$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: QeXYfQbH9xI+R0QwPvqMsCl5DHAAof2MSXAJqF2fowE= Subject key identifier: 8A:4F:CC:24:0B:23:B1:82:2A:D2:99:3A:6A:BA:34:1D:59:24:05:B3 Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 4B567932F33C2BA1D15E24C4D24BC1BE531EB258 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 0226 Signing time: Thu 26 Mar 2026 02:51:13 +0000 Manifest this update: Thu 26 Mar 2026 02:46:13 +0000 Manifest next update: Sun 29 Mar 2026 09:43:13 +0000 Files and hashes: 1: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: sm8jeStS9mRgsrGl5CeRQ6sBSscm5f2rHE/KQpXoWj8=) 2: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: EANE5y7CmiSI087LkbIHkjty3unADRbDSduqhAzRmF8=) 3: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: OjD7igAi8uIoux+rVxGtZEh2dpv8xELOea0gwWs5+6I=) 4: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: EQbr12ySqIrNTM9njp7Wb0XN8yJtB1BDEx2u9gpZun8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 09:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:56:79:32:f3:3c:2b:a1:d1:5e:24:c4:d2:4b:c1:be:53:1e:b2:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Mar 26 02:46:13 2026 GMT Not After : Mar 29 09:43:13 2026 GMT Subject: CN=8A4FCC240B23B1822AD2993A6ABA341D592405B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c7:a4:c1:5c:4d:0a:2e:6b:6d:ce:1e:ae:a6: 72:d9:ac:f7:b6:44:b2:b2:0d:25:17:ea:95:03:ef: 56:10:67:00:f1:e4:17:84:27:69:f2:84:bd:4d:7e: d3:00:e4:e5:83:04:e7:29:1a:91:42:c1:1d:04:68: de:62:d3:1c:27:5a:c0:ef:5b:f7:56:d6:c2:d2:82: be:26:f3:ec:d2:c0:1f:4b:91:a7:86:86:88:0c:c1: b5:8e:42:37:e9:e9:bc:fb:80:30:8e:0d:29:72:2f: be:f8:8b:15:7f:61:8d:d0:6c:3d:de:f5:8c:84:a3: 4e:13:56:06:7e:ee:09:6b:5b:87:21:b0:09:ca:70: 0d:05:ac:42:f3:3b:d4:ae:a2:8c:37:5c:d7:6c:cc: 8a:90:c0:c3:b0:8d:31:de:5e:3d:9d:c4:e9:bf:c6: f7:c2:7d:7e:46:ea:48:30:c5:e4:cd:1b:4f:06:d3: d4:85:90:30:aa:6a:57:0b:95:55:30:72:e0:ac:83: d1:ca:5a:61:ce:33:bc:9f:13:75:b9:8d:5b:a8:79: ed:7d:0f:ac:37:44:99:88:97:38:c7:2b:62:83:96: b1:6e:ca:70:8c:53:1c:78:72:c5:08:bb:9e:c8:e0: ad:32:a7:04:e6:56:0a:76:b5:0a:5b:6d:4c:2c:3f: 2f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4F:CC:24:0B:23:B1:82:2A:D2:99:3A:6A:BA:34:1D:59:24:05:B3 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:5a:52:5b:84:d5:3b:50:d4:3b:ca:15:c2:63:a9:dc:f5:a2: 52:31:d4:e4:42:87:be:2e:70:41:a0:49:c3:2f:e0:54:64:e6: 65:72:02:9b:7c:64:2f:93:0a:a4:5c:6d:2a:74:d3:96:d5:e5: 87:fb:5c:51:d2:60:ae:11:36:50:61:c7:3e:14:71:83:8d:ad: 68:98:db:6d:f8:a9:96:59:e9:c7:8f:85:a6:19:df:cc:9c:c4: 4a:3c:e5:52:11:4f:a3:6f:f7:5a:2c:db:64:2c:bb:97:36:fa: 88:a9:07:1c:85:d5:95:bb:79:e3:26:71:1f:99:69:0f:78:eb: 16:a4:03:c2:4b:38:49:54:82:cc:07:0a:3d:08:cd:25:08:3b: ed:03:f6:75:bc:55:2d:7c:f6:e6:6d:a1:82:29:4a:4a:7b:29: 9e:18:b5:98:5f:5e:6f:c6:b3:25:b7:60:0f:14:5d:f8:a4:f7: db:de:26:6c:7d:6f:e1:36:a1:27:bd:ea:f1:7d:2a:3c:3e:d1: 0d:79:07:7f:60:d1:d5:df:3a:0a:b9:3d:71:81:2b:45:5e:78: eb:22:b8:2c:6b:66:f4:be:26:fc:47:5d:9d:08:7c:d4:6e:1a: 85:e8:a2:86:37:62:bc:79:36:24:b5:1a:24:f9:77:35:9d:7d: 38:7f:55:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS1Z5MvM8K6HRXiTE0kvBvlMeslgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNjAzMjYwMjQ2MTNaFw0yNjAzMjkwOTQzMTNaMDMxMTAvBgNV BAMTKDhBNEZDQzI0MEIyM0IxODIyQUQyOTkzQTZBQkEzNDFENTkyNDA1QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChx6TBXE0KLmttzh6upnLZrPe2 RLKyDSUX6pUD71YQZwDx5BeEJ2nyhL1NftMA5OWDBOcpGpFCwR0EaN5i0xwnWsDv W/dW1sLSgr4m8+zSwB9LkaeGhogMwbWOQjfp6bz7gDCODSlyL774ixV/YY3QbD3e 9YyEo04TVgZ+7glrW4chsAnKcA0FrELzO9Suoow3XNdszIqQwMOwjTHeXj2dxOm/ xvfCfX5G6kgwxeTNG08G09SFkDCqalcLlVUwcuCsg9HKWmHOM7yfE3W5jVuoee19 D6w3RJmIlzjHK2KDlrFuynCMUxx4csUIu57I4K0ypwTmVgp2tQpbbUwsPy+jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUik/MJAsjsYIq0pk6aro0HVkkBbMwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFNaUluE1TtQ1DvKFcJjqdz1olIx1ORCh74u cEGgScMv4FRk5mVyApt8ZC+TCqRcbSp005bV5Yf7XFHSYK4RNlBhxz4UcYONrWiY 2234qZZZ6cePhaYZ38ycxEo85VIRT6Nv91os22Qsu5c2+oipBxyF1ZW7eeMmcR+Z aQ946xakA8JLOElUgswHCj0IzSUIO+0D9nW8VS189uZtoYIpSkp7KZ4YtZhfXm/G syW3YA8UXfik99veJmx9b+E2oSe96vF9Kjw+0Q15B39g0dXfOgq5PXGBK0VeeOsi uCxrZvS+JvxHXZ0IfNRuGoXoooY3Yrx5NiS1GiT5dzWdfTh/Vb8= -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:15 2026 by rpki-client