$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft File: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft (raw, json) Hash identifier: ibLY9FtFYKAGdhrE+PN2wSwcgLEZiJP5r+BUsckPl5E= Subject key identifier: F8:A2:CC:BF:8F:3E:35:23:BA:5A:05:59:F5:6B:CC:27:58:1E:EA:EC Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 43AD8E06468F5B80D67C6AED12BAF3927B54889F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft Manifest number: 04F8 Signing time: Tue 24 Mar 2026 17:01:32 +0000 Manifest this update: Tue 24 Mar 2026 16:56:32 +0000 Manifest next update: Sat 28 Mar 2026 03:43:32 +0000 Files and hashes: 1: 3130332e3134362e3139362e302f32342d3234203d3e20313339393431.roa (hash: WkFNZS79+nq1P3vYzsoqHasGlqkPwC3TJbG5gTcIHd8=) 2: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl (hash: gcYUfjEFGsX8Xx5P2FmMqE2ylbu5ATf6klr5bQv0AN8=) 3: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (hash: p7Jtuo2fT9SMHQpNlniVY5E8TDvsdgf0sorpgXPSACM=) 4: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (hash: KEUVODDrcsujN0g1v6DrUa6Mji4U9jJWIyDXhx1aJNY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 03:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ad:8e:06:46:8f:5b:80:d6:7c:6a:ed:12:ba:f3:92:7b:54:88:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Mar 24 16:56:32 2026 GMT Not After : Mar 28 03:43:32 2026 GMT Subject: CN=F8A2CCBF8F3E3523BA5A0559F56BCC27581EEAEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:09:39:17:f7:0f:42:96:4a:86:e4:5a:ac: 12:6e:0c:27:a2:f6:3a:06:32:d6:a9:af:5d:ef:a6: ea:f4:6a:36:73:37:0b:84:15:cb:a8:21:b2:5f:95: f5:3f:08:55:d7:7c:8c:95:a5:d2:1d:43:88:50:19: a7:e0:a1:a9:ab:76:8c:16:d5:65:96:3b:d2:e7:fd: bf:1b:63:a4:8b:1d:1c:fa:fe:21:54:b2:22:2c:15: b8:8d:79:df:ea:c2:76:87:73:79:02:09:41:b9:0e: d1:94:59:22:88:42:7f:5b:44:26:c1:98:b0:2b:db: f5:96:be:43:31:99:6d:bb:38:a5:46:ac:ce:18:55: 3f:9b:cb:21:e9:0d:d0:e8:fe:a6:c0:d4:d8:c7:d1: 5b:3c:ef:83:a1:e8:90:50:93:17:09:6e:c3:6d:32: ca:d1:ce:d5:7f:96:d8:9f:64:df:d2:2c:cc:64:64: d7:78:85:57:eb:6c:3b:5a:4d:be:4b:40:99:be:4a: 96:17:19:77:5f:cb:22:4a:1c:29:31:78:23:5c:25: 2a:70:62:99:37:c6:0a:f6:13:53:cb:79:9f:08:da: ea:cf:3d:1b:79:08:40:48:34:e9:a9:a9:e6:3b:9f: 04:93:87:5c:4a:58:ce:f7:23:2c:b9:de:88:03:40: 11:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A2:CC:BF:8F:3E:35:23:BA:5A:05:59:F5:6B:CC:27:58:1E:EA:EC X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:99:e1:6e:a8:08:bd:e7:88:f9:02:6f:8d:b6:15:42:35:43: 1b:b0:3e:bb:40:ce:fc:df:a3:0e:bb:56:3e:de:55:57:24:b4: e2:b3:45:94:f9:8d:ba:cf:21:96:68:a5:25:94:f5:6a:19:8e: a6:e8:4b:09:04:f7:c8:bf:48:45:69:34:4b:b6:b9:2b:42:03: e8:83:d4:60:47:9c:cf:11:93:63:ee:80:e9:70:29:04:f5:f6: 6c:8f:9f:2d:b0:94:44:e5:d1:ed:85:6b:6d:f4:a5:73:e0:ce: 95:f8:18:0b:cd:f3:76:ce:15:a6:06:b5:e1:ff:be:69:23:5f: 01:fc:c0:46:93:96:17:f9:e3:67:56:47:dd:26:cd:14:ed:ae: e5:30:15:c1:1a:89:8b:02:10:35:f1:29:37:cf:d5:32:83:75: 43:59:f3:55:22:41:84:35:d8:b5:f5:34:1f:74:8b:0c:ab:c2: 08:f9:86:a3:b5:6d:8a:20:d4:cc:da:1d:ae:96:8b:e8:b1:7d: 9f:83:6e:97:5c:46:98:ca:76:91:fa:8e:12:78:fa:05:0c:5a: 71:74:ed:99:e4:c0:3d:2b:a1:3b:34:dc:05:ac:1b:d5:a5:2d: 48:33:27:d9:f0:d6:70:69:3d:ef:92:77:49:d0:e2:6c:c3:4a: b8:fa:34:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ62OBkaPW4DWfGrtErrzkntUiJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNjAzMjQxNjU2MzJaFw0yNjAzMjgwMzQzMzJaMDMxMTAvBgNV BAMTKEY4QTJDQ0JGOEYzRTM1MjNCQTVBMDU1OUY1NkJDQzI3NTgxRUVBRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9OQk5F/cPQpZKhuRarBJuDCei 9joGMtapr13vpur0ajZzNwuEFcuoIbJflfU/CFXXfIyVpdIdQ4hQGafgoamrdowW 1WWWO9Ln/b8bY6SLHRz6/iFUsiIsFbiNed/qwnaHc3kCCUG5DtGUWSKIQn9bRCbB mLAr2/WWvkMxmW27OKVGrM4YVT+byyHpDdDo/qbA1NjH0Vs874Oh6JBQkxcJbsNt MsrRztV/ltifZN/SLMxkZNd4hVfrbDtaTb5LQJm+SpYXGXdfyyJKHCkxeCNcJSpw Ypk3xgr2E1PLeZ8I2urPPRt5CEBINOmpqeY7nwSTh1xKWM73Iyy53ogDQBEJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+KLMv48+NSO6WgVZ9WvMJ1ge6uwwHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODM1MDQ4YzYtOGNjZC00NjNkLWFk MzQtYWU3NDI4NjQ3YTljLzAvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4 M0NGNUIyQUE0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE6Z4W6oCL3niPkCb422FUI1QxuwPrtAzvzf ow67Vj7eVVcktOKzRZT5jbrPIZZopSWU9WoZjqboSwkE98i/SEVpNEu2uStCA+iD 1GBHnM8Rk2PugOlwKQT19myPny2wlETl0e2Fa230pXPgzpX4GAvN83bOFaYGteH/ vmkjXwH8wEaTlhf542dWR90mzRTtruUwFcEaiYsCEDXxKTfP1TKDdUNZ81UiQYQ1 2LX1NB90iwyrwgj5hqO1bYog1MzaHa6Wi+ixfZ+DbpdcRpjKdpH6jhJ4+gUMWnF0 7ZnkwD0roTs03AWsG9WlLUgzJ9nw1nBpPe+Sd0nQ4mzDSrj6NIs= -----END CERTIFICATE-----Generated at Thu Mar 26 19:08:34 2026 by rpki-client