$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft File: 957CC5B55223EC29F2E71324C678334C4348BE02.mft (raw, json) Hash identifier: H7/FjRvNaY6J3jnok1gxypsYHpgFsuFBt7lOt/N4m1Q= Subject key identifier: 6D:31:7B:7D:45:F8:C5:A8:3F:2D:E2:66:A4:8D:B9:EE:B4:B0:E6:53 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 523E3AC7FCC59CFD9E8C7566E721423D96D1567D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft Manifest number: 0220 Signing time: Wed 25 Mar 2026 06:31:00 +0000 Manifest this update: Wed 25 Mar 2026 06:26:00 +0000 Manifest next update: Sat 28 Mar 2026 11:06:00 +0000 Files and hashes: 1: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (hash: sKfx76+Sncyrs9mYumqkFI6ie1K7xxqfJijMwgYJ3J8=) 2: 957CC5B55223EC29F2E71324C678334C4348BE02.crl (hash: QkQqiPjP7J1qjiwfKom72sHN6TdkNzovY/aQWY2oUFw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 11:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:3e:3a:c7:fc:c5:9c:fd:9e:8c:75:66:e7:21:42:3d:96:d1:56:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Mar 25 06:26:00 2026 GMT Not After : Mar 28 11:06:00 2026 GMT Subject: CN=6D317B7D45F8C5A83F2DE266A48DB9EEB4B0E653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:04:13:18:8d:9f:b4:ca:32:4b:32:4e:9b:19: 31:72:12:70:35:3e:89:7c:05:e6:2b:fe:9c:47:6f: a6:7b:18:02:fb:9c:66:3a:f0:71:ac:5b:b1:31:4e: de:98:a4:98:ed:5f:d4:c0:7f:ab:65:ff:fb:19:4c: 7f:87:32:98:bf:7f:e1:3a:81:27:4e:58:bf:02:f3: 49:f6:20:6d:5f:a5:8a:a5:b4:49:e7:0b:61:9e:b3: 9d:fd:7d:41:ab:86:8b:c2:28:a3:4b:d0:75:d0:7e: 69:f8:df:81:a7:6e:ad:78:e8:4f:f2:dd:05:1e:30: d2:d2:27:38:d9:71:c6:59:3c:ec:b6:70:bd:48:d4: 8b:24:6f:4b:75:a9:67:41:49:ae:b0:16:48:18:55: e7:f1:a1:fe:f9:09:35:f3:8a:1b:91:f7:1f:65:35: b1:af:fc:df:50:a6:49:a9:1b:d0:e5:ce:a8:d2:90: 60:b8:0d:d0:d6:27:27:df:64:9d:38:47:78:98:26: 72:1b:07:eb:26:57:28:75:1c:1c:18:6e:c2:e7:26: c4:fc:ff:2e:66:75:60:59:c2:a2:8a:f2:11:ad:05: f0:74:5b:be:dd:6d:0e:6e:d1:a8:48:c9:ec:c7:e0: 99:11:c1:c5:d4:c4:bf:ba:2f:a9:1b:9f:05:2f:25: 69:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:31:7B:7D:45:F8:C5:A8:3F:2D:E2:66:A4:8D:B9:EE:B4:B0:E6:53 X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:5b:0a:4e:f1:c4:df:2e:0a:c2:74:18:df:08:ff:c1:f2:d5: af:26:93:f0:b6:71:86:fe:5d:b5:92:26:d4:71:a6:9f:81:7d: 3e:ec:b2:e1:5d:ba:46:35:30:77:4d:60:17:de:3f:2f:ae:f1: 92:5b:ff:67:19:40:e5:cd:85:b7:be:fe:80:c0:3a:44:e9:dc: fa:c0:6b:cb:40:b5:88:42:59:5c:d5:a4:36:3b:e1:fd:64:a4: f6:e6:56:9f:c0:f0:92:2e:6e:91:f8:a4:2c:00:1c:59:e0:72: 55:b6:4a:9b:a8:ef:f5:a0:75:5a:88:7f:ac:85:7f:53:86:b1: 73:79:9a:71:1b:fe:1a:68:27:2d:0a:3a:34:a6:9e:79:64:9e: 18:d6:b1:27:d6:d0:48:12:20:48:ef:5e:4c:3b:ef:b0:4b:4c: c1:5f:17:cb:17:06:61:62:f3:61:c5:12:96:f1:f2:f8:7d:31: 20:2b:b9:64:82:e1:50:a7:b7:dd:3e:b3:68:fc:aa:bc:1f:25: 70:ac:3e:8f:ee:99:c7:b2:fd:8f:6b:14:bf:40:1c:f5:03:e2: 3c:55:a5:d0:7a:8e:50:ed:2d:76:3d:45:6b:b0:84:cd:97:7e: cb:f6:2e:2b:38:0f:ac:79:44:64:57:fb:d5:ef:3d:9a:77:20: 10:58:88:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUj46x/zFnP2ejHVm5yFCPZbRVn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNjAzMjUwNjI2MDBaFw0yNjAzMjgxMTA2MDBaMDMxMTAvBgNV BAMTKDZEMzE3QjdENDVGOEM1QTgzRjJERTI2NkE0OERCOUVFQjRCMEU2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnBBMYjZ+0yjJLMk6bGTFyEnA1 Pol8BeYr/pxHb6Z7GAL7nGY68HGsW7ExTt6YpJjtX9TAf6tl//sZTH+HMpi/f+E6 gSdOWL8C80n2IG1fpYqltEnnC2Ges539fUGrhovCKKNL0HXQfmn434Gnbq146E/y 3QUeMNLSJzjZccZZPOy2cL1I1Iskb0t1qWdBSa6wFkgYVefxof75CTXzihuR9x9l NbGv/N9QpkmpG9DlzqjSkGC4DdDWJyffZJ04R3iYJnIbB+smVyh1HBwYbsLnJsT8 /y5mdWBZwqKK8hGtBfB0W77dbQ5u0ahIyezH4JkRwcXUxL+6L6kbnwUvJWndAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbTF7fUX4xag/LeJmpI257rSw5lMwHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBhNzhjMDYtMWQ2ZS00M2I2LWJm MzAtODYwY2ViZGRmYjMyLzAvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMz NEM0MzQ4QkUwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB9bCk7xxN8uCsJ0GN8I/8Hy1a8mk/C2cYb+ XbWSJtRxpp+BfT7ssuFdukY1MHdNYBfePy+u8ZJb/2cZQOXNhbe+/oDAOkTp3PrA a8tAtYhCWVzVpDY74f1kpPbmVp/A8JIubpH4pCwAHFngclW2Spuo7/WgdVqIf6yF f1OGsXN5mnEb/hpoJy0KOjSmnnlknhjWsSfW0EgSIEjvXkw777BLTMFfF8sXBmFi 82HFEpbx8vh9MSAruWSC4VCnt90+s2j8qrwfJXCsPo/umcey/Y9rFL9AHPUD4jxV pdB6jlDtLXY9RWuwhM2Xfsv2Lis4D6x5RGRX+9XvPZp3IBBYiA8= -----END CERTIFICATE-----Generated at Thu Mar 26 16:25:34 2026 by rpki-client