$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: Bcd+HMr4k3asS4Hh0EQQcOjsGNBzBCCPkSYoOa+xfXQ= Subject key identifier: 10:68:6D:2B:74:84:F1:7C:B6:B8:ED:DF:56:17:92:7A:5F:91:02:FB Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 4ABD9CF94924F201A2936491EB81C2733AB2C72C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: B1 Signing time: Wed 25 Mar 2026 21:21:31 +0000 Manifest this update: Wed 25 Mar 2026 21:16:31 +0000 Manifest next update: Sun 29 Mar 2026 07:22:31 +0000 Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: OY0RvZWi5c38EClqdcC4LPcun6q5dtAZHZBEu4C99Kw=) 2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: u/+nMafNSlBh3MWibaApdEuRrXiSll2yWAqljACJnmg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:bd:9c:f9:49:24:f2:01:a2:93:64:91:eb:81:c2:73:3a:b2:c7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Mar 25 21:16:31 2026 GMT Not After : Mar 29 07:22:31 2026 GMT Subject: CN=10686D2B7484F17CB6B8EDDF5617927A5F9102FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:33:45:e9:65:de:b3:7e:34:c6:75:7b:c1:90: 89:9e:62:64:20:c4:07:0e:fb:fa:79:fd:72:7b:71: ea:2a:5a:9b:67:8a:54:27:73:7a:c0:5b:83:7a:c1: 58:60:17:b8:92:79:0b:8e:56:a9:25:e8:6b:89:13: 99:df:56:1d:82:1e:05:63:ff:a9:0f:1d:00:e9:53: 6c:34:f4:81:77:0e:f4:02:58:ff:f4:06:23:7a:66: 59:31:eb:6d:f5:d7:66:22:1a:7e:62:39:3a:d7:b6: 33:e5:14:18:aa:16:ec:d2:a6:4a:2a:88:cc:9c:7f: 3d:53:d4:df:43:ac:53:21:71:d9:be:bd:93:a1:2a: c9:8e:11:d0:eb:e9:70:1c:9d:76:75:64:c2:6b:7e: d6:d2:14:a1:7f:fd:46:69:55:89:72:60:f9:77:68: 06:1c:69:4f:4c:94:86:e9:da:37:c2:6d:f1:3a:ab: 3a:d1:f2:95:da:f5:d3:9b:fa:e8:bc:6a:d5:c7:8c: 02:71:49:df:33:a1:d5:87:8a:3a:49:fe:c8:1b:1d: 98:22:bc:91:41:a9:7c:3f:6a:ba:fb:cb:42:6a:de: b4:1c:e0:ea:0b:ee:a4:b4:91:21:83:67:bd:39:2c: 08:5c:49:a0:ff:89:af:38:fe:85:fd:41:26:3c:46: c7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:68:6D:2B:74:84:F1:7C:B6:B8:ED:DF:56:17:92:7A:5F:91:02:FB X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:7d:03:ec:71:af:a1:2a:6d:10:3d:9b:9d:8f:10:d7:49:2d: 89:6a:4a:23:0e:82:f1:ac:e4:b8:89:1e:2c:3c:e4:44:b1:64: 19:1a:17:00:e4:b8:a7:db:a8:91:b8:cb:e5:50:68:94:b2:c2: 13:86:72:8f:43:08:f9:20:23:80:30:3f:a1:d6:0d:00:77:08: df:3e:81:af:45:0d:9f:b6:e9:a0:c4:71:f3:97:5e:ed:b3:f8: c4:d5:23:6e:24:aa:bc:68:94:2b:84:2e:eb:dd:ec:b8:54:e8: 9e:81:8f:ff:42:ca:32:fe:21:bc:fa:d4:c3:c6:f8:b2:8f:df: 64:e3:9f:d9:ce:a4:43:09:44:d8:47:d1:a9:10:e1:71:89:cd: 5d:15:6c:e3:95:22:3b:c4:31:3b:87:53:59:9c:b8:0f:d9:cd: 60:06:63:c6:f3:28:37:ad:71:4c:6c:06:27:c0:fa:b6:c8:c4: 90:5b:a1:38:ba:e1:df:78:8c:5b:f2:36:70:07:ed:55:cb:b3: dd:54:51:ea:95:be:21:8f:fa:0a:66:a6:a7:7f:35:05:68:e5: 24:3e:5a:3a:b9:06:db:b7:03:4a:19:38:12:44:c2:aa:c4:29: 14:96:f8:23:f7:9e:32:7f:5e:ad:3d:a9:48:d8:ee:ac:d8:a2: 68:49:36:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSr2c+Ukk8gGik2SR64HCczqyxywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNjAzMjUyMTE2MzFaFw0yNjAzMjkwNzIyMzFaMDMxMTAvBgNV BAMTKDEwNjg2RDJCNzQ4NEYxN0NCNkI4RURERjU2MTc5MjdBNUY5MTAyRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxM0XpZd6zfjTGdXvBkImeYmQg xAcO+/p5/XJ7ceoqWptnilQnc3rAW4N6wVhgF7iSeQuOVqkl6GuJE5nfVh2CHgVj /6kPHQDpU2w09IF3DvQCWP/0BiN6Zlkx623112YiGn5iOTrXtjPlFBiqFuzSpkoq iMycfz1T1N9DrFMhcdm+vZOhKsmOEdDr6XAcnXZ1ZMJrftbSFKF//UZpVYlyYPl3 aAYcaU9MlIbp2jfCbfE6qzrR8pXa9dOb+ui8atXHjAJxSd8zodWHijpJ/sgbHZgi vJFBqXw/arr7y0Jq3rQc4OoL7qS0kSGDZ705LAhcSaD/ia84/oX9QSY8RsfpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEGhtK3SE8Xy2uO3fVheSel+RAvswHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAh9A+xxr6EqbRA9m52PENdJLYlqSiMOgvGs 5LiJHiw85ESxZBkaFwDkuKfbqJG4y+VQaJSywhOGco9DCPkgI4AwP6HWDQB3CN8+ ga9FDZ+26aDEcfOXXu2z+MTVI24kqrxolCuELuvd7LhU6J6Bj/9CyjL+Ibz61MPG +LKP32Tjn9nOpEMJRNhH0akQ4XGJzV0VbOOVIjvEMTuHU1mcuA/ZzWAGY8bzKDet cUxsBifA+rbIxJBboTi64d94jFvyNnAH7VXLs91UUeqVviGP+gpmpqd/NQVo5SQ+ Wjq5Btu3A0oZOBJEwqrEKRSW+CP3njJ/Xq09qUjY7qzYomhJNnY= -----END CERTIFICATE-----Generated at Thu Mar 26 15:31:08 2026 by rpki-client