$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft (raw, json) Hash identifier: U/5dzdZDL3ng53N/cpp2kwPHuCo2r3NFKDDg2bD3lRA= Subject key identifier: 7B:FA:30:BB:EB:48:A1:F5:BF:78:CE:8F:E6:3F:4E:4C:85:7C:27:C2 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 1A5E59070426997D563266271CA0F90E4803AC22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft Manifest number: 0263 Signing time: Thu 26 Mar 2026 13:51:39 +0000 Manifest this update: Thu 26 Mar 2026 13:46:39 +0000 Manifest next update: Sun 29 Mar 2026 18:04:39 +0000 Files and hashes: 1: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl (hash: /7Dd6SmcaN1n1ToNviq1sdk/KKKkJCsoFOXUEhgHpu0=) 2: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (hash: mkN2Di1lXcAcvFZosL2o50JJ0lMMeW14mF//8K93nec=) 3: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (hash: N0XCMCw3s4kIWnX0GxZG8K7vrea02I3zr3x0DohynM4=) 4: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (hash: e33YXJarw+fJxTOmNaxpPalumfeJZb90xM3JG5JPWGQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 18:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:5e:59:07:04:26:99:7d:56:32:66:27:1c:a0:f9:0e:48:03:ac:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Mar 26 13:46:39 2026 GMT Not After : Mar 29 18:04:39 2026 GMT Subject: CN=7BFA30BBEB48A1F5BF78CE8FE63F4E4C857C27C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:65:15:ef:10:8e:ea:f1:61:d6:72:d7:80:5d: d1:98:1e:3a:20:09:63:60:d8:7a:ba:1d:69:fb:b7: b4:12:02:01:1e:61:2f:80:1c:1e:7c:3f:4c:7c:3d: 21:37:8e:74:26:88:0f:62:05:06:16:e8:d5:59:ae: 78:2d:30:bd:95:12:f7:e3:3a:63:67:e2:d7:91:fb: b4:0d:b1:dd:73:20:f0:e8:e9:d2:ae:7f:2f:b9:2a: 63:c1:91:3e:77:cb:9f:1c:e0:63:7b:23:8f:d4:34: eb:09:be:ff:59:f6:40:ed:8a:b3:75:c5:5a:a5:3c: 22:b8:b7:12:bd:cc:10:37:e1:0d:61:af:b9:86:a4: bf:72:aa:c6:db:a3:ee:21:c3:31:91:fc:55:21:4b: 5d:4e:f5:66:42:39:c2:06:60:f7:66:71:82:52:93: b0:30:2e:11:1f:b2:71:47:d4:9d:84:df:11:f6:51: 7e:6f:d0:fa:16:0b:ea:b5:46:d5:9d:35:84:31:36: 3a:c1:5c:bf:f7:af:77:05:9f:2b:54:5a:2a:94:df: 7a:57:df:6c:a5:c6:72:49:04:de:49:59:de:8a:be: 2b:2d:1c:74:2a:66:dd:ce:fb:cb:bb:20:53:0a:8d: fc:28:ff:99:47:2d:d6:00:bf:95:a2:31:ca:15:3a: 2b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:FA:30:BB:EB:48:A1:F5:BF:78:CE:8F:E6:3F:4E:4C:85:7C:27:C2 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:1c:50:8e:f5:48:01:47:aa:bb:db:f4:d3:72:07:2f:a3:fd: e0:99:f2:c7:54:ca:43:4f:4a:58:88:7e:38:ce:8f:46:66:5f: 6f:b3:02:60:5c:91:ce:06:66:53:86:88:7f:c9:9f:ec:6e:65: 89:29:40:84:93:92:e4:14:d5:c6:b3:17:fd:d5:77:c3:0f:5d: 08:22:78:bf:2f:64:b8:76:c2:fe:bf:e0:88:0f:ff:fe:2e:17: a8:b6:d6:b8:cb:a2:7d:d9:a4:9e:2d:f6:0e:22:5a:6f:26:ef: dd:1c:a2:f1:e4:3a:7d:38:02:dc:61:c4:84:f8:16:e2:24:9f: 19:85:c4:17:42:9d:46:f8:99:c0:1c:82:c1:be:2f:66:3b:35: 13:16:32:4a:27:7b:d2:b3:a3:d3:9d:3b:9a:8f:4e:9b:68:88: 59:fa:6d:83:f0:39:ad:4b:70:35:6c:fa:4b:3b:fc:9d:e3:6d: e5:93:9e:02:7f:99:9f:f0:6c:8c:05:7c:27:58:a8:42:4a:58: 9a:ec:2b:08:ec:2e:b7:d7:48:6b:61:6a:bf:3d:13:7b:bc:87: da:7e:4f:8c:37:74:fa:2d:36:40:ad:b3:b7:b3:f3:1a:dd:74: 4f:16:9b:b5:dd:ca:67:59:81:13:e0:59:50:0c:52:68:1a:f1: 73:c0:e7:8d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGl5ZBwQmmX1WMmYnHKD5DkgDrCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNjAzMjYxMzQ2MzlaFw0yNjAzMjkxODA0MzlaMDMxMTAvBgNV BAMTKDdCRkEzMEJCRUI0OEExRjVCRjc4Q0U4RkU2M0Y0RTRDODU3QzI3QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzZRXvEI7q8WHWcteAXdGYHjog CWNg2Hq6HWn7t7QSAgEeYS+AHB58P0x8PSE3jnQmiA9iBQYW6NVZrngtML2VEvfj OmNn4teR+7QNsd1zIPDo6dKufy+5KmPBkT53y58c4GN7I4/UNOsJvv9Z9kDtirN1 xVqlPCK4txK9zBA34Q1hr7mGpL9yqsbbo+4hwzGR/FUhS11O9WZCOcIGYPdmcYJS k7AwLhEfsnFH1J2E3xH2UX5v0PoWC+q1RtWdNYQxNjrBXL/3r3cFnytUWiqU33pX 32ylxnJJBN5JWd6KvistHHQqZt3O+8u7IFMKjfwo/5lHLdYAv5WiMcoVOivzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe/owu+tIofW/eM6P5j9OTIV8J8IwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDNhZDUyMjYtNjU2ZC00NjFkLTlj ZmYtYzgzYWMwNzQyZjIwLzAvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRB ODQxOEMzRUE3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJEcUI71SAFHqrvb9NNyBy+j/eCZ8sdUykNP SliIfjjOj0ZmX2+zAmBckc4GZlOGiH/Jn+xuZYkpQISTkuQU1cazF/3Vd8MPXQgi eL8vZLh2wv6/4IgP//4uF6i21rjLon3ZpJ4t9g4iWm8m790covHkOn04AtxhxIT4 FuIknxmFxBdCnUb4mcAcgsG+L2Y7NRMWMkone9Kzo9OdO5qPTptoiFn6bYPwOa1L cDVs+ks7/J3jbeWTngJ/mZ/wbIwFfCdYqEJKWJrsKwjsLrfXSGthar89E3u8h9p+ T4w3dPotNkCts7ez8xrddE8Wm7XdymdZgRPgWVAMUmga8XPA540= -----END CERTIFICATE-----Generated at Thu Mar 26 18:15:26 2026 by rpki-client