$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: KqSl0tmpkJ8HaXHNycknDVo+wqQ65OTGCJ4/krx7Hpo= Subject key identifier: 11:40:5A:47:BC:42:22:59:2A:27:B3:6E:19:13:D4:9B:C9:89:27:33 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 04F61ACF4F71BFC4DB230F5FE0DF5FC14F9516E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 056A Signing time: Thu 26 Mar 2026 02:02:20 +0000 Manifest this update: Thu 26 Mar 2026 01:57:20 +0000 Manifest next update: Sun 29 Mar 2026 08:06:20 +0000 Files and hashes: 1: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) 2: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 3: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 4: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) 5: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: MJAzGocxgcrvykw+f9rR8KRvpdqAfVZ1CT/ErCVNWcU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 08:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f6:1a:cf:4f:71:bf:c4:db:23:0f:5f:e0:df:5f:c1:4f:95:16:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Mar 26 01:57:20 2026 GMT Not After : Mar 29 08:06:20 2026 GMT Subject: CN=11405A47BC4222592A27B36E1913D49BC9892733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:be:c2:9d:ea:fc:3f:75:10:dc:d4:ec:ad:93: 34:53:29:06:fc:f0:a3:54:9e:5f:a8:3f:ad:5f:e3: 00:02:6c:dc:a2:fc:82:90:d8:aa:28:c4:89:e0:d5: 63:83:09:7a:fd:13:bb:a0:16:5c:09:94:64:b0:79: 3c:ac:b6:d4:b2:35:6d:28:2e:21:91:5e:a9:9f:b8: 1d:e0:b7:d1:c6:e0:98:a3:0f:26:5f:fd:97:47:f8: fc:0a:dd:de:b4:5e:f7:a9:8b:e0:29:dd:99:c7:6f: f9:8f:51:8b:d8:51:82:6b:0e:04:ec:86:f6:72:49: fa:31:5f:65:a9:97:ec:6e:cf:2b:70:15:00:c8:da: df:aa:14:b3:8b:bf:21:37:30:88:3a:dc:33:8a:9c: 01:46:e8:a9:7f:50:20:e2:2f:2c:68:5a:5c:48:94: 1b:56:ec:86:82:c2:ac:1f:50:ba:d9:8d:c5:3c:83: f4:72:47:b8:a2:3f:60:ae:00:97:cd:7f:ec:bd:e8: d3:f3:94:0d:3c:15:56:ae:31:fe:c2:4d:9c:0a:86: 9f:96:fa:87:f3:81:e4:6b:fb:6a:a4:1d:b3:aa:e6: f2:d2:de:de:76:0d:bf:24:83:15:80:9b:a7:db:61: b7:f6:c3:6c:41:ae:53:b4:b3:d3:30:76:e1:77:be: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:40:5A:47:BC:42:22:59:2A:27:B3:6E:19:13:D4:9B:C9:89:27:33 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:31:a1:32:1f:ae:68:7f:89:49:c8:eb:ea:c3:08:f1:9c:63: 97:b5:67:03:54:10:c8:03:cd:2d:82:1c:d1:2c:97:40:7a:07: be:d6:d5:0e:e3:9a:88:ba:db:59:ff:de:a8:95:7f:d8:91:b7: 2d:16:7f:b7:bd:38:ec:c2:c5:07:38:aa:3e:f7:99:63:37:af: a9:3a:ec:78:40:97:f6:9d:45:93:4a:da:bb:63:32:6c:25:08: 1b:81:b4:d1:e8:4a:fc:af:b5:97:5a:f9:ea:4d:1f:51:0e:17: e8:7c:22:bc:f4:7b:42:ae:63:ee:10:cf:02:9e:a8:8a:c0:28: cb:91:75:7f:84:a5:99:08:c2:4c:bd:4e:dc:4a:1d:57:ff:c9: 11:8d:63:37:8b:20:68:f3:de:79:7c:0e:88:ea:eb:75:8a:37: 81:6d:b2:8a:d7:58:e3:17:88:af:3e:1c:e7:fd:47:27:06:f4: af:32:26:0d:19:da:12:f8:d4:25:9d:14:86:e0:5e:32:40:fa: ae:8d:31:69:8f:20:02:fd:25:dc:96:3f:dd:99:70:00:fe:97: b6:c5:d2:85:50:73:42:fa:56:0b:5d:7f:83:a9:36:6c:45:fe: d0:d6:76:2c:eb:dd:8d:a0:9a:1f:d3:48:ba:2c:ba:eb:75:69: de:69:c9:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBPYaz09xv8TbIw9f4N9fwU+VFuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNjAzMjYwMTU3MjBaFw0yNjAzMjkwODA2MjBaMDMxMTAvBgNV BAMTKDExNDA1QTQ3QkM0MjIyNTkyQTI3QjM2RTE5MTNENDlCQzk4OTI3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwvsKd6vw/dRDc1OytkzRTKQb8 8KNUnl+oP61f4wACbNyi/IKQ2KooxIng1WODCXr9E7ugFlwJlGSweTysttSyNW0o LiGRXqmfuB3gt9HG4JijDyZf/ZdH+PwK3d60Xvepi+Ap3ZnHb/mPUYvYUYJrDgTs hvZySfoxX2Wpl+xuzytwFQDI2t+qFLOLvyE3MIg63DOKnAFG6Kl/UCDiLyxoWlxI lBtW7IaCwqwfULrZjcU8g/RyR7iiP2CuAJfNf+y96NPzlA08FVauMf7CTZwKhp+W +ofzgeRr+2qkHbOq5vLS3t52Db8kgxWAm6fbYbf2w2xBrlO0s9MwduF3vsYrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEUBaR7xCIlkqJ7NuGRPUm8mJJzMwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABkxoTIfrmh/iUnI6+rDCPGcY5e1ZwNUEMgD zS2CHNEsl0B6B77W1Q7jmoi621n/3qiVf9iRty0Wf7e9OOzCxQc4qj73mWM3r6k6 7HhAl/adRZNK2rtjMmwlCBuBtNHoSvyvtZda+epNH1EOF+h8Irz0e0KuY+4QzwKe qIrAKMuRdX+EpZkIwky9TtxKHVf/yRGNYzeLIGjz3nl8Dojq63WKN4FtsorXWOMX iK8+HOf9RycG9K8yJg0Z2hL41CWdFIbgXjJA+q6NMWmPIAL9JdyWP92ZcAD+l7bF 0oVQc0L6Vgtdf4OpNmxF/tDWdizr3Y2gmh/TSLosuut1ad5pyZs= -----END CERTIFICATE-----Generated at Thu Mar 26 12:21:22 2026 by rpki-client