$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft File: 2858C74CC23A557C73F59051B7FE8638AA491C94.mft (raw, json) Hash identifier: rU0UQUDoAsD0pjurlc3RrWGzXqOpKpsxOyAQRAho5fo= Subject key identifier: 63:4E:59:99:68:5D:45:9D:87:45:BF:B3:2E:47:A8:7F:5A:3C:04:00 Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 5B806346EE3ED49D817E00649A89349E421AD35D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft Manifest number: 70 Signing time: Tue 24 Mar 2026 20:02:11 +0000 Manifest this update: Tue 24 Mar 2026 19:57:11 +0000 Manifest next update: Sat 28 Mar 2026 03:28:11 +0000 Files and hashes: 1: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (hash: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg=) 2: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (hash: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk=) 3: 3130332e35302e3132382e302f32322d3234203d3e20313333383039.roa (hash: IB02l7aeS1Ctr7m+n8ymFsmUvTLgjo3obFTTz15X/C8=) 4: 2858C74CC23A557C73F59051B7FE8638AA491C94.crl (hash: Y0nQnTd9ss+eeOR8QZjVxT+HqfyFKdcNgh8dnUU16TA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 03:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:80:63:46:ee:3e:d4:9d:81:7e:00:64:9a:89:34:9e:42:1a:d3:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Mar 24 19:57:11 2026 GMT Not After : Mar 28 03:28:11 2026 GMT Subject: CN=634E5999685D459D8745BFB32E47A87F5A3C0400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:2c:c4:82:41:90:68:90:5a:93:0b:c1:62: b1:1e:c1:d1:d0:22:44:45:1f:e6:31:d2:73:33:98: b6:f6:4e:3f:11:93:23:d3:9b:f5:95:ad:8e:8d:4a: 7b:e1:e7:10:f6:82:f5:bd:3d:06:4f:39:cf:fe:89: da:03:27:9c:a3:23:8c:f4:19:7c:a8:40:6f:d2:3c: bb:dc:0d:10:2d:4c:59:3f:ee:57:2a:c3:36:e6:74: 87:66:9b:c9:6d:3b:69:b4:99:b3:ac:d6:c2:a0:82: f0:04:ba:02:b2:01:2c:d8:0b:a5:6f:69:41:69:43: 4e:27:3c:5a:98:a1:30:15:4c:29:3f:42:ac:3a:49: aa:de:27:70:cd:ff:06:e8:97:87:91:de:46:02:51: 7a:01:cc:66:9a:f7:98:df:9b:8a:4b:ca:e2:c5:2b: 72:c6:59:59:c3:ad:d3:6c:e0:1e:fa:0c:32:4f:5a: a5:fb:53:84:31:55:e4:84:ea:43:66:6d:76:b8:e2: 87:b0:32:6a:91:21:f3:c7:8f:1e:8f:01:da:7d:27: 1c:91:65:73:d0:06:a3:97:3a:b0:0a:c8:7a:be:0d: ac:da:f7:e2:46:ea:29:dd:2c:06:8d:79:18:f3:ab: a8:98:3b:87:17:90:05:45:d5:0c:06:f9:d8:65:7d: d6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4E:59:99:68:5D:45:9D:87:45:BF:B3:2E:47:A8:7F:5A:3C:04:00 X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:94:5c:c9:f4:3d:64:8c:78:f3:af:b0:ad:16:03:e1:00:75: 21:af:7f:e8:96:e8:8c:29:d5:6e:11:17:7f:a4:e1:7f:58:b6: bb:12:e0:be:7a:1d:85:0f:10:2a:7c:53:94:db:f8:da:08:bf: 41:4b:89:4d:e5:3d:bf:a4:2b:01:94:65:2c:d3:2e:a1:fa:54: dc:a4:e5:bf:96:65:24:aa:c2:e3:c9:90:07:39:6d:fd:10:88: f1:5b:6b:f9:5f:7f:39:5b:87:06:d2:a8:ef:3e:e9:63:54:c7: 37:76:d8:59:2a:3d:68:14:1b:f3:5c:bd:1c:fa:1d:cd:96:14: 0c:c6:99:53:89:92:89:c9:52:48:de:4d:16:df:cd:8d:fd:05: d2:7c:b0:17:4a:ec:c5:1c:4b:a4:b2:7f:a7:be:41:08:bc:ea: ad:49:c4:ec:27:64:ed:cb:12:fb:e1:4a:b2:94:c8:bd:80:7a: b0:87:18:79:95:b8:e8:c9:73:a1:4e:07:64:aa:e9:10:49:5a: 02:84:f1:73:f4:c6:6e:f9:f7:6a:60:b2:9e:f7:8d:47:74:66: c7:02:00:da:61:66:aa:9e:f9:2b:5e:ba:8f:40:e1:40:e4:86: bf:1e:f0:c6:ee:29:69:95:10:ae:6d:a7:f4:9b:a9:7b:19:a9: 0c:1c:18:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW4BjRu4+1J2BfgBkmok0nkIa010wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNjAzMjQxOTU3MTFaFw0yNjAzMjgwMzI4MTFaMDMxMTAvBgNV BAMTKDYzNEU1OTk5Njg1RDQ1OUQ4NzQ1QkZCMzJFNDdBODdGNUEzQzA0MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoRizEgkGQaJBakwvBYrEewdHQ IkRFH+Yx0nMzmLb2Tj8RkyPTm/WVrY6NSnvh5xD2gvW9PQZPOc/+idoDJ5yjI4z0 GXyoQG/SPLvcDRAtTFk/7lcqwzbmdIdmm8ltO2m0mbOs1sKggvAEugKyASzYC6Vv aUFpQ04nPFqYoTAVTCk/Qqw6SareJ3DN/wbol4eR3kYCUXoBzGaa95jfm4pLyuLF K3LGWVnDrdNs4B76DDJPWqX7U4QxVeSE6kNmbXa44oewMmqRIfPHjx6PAdp9JxyR ZXPQBqOXOrAKyHq+Daza9+JG6indLAaNeRjzq6iYO4cXkAVF1QwG+dhlfdYPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUY05ZmWhdRZ2HRb+zLkeof1o8BAAwHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTljZWY4YjAtYmE2NC00YzBjLThk ZTgtMWY1MGE4NWQ1ZmRlLzAvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2 MzhBQTQ5MUM5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEWUXMn0PWSMePOvsK0WA+EAdSGvf+iW6Iwp 1W4RF3+k4X9YtrsS4L56HYUPECp8U5Tb+NoIv0FLiU3lPb+kKwGUZSzTLqH6VNyk 5b+WZSSqwuPJkAc5bf0QiPFba/lffzlbhwbSqO8+6WNUxzd22FkqPWgUG/NcvRz6 Hc2WFAzGmVOJkonJUkjeTRbfzY39BdJ8sBdK7MUcS6Syf6e+QQi86q1JxOwnZO3L EvvhSrKUyL2AerCHGHmVuOjJc6FOB2Sq6RBJWgKE8XP0xm7592pgsp73jUd0ZscC ANphZqqe+Steuo9A4UDkhr8e8MbuKWmVEK5tp/SbqXsZqQwcGBs= -----END CERTIFICATE-----Generated at Thu Mar 26 12:24:31 2026 by rpki-client