a0:be:d0:07:c4:51:fe:37:3b:b5:aa:91: 0b:30:00:49:08:ad:4b:f1:09:ac:9e:47:71:cc:4c:90:ed:ad: 56:29:fc:92:2d:b5:99:50:1b:0f:8a:3d:85:a8:aa:d6:d6:01: e0:06:68:62:50:36:58:d5:68:f7:50:43:a5:44:58:c2:00:b8: 84:67:a1:4b:c6:10:c8:85:b4:88:71:98:33:6b:68:13:d7:cf: 94:59:e3:c4:7d:9c:27:d0:f1:c0:b3:2d:ab:cf:4a:d1:94:82: f5:3d:ca:d3:dd:33:e9:f9:3d:78:12:ee:a0:6a:c7:b6:61:5b: 55:7a:de:d9:c1:99:9d:a9:74:cd:f1:1d:56:df:54:6d:91:9e: f9:e9:a5:1a:9b:48:44:03:9f:1a:cd:f7:00:ad:53:43:46:fd: 48:3e:89:af:a6:7b:9f:0a:01:2e:29:07:5a:c2:c5:ac:aa:8e: 50:82:d3:f9:c9:2c:19:78:dd:5c:55:f3:de:91:58:35:65:cc: 01:d8:90:9f:79:53:2e:c9:06:9e:a2:1e:5f:a9:f2:a5:bc:4c: 02:0c:12:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJKqBDYmcUEwZOkA6tgaAd2SrWoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNjAzMjYwNDU3MDNaFw0yNjAzMjkxMDUzMDNaMDMxMTAvBgNV BAMTKEJFOEEyRTA0N0JCNTI4MThEMjQ5NDA3MjNEQkZDNTgwNzVDQkE5RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClizQbhsIPQ2quu8jJds6HR0Ya imaSM1r7aZNAMyAH38l/C+TGq+2do5CyE/MMuHS9vzf8alYmKJcsV6E+39j/zJJ1 FHvoJarq4qASfzx4rdDpasJ6VwophCKYusDQRPxGV73wR5czj9iejyDln7eWuhAG bKctWpENrC68RrthbwRGlfAiNoAE0K7NTiIMVnsiWnlENn+RpJ4aKIivabRrpJs+ G7o5s/wwJv5SjgOirN38RuVYU4B3wASjyYbolxd7PxNIsGk70B3Wz5NNhlHVVfMq DtYR1Vzxmymy3XW3EsHGPDWBwMuLOL4lFnU3udctokpRt3Qf+rs1ASYo/XftAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvoouBHu1KBjSSUByPb/FgHXLqdkwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWU2YTdlNDYtYjZhZC00YTdkLWI5 MzAtMWFiMGJmMDJkZDVkLzAvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRG MkUxNDNDOEU4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIwP24+zV5Vk+X94dAJLD//DhctWRQk4y7+5 rDS6wCoaH1V2DJmqTYuroqC+0AfEUf43O7WqkQswAEkIrUvxCayeR3HMTJDtrVYp /JIttZlQGw+KPYWoqtbWAeAGaGJQNljVaPdQQ6VEWMIAuIRnoUvGEMiFtIhxmDNr aBPXz5RZ48R9nCfQ8cCzLavPStGUgvU9ytPdM+n5PXgS7qBqx7ZhW1V63tnBmZ2p dM3xHVbfVG2RnvnppRqbSEQDnxrN9wCtU0NG/Ug+ia+me58KAS4pB1rCxayqjlCC 0/nJLBl43VxV896RWDVlzAHYkJ95Uy7JBp6iHl+p8qW8TAIMEs0= -----END CERTIFICATE-----Generated at Thu Mar 26 08:50:44 2026 by rpki-client