$ rpki-client -vvf repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft File: 41071AAF0C0E6BD84877680334B4F604B4B4E786.mft (raw, json) Hash identifier: FP/XYiIOzNQ85oYG3ZahlKYQ3VsfSib7OiaqFj6e6qo= Subject key identifier: 2D:A9:41:6F:12:69:5B:E4:8A:F1:CB:78:1C:CA:81:6C:FC:6C:E5:E4 Authority key identifier: 41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 Certificate issuer: /CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Certificate serial: 0A629917868936443D8747B27587052124D18614 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft Manifest number: 0255 Signing time: Wed 25 Mar 2026 23:32:29 +0000 Manifest this update: Wed 25 Mar 2026 23:27:29 +0000 Manifest next update: Sun 29 Mar 2026 10:38:29 +0000 Files and hashes: 1: 3130332e3136372e322e302f32342d3234203d3e20313431393637.roa (hash: S3FgE0+gcaLyx6nH2zsRG+Hi0BgVRkLf/ndGC4F7z/0=) 2: 41071AAF0C0E6BD84877680334B4F604B4B4E786.crl (hash: CUyr+TYGogXMsJa1aqv9gFEiNEDO6elD0Vs7kRo18dA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:62:99:17:86:89:36:44:3d:87:47:b2:75:87:05:21:24:d1:86:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Validity Not Before: Mar 25 23:27:29 2026 GMT Not After : Mar 29 10:38:29 2026 GMT Subject: CN=2DA9416F12695BE48AF1CB781CCA816CFC6CE5E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c6:f3:61:a6:52:17:80:02:bc:62:79:ad:31: f3:51:f0:67:ca:6d:64:5e:49:7e:5a:49:f9:94:2c: f7:d6:8c:1a:50:92:65:51:50:0f:2a:7a:c7:8e:e2: 60:b3:ce:6d:0d:e6:44:cf:a9:8a:da:5e:d2:e2:1d: 54:c0:42:3c:66:12:20:3d:60:65:9d:c4:1a:ed:0f: c7:65:46:cc:70:62:f8:53:47:30:44:85:e0:ca:21: 36:7e:30:c6:9f:70:00:c5:0b:d2:0a:63:7d:82:97: 36:3b:a9:f7:57:7b:66:64:f1:63:2f:9f:2c:a9:42: 6a:6a:14:8c:8d:75:12:3e:fb:c8:d4:65:3c:e3:e6: 93:67:79:d9:11:ef:e8:9a:8f:9e:d6:68:74:dc:7e: 0d:6c:1b:88:7a:81:b4:ca:3f:d4:d0:91:9c:77:77: f0:01:9e:7b:06:1a:d5:f4:5e:48:1e:70:6e:2b:98: 40:76:2c:5e:a3:0f:5d:fb:23:70:a7:9e:9d:e3:99: 25:e5:c6:da:46:14:20:fd:1c:53:ab:bf:38:37:3c: 0e:4c:25:c8:90:65:04:b9:94:32:81:db:2d:c5:70: f8:6b:99:98:c4:80:7d:fa:79:2c:d8:c7:64:b1:fc: d6:26:78:86:4d:63:a9:0f:56:fb:d2:d5:62:c3:0b: 16:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A9:41:6F:12:69:5B:E4:8A:F1:CB:78:1C:CA:81:6C:FC:6C:E5:E4 X509v3 Authority Key Identifier: keyid:41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:09:16:34:d9:c0:3f:66:89:67:13:fe:3d:32:d5:b9:d0:c9: 3a:31:4b:fa:a3:75:3d:dc:38:be:d6:a0:1a:45:98:73:d2:c3: 3b:a8:42:8e:cc:c7:db:6e:c5:51:dc:4c:d4:c1:20:00:5e:59: 8b:8d:67:6d:04:cc:e5:a0:22:bb:d4:e8:28:56:1c:86:32:4e: 6e:42:a3:9f:1d:21:4c:74:51:db:df:cf:4d:ea:d4:c6:d8:51: dc:35:25:af:92:39:20:e6:42:83:50:30:5b:79:5f:19:f5:87: 05:2d:d0:c1:66:f7:70:f9:28:9f:fe:57:d6:6d:67:4c:a8:8b: f4:04:df:ff:27:e2:f6:bc:ca:8a:22:63:a9:8a:82:d9:4b:11: 0c:09:22:cc:3f:ef:d5:a2:46:4c:f1:7d:01:d9:a0:e6:c5:81: f4:32:37:e0:c3:6d:c5:21:8f:17:a2:53:6a:0b:cc:77:ad:96: 44:c0:03:b1:3a:70:e6:5a:f5:fc:36:ce:fe:02:32:d3:f9:ce: a7:e2:6a:cd:ad:83:17:7a:1f:88:38:20:c4:f6:73:40:64:70: 58:5c:31:0c:0f:41:52:17:bc:06:8a:dc:70:81:c3:94:cb:45: 09:8d:f6:73:cf:2b:f8:50:7c:ee:54:6a:e6:d6:e2:00:0e:63: 1e:99:84:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCmKZF4aJNkQ9h0eydYcFISTRhhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRC NEI0RTc4NjAeFw0yNjAzMjUyMzI3MjlaFw0yNjAzMjkxMDM4MjlaMDMxMTAvBgNV BAMTKDJEQTk0MTZGMTI2OTVCRTQ4QUYxQ0I3ODFDQ0E4MTZDRkM2Q0U1RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTxvNhplIXgAK8YnmtMfNR8GfK bWReSX5aSfmULPfWjBpQkmVRUA8qeseO4mCzzm0N5kTPqYraXtLiHVTAQjxmEiA9 YGWdxBrtD8dlRsxwYvhTRzBEheDKITZ+MMafcADFC9IKY32ClzY7qfdXe2Zk8WMv nyypQmpqFIyNdRI++8jUZTzj5pNnedkR7+iaj57WaHTcfg1sG4h6gbTKP9TQkZx3 d/ABnnsGGtX0XkgecG4rmEB2LF6jD137I3Cnnp3jmSXlxtpGFCD9HFOrvzg3PA5M JciQZQS5lDKB2y3FcPhrmZjEgH36eSzYx2Sx/NYmeIZNY6kPVvvS1WLDCxb9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQULalBbxJpW+SK8ct4HMqBbPxs5eQwHwYDVR0j BBgwFoAUQQcarwwOa9hId2gDNLT2BLS054YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTI3YjNlMS1mNjExLTRhZmUtOWE0OS01ZmE0ZmQ1NTc2NTMvMC80MTA3MUFBRjBD MEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0QjRFNzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRCNEI0 RTc4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2UyN2IzZTEtZjYxMS00YWZlLTlh NDktNWZhNGZkNTU3NjUzLzAvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2 MDRCNEI0RTc4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADgJFjTZwD9miWcT/j0y1bnQyToxS/qjdT3c OL7WoBpFmHPSwzuoQo7Mx9tuxVHcTNTBIABeWYuNZ20EzOWgIrvU6ChWHIYyTm5C o58dIUx0Udvfz03q1MbYUdw1Ja+SOSDmQoNQMFt5Xxn1hwUt0MFm93D5KJ/+V9Zt Z0yoi/QE3/8n4va8yooiY6mKgtlLEQwJIsw/79WiRkzxfQHZoObFgfQyN+DDbcUh jxeiU2oLzHetlkTAA7E6cOZa9fw2zv4CMtP5zqfias2tgxd6H4g4IMT2c0BkcFhc MQwPQVIXvAaK3HCBw5TLRQmN9nPPK/hQfO5UaubW4gAOYx6ZhFs= -----END CERTIFICATE-----Generated at Thu Mar 26 19:50:53 2026 by rpki-client