$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft (raw, json) Hash identifier: k05eBAe3tWlL2a12zZNyq6SGVyw/fnGvFlLEnzVhU1s= Subject key identifier: 05:8D:29:77:41:FE:5A:5A:9E:D8:0E:1C:15:43:15:9A:3B:CA:8F:3A Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 6F6E6404C52234A33A5350569CDF1B259A80F49D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft Manifest number: 01E5 Signing time: Thu 26 Mar 2026 05:41:39 +0000 Manifest this update: Thu 26 Mar 2026 05:36:39 +0000 Manifest next update: Sun 29 Mar 2026 17:36:39 +0000 Files and hashes: 1: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (hash: sNTsns3ST7lmT3Lzq1+VabwjCefZeBfZWQ1CC+0VBzY=) 2: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (hash: rH6v5NksQAZ7i1x7vYF4pP0Dlbp5vcZTM15lBp2e+jM=) 3: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl (hash: Oh02013YFakCGf9pg0QMRMueWFURTW2vYf+atmeKQCg=) 4: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (hash: T/urQJ+82QgaKD9FjVWVBWC5pqw/fxNdqK4bVUSVM74=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 17:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:6e:64:04:c5:22:34:a3:3a:53:50:56:9c:df:1b:25:9a:80:f4:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Mar 26 05:36:39 2026 GMT Not After : Mar 29 17:36:39 2026 GMT Subject: CN=058D297741FE5A5A9ED80E1C1543159A3BCA8F3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a5:8e:16:d4:05:7a:74:92:25:d5:11:6e:ba: 8b:03:44:64:b3:53:99:79:0a:84:23:48:92:ab:28: 32:f8:71:06:66:13:b0:1f:ee:a8:ff:2e:c0:0f:21: 38:fe:0b:15:42:26:ba:79:ba:ee:be:6d:27:fc:6c: c4:dd:44:4e:4f:80:0e:0b:60:79:07:91:3c:f5:bf: 6b:be:90:df:15:d4:82:f1:5d:a7:c6:9a:e4:be:1e: 91:95:2a:49:87:17:5d:8a:47:ab:7a:cc:e6:74:72: 47:9d:4f:91:f2:b1:82:75:4d:e1:91:a3:c5:7f:64: 2a:6c:38:8a:43:b2:a5:93:15:8c:e4:59:85:90:fa: 3d:7f:74:9d:eb:9a:b3:f3:0c:4b:6b:3b:d7:5f:23: 41:8e:b5:98:3d:a3:f6:d9:53:d0:f4:2c:de:ea:24: 0e:ed:86:a0:a7:7f:51:97:e6:b4:d1:44:cc:9c:4a: 92:eb:f1:e4:d2:a6:85:f1:13:e0:fe:4d:8f:1c:e3: a8:06:05:6a:8a:b9:a8:71:75:5d:cb:6e:f8:7e:22: f7:63:a3:35:83:14:46:a8:aa:97:49:88:f3:58:47: 9d:17:91:cb:f6:8f:73:ce:5e:fd:97:98:ef:36:05: 84:5e:20:05:96:b4:41:f0:23:6e:e9:bb:3e:da:10: 2f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8D:29:77:41:FE:5A:5A:9E:D8:0E:1C:15:43:15:9A:3B:CA:8F:3A X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:9b:12:64:94:a8:90:04:97:f5:46:51:9e:fe:97:86:61:c1: be:24:2a:de:0a:01:16:8b:2c:86:0f:f5:fe:09:05:b2:69:21: 1b:f2:1d:5c:71:b5:d4:5b:ef:15:cc:1e:44:f9:ea:01:8c:d9: 6c:2c:94:d0:cd:85:fc:8b:20:f8:ac:07:b6:1c:0e:53:94:32: 7a:8b:c8:17:96:95:ed:16:08:61:aa:8f:95:27:20:f4:05:a5: 65:88:a4:49:0a:98:94:67:f9:3e:4b:71:fc:7a:82:6b:d6:00: 33:7f:d7:ab:25:85:4f:e3:69:da:67:20:f2:63:45:7d:ba:05: c0:fe:c2:fe:89:67:e1:4a:4a:f3:d5:2d:89:af:b8:e1:fe:73: 2e:84:99:90:f4:ae:ac:eb:38:53:ba:cc:18:40:ed:72:08:be: 82:72:86:dd:7e:1d:b5:fa:6c:75:db:4a:64:5e:69:5c:6d:75: 3c:19:e7:2d:bc:5e:e7:d0:19:9d:5f:7c:b4:3e:13:14:24:78: f2:e9:4f:ec:51:ab:15:75:76:3a:f1:ad:ba:1a:bf:5d:10:dc: e7:20:93:79:15:b2:7c:7e:a7:0e:e1:6f:9d:9c:8c:53:6b:0b: 02:d1:80:b5:17:10:8b:3d:23:1d:83:4b:c0:06:4f:73:6d:6c: 6b:4f:99:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUb25kBMUiNKM6U1BWnN8bJZqA9J0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNjAzMjYwNTM2MzlaFw0yNjAzMjkxNzM2MzlaMDMxMTAvBgNV BAMTKDA1OEQyOTc3NDFGRTVBNUE5RUQ4MEUxQzE1NDMxNTlBM0JDQThGM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmpY4W1AV6dJIl1RFuuosDRGSz U5l5CoQjSJKrKDL4cQZmE7Af7qj/LsAPITj+CxVCJrp5uu6+bSf8bMTdRE5PgA4L YHkHkTz1v2u+kN8V1ILxXafGmuS+HpGVKkmHF12KR6t6zOZ0ckedT5HysYJ1TeGR o8V/ZCpsOIpDsqWTFYzkWYWQ+j1/dJ3rmrPzDEtrO9dfI0GOtZg9o/bZU9D0LN7q JA7thqCnf1GX5rTRRMycSpLr8eTSpoXxE+D+TY8c46gGBWqKuahxdV3Lbvh+Ivdj ozWDFEaoqpdJiPNYR50Xkcv2j3POXv2XmO82BYReIAWWtEHwI27puz7aEC/ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBY0pd0H+Wlqe2A4cFUMVmjvKjzowHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGE4NzA2NGItNWYyNy00MjcwLTkw ZTQtOTlmNDNhZTg0ZGI3LzAvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJC OUY0RTRBMkMyNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHKbEmSUqJAEl/VGUZ7+l4Zhwb4kKt4KARaL LIYP9f4JBbJpIRvyHVxxtdRb7xXMHkT56gGM2WwslNDNhfyLIPisB7YcDlOUMnqL yBeWle0WCGGqj5UnIPQFpWWIpEkKmJRn+T5Lcfx6gmvWADN/16slhU/jadpnIPJj RX26BcD+wv6JZ+FKSvPVLYmvuOH+cy6EmZD0rqzrOFO6zBhA7XIIvoJyht1+HbX6 bHXbSmReaVxtdTwZ5y28XufQGZ1ffLQ+ExQkePLpT+xRqxV1djrxrboav10Q3Ocg k3kVsnx+pw7hb52cjFNrCwLRgLUXEIs9Ix2DS8AGT3NtbGtPmb8= -----END CERTIFICATE-----Generated at Thu Mar 26 19:31:57 2026 by rpki-client