$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: vaY+9OjTezqAvgs8OvC9AMv/3EPZcMyDcLxdmgWGYN8= Subject key identifier: 56:92:66:53:AB:B5:10:21:FD:DF:B5:14:A9:EE:E2:76:3D:39:37:13 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 253CCA27809B51EF5BFA92538EDD9CFDEBD9FAC6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 0137 Signing time: Tue 24 Mar 2026 22:02:39 +0000 Manifest this update: Tue 24 Mar 2026 21:57:39 +0000 Manifest next update: Sat 28 Mar 2026 08:34:39 +0000 Files and hashes: 1: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: +Gqtlsyt0WGHekqyPm/sLZhZ87MODG0FUElM7B4CsuU=) 2: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: XHVllAX/UXDKrZwLLYWAgUneaiPswSM3kgLSE6ruL6s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 08:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:3c:ca:27:80:9b:51:ef:5b:fa:92:53:8e:dd:9c:fd:eb:d9:fa:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Mar 24 21:57:39 2026 GMT Not After : Mar 28 08:34:39 2026 GMT Subject: CN=56926653ABB51021FDDFB514A9EEE2763D393713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:78:7f:16:e2:f4:db:85:71:79:40:38:0c:56: f6:6c:7f:32:e0:0a:80:de:67:02:b1:79:60:48:d3: 3d:b5:60:0c:9b:48:a1:36:06:eb:d3:3e:3b:72:19: b5:d9:2d:1e:2d:6b:39:4b:96:87:2f:43:2a:1f:86: 20:f9:4a:87:ef:cc:de:45:21:95:5a:82:c4:71:fe: 54:67:4c:68:11:8a:5f:2e:69:0d:68:42:f5:60:67: 7c:03:ab:e6:c0:03:af:3f:de:73:24:fd:6f:e6:96: 36:19:e1:0e:dd:79:16:62:91:a8:f2:79:9e:de:dd: 84:3a:8a:32:8a:71:95:b3:f8:cb:a6:c9:c2:a9:a0: 88:f0:b6:0f:5b:54:0e:df:3d:93:9a:9d:0c:ea:f4: e2:ec:26:94:69:6e:cc:67:c1:b3:ae:66:f7:46:e1: 29:f1:d1:0b:96:e6:e2:4a:c9:a2:e5:5f:6a:81:37: 7d:81:cf:4e:ed:68:bf:80:cf:ea:b5:ad:24:7a:04: 00:70:9c:a5:dc:72:df:7c:fd:56:1f:b0:e0:d1:2b: a4:36:fb:a5:54:4d:80:b1:60:6b:b0:b2:9b:28:a1: ee:94:72:4e:bd:c1:d4:ef:9a:bd:38:8e:e2:23:38: 84:15:50:f5:05:9b:de:60:bd:ae:4f:3b:ba:e3:a2: a9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:92:66:53:AB:B5:10:21:FD:DF:B5:14:A9:EE:E2:76:3D:39:37:13 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:02:23:71:7d:0c:be:b5:a8:38:3b:fc:46:fc:a6:b2:c0:0b: da:d2:93:37:a2:c6:74:48:81:3c:72:71:69:64:24:a0:4f:a9: be:f4:61:65:a6:6b:49:67:1f:69:ca:b9:d1:3d:65:87:24:4d: 9c:df:2e:90:c5:46:f1:19:5f:9d:c0:5d:a8:ae:ec:f5:8b:d5: 21:bd:55:fb:66:1c:a5:8f:00:04:e6:37:14:f8:55:31:d5:f8: b1:03:ae:9f:29:d9:37:49:b1:bf:d0:44:16:55:64:44:a6:dd: 80:4a:7b:49:8b:5f:98:4f:d7:ac:7f:3d:02:5d:aa:17:bd:cb: bc:99:e7:c5:4d:bd:8b:75:bf:e6:29:60:69:42:a9:3e:f8:e5: 7e:e1:5c:ca:95:76:79:f6:7f:0f:72:64:da:47:8c:79:52:f5: 90:0b:73:bd:8c:b1:77:f2:11:e2:5e:16:ee:eb:18:27:01:6c: 9f:ab:d3:a2:8c:9f:9f:93:94:cf:3a:41:c4:3a:1c:76:3f:9d: 91:18:7e:98:fb:84:07:f5:31:39:b8:da:25:ee:48:4d:6e:39: 5c:3e:81:82:89:d2:5c:f7:49:16:0f:4e:fb:e8:17:29:7d:ce: 2c:ac:18:d6:90:23:01:81:29:a2:9c:71:b0:81:77:2c:56:46: 61:cf:87:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJTzKJ4CbUe9b+pJTjt2c/evZ+sYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNjAzMjQyMTU3MzlaFw0yNjAzMjgwODM0MzlaMDMxMTAvBgNV BAMTKDU2OTI2NjUzQUJCNTEwMjFGRERGQjUxNEE5RUVFMjc2M0QzOTM3MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCeH8W4vTbhXF5QDgMVvZsfzLg CoDeZwKxeWBI0z21YAybSKE2BuvTPjtyGbXZLR4tazlLlocvQyofhiD5SofvzN5F IZVagsRx/lRnTGgRil8uaQ1oQvVgZ3wDq+bAA68/3nMk/W/mljYZ4Q7deRZikajy eZ7e3YQ6ijKKcZWz+MumycKpoIjwtg9bVA7fPZOanQzq9OLsJpRpbsxnwbOuZvdG 4Snx0QuW5uJKyaLlX2qBN32Bz07taL+Az+q1rSR6BABwnKXcct98/VYfsODRK6Q2 +6VUTYCxYGuwspsooe6Uck69wdTvmr04juIjOIQVUPUFm95gva5PO7rjoqlxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVpJmU6u1ECH937UUqe7idj05NxMwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFoCI3F9DL61qDg7/Eb8prLAC9rSkzeixnRI gTxycWlkJKBPqb70YWWma0lnH2nKudE9ZYckTZzfLpDFRvEZX53AXaiu7PWL1SG9 VftmHKWPAATmNxT4VTHV+LEDrp8p2TdJsb/QRBZVZESm3YBKe0mLX5hP16x/PQJd qhe9y7yZ58VNvYt1v+YpYGlCqT745X7hXMqVdnn2fw9yZNpHjHlS9ZALc72MsXfy EeJeFu7rGCcBbJ+r06KMn5+TlM86QcQ6HHY/nZEYfpj7hAf1MTm42iXuSE1uOVw+ gYKJ0lz3SRYPTvvoFyl9ziysGNaQIwGBKaKccbCBdyxWRmHPh2o= -----END CERTIFICATE-----Generated at Thu Mar 26 13:39:16 2026 by rpki-client