$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft (raw, json) Hash identifier: fRFtkEJAoEVMxQI9Kqc1KyYkKICdJXAL8WKGE5mQL3I= Subject key identifier: 2B:4E:6A:2C:31:30:97:30:4F:37:EE:EB:D8:C5:DF:B7:95:D2:DB:34 Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 716451EF6FEE5C02CE19DFEDF3D306C2A87DB428 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft Manifest number: 0186 Signing time: Tue 24 Mar 2026 02:52:28 +0000 Manifest this update: Tue 24 Mar 2026 02:47:28 +0000 Manifest next update: Fri 27 Mar 2026 10:56:28 +0000 Files and hashes: 1: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl (hash: TvUhq+vqmKfa4RRXXTrgTVZK0j5SWVJgxg7qPzoWGhY=) 2: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (hash: WtVfPZfCZ+ZExAyfqDCdWvXE48LKmIllvsd8uUvXohQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 10:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:64:51:ef:6f:ee:5c:02:ce:19:df:ed:f3:d3:06:c2:a8:7d:b4:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Mar 24 02:47:28 2026 GMT Not After : Mar 27 10:56:28 2026 GMT Subject: CN=2B4E6A2C313097304F37EEEBD8C5DFB795D2DB34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:83:68:25:ec:74:5a:0d:94:35:05:7f:0e:4e: 2c:67:48:3f:32:50:2d:29:23:6a:d5:13:c0:0c:4d: 82:a8:e9:c2:bb:59:9d:36:94:b9:df:95:49:2c:87: 9c:9e:b6:a7:72:bd:6c:d3:51:71:d1:a2:3a:42:20: 2f:03:16:cf:06:30:d5:91:ed:ff:ca:ef:a2:32:7e: 42:78:6e:a0:93:b2:a2:38:e8:fe:55:64:28:50:79: 7c:0f:93:30:09:8b:34:95:f7:d1:8f:2c:8f:86:ae: c3:6f:ef:3f:e6:91:07:9a:3c:86:b3:d4:71:69:ce: 31:da:8d:a8:f3:03:57:64:e4:fa:34:6f:2b:77:5e: af:c4:fd:fa:13:86:d4:76:38:9c:48:74:b9:58:f5: 23:56:32:4b:64:da:4f:4c:a0:78:ab:8e:87:0e:81: 45:76:05:e2:ee:22:70:70:e9:03:bd:a8:a8:f0:23: ec:b1:da:fa:25:01:3a:b7:5c:d4:4d:a2:52:9b:c9: da:f9:62:0c:bf:2e:e8:a2:ed:d5:ce:02:93:4e:0d: e7:08:45:f5:38:2b:fe:ae:be:fa:55:b9:2b:d2:dc: 15:96:d3:e2:ed:d2:b9:f8:e1:bd:97:c8:28:e8:09: 69:29:b0:5f:85:81:33:94:f5:66:40:8c:db:e1:97: d4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4E:6A:2C:31:30:97:30:4F:37:EE:EB:D8:C5:DF:B7:95:D2:DB:34 X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:9c:f4:06:96:c2:84:30:34:ec:ed:66:29:a1:09:66:3e:89: ca:34:f3:9b:2b:a1:d1:51:a9:6c:e7:c9:50:01:2b:4e:6d:e6: aa:1c:50:58:a4:e7:e6:83:09:83:62:9b:8f:bc:ca:b9:78:db: db:db:81:10:ca:25:8d:1d:7f:7d:0f:a3:a3:9c:85:ee:c4:58: 3f:1b:07:e6:47:a1:1c:09:3a:b2:a1:3b:ff:55:43:77:51:71: d5:7d:53:67:d6:73:63:2b:51:1e:56:a0:e7:4c:f2:26:0c:74: 4c:e0:c7:16:6e:a4:74:74:65:a0:f4:34:fb:6b:7a:07:b6:10: 03:9b:e8:0b:62:7c:db:f8:15:0a:4c:61:93:ce:2d:b0:34:55: d5:ee:7e:58:b9:a3:8c:c9:4b:5d:ee:f4:b2:33:fb:a3:23:a0: e9:6b:80:a1:94:44:0a:21:46:cf:47:94:7c:34:76:e7:6c:9b: ea:29:80:35:df:06:29:d1:d7:0c:51:72:dd:b9:23:79:6b:6d: 29:5a:55:d4:65:98:49:4d:b7:02:3e:50:b1:5e:61:3a:17:29: d9:72:d6:cf:5e:6a:10:f2:12:94:58:aa:6c:b6:17:73:be:59: a9:aa:3e:5b:8d:d6:b8:bd:95:70:d5:f9:0b:ae:7c:7b:63:7d: c6:e8:f8:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcWRR72/uXALOGd/t89MGwqh9tCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNjAzMjQwMjQ3MjhaFw0yNjAzMjcxMDU2MjhaMDMxMTAvBgNV BAMTKDJCNEU2QTJDMzEzMDk3MzA0RjM3RUVFQkQ4QzVERkI3OTVEMkRCMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbg2gl7HRaDZQ1BX8OTixnSD8y UC0pI2rVE8AMTYKo6cK7WZ02lLnflUksh5yetqdyvWzTUXHRojpCIC8DFs8GMNWR 7f/K76IyfkJ4bqCTsqI46P5VZChQeXwPkzAJizSV99GPLI+GrsNv7z/mkQeaPIaz 1HFpzjHajajzA1dk5Po0byt3Xq/E/foThtR2OJxIdLlY9SNWMktk2k9MoHirjocO gUV2BeLuInBw6QO9qKjwI+yx2volATq3XNRNolKbydr5Ygy/Luii7dXOApNODecI RfU4K/6uvvpVuSvS3BWW0+Lt0rn44b2XyCjoCWkpsF+FgTOU9WZAjNvhl9T7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUK05qLDEwlzBPN+7r2MXft5XS2zQwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODExZDlhYmMtNDk4Ny00ZGJjLTk3 NmQtM2YzMmIyOTE3MTVkLzAvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQy NEZENDBGQjhDMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAByc9AaWwoQwNOztZimhCWY+ico085srodFR qWznyVABK05t5qocUFik5+aDCYNim4+8yrl429vbgRDKJY0df30Po6Oche7EWD8b B+ZHoRwJOrKhO/9VQ3dRcdV9U2fWc2MrUR5WoOdM8iYMdEzgxxZupHR0ZaD0NPtr ege2EAOb6AtifNv4FQpMYZPOLbA0VdXufli5o4zJS13u9LIz+6MjoOlrgKGURAoh Rs9HlHw0dudsm+opgDXfBinR1wxRct25I3lrbSlaVdRlmElNtwI+ULFeYToXKdly 1s9eahDyEpRYqmy2F3O+WamqPluN1ri9lXDV+QuufHtjfcbo+KA= -----END CERTIFICATE-----Generated at Thu Mar 26 12:00:25 2026 by rpki-client