$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: gkBFPM/uah3toMTzRXspEPM9mvwdPZUSZwAfZYtkazM= Subject key identifier: DD:22:10:B4:30:93:7B:53:98:0E:27:78:06:B9:DE:00:31:88:7E:AF Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 58E01BA3C9C83FAC74EF112984412FCAE1D727D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 0223 Signing time: Wed 25 Mar 2026 09:01:28 +0000 Manifest this update: Wed 25 Mar 2026 08:56:28 +0000 Manifest next update: Sat 28 Mar 2026 20:07:28 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: ijH0Fs4yiHN1ffZ6uDsgcW2u1EI1mU/HvnxOo61Qmf8=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 20:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e0:1b:a3:c9:c8:3f:ac:74:ef:11:29:84:41:2f:ca:e1:d7:27:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Mar 25 08:56:28 2026 GMT Not After : Mar 28 20:07:28 2026 GMT Subject: CN=DD2210B430937B53980E277806B9DE0031887EAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a5:e9:8c:7b:da:fb:5e:6b:31:f2:74:d3:f0: d7:31:66:24:ae:85:1c:f0:38:cf:e4:da:0f:1f:cd: 03:37:7f:50:e5:23:ff:2e:a9:75:ec:95:3a:55:28: 36:2c:9d:4f:81:89:08:57:97:e9:53:46:2c:34:06: df:58:18:7d:b9:38:30:1c:b8:2c:62:25:ad:e3:66: bd:7b:e5:51:a8:70:e2:a3:dd:5b:1f:09:8d:95:b2: 65:b6:c5:23:fd:1e:c1:cd:3f:53:92:19:3b:ed:7b: 29:68:f5:c5:13:af:72:8a:ba:eb:f4:f4:f8:90:8a: 8c:fc:2b:d8:d9:35:27:67:61:07:85:27:46:ef:a7: 17:c1:07:98:f7:2c:5a:5d:dd:46:31:41:df:bc:89: b0:64:c5:34:a9:df:0c:47:cc:7e:2f:f8:92:89:2b: 7d:e1:1c:30:75:10:4e:40:1b:2d:8f:63:f7:3e:01: bd:b3:d6:c8:99:20:1b:5e:3d:12:c7:ff:58:b3:62: 19:0a:64:4f:f3:06:24:66:b4:a1:44:cb:0d:eb:db: d2:71:39:b7:36:76:dc:3e:05:6a:f6:c5:ed:83:f8: 8a:ec:70:5f:5c:7f:0e:3b:39:b1:72:88:86:5d:4d: d1:7d:2c:8c:36:b2:33:01:04:5c:67:99:93:97:fa: 61:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:22:10:B4:30:93:7B:53:98:0E:27:78:06:B9:DE:00:31:88:7E:AF X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:bb:10:5c:f3:3f:fa:b4:ea:2d:d1:23:b4:c9:2a:5f:42:a4: fb:16:ac:45:59:af:0e:da:1b:ef:cc:f0:55:8b:b3:a2:41:62: 0e:07:61:1f:ae:c7:7d:bf:e4:64:00:7a:b9:67:cd:c3:cc:8f: bd:f3:b4:1f:1e:59:bd:08:e9:a4:ae:82:68:fe:de:34:63:10: b5:1a:cd:95:40:a4:1e:d5:f2:18:7d:58:d3:36:b7:38:7a:2d: 8a:71:28:af:85:46:28:19:47:2b:83:7c:98:c6:9a:fe:46:f5: 3a:d0:e4:fe:c4:0a:d4:a6:e5:5d:c5:3f:d9:2e:6f:91:b9:db: 11:96:d9:d9:95:ca:12:30:6a:42:10:95:fe:3e:d5:bc:df:40: 01:35:5e:0e:32:ed:06:a5:8e:ef:19:1f:a0:ce:28:76:52:22: 52:5a:ee:5a:15:a8:52:8a:7c:ff:64:13:54:d6:bf:4f:14:80: 6b:1e:06:2f:d8:18:54:56:76:a8:96:50:0b:d7:0c:b2:a9:5f: 56:b3:fb:8a:51:ee:ce:f6:a8:61:68:74:18:bc:d7:dd:52:02: 26:3c:06:a8:65:0e:6c:b2:57:33:7a:80:40:4b:c9:21:b8:77: ac:ca:d8:95:54:44:07:c8:03:09:02:d0:6c:08:b7:54:da:7b: 5c:7f:02:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWOAbo8nIP6x07xEphEEvyuHXJ9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNjAzMjUwODU2MjhaFw0yNjAzMjgyMDA3MjhaMDMxMTAvBgNV BAMTKEREMjIxMEI0MzA5MzdCNTM5ODBFMjc3ODA2QjlERTAwMzE4ODdFQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgpemMe9r7Xmsx8nTT8NcxZiSu hRzwOM/k2g8fzQM3f1DlI/8uqXXslTpVKDYsnU+BiQhXl+lTRiw0Bt9YGH25ODAc uCxiJa3jZr175VGocOKj3VsfCY2VsmW2xSP9HsHNP1OSGTvteylo9cUTr3KKuuv0 9PiQioz8K9jZNSdnYQeFJ0bvpxfBB5j3LFpd3UYxQd+8ibBkxTSp3wxHzH4v+JKJ K33hHDB1EE5AGy2PY/c+Ab2z1siZIBtePRLH/1izYhkKZE/zBiRmtKFEyw3r29Jx Obc2dtw+BWr2xe2D+IrscF9cfw47ObFyiIZdTdF9LIw2sjMBBFxnmZOX+mGJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3SIQtDCTe1OYDid4BrneADGIfq8wHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACa7EFzzP/q06i3RI7TJKl9CpPsWrEVZrw7a G+/M8FWLs6JBYg4HYR+ux32/5GQAerlnzcPMj73ztB8eWb0I6aSugmj+3jRjELUa zZVApB7V8hh9WNM2tzh6LYpxKK+FRigZRyuDfJjGmv5G9TrQ5P7ECtSm5V3FP9ku b5G52xGW2dmVyhIwakIQlf4+1bzfQAE1Xg4y7Qalju8ZH6DOKHZSIlJa7loVqFKK fP9kE1TWv08UgGseBi/YGFRWdqiWUAvXDLKpX1az+4pR7s72qGFodBi8191SAiY8 BqhlDmyyVzN6gEBLySG4d6zK2JVURAfIAwkC0GwIt1Tae1x/At8= -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:22 2026 by rpki-client