$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: cxWuJAKedR9iBqIe7GzLiMrbRzw29Vh/eo+pnzAb3LI= Subject key identifier: BC:D8:B9:2E:93:35:C5:DC:64:89:ED:77:37:EE:A8:E0:D9:00:C9:2F Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 697A3EC6C28031D50B0BD40EC18F8A8507493311 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 055F Signing time: Tue 24 Mar 2026 18:00:54 +0000 Manifest this update: Tue 24 Mar 2026 17:55:54 +0000 Manifest next update: Sat 28 Mar 2026 04:22:54 +0000 Files and hashes: 1: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 2: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 3: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 4: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 5: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: uHths6ufnQFmMQldp+FZCASDw44jHpsjlngoW4qaiOY=) 6: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 7: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 8: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 9: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 10: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:7a:3e:c6:c2:80:31:d5:0b:0b:d4:0e:c1:8f:8a:85:07:49:33:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Mar 24 17:55:54 2026 GMT Not After : Mar 28 04:22:54 2026 GMT Subject: CN=BCD8B92E9335C5DC6489ED7737EEA8E0D900C92F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:85:37:31:0d:cc:30:72:b1:5d:9e:7f:ac:86: e5:33:8c:26:9c:84:a6:8e:b7:98:50:2d:f4:e5:ed: d3:d5:9d:ce:00:cc:b2:d0:f7:c3:52:8d:29:01:75: 0a:3b:a7:34:29:24:76:ee:c2:56:f7:f1:f6:8b:ef: c2:46:b1:bc:71:d3:c5:c0:98:42:a8:e8:e1:f5:28: 88:0b:d7:ad:84:d2:ff:1b:fd:60:3e:91:a3:c2:ba: d4:04:ab:f5:d5:f9:18:48:0b:96:e6:f7:ca:7b:2b: 36:e2:fd:af:f4:60:76:15:a6:e9:4d:18:c6:67:7f: be:e3:59:3d:0b:46:7b:46:ba:9d:8c:df:31:eb:d7: e6:d1:19:ce:c4:a2:7c:98:fb:73:4c:57:35:77:24: 02:ad:85:d1:97:21:6d:0c:87:85:d7:6b:46:47:57: 2d:cc:ef:47:ed:33:b7:d3:64:38:e9:0d:ef:f6:d1: 1d:99:1b:84:80:b0:b2:57:88:5d:8c:3c:09:68:9c: a7:13:60:65:eb:5f:40:8a:c1:6e:e9:a7:65:6b:c8: 15:bf:51:f9:7c:f9:02:a2:08:fb:c6:29:49:03:9c: 46:85:5c:d6:9d:f1:95:0d:eb:78:a1:24:2d:f0:af: d1:e9:4b:66:54:88:cb:9f:d4:56:89:b7:d2:f9:36: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D8:B9:2E:93:35:C5:DC:64:89:ED:77:37:EE:A8:E0:D9:00:C9:2F X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:74:49:7a:e2:35:90:41:9c:5d:25:c4:82:c9:3c:dc:bb:b9: ce:bb:13:8d:d5:16:0d:f7:f5:1b:53:07:53:3b:0e:da:2d:5e: 43:53:e8:96:d4:71:2f:4c:f6:a9:93:de:71:1b:9a:6e:fb:52: d6:43:03:86:e0:d8:4f:f7:a6:7f:d0:ca:6c:51:2a:f2:4e:5b: 58:47:cc:05:40:59:80:c4:58:4a:cd:ff:e2:45:b2:9f:d9:fc: d9:9f:b2:39:6b:26:b7:6d:a4:66:86:38:59:13:ab:0f:de:a8: c2:43:c0:02:5c:17:c1:7f:ac:2a:6f:d1:8b:8f:45:d8:88:c6: 70:ad:06:7e:de:dd:1e:37:dc:36:79:b6:67:ce:83:79:4a:87: 36:76:06:14:44:7d:cb:17:75:89:8d:31:14:36:42:c2:30:13: 9c:94:2f:ef:d0:15:2f:ca:3b:e0:b3:bd:15:e2:57:5d:64:93: 0d:44:49:33:ac:41:a3:7a:9e:82:c0:01:f2:ff:c3:0f:11:28: 69:0b:36:a9:49:e1:e2:78:15:26:d5:97:0a:0b:98:0c:b4:47: 64:bb:a2:65:73:91:45:1c:7d:9e:92:cf:b7:a6:d0:d0:4e:ad: 4e:29:79:c5:77:6c:4e:33:70:2c:c1:8a:c8:f2:f5:ee:2b:bf: 60:2a:a9:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaXo+xsKAMdULC9QOwY+KhQdJMxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNjAzMjQxNzU1NTRaFw0yNjAzMjgwNDIyNTRaMDMxMTAvBgNV BAMTKEJDRDhCOTJFOTMzNUM1REM2NDg5RUQ3NzM3RUVBOEUwRDkwMEM5MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWhTcxDcwwcrFdnn+shuUzjCac hKaOt5hQLfTl7dPVnc4AzLLQ98NSjSkBdQo7pzQpJHbuwlb38faL78JGsbxx08XA mEKo6OH1KIgL162E0v8b/WA+kaPCutQEq/XV+RhIC5bm98p7Kzbi/a/0YHYVpulN GMZnf77jWT0LRntGup2M3zHr1+bRGc7EonyY+3NMVzV3JAKthdGXIW0Mh4XXa0ZH Vy3M70ftM7fTZDjpDe/20R2ZG4SAsLJXiF2MPAlonKcTYGXrX0CKwW7pp2VryBW/ Ufl8+QKiCPvGKUkDnEaFXNad8ZUN63ihJC3wr9HpS2ZUiMuf1FaJt9L5Nn93AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvNi5LpM1xdxkie13N+6o4NkAyS8wHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALh0SXriNZBBnF0lxILJPNy7uc67E43VFg33 9RtTB1M7DtotXkNT6JbUcS9M9qmT3nEbmm77UtZDA4bg2E/3pn/QymxRKvJOW1hH zAVAWYDEWErN/+JFsp/Z/NmfsjlrJrdtpGaGOFkTqw/eqMJDwAJcF8F/rCpv0YuP RdiIxnCtBn7e3R433DZ5tmfOg3lKhzZ2BhREfcsXdYmNMRQ2QsIwE5yUL+/QFS/K O+CzvRXiV11kkw1ESTOsQaN6noLAAfL/ww8RKGkLNqlJ4eJ4FSbVlwoLmAy0R2S7 omVzkUUcfZ6Sz7em0NBOrU4pecV3bE4zcCzBisjy9e4rv2AqqUY= -----END CERTIFICATE-----Generated at Thu Mar 26 09:24:45 2026 by rpki-client