$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: Nr8PVUZ2XmYijltfjjSURp7JdFHx1dW55Lsy7ucMNgI= Subject key identifier: 49:DF:83:F7:A7:EB:55:DC:65:2B:0D:5F:34:7E:29:C2:66:22:27:84 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 6DE5658AE975D935BF519FF1776002184BC4262B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 01D7 Signing time: Tue 24 Mar 2026 06:31:14 +0000 Manifest this update: Tue 24 Mar 2026 06:26:14 +0000 Manifest next update: Fri 27 Mar 2026 16:54:14 +0000 Files and hashes: 1: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: WPB0w9n7mCdc21HVfo06mm6RPH3lHaCHs4qLmynGO70=) 2: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: J8nc/ZkZUuiaLnI5jAoWLgIJJR1NS9p7mlRSvT0aL/o=) 3: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: 5lugqP8DMrQT4ZvRXepgV8yXVE0LHGWp6ftwYxWRj5M=) 4: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: PTzTUTP+tcbec6oQ8XF9BBUTPEmaQDT9+JJ/xv7s79o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 16:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e5:65:8a:e9:75:d9:35:bf:51:9f:f1:77:60:02:18:4b:c4:26:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Mar 24 06:26:14 2026 GMT Not After : Mar 27 16:54:14 2026 GMT Subject: CN=49DF83F7A7EB55DC652B0D5F347E29C266222784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bf:9e:7d:a8:54:96:e4:c7:4d:1c:88:9f:b1: 3f:ea:bd:30:60:31:64:db:52:50:f4:8a:f4:4c:d7: 2a:c5:af:c9:b7:b6:39:48:d4:cb:5d:e4:94:da:4c: 65:06:b2:b2:a4:d8:a7:8a:f6:c3:20:83:8a:de:8f: e0:bf:a0:9e:82:40:90:77:73:28:4e:f2:10:e0:7b: e2:dd:82:b0:14:7a:a0:20:c8:86:76:55:bc:a8:95: cd:3e:65:22:bf:2c:7a:ec:32:9d:44:28:fd:b1:2d: c9:5d:42:2e:d9:40:bc:5b:3e:57:24:08:c7:34:d5: c8:a6:8d:2f:91:3d:25:53:e7:f3:e2:c7:6b:62:04: 3f:fd:67:4c:ea:26:04:ea:f4:bc:51:e3:df:9d:19: 40:5d:83:d7:c9:d2:b6:3a:f0:38:4a:69:3c:05:dc: 6b:6d:af:a1:8c:02:cb:64:f6:d8:40:f9:eb:1b:2a: c1:46:3c:e9:9a:56:e4:77:ff:4b:7a:6b:22:18:c3: f9:2b:5b:2e:c0:83:30:51:0e:9f:64:44:ff:48:10: 75:50:d6:8c:27:8a:9c:7e:5f:d7:8a:a8:a4:90:e2: 55:a4:6b:cc:41:d6:0d:b7:6e:ae:72:bb:ff:10:29: 26:58:33:08:fc:81:e0:0e:f0:4d:32:b6:8b:4c:91: 2c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DF:83:F7:A7:EB:55:DC:65:2B:0D:5F:34:7E:29:C2:66:22:27:84 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:f7:63:2a:a6:bc:ff:a4:8d:74:65:b9:48:02:fe:91:98:38: 95:74:be:c4:f6:04:d0:71:9f:4b:55:c0:87:82:87:9b:e7:39: 54:e3:f6:2e:1b:9a:fd:f1:83:bd:e3:96:c6:28:9a:81:07:15: 3e:ac:fc:87:7d:80:e4:34:16:f8:12:72:18:0f:62:5b:6f:24: 27:9c:20:f2:b3:15:5f:7c:d2:9f:1f:1f:9c:5d:c6:36:41:cc: 1b:33:c6:2e:27:3b:e9:6e:43:7b:f5:18:0d:a9:bf:ba:79:c2: be:ce:1f:64:2b:14:7f:4c:bc:83:e1:f7:50:ac:c9:f4:bb:e2: 86:af:8c:23:68:45:a8:2f:17:25:f6:3c:21:e0:14:0e:70:e0: 62:a7:9e:3d:a9:b8:e7:16:b2:3b:a3:c2:68:0a:c8:82:c3:35: 21:53:17:f2:fc:76:98:34:f0:1b:84:e0:10:c3:ff:04:4f:e9: 44:dd:eb:9c:af:40:94:93:a9:c5:98:d9:36:cc:d0:56:1d:81: 73:01:56:45:d8:f2:66:57:9f:22:d2:2f:24:f8:83:ac:8e:69: 2c:09:7d:5a:ba:07:79:6c:1a:db:a3:71:90:76:c1:c8:f9:db: c6:01:e3:b1:a4:12:f5:00:f3:ea:45:61:24:3b:6f:34:ca:db: 1c:fd:ae:a6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbeVliul12TW/UZ/xd2ACGEvEJiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNjAzMjQwNjI2MTRaFw0yNjAzMjcxNjU0MTRaMDMxMTAvBgNV BAMTKDQ5REY4M0Y3QTdFQjU1REM2NTJCMEQ1RjM0N0UyOUMyNjYyMjI3ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfv559qFSW5MdNHIifsT/qvTBg MWTbUlD0ivRM1yrFr8m3tjlI1Mtd5JTaTGUGsrKk2KeK9sMgg4rej+C/oJ6CQJB3 cyhO8hDge+LdgrAUeqAgyIZ2Vbyolc0+ZSK/LHrsMp1EKP2xLcldQi7ZQLxbPlck CMc01cimjS+RPSVT5/Pix2tiBD/9Z0zqJgTq9LxR49+dGUBdg9fJ0rY68DhKaTwF 3Gttr6GMAstk9thA+esbKsFGPOmaVuR3/0t6ayIYw/krWy7AgzBRDp9kRP9IEHVQ 1ownipx+X9eKqKSQ4lWka8xB1g23bq5yu/8QKSZYMwj8geAO8E0ytotMkSyLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSd+D96frVdxlKw1fNH4pwmYiJ4QwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADL3YyqmvP+kjXRluUgC/pGYOJV0vsT2BNBx n0tVwIeCh5vnOVTj9i4bmv3xg73jlsYomoEHFT6s/Id9gOQ0FvgSchgPYltvJCec IPKzFV980p8fH5xdxjZBzBszxi4nO+luQ3v1GA2pv7p5wr7OH2QrFH9MvIPh91Cs yfS74oavjCNoRagvFyX2PCHgFA5w4GKnnj2puOcWsjujwmgKyILDNSFTF/L8dpg0 8BuE4BDD/wRP6UTd65yvQJSTqcWY2TbM0FYdgXMBVkXY8mZXnyLSLyT4g6yOaSwJ fVq6B3lsGtujcZB2wcj528YB47GkEvUA8+pFYSQ7bzTK2xz9rqY= -----END CERTIFICATE-----Generated at Thu Mar 26 17:25:03 2026 by rpki-client