$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: Tsoe2lBOBW1VJMMPJK+8efbtRxtPI4EZPNEhsqK3Abc= Subject key identifier: F0:73:B1:D8:12:AF:C2:79:05:21:8E:08:97:00:B2:DF:38:7F:91:21 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 7967D08DFAAD041BEBD01D72EA595E2A1D1DCFDD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0283 Signing time: Thu 26 Mar 2026 23:50:05 +0000 Manifest this update: Thu 26 Mar 2026 23:45:05 +0000 Manifest next update: Mon 30 Mar 2026 02:49:05 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: winzmNUXZNGL7ydRfgkb/BPtUT6tPsJ65Qa4BbSHYZs=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 02:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:67:d0:8d:fa:ad:04:1b:eb:d0:1d:72:ea:59:5e:2a:1d:1d:cf:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Mar 26 23:45:05 2026 GMT Not After : Mar 30 02:49:05 2026 GMT Subject: CN=F073B1D812AFC27905218E089700B2DF387F9121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d0:40:3d:8e:ca:4d:77:0d:b4:82:5d:40:dc: 77:8f:5b:a5:34:6f:1f:81:24:95:87:33:71:29:d6: 7e:80:df:03:a8:99:ee:7b:b1:8c:27:1c:7b:ac:59: 71:f6:af:1f:e8:74:40:2b:96:cc:73:cd:14:db:31: 09:f7:4c:70:b6:e7:44:09:2f:f1:5e:71:41:c8:bd: 26:61:4a:7a:f4:4d:be:05:b4:34:1b:6f:f5:77:3e: 83:1a:22:60:74:f2:bd:12:43:93:3a:92:a4:eb:c7: f2:49:ee:1c:e8:59:bf:1d:df:a6:ce:46:c6:ea:3b: ad:70:fb:f2:6d:8d:1d:00:c1:34:41:2c:27:e0:d7: 57:44:6f:84:e6:6f:70:67:2e:f8:4f:66:2b:30:9c: b8:7f:b5:fa:03:7d:24:d7:37:63:48:df:47:4b:af: 55:ae:5c:fc:44:86:73:1a:f1:9a:f8:66:4a:87:b7: 1a:d9:61:66:64:e2:03:ed:65:60:0b:d9:64:c7:f2: ac:7b:37:e5:c2:cc:97:99:6d:e5:5f:22:5e:49:3a: 47:70:32:df:df:db:d4:fe:e7:89:75:1d:c4:50:96: bd:0b:d8:11:b5:c2:82:6b:27:8b:65:62:95:b9:e8: 78:7d:5f:3e:95:33:0c:51:94:fa:38:4a:4d:2f:9d: 27:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:73:B1:D8:12:AF:C2:79:05:21:8E:08:97:00:B2:DF:38:7F:91:21 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:e4:dd:b8:01:76:2d:d0:e8:c6:da:78:1c:81:4e:20:7f:b8: 08:a7:1f:f7:46:aa:82:88:0c:7c:17:37:03:dd:05:85:fa:af: 58:19:5a:55:32:22:92:7a:47:66:6e:5b:ac:21:84:d7:92:e8: 12:ce:a1:87:00:f2:d0:64:bd:b2:f7:aa:6e:68:7b:33:18:96: 74:5b:01:b8:44:b8:4e:6a:87:dd:8e:2c:bf:66:66:8b:48:81: 33:92:01:0d:e0:d8:de:b3:bd:7a:8e:fe:52:38:eb:84:fd:ae: 3e:01:08:5a:da:b6:bc:33:33:39:56:2f:1b:6b:4b:0e:76:f9: b3:ad:1f:d9:cc:8d:9c:66:5a:17:73:72:54:82:e9:bf:34:4e: 43:5c:e2:a0:14:6e:80:d2:4c:3e:8f:64:49:20:94:83:dd:6e: a0:4c:21:eb:b3:b0:9e:a2:13:8e:bd:f9:4d:84:48:ed:45:a2: 87:d2:51:7a:ff:47:80:09:17:f4:0d:6d:c0:91:7e:01:20:ab: d3:44:9b:26:2b:f0:e6:a1:87:38:02:95:ed:5b:4f:ca:ac:51: 02:3b:f6:ac:46:8a:74:cd:80:cc:1c:ef:45:38:c4:18:a7:3e: b7:55:a2:c1:e7:4d:fe:cd:e4:61:3c:f9:39:5c:04:ce:e4:96: f5:ef:ad:dc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeWfQjfqtBBvr0B1y6lleKh0dz90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNjAzMjYyMzQ1MDVaFw0yNjAzMzAwMjQ5MDVaMDMxMTAvBgNV BAMTKEYwNzNCMUQ4MTJBRkMyNzkwNTIxOEUwODk3MDBCMkRGMzg3RjkxMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi0EA9jspNdw20gl1A3HePW6U0 bx+BJJWHM3Ep1n6A3wOome57sYwnHHusWXH2rx/odEArlsxzzRTbMQn3THC250QJ L/FecUHIvSZhSnr0Tb4FtDQbb/V3PoMaImB08r0SQ5M6kqTrx/JJ7hzoWb8d36bO RsbqO61w+/JtjR0AwTRBLCfg11dEb4Tmb3BnLvhPZiswnLh/tfoDfSTXN2NI30dL r1WuXPxEhnMa8Zr4ZkqHtxrZYWZk4gPtZWAL2WTH8qx7N+XCzJeZbeVfIl5JOkdw Mt/f29T+54l1HcRQlr0L2BG1woJrJ4tlYpW56Hh9Xz6VMwxRlPo4Sk0vnSctAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8HOx2BKvwnkFIY4IlwCy3zh/kSEwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEPk3bgBdi3Q6MbaeByBTiB/uAinH/dGqoKI DHwXNwPdBYX6r1gZWlUyIpJ6R2ZuW6whhNeS6BLOoYcA8tBkvbL3qm5oezMYlnRb AbhEuE5qh92OLL9mZotIgTOSAQ3g2N6zvXqO/lI464T9rj4BCFratrwzMzlWLxtr Sw52+bOtH9nMjZxmWhdzclSC6b80TkNc4qAUboDSTD6PZEkglIPdbqBMIeuzsJ6i E469+U2ESO1FoofSUXr/R4AJF/QNbcCRfgEgq9NEmyYr8OahhzgCle1bT8qsUQI7 9qxGinTNgMwc70U4xBinPrdVosHnTf7N5GE8+TlcBM7klvXvrdw= -----END CERTIFICATE-----Generated at Fri Mar 27 07:01:20 2026 by rpki-client