$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft File: 29692979765B670997413579D7BF5663C05BBD1A.mft (raw, json) Hash identifier: zwIOgrk2V+/lJnTFUoTZ9hYn87W+9lYNpUtN6wPWPp0= Subject key identifier: 67:A8:F0:D9:BA:EE:BC:02:CD:65:48:0F:B1:64:4D:00:A2:10:D8:85 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 77163E26A1B5ED6A81705501D2DA0B65D6A141D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft Manifest number: 0294 Signing time: Thu 26 Mar 2026 09:21:11 +0000 Manifest this update: Thu 26 Mar 2026 09:16:11 +0000 Manifest next update: Sun 29 Mar 2026 10:40:11 +0000 Files and hashes: 1: 29692979765B670997413579D7BF5663C05BBD1A.crl (hash: NkupDSiwkaH0sLuJs4Y5z8oBt5dACP1QCBTosSCQ14M=) 2: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (hash: wQ45tmfAW0vTrcP1CHqdkU4kV8VsIFLIOnBtD5fu+LU=) 3: 3130332e392e3132342e302f32322d3234203d3e20313331373131.roa (hash: gJ4+RIzMU3sNK8zgeNrc/IFATPDJCmEd1aztpgZm3dA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:16:3e:26:a1:b5:ed:6a:81:70:55:01:d2:da:0b:65:d6:a1:41:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Mar 26 09:16:11 2026 GMT Not After : Mar 29 10:40:11 2026 GMT Subject: CN=67A8F0D9BAEEBC02CD65480FB1644D00A210D885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:90:68:f6:0d:da:32:24:f2:7a:21:88:85:df: b9:f5:a4:6b:6d:1e:b6:b3:d4:97:e7:de:8c:0c:46: 65:01:d5:67:0e:45:40:a3:4b:12:d0:1a:2f:89:8a: 20:4a:63:c2:8b:e3:b2:42:34:25:ea:b1:8f:54:02: 1c:4a:8b:f0:94:90:4d:d3:f0:9e:37:37:7f:f8:08: c1:c7:a5:cc:a2:32:1c:80:f9:74:02:f5:db:5b:43: 2e:37:0e:82:02:a5:02:b9:45:a3:00:65:e2:52:a9: 81:6e:af:38:57:af:5a:54:33:b5:95:9d:c1:e3:a1: 56:61:c6:d5:8b:00:2b:41:1f:0d:86:1c:7d:ac:4c: 1e:4b:fb:27:0a:d9:e2:76:3d:25:7b:e7:67:1a:b0: 50:2a:79:4a:a8:c7:e6:6c:b4:01:f9:d3:b2:fe:c2: ba:9d:27:fd:5e:3b:c9:38:96:cb:4a:1d:c6:9f:29: a6:cd:ce:0c:e5:2d:bc:5c:60:63:87:84:12:f4:2b: 5e:b7:f5:f7:65:1b:9a:d7:3f:ee:ec:d9:7d:bb:1b: ca:c1:08:07:4b:26:9b:f5:e4:17:36:73:4a:ae:db: 87:3e:43:77:1a:af:23:e1:dc:51:20:46:0b:34:60: 9f:2d:1d:53:ed:25:95:31:7e:59:be:a8:bc:11:28: a5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A8:F0:D9:BA:EE:BC:02:CD:65:48:0F:B1:64:4D:00:A2:10:D8:85 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:bd:e4:04:f0:4c:a5:41:b1:7a:3b:0f:45:0b:5a:d9:34:a9: 3d:d4:4c:0d:3e:24:17:31:cc:ea:9e:2f:e0:01:38:d7:ec:1c: 6d:f4:d6:5e:6c:c3:d6:c8:62:54:21:b8:73:a0:ff:f6:94:5f: 0b:6f:ce:29:b6:6a:8c:09:09:77:1e:69:8f:c2:72:31:e8:b7: d7:5e:bb:07:1f:e7:37:d2:64:14:08:d3:4b:02:70:80:25:18: e6:b4:86:6f:8e:4d:89:66:7c:b5:dd:de:4a:db:6f:df:60:e7: 8f:53:a4:e5:ae:0b:73:ca:78:c8:b5:13:99:09:80:1c:e7:dc: 89:45:56:3b:29:04:00:b9:a9:63:cb:60:59:74:b2:29:e2:08: af:3a:8b:ef:8e:f2:e3:19:c3:10:ce:06:6e:9f:83:0a:8f:ff: ba:f2:3c:eb:45:8a:8c:fe:da:4c:10:41:41:bb:52:de:a0:17: a8:26:9b:1c:12:0c:ad:a5:c2:37:28:4f:27:17:21:af:e1:74: 24:97:5d:54:d8:db:65:db:2a:ce:3d:0f:f6:18:c7:6f:0a:9c: 90:da:6a:d4:49:94:4a:6b:54:9d:9c:63:c4:8e:7f:a8:be:da: ee:98:dc:17:47:b2:8f:95:d2:bb:cc:af:5a:dc:35:35:41:87: f5:a8:b4:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdxY+JqG17WqBcFUB0toLZdahQdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNjAzMjYwOTE2MTFaFw0yNjAzMjkxMDQwMTFaMDMxMTAvBgNV BAMTKDY3QThGMEQ5QkFFRUJDMDJDRDY1NDgwRkIxNjQ0RDAwQTIxMEQ4ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbkGj2DdoyJPJ6IYiF37n1pGtt Hraz1Jfn3owMRmUB1WcORUCjSxLQGi+JiiBKY8KL47JCNCXqsY9UAhxKi/CUkE3T 8J43N3/4CMHHpcyiMhyA+XQC9dtbQy43DoICpQK5RaMAZeJSqYFurzhXr1pUM7WV ncHjoVZhxtWLACtBHw2GHH2sTB5L+ycK2eJ2PSV752casFAqeUqox+ZstAH507L+ wrqdJ/1eO8k4lstKHcafKabNzgzlLbxcYGOHhBL0K1639fdlG5rXP+7s2X27G8rB CAdLJpv15Bc2c0qu24c+Q3caryPh3FEgRgs0YJ8tHVPtJZUxflm+qLwRKKVNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZ6jw2bruvALNZUgPsWRNAKIQ2IUwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2IwYTExYjUtOTQ0MS00Y2M5LWE2 NzItYmU5Nzk5YjY1NTIwLzAvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2 NjNDMDVCQkQxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIi95ATwTKVBsXo7D0ULWtk0qT3UTA0+JBcx zOqeL+ABONfsHG301l5sw9bIYlQhuHOg//aUXwtvzim2aowJCXceaY/CcjHot9de uwcf5zfSZBQI00sCcIAlGOa0hm+OTYlmfLXd3krbb99g549TpOWuC3PKeMi1E5kJ gBzn3IlFVjspBAC5qWPLYFl0siniCK86i++O8uMZwxDOBm6fgwqP/7ryPOtFioz+ 2kwQQUG7Ut6gF6gmmxwSDK2lwjcoTycXIa/hdCSXXVTY22XbKs49D/YYx28KnJDa atRJlEprVJ2cY8SOf6i+2u6Y3BdHso+V0rvMr1rcNTVBh/WotKA= -----END CERTIFICATE-----Generated at Thu Mar 26 19:17:00 2026 by rpki-client