$ rpki-client -vvf repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft File: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft (raw, json) Hash identifier: Bcc9/iQDlGwOZil0Gk7fmeUNKjUT11wJXI9RteLYdiE= Subject key identifier: C2:4C:13:1C:1F:A8:D8:AB:F5:C0:21:7F:0C:DB:C5:DD:3A:4D:50:3C Authority key identifier: D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 Certificate issuer: /CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Certificate serial: 6590FFCEF548018BF61F09FE998406595CBB63F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft Manifest number: CB Signing time: Wed 25 Mar 2026 18:12:17 +0000 Manifest this update: Wed 25 Mar 2026 18:07:17 +0000 Manifest next update: Sun 29 Mar 2026 05:16:17 +0000 Files and hashes: 1: 3135372e32302e3132312e302f32342d3234203d3e20313534343130.roa (hash: esrMCJUxCJv07GSY+ByORyNcBz/84VLcd99qgdERooU=) 2: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl (hash: ZoJuT9VMGOVUwpRKIFdeTD24jIynrsKEElLCwFrh3IQ=) 3: 3135372e32302e3132302e302f32332d3233203d3e20313534343130.roa (hash: lmVngEBe+ol/9b06ya+bCPv6lgMDxsavw+P3OiEfjPk=) 4: 3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa (hash: kToxDWGLAx7wPnTumpRERHYAC4YJ3ZjsOgXXR/j0FWs=) 5: 3135372e32302e3132302e302f32342d3234203d3e20313534343130.roa (hash: 2l2Mce3IIODsuV65WJPoKh9ocEJfKs6B1PPle50ZAFk=) 6: 3135372e32302e3132312e302f32342d3234203d3e20313439343039.roa (hash: OSAo9QWqyVe1VudNV/7NSJlH0xk8Gb3rIp16xTTxTOk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 05:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:90:ff:ce:f5:48:01:8b:f6:1f:09:fe:99:84:06:59:5c:bb:63:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Validity Not Before: Mar 25 18:07:17 2026 GMT Not After : Mar 29 05:16:17 2026 GMT Subject: CN=C24C131C1FA8D8ABF5C0217F0CDBC5DD3A4D503C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:59:d7:42:b8:71:04:a1:1f:e1:98:06:47:d1: ee:bf:ec:80:23:09:8f:09:05:70:9b:b8:d4:9c:f0: 11:73:e4:42:2e:4c:e3:bf:07:bb:d0:7f:26:3c:d8: 52:33:05:2b:2d:19:e3:a0:fb:a8:6d:b9:1a:d0:dd: 16:1b:f3:e1:d3:fc:cf:da:ed:57:a2:de:a4:3b:cb: 13:65:7b:24:69:38:49:32:cd:2b:be:9c:e1:03:3b: 43:ec:07:3c:bd:93:d7:2a:73:3e:6e:73:49:7f:a6: 02:97:98:f7:9c:2a:17:8b:63:5c:97:79:4b:6b:0c: 87:13:36:e2:a2:2e:65:92:2f:b6:17:13:8b:75:14: bd:f8:66:81:dd:2e:52:98:8b:9e:f2:2c:dd:93:34: 4e:01:ac:7e:cc:83:fa:7c:79:8d:66:8c:18:c7:9e: 24:7d:30:47:ea:84:0e:56:bc:04:85:3a:d6:a4:c5: 1e:fa:06:fa:47:27:7b:0b:a8:76:f5:f7:87:4b:e1: 3f:00:fc:25:99:11:ad:3c:c6:06:b4:dd:b4:e2:58: 87:a5:9f:4c:bc:6e:d7:d3:b5:f3:7e:0b:de:5f:8d: d6:c0:16:f1:2f:d5:c1:0e:f4:55:95:b3:12:a8:19: 79:3d:1f:72:85:16:b5:8c:76:91:1c:75:71:19:91: 83:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4C:13:1C:1F:A8:D8:AB:F5:C0:21:7F:0C:DB:C5:DD:3A:4D:50:3C X509v3 Authority Key Identifier: keyid:D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:25:5c:c0:d5:b3:44:46:92:06:5a:3a:b9:b6:b9:56:4c:d3: 87:49:a3:a8:84:e3:ca:04:ec:5a:02:80:0b:86:f4:3e:62:d0: 47:4f:4d:5c:0b:57:f9:86:fe:81:1d:db:14:eb:11:3c:ed:4a: 2b:33:c4:f6:ab:d9:b2:c0:c8:39:f1:29:cf:9b:f0:59:09:d2: f3:5e:7b:c7:ec:29:a2:e4:4a:36:6f:f7:4d:b2:f5:d6:45:4c: 0e:18:24:f9:e9:38:97:26:71:c4:31:99:a7:35:6f:af:9c:5b: 1b:5e:bc:e0:ed:c4:58:8c:c8:b6:2a:dd:5c:ff:18:cb:bf:99: 35:88:76:7c:76:ad:a7:6a:0c:36:5b:59:65:ad:c1:e5:2b:dd: df:6d:35:10:33:1a:50:cf:ed:f8:6d:5f:c8:7a:76:9f:aa:8d: 82:9f:14:79:aa:bc:71:4e:8c:25:f3:60:d4:b3:82:72:0c:f3: 2c:1e:e2:c4:22:07:b5:0f:42:f2:b4:ea:a7:dd:b6:69:f0:75: 3c:ce:02:a4:1b:58:61:5d:e6:11:c0:2b:ae:82:e5:67:6e:d9: f4:7e:70:5d:49:9f:63:c1:5c:82:e1:df:bb:0a:14:ae:1a:49: 05:e8:ec:83:43:57:63:51:f6:62:80:a7:31:88:81:b1:bc:3d: 83:68:47:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZZD/zvVIAYv2Hwn+mYQGWVy7Y/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVB Q0YzMjM2ODAeFw0yNjAzMjUxODA3MTdaFw0yNjAzMjkwNTE2MTdaMDMxMTAvBgNV BAMTKEMyNEMxMzFDMUZBOEQ4QUJGNUMwMjE3RjBDREJDNUREM0E0RDUwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUWddCuHEEoR/hmAZH0e6/7IAj CY8JBXCbuNSc8BFz5EIuTOO/B7vQfyY82FIzBSstGeOg+6htuRrQ3RYb8+HT/M/a 7Vei3qQ7yxNleyRpOEkyzSu+nOEDO0PsBzy9k9cqcz5uc0l/pgKXmPecKheLY1yX eUtrDIcTNuKiLmWSL7YXE4t1FL34ZoHdLlKYi57yLN2TNE4BrH7Mg/p8eY1mjBjH niR9MEfqhA5WvASFOtakxR76BvpHJ3sLqHb194dL4T8A/CWZEa08xga03bTiWIel n0y8btfTtfN+C95fjdbAFvEv1cEO9FWVsxKoGXk9H3KFFrWMdpEcdXEZkYPVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwkwTHB+o2Kv1wCF/DNvF3TpNUDwwHwYDVR0j BBgwFoAU14/lrocO8iH9lXdc/q/q1azzI2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjQ0MjYzYS04ZWUyLTRlZWMtYTgxMC01NzMzY2NhZjUxZTMvMC9ENzhGRTVBRTg3 MEVGMjIxRkQ5NTc3NUNGRUFGRUFENUFDRjMyMzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVBQ0Yz MjM2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDY0NDI2M2EtOGVlMi00ZWVjLWE4 MTAtNTczM2NjYWY1MWUzLzAvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVB RDVBQ0YzMjM2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGclXMDVs0RGkgZaOrm2uVZM04dJo6iE48oE 7FoCgAuG9D5i0EdPTVwLV/mG/oEd2xTrETztSiszxPar2bLAyDnxKc+b8FkJ0vNe e8fsKaLkSjZv902y9dZFTA4YJPnpOJcmccQxmac1b6+cWxtevODtxFiMyLYq3Vz/ GMu/mTWIdnx2radqDDZbWWWtweUr3d9tNRAzGlDP7fhtX8h6dp+qjYKfFHmqvHFO jCXzYNSzgnIM8ywe4sQiB7UPQvK06qfdtmnwdTzOAqQbWGFd5hHAK66C5Wdu2fR+ cF1Jn2PBXILh37sKFK4aSQXo7INDV2NR9mKApzGIgbG8PYNoR1Y= -----END CERTIFICATE-----Generated at Thu Mar 26 13:28:53 2026 by rpki-client