$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: EEBM6M+MI0+ZXxuxi6E0pAf6UtamLZlrSEiNXwXVCFk= Subject key identifier: 02:39:11:20:53:5B:7F:07:85:AA:10:E5:C7:72:96:09:85:A6:C7:54 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 51D88EEA29C4D7D8C150036F7217896063D3BB77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 0560 Signing time: Wed 25 Mar 2026 19:00:53 +0000 Manifest this update: Wed 25 Mar 2026 18:55:53 +0000 Manifest next update: Sun 29 Mar 2026 03:15:53 +0000 Files and hashes: 1: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=) 2: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 3: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 4: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=) 5: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: VHlmfO1vZpBybIbde3sSuuo2llU5pnuQ+kY5BF1+4XM=) 6: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=) 7: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 8: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) 9: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 03:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d8:8e:ea:29:c4:d7:d8:c1:50:03:6f:72:17:89:60:63:d3:bb:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Mar 25 18:55:53 2026 GMT Not After : Mar 29 03:15:53 2026 GMT Subject: CN=02391120535B7F0785AA10E5C772960985A6C754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3c:ba:15:d0:d8:83:55:ae:0d:82:b1:97:56: c3:aa:32:98:3e:04:a7:e1:a6:26:1d:3d:32:f0:45: be:34:28:d9:d5:aa:42:10:1c:e4:6c:30:9a:87:b1: 95:57:95:99:81:fc:49:d4:0d:c7:4c:88:b8:c8:08: 78:3c:33:0b:4d:e3:cf:f1:21:30:1a:4d:3e:00:aa: 1d:5c:65:58:f4:4f:42:b5:83:ff:bf:5c:1f:49:f7: cc:ba:6a:8a:3d:e8:9b:d4:ee:87:b3:62:3a:e1:8c: 7a:cf:9d:c0:38:bd:e5:2d:bf:fb:7b:a8:13:56:6f: 4b:41:71:e1:3d:27:39:50:0c:e8:59:45:5b:78:13: 23:01:82:fd:35:b2:44:4f:13:a3:bb:8c:0a:8b:74: 81:f8:8d:07:7b:78:54:40:b6:e4:48:7a:dd:e4:6f: 42:9b:66:02:a8:aa:71:f1:0b:f1:2c:63:97:a9:d3: 59:3e:a3:e6:2b:34:bc:84:8f:c1:63:43:1b:38:76: 0e:8d:b9:00:81:eb:98:0d:5d:a8:1e:5d:9b:bd:58: 10:6a:bc:c1:65:47:59:a6:d3:49:fa:f4:67:d8:79: 10:58:76:e0:c4:ce:85:d4:fe:1e:af:8b:a5:f5:94: e9:d3:a4:a3:66:12:be:40:fd:48:2c:ad:1a:1b:89: c6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:39:11:20:53:5B:7F:07:85:AA:10:E5:C7:72:96:09:85:A6:C7:54 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:91:af:55:f1:30:1d:50:95:72:aa:39:1f:cc:a5:84:4e:00: 0c:0d:48:b9:5c:62:c4:42:2a:82:f5:54:c2:4d:52:1d:2b:c9: 31:26:15:fc:db:02:c4:b7:f0:1b:9e:cb:d9:da:97:f7:04:3e: b2:a9:8f:f5:95:c4:94:e4:ab:7f:93:2d:a8:b4:f1:02:a8:70: 61:86:55:bd:4e:db:9e:7a:ad:5d:11:32:cf:12:dd:79:41:0d: f7:87:cc:f4:b7:4f:96:fa:80:c7:ad:64:a5:5b:6d:f4:cd:45: 5b:a6:0a:32:8c:72:6d:e4:c3:0f:ee:99:b3:07:bb:bb:0a:a1: 0a:b2:25:fe:d6:bf:37:67:8b:f4:01:35:5f:ab:d2:6b:87:81: cf:0c:6a:cc:1b:b9:e0:92:4d:b1:0d:06:4a:6d:54:34:93:a5: 6d:39:d1:4d:d9:2c:c0:a9:dd:97:57:37:c7:5f:82:13:bf:5f: f3:ef:e2:0b:ec:38:78:fe:36:01:74:9e:9a:00:28:9b:ae:96: 15:4a:a6:45:7a:df:97:da:4b:a7:46:4e:31:6e:12:cb:a0:2b: c2:03:d6:13:75:f2:73:ce:ba:ba:e3:f2:79:1c:12:f7:75:ee: cc:8b:61:d9:75:12:21:6f:23:58:ad:2e:a4:e4:81:20:9a:ac: 84:5b:7c:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUdiO6inE19jBUANvcheJYGPTu3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNjAzMjUxODU1NTNaFw0yNjAzMjkwMzE1NTNaMDMxMTAvBgNV BAMTKDAyMzkxMTIwNTM1QjdGMDc4NUFBMTBFNUM3NzI5NjA5ODVBNkM3NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcPLoV0NiDVa4NgrGXVsOqMpg+ BKfhpiYdPTLwRb40KNnVqkIQHORsMJqHsZVXlZmB/EnUDcdMiLjICHg8MwtN48/x ITAaTT4Aqh1cZVj0T0K1g/+/XB9J98y6aoo96JvU7oezYjrhjHrPncA4veUtv/t7 qBNWb0tBceE9JzlQDOhZRVt4EyMBgv01skRPE6O7jAqLdIH4jQd7eFRAtuRIet3k b0KbZgKoqnHxC/EsY5ep01k+o+YrNLyEj8FjQxs4dg6NuQCB65gNXageXZu9WBBq vMFlR1mm00n69GfYeRBYduDEzoXU/h6vi6X1lOnTpKNmEr5A/UgsrRobicalAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAjkRIFNbfweFqhDlx3KWCYWmx1QwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAiRr1XxMB1QlXKqOR/MpYROAAwNSLlcYsRC KoL1VMJNUh0ryTEmFfzbAsS38Buey9nal/cEPrKpj/WVxJTkq3+TLai08QKocGGG Vb1O2556rV0RMs8S3XlBDfeHzPS3T5b6gMetZKVbbfTNRVumCjKMcm3kww/umbMH u7sKoQqyJf7Wvzdni/QBNV+r0muHgc8MaswbueCSTbENBkptVDSTpW050U3ZLMCp 3ZdXN8dfghO/X/Pv4gvsOHj+NgF0npoAKJuulhVKpkV635faS6dGTjFuEsugK8ID 1hN18nPOurrj8nkcEvd17syLYdl1EiFvI1itLqTkgSCarIRbfBI= -----END CERTIFICATE-----Generated at Thu Mar 26 07:30:31 2026 by rpki-client