$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: LUCkLXmMvzj0GykoHSGJumgnpOIlXV0grKaypJw4+Ug= Subject key identifier: 83:AE:70:DB:FE:09:17:FF:49:8F:7D:47:72:9B:51:92:08:56:32:AA Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 3A4EB26D3390848B2A12B93F7D337312A65043BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 025C Signing time: Thu 26 Mar 2026 07:01:34 +0000 Manifest this update: Thu 26 Mar 2026 06:56:34 +0000 Manifest next update: Sun 29 Mar 2026 15:11:34 +0000 Files and hashes: 1: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: epeeLk3e1b6+vPYnYRQ34YaIUsyYIkwtuLdkRow7hG8=) 2: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: FK++k16W5o1G1ymHbgbWCr22LclnvM/8CkDyIWrtSXU=) 3: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY=) 4: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 15:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4e:b2:6d:33:90:84:8b:2a:12:b9:3f:7d:33:73:12:a6:50:43:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Mar 26 06:56:34 2026 GMT Not After : Mar 29 15:11:34 2026 GMT Subject: CN=83AE70DBFE0917FF498F7D47729B5192085632AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:12:f8:d1:78:4f:33:f5:71:93:b3:7e:58: c6:b8:02:c8:72:99:d4:15:dc:b7:4e:e2:5d:70:37: 68:79:a8:cd:63:6c:fd:ca:fb:aa:53:d2:74:e7:88: 4a:9d:29:f7:52:90:6a:55:71:61:6e:ff:fe:c8:9e: 85:9c:b8:ff:d1:e8:bd:8c:30:27:b2:3d:0c:52:17: e4:67:bc:67:65:c1:dd:5f:78:8d:41:40:58:30:f4: 94:e3:25:3e:ec:9c:3d:0a:80:0b:ff:8e:7e:83:dc: dc:af:35:70:d9:78:ed:dd:b0:57:3f:89:c1:66:74: b5:bd:a1:49:7c:d2:d1:fd:02:48:53:95:cf:53:0f: be:8a:6c:d4:77:b3:af:fa:19:f1:b1:84:f4:65:97: 31:36:f6:01:5c:22:fd:cb:57:86:a4:54:4a:c7:50: e0:99:8b:c4:64:52:01:46:f3:06:20:b4:3d:08:8f: 5e:c9:67:ef:ca:b7:30:8d:f5:84:39:57:86:e3:51: b4:da:74:10:df:c2:f3:00:2e:55:63:19:e0:2f:44: a1:77:a7:41:24:e2:71:13:23:f2:46:7e:30:09:8b: 16:8b:a3:f7:f9:99:e4:e3:17:a4:59:69:cd:ad:86: 50:34:74:95:21:72:dc:b5:1c:68:09:78:40:e6:cd: b6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:AE:70:DB:FE:09:17:FF:49:8F:7D:47:72:9B:51:92:08:56:32:AA X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:95:74:ff:75:61:de:e1:00:c3:09:3a:f2:64:aa:4d:60:18: a9:18:6a:a6:9a:4f:98:12:ab:2f:31:20:0d:27:31:7e:fa:6d: 9f:41:7b:a7:82:85:53:da:16:9b:70:88:22:00:1a:4d:1b:00: 2a:80:e0:fc:3d:78:de:a0:61:b2:a1:c7:75:40:07:1a:de:30: 1e:ed:b1:31:62:86:e5:2d:06:2d:1e:8a:41:63:87:28:b1:e8: 00:c7:d0:11:f1:52:1d:a1:8e:f1:e0:94:00:70:ba:ca:66:61: 84:2e:95:67:82:23:17:0d:35:67:e3:cd:81:80:d3:c6:c5:c8: 6b:03:e2:33:fa:a6:10:78:2b:b7:0c:72:f8:ab:0f:c0:13:cb: 5f:41:ff:68:05:20:cf:52:d2:59:1f:98:8d:c6:70:c2:97:a6: be:9c:5b:db:92:ed:96:99:81:c9:7a:83:69:e0:9b:2a:5e:f0: a8:29:9d:2e:00:d8:3e:c8:7c:0a:02:4a:81:2c:f7:f0:96:86: a3:24:0c:e4:b0:f9:ad:6e:ed:0d:87:37:1f:aa:2f:d8:83:4c: 5e:81:95:49:c9:de:25:c9:ee:0b:63:ad:45:ce:37:d0:2a:9c: c2:c0:da:a1:49:85:09:b8:b8:90:61:e0:54:ed:59:eb:af:a2: e1:58:b7:24 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOk6ybTOQhIsqErk/fTNzEqZQQ7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNjAzMjYwNjU2MzRaFw0yNjAzMjkxNTExMzRaMDMxMTAvBgNV BAMTKDgzQUU3MERCRkUwOTE3RkY0OThGN0Q0NzcyOUI1MTkyMDg1NjMyQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUHRL40XhPM/Vxk7N+WMa4Ashy mdQV3LdO4l1wN2h5qM1jbP3K+6pT0nTniEqdKfdSkGpVcWFu//7InoWcuP/R6L2M MCeyPQxSF+RnvGdlwd1feI1BQFgw9JTjJT7snD0KgAv/jn6D3NyvNXDZeO3dsFc/ icFmdLW9oUl80tH9AkhTlc9TD76KbNR3s6/6GfGxhPRllzE29gFcIv3LV4akVErH UOCZi8RkUgFG8wYgtD0Ij17JZ+/KtzCN9YQ5V4bjUbTadBDfwvMALlVjGeAvRKF3 p0Ek4nETI/JGfjAJixaLo/f5meTjF6RZac2thlA0dJUhcty1HGgJeEDmzbbBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUg65w2/4JF/9Jj31HcptRkghWMqowHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL2VdP91Yd7hAMMJOvJkqk1gGKkYaqaaT5gS qy8xIA0nMX76bZ9Be6eChVPaFptwiCIAGk0bACqA4Pw9eN6gYbKhx3VABxreMB7t sTFihuUtBi0eikFjhyix6ADH0BHxUh2hjvHglABwuspmYYQulWeCIxcNNWfjzYGA 08bFyGsD4jP6phB4K7cMcvirD8ATy19B/2gFIM9S0lkfmI3GcMKXpr6cW9uS7ZaZ gcl6g2ngmype8KgpnS4A2D7IfAoCSoEs9/CWhqMkDOSw+a1u7Q2HNx+qL9iDTF6B lUnJ3iXJ7gtjrUXON9AqnMLA2qFJhQm4uJBh4FTtWeuvouFYtyQ= -----END CERTIFICATE-----Generated at Thu Mar 26 17:56:39 2026 by rpki-client