$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft File: 523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json) Hash identifier: gQ7Pth/N4jWcLJLWvMkgfFEfxGz7PHeMgFxJbRryaVw= Subject key identifier: 6D:BF:F8:DE:8C:59:51:17:84:22:03:0E:B6:74:CC:D6:F6:C1:3C:4A Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 5C3558213E6627FD6437E372FB2690B74B96AA46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft Manifest number: 0114 Signing time: Wed 25 Mar 2026 13:30:42 +0000 Manifest this update: Wed 25 Mar 2026 13:25:42 +0000 Manifest next update: Sun 29 Mar 2026 00:17:42 +0000 Files and hashes: 1: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: H0hxzRE1P/k0NGsIoy/0kaAKznrWHPdRQxgiRW4T5Qo=) 2: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: hc/SAyIauG1jJ57l0h4+sBBHszAxJzr30IxWH4dMmGI=) 3: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: YEDjMiqzXqQQzIDtWpx+jx5Bn+2TYkAiFHsRj0775yM=) 4: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: jWc0sz86L+eDtr+nDMgQgH+2S7uRf5Y8Wu7u8v4zz0Q=) 5: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: zP2/XdcDOhp440RXruEyN+zWviJE7i53kBfkBKlQJ0I=) 6: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: z0HZjcHieRuZ5HHeSmTqSUrJvHMtgbLp6o8sJVRupVI=) 7: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 00:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:35:58:21:3e:66:27:fd:64:37:e3:72:fb:26:90:b7:4b:96:aa:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: Mar 25 13:25:42 2026 GMT Not After : Mar 29 00:17:42 2026 GMT Subject: CN=6DBFF8DE8C5951178422030EB674CCD6F6C13C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ec:e6:11:f1:12:b3:39:1a:77:24:f2:64:fa: 47:6b:bb:cf:9d:2d:a6:69:19:0c:d3:37:ca:d7:b8: e0:b4:e0:0d:40:c7:e2:c3:4e:d7:01:35:47:14:99: a1:5a:69:b7:4a:d8:44:f7:f4:c7:27:d7:c7:6c:45: ca:de:68:d5:2f:2b:a9:7b:5f:29:f3:7c:06:f6:d2: 95:27:4c:21:6a:45:21:c3:45:d1:68:d2:39:80:27: 05:ca:46:be:dd:b6:7c:cb:6f:22:64:4d:c1:28:de: 6e:47:9c:ba:a2:df:05:8a:01:07:54:6f:4a:8e:b1: ce:f7:51:05:79:78:58:e2:af:b6:10:21:52:f3:f3: 39:b0:40:20:8c:1e:51:29:ac:2f:75:c1:0a:05:c6: 77:96:64:46:2f:73:21:d9:fe:96:f1:ec:c4:e4:95: 93:d7:37:e9:e9:b9:5c:2e:bc:55:60:fb:d3:7c:da: 9c:5a:62:37:9b:1c:6b:f1:46:ab:a1:df:f3:4d:3f: 8c:bd:82:1c:2b:e1:59:01:8e:32:a8:de:fc:2b:e8: e5:f9:99:fb:30:18:af:1a:b2:48:e3:77:85:07:27: db:de:35:de:7b:15:5d:59:f7:98:0c:bd:58:75:e4: c6:05:2d:be:76:53:7b:a9:26:9c:16:0d:07:3c:b4: 79:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BF:F8:DE:8C:59:51:17:84:22:03:0E:B6:74:CC:D6:F6:C1:3C:4A X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:0c:f3:b2:29:22:a8:b8:4a:c4:90:49:12:d6:2f:4c:99:02: 46:f0:b1:52:83:e0:b0:92:70:56:fd:01:00:7f:fa:54:09:2f: 92:e4:55:48:e9:6b:ee:7d:e6:9c:3d:3b:12:ec:6f:81:45:10: 45:3e:75:54:fc:39:08:93:70:1f:cd:e5:c3:ab:bd:01:9c:55: 0a:3b:50:49:74:ba:e1:64:fe:1c:02:a0:6a:a8:27:db:ea:2c: 28:69:d2:31:84:dc:fd:12:fb:f0:a9:6a:43:dc:cd:89:39:7c: 9b:eb:93:43:a0:02:7c:e9:07:25:ba:dd:8c:84:d8:2f:24:93: c4:68:52:00:3d:54:6d:36:e7:82:83:5f:6f:44:32:1e:9b:e4: 49:9f:79:34:90:58:bb:e5:ab:0f:84:ce:c0:d2:87:22:26:3a: a8:d9:90:f8:d9:81:13:2a:8a:9e:6b:68:3b:39:fa:7c:00:ec: 33:f3:19:95:36:44:78:1d:4d:81:08:f5:c1:6b:8b:18:b8:a5: 27:bd:03:fd:2c:fe:f7:d4:ba:cb:ac:9d:66:73:11:be:d6:29: 3c:1d:6b:4b:07:d4:b5:4b:44:69:6c:da:6d:11:6a:a5:d8:ad: 9a:75:00:a9:07:6a:a8:84:dc:41:33:fd:94:41:16:90:f5:6c: 92:a8:6f:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXDVYIT5mJ/1kN+Ny+yaQt0uWqkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNjAzMjUxMzI1NDJaFw0yNjAzMjkwMDE3NDJaMDMxMTAvBgNV BAMTKDZEQkZGOERFOEM1OTUxMTc4NDIyMDMwRUI2NzRDQ0Q2RjZDMTNDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ7OYR8RKzORp3JPJk+kdru8+d LaZpGQzTN8rXuOC04A1Ax+LDTtcBNUcUmaFaabdK2ET39Mcn18dsRcreaNUvK6l7 XynzfAb20pUnTCFqRSHDRdFo0jmAJwXKRr7dtnzLbyJkTcEo3m5HnLqi3wWKAQdU b0qOsc73UQV5eFjir7YQIVLz8zmwQCCMHlEprC91wQoFxneWZEYvcyHZ/pbx7MTk lZPXN+npuVwuvFVg+9N82pxaYjebHGvxRquh3/NNP4y9ghwr4VkBjjKo3vwr6OX5 mfswGK8askjjd4UHJ9veNd57FV1Z95gMvVh15MYFLb52U3upJpwWDQc8tHldAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbb/43oxZUReEIgMOtnTM1vbBPEowHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmFhNDI3NDItODlkMi00OWJiLThh M2UtMjk0YzM2ODk3MWY1LzAvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEw MjlCMTAxMzE0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHAM87IpIqi4SsSQSRLWL0yZAkbwsVKD4LCS cFb9AQB/+lQJL5LkVUjpa+595pw9OxLsb4FFEEU+dVT8OQiTcB/N5cOrvQGcVQo7 UEl0uuFk/hwCoGqoJ9vqLChp0jGE3P0S+/CpakPczYk5fJvrk0OgAnzpByW63YyE 2C8kk8RoUgA9VG0254KDX29EMh6b5EmfeTSQWLvlqw+EzsDShyImOqjZkPjZgRMq ip5raDs5+nwA7DPzGZU2RHgdTYEI9cFrixi4pSe9A/0s/vfUususnWZzEb7WKTwd a0sH1LVLRGls2m0RaqXYrZp1AKkHaqiE3EEz/ZRBFpD1bJKoby0= -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:23 2026 by rpki-client