$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft File: D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft (raw, json) Hash identifier: vGba0f0c1vGaBAetSsouLZxulS6QK1JYZA8UH4vNcKk= Subject key identifier: 90:8E:4A:92:EB:83:C1:3B:D7:B7:B0:B5:B7:C0:68:60:E5:B6:85:50 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 34741013C5E7D1A1A0992B5F658F8D30C0C8EE93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft Manifest number: D5 Signing time: Tue 24 Mar 2026 00:51:00 +0000 Manifest this update: Tue 24 Mar 2026 00:46:00 +0000 Manifest next update: Fri 27 Mar 2026 12:14:00 +0000 Files and hashes: 1: 3230322e3133332e312e302f32342d3234203d3e203234323030.roa (hash: q0yJUvBcjd2NEtr8e4z3fwmDmV4NBgtGO2qntKq/f+g=) 2: D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl (hash: noecJlhOKCVa+p1gSxR5LqWGOFcu3lUwtbk7LUxYdvg=) 3: 3230322e3133332e302e302f32312d3231203d3e203234323030.roa (hash: Ngb3LnXQ11YHQrKg5E3aodFpuV+UGL7buohqyUmiTrA=) 4: 3230322e3133332e322e302f32342d3234203d3e203234323030.roa (hash: wnaZXzJu/9XYkLWvstgZSpRMBHg1zffk2A9AEFHpANM=) 5: 3230322e3133332e352e302f32342d3234203d3e203234323030.roa (hash: 3ZpfdTtxXj52cP2nsv6kg1TUa5J+9S8J6u9CtjkNgCU=) 6: 3230322e3133332e362e302f32342d3234203d3e203234323030.roa (hash: NPtGQfnjNiCvn81mxs4KeV6zEFVnWZPCAxC6gItEmqo=) 7: 3230322e3133332e342e302f32342d3234203d3e203234323030.roa (hash: zMpVgEWzPdDK17NtW9oxpCMK4fkWK+NftKAxjrfh35o=) 8: 3230322e3133332e332e302f32342d3234203d3e203234323030.roa (hash: NDeOIbsC2Gb17cgUpeSYzxHEHiZeh+ueNQnGf7HfQng=) 9: 3230322e3133332e372e302f32342d3234203d3e203234323030.roa (hash: /GwhlBmTeqRQ0qTqfr/7dYrst12Hg3GNSY71ebWYL0A=) 10: 3230322e3133332e302e302f32342d3234203d3e203234323030.roa (hash: LWSN+OOVgP5g9xcwwR15CS7HhslaezIfEbjBNEwvwaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 12:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:74:10:13:c5:e7:d1:a1:a0:99:2b:5f:65:8f:8d:30:c0:c8:ee:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Mar 24 00:46:00 2026 GMT Not After : Mar 27 12:14:00 2026 GMT Subject: CN=908E4A92EB83C13BD7B7B0B5B7C06860E5B68550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f2:09:81:94:4b:87:9a:6f:2b:2e:67:d5:ab: 8e:bb:0b:d3:ed:b9:f4:7f:ab:23:3e:a9:67:e4:18: cf:2a:59:84:7d:18:e1:27:71:25:7b:a8:c1:39:3e: 3b:65:35:86:41:f7:22:44:dc:b1:3d:cf:91:5b:09: 1f:62:06:e9:63:53:df:a3:db:76:c6:38:88:5c:f0: 51:0c:06:cc:67:70:65:fa:8f:e6:58:67:eb:45:cd: a5:19:48:4e:09:ba:f4:7f:4f:be:e8:97:f2:22:08: e0:3b:e2:b6:b0:c3:c9:93:ef:0a:fe:bc:8d:6b:65: fd:a9:6f:38:6d:18:c7:1c:ac:07:74:97:ff:78:a8: 4c:dd:59:f3:eb:df:18:34:ad:c5:1a:d8:4f:4e:04: 8a:02:81:46:00:47:d2:53:8e:de:0d:69:af:b4:1a: 0b:5d:d5:10:dd:25:0a:0e:15:cb:04:43:80:bc:18: 99:60:b6:15:23:42:ac:ef:78:84:07:40:8a:04:b4: a8:ba:f7:a5:fe:4b:db:47:49:2d:01:91:4e:9d:4d: 3a:d0:70:bc:c1:a8:d0:2f:b6:88:99:55:36:9a:8b: 69:fd:f2:d5:e5:01:b5:fc:b4:3b:b1:32:40:b0:11: c0:47:b1:55:a3:64:3a:1f:76:e8:e0:84:dd:7b:50: 29:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8E:4A:92:EB:83:C1:3B:D7:B7:B0:B5:B7:C0:68:60:E5:B6:85:50 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:41:c8:eb:53:81:d4:9d:05:70:40:7e:d0:c0:75:92:7e:c8: 7c:be:65:a3:f0:99:eb:9d:68:8c:bf:cb:56:bb:8e:33:a8:34: 2e:2d:97:4f:26:1f:e5:3a:16:4b:a5:c9:bc:58:20:45:5e:c5: 7f:bc:6e:e0:bd:21:fa:c7:a4:e9:38:7c:1f:0a:b5:ee:46:a2: 0d:a1:21:6b:5e:e0:53:ad:40:7b:3c:d5:cd:90:cb:cf:4b:a4: 68:2e:36:0c:2e:32:5b:f1:52:4e:c0:35:c9:17:06:93:46:89: 09:db:91:9f:be:55:92:4d:f1:d9:52:d3:70:5d:a8:f0:20:9d: c7:af:12:55:e2:c1:20:a1:56:f2:83:33:0f:c1:ee:d4:72:92: 42:32:16:d5:ac:59:de:0d:53:d4:a0:96:b8:a4:3c:54:5c:07: d3:a3:d7:58:21:f1:07:0f:47:b6:ed:5a:e8:aa:4f:68:fb:20: 24:5e:01:a3:1e:0d:43:97:7f:ea:48:e5:e8:79:d5:b1:d8:00: d9:26:fa:ec:f0:8f:cf:34:57:65:e8:a7:0f:2f:d5:59:48:09: c1:8c:af:ec:bd:2f:57:fa:4c:5e:73:3e:b9:33:52:a6:e1:50: 2c:13:57:a3:53:91:f5:93:81:93:4d:e3:29:87:ad:3a:9c:ad: c6:53:bf:fa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNHQQE8Xn0aGgmStfZY+NMMDI7pMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNjAzMjQwMDQ2MDBaFw0yNjAzMjcxMjE0MDBaMDMxMTAvBgNV BAMTKDkwOEU0QTkyRUI4M0MxM0JEN0I3QjBCNUI3QzA2ODYwRTVCNjg1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr8gmBlEuHmm8rLmfVq467C9Pt ufR/qyM+qWfkGM8qWYR9GOEncSV7qME5PjtlNYZB9yJE3LE9z5FbCR9iBuljU9+j 23bGOIhc8FEMBsxncGX6j+ZYZ+tFzaUZSE4JuvR/T77ol/IiCOA74raww8mT7wr+ vI1rZf2pbzhtGMccrAd0l/94qEzdWfPr3xg0rcUa2E9OBIoCgUYAR9JTjt4Naa+0 Ggtd1RDdJQoOFcsEQ4C8GJlgthUjQqzveIQHQIoEtKi696X+S9tHSS0BkU6dTTrQ cLzBqNAvtoiZVTaai2n98tXlAbX8tDuxMkCwEcBHsVWjZDofdujghN17UCmxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkI5KkuuDwTvXt7C1t8BoYOW2hVAwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjM2NjllYTQtZTgyZi00NmMzLThk ZDMtMmU5ODgxNTliMjAyLzAvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVG QUI4QkE3QkU0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACJByOtTgdSdBXBAftDAdZJ+yHy+ZaPwmeud aIy/y1a7jjOoNC4tl08mH+U6FkulybxYIEVexX+8buC9IfrHpOk4fB8Kte5Gog2h IWte4FOtQHs81c2Qy89LpGguNgwuMlvxUk7ANckXBpNGiQnbkZ++VZJN8dlS03Bd qPAgncevElXiwSChVvKDMw/B7tRykkIyFtWsWd4NU9SglrikPFRcB9Oj11gh8QcP R7btWuiqT2j7ICReAaMeDUOXf+pI5eh51bHYANkm+uzwj880V2Xopw8v1VlICcGM r+y9L1f6TF5zPrkzUqbhUCwTV6NTkfWTgZNN4ymHrTqcrcZTv/o= -----END CERTIFICATE-----Generated at Thu Mar 26 11:35:30 2026 by rpki-client