$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft File: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft (raw, json) Hash identifier: LqkfcbYcTL0DkT2/fXl9XY6BOBC3MRuQAZDFhjasXgs= Subject key identifier: E5:DB:8F:74:D0:DF:4D:1C:30:BA:7B:C9:99:69:84:F0:97:73:2B:00 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 61F8B730656E7AA227A374260A2AA81F212C73C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft Manifest number: 01F6 Signing time: Thu 26 Mar 2026 04:34:19 +0000 Manifest this update: Thu 26 Mar 2026 04:29:19 +0000 Manifest next update: Sun 29 Mar 2026 10:24:19 +0000 Files and hashes: 1: 3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa (hash: 9Eop7Wi9KDAgTJcnqm4m9VblRXdXAgnSYGkJE3U1uCo=) 2: 3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa (hash: DZYxEEoedEoh7hUvK00A3sjPaarHyHkFwFSubpvLa90=) 3: 3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa (hash: s4bQxfKSzhThJnV2s35QtgCBE4otyhr6xeMzoqnFm8Y=) 4: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (hash: Y4Wi8qAYZ81rv46ZtcXhKaHsjEBVaOJAYBhmKDi8JTE=) 5: 323430343a3838303a31303a3a2f34382d3438203d3e203338373530.roa (hash: Sy9hkM6GiY2A8PJLV4Nfp37jRK6rgm8s4Dis0JXn+yM=) 6: 3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa (hash: IlfpZnqN0u5jMQ+MMy/Uh2Q/ScrlgNhJWft3oBH8Ovo=) 7: 3130332e3231332e3131382e302f32332d3233203d3e203338373530.roa (hash: 5+Lrlmsb5L0Ui5dwWmtBdUYYTElmK0wLGoJd8oRSiBs=) 8: 3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa (hash: zofQAGzRLVSbQfa8x1HxlEvAC2rTzuC4QEGkc7xHMvw=) 9: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (hash: cN4silcvuPV22OI3IsNy5UveikGt8GvqnC8R2u5vZmI=) 10: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl (hash: z/xJrpCFEWrGgcrk1eo23NzKQ1Cyb/bIvqn6MEaT4qU=) 11: 3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa (hash: WKBxmJwVLzCYBVgxt4LMTfwAcTtnh7yu4VGARK2zxgY=) 12: 3230322e3137392e3138372e302f32342d3234203d3e203338373530.roa (hash: B48tlPMvOf7K7HzDvvhN+csuCxhTxi2XsZzldYqsXqU=) 13: 3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa (hash: bk766NBayeqzl2TpClpr9IhYx+ApKL2x4uzDJCxWkIk=) 14: 323430343a3838303a31323a3a2f34382d3438203d3e203338373530.roa (hash: S44Epk6JeUeZ5yWvR8asx7nMX9C6VHuBZKO5BYosW8I=) 15: 3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa (hash: L4h2Wp4fQdhUrMD0z3Ssoa6P+p1dDNjkEiybK+QQebs=) 16: 323430343a3838303a3a2f34382d3438203d3e203338373530.roa (hash: 6LIXTMzQc/lghuTmByqypLyfUbvgb0HreytMEaQ8ub8=) 17: 3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa (hash: XubVHR1uW/U3u8JfLGlOr8aeDpjn5EspQIPSeyKbXv4=) 18: 3230322e3137392e3139302e302f32332d3233203d3e203338373530.roa (hash: rnA3IRzyMf7VcTsuO0dzhmCjtb5X6HqSJSiPqAsj3W0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f8:b7:30:65:6e:7a:a2:27:a3:74:26:0a:2a:a8:1f:21:2c:73:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Mar 26 04:29:19 2026 GMT Not After : Mar 29 10:24:19 2026 GMT Subject: CN=E5DB8F74D0DF4D1C30BA7BC9996984F097732B00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6a:d9:3a:4b:81:c8:2c:c6:10:27:59:9d:21: 7e:49:2b:0a:8d:5e:dd:3d:20:d9:a5:3e:d4:2d:b6: 20:51:70:a5:e5:8f:88:a7:29:34:87:9c:9f:6b:dc: 62:ba:f6:49:4d:d2:60:60:b0:77:31:57:b3:dc:ce: 9a:03:b5:9f:82:1a:4c:79:29:5f:e5:1b:cd:3e:ab: 6f:11:16:f7:3f:dc:25:45:94:1a:a5:9c:b5:ac:be: f1:cc:95:1c:0b:75:2e:21:c6:44:6a:66:97:92:49: 95:e5:e2:95:68:c0:83:7f:fe:71:76:33:a4:87:53: 30:5e:6a:26:9c:1c:13:f0:e2:9b:48:26:f6:95:d3: bf:6b:03:06:de:22:73:ac:2b:1f:4f:19:ab:7d:a2: e8:79:3b:03:18:b8:42:ae:6c:33:e9:23:cd:58:ae: fe:e7:af:2a:a9:32:33:ae:1d:d1:5a:f5:16:d9:5d: a9:ed:82:db:10:27:d1:65:a8:ed:f3:c8:c6:38:3c: 63:66:02:2f:4c:30:f0:fe:df:73:13:be:f6:43:f1: 71:89:0d:81:b8:cd:a9:43:b9:e4:c8:48:a0:10:50: d0:81:e5:b3:24:71:08:f3:9e:3b:bc:5f:a5:af:ae: a1:de:10:66:b9:82:e9:13:d3:9d:24:64:95:7b:3b: c3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DB:8F:74:D0:DF:4D:1C:30:BA:7B:C9:99:69:84:F0:97:73:2B:00 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0b:df:06:5d:03:a7:ea:d5:1c:59:c9:a6:68:3c:c2:ce:15: fb:09:75:51:b3:07:0e:60:77:48:b6:94:ba:44:a0:0c:ff:f8: ea:66:c2:3f:14:de:21:5d:4d:fc:2e:96:52:2a:72:9d:63:60: 5e:76:c4:3d:e2:56:d5:98:f2:b1:f7:28:da:83:2b:8d:b3:1c: 1a:13:51:cd:15:23:1c:ff:1a:df:2d:f9:28:92:55:3a:06:a9: ff:57:3f:db:32:cb:7b:b7:26:99:9d:50:86:74:85:ad:95:aa: 43:c9:b1:dd:ae:f8:f2:75:76:20:d8:ff:ef:b6:ad:62:67:63: db:78:71:69:33:6b:d3:a2:aa:15:e5:b9:ef:6d:cc:c9:bc:7a: 16:ac:7e:09:61:99:84:eb:58:89:50:71:a3:64:37:7f:e3:1b: 54:b1:71:d0:38:e7:64:d8:75:63:e8:c5:4a:7b:6d:fe:ac:67: f1:4a:02:6f:81:a7:6b:da:01:57:5a:0e:05:11:f6:0c:72:e2: f5:61:3d:cd:9e:e3:71:a7:e9:1b:74:5a:44:a6:8c:49:d5:d5: 02:5b:a3:f1:ff:c7:9c:4f:ea:45:5c:6f:ce:a2:08:9f:64:ca: 0d:c6:8a:95:cc:f3:45:9f:12:41:84:57:25:d8:8d:7e:dd:1f: 09:a8:5a:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYfi3MGVueqIno3QmCiqoHyEsc8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNjAzMjYwNDI5MTlaFw0yNjAzMjkxMDI0MTlaMDMxMTAvBgNV BAMTKEU1REI4Rjc0RDBERjREMUMzMEJBN0JDOTk5Njk4NEYwOTc3MzJCMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJatk6S4HILMYQJ1mdIX5JKwqN Xt09INmlPtQttiBRcKXlj4inKTSHnJ9r3GK69klN0mBgsHcxV7PczpoDtZ+CGkx5 KV/lG80+q28RFvc/3CVFlBqlnLWsvvHMlRwLdS4hxkRqZpeSSZXl4pVowIN//nF2 M6SHUzBeaiacHBPw4ptIJvaV079rAwbeInOsKx9PGat9ouh5OwMYuEKubDPpI81Y rv7nryqpMjOuHdFa9RbZXantgtsQJ9FlqO3zyMY4PGNmAi9MMPD+33MTvvZD8XGJ DYG4zalDueTISKAQUNCB5bMkcQjznju8X6WvrqHeEGa5gukT050kZJV7O8O9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5duPdNDfTRwwunvJmWmE8JdzKwAwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzBmNWNmZGItNzk4Ny00MzUxLWJj MmUtNjZjMjRmNDlmNDQwLzAvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5 RUU5REUzMjAxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE0L3wZdA6fq1RxZyaZoPMLOFfsJdVGzBw5g d0i2lLpEoAz/+Opmwj8U3iFdTfwullIqcp1jYF52xD3iVtWY8rH3KNqDK42zHBoT Uc0VIxz/Gt8t+SiSVToGqf9XP9syy3u3JpmdUIZ0ha2VqkPJsd2u+PJ1diDY/++2 rWJnY9t4cWkza9OiqhXlue9tzMm8ehasfglhmYTrWIlQcaNkN3/jG1SxcdA452TY dWPoxUp7bf6sZ/FKAm+Bp2vaAVdaDgUR9gxy4vVhPc2e43Gn6Rt0WkSmjEnV1QJb o/H/x5xP6kVcb86iCJ9kyg3GipXM80WfEkGEVyXYjX7dHwmoWmA= -----END CERTIFICATE-----Generated at Thu Mar 26 21:07:17 2026 by rpki-client