$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft File: 157E8817E413B3A8B2866190AD82151E868B1FA7.mft (raw, json) Hash identifier: eHMJ7LeESSiUgCdsAx+L1pu5PtIcLMeWt4sdhgMGRUc= Subject key identifier: 4F:56:2E:78:1A:84:83:6E:47:18:AF:69:6A:4E:82:B4:41:FB:C1:6D Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 44F8FB86FD099DE7325B5B8537A425B700BB6339 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft Manifest number: 024C Signing time: Wed 25 Mar 2026 07:52:35 +0000 Manifest this update: Wed 25 Mar 2026 07:47:35 +0000 Manifest next update: Sat 28 Mar 2026 16:49:35 +0000 Files and hashes: 1: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (hash: 2eKYMh+o40ipOAi8hjr+a/aFZYlLyRfS6uvyieWq8yI=) 2: 3130332e3132312e3139362e302f32342d3234203d3e20313439373130.roa (hash: lpSwfmAmKL23RbErKtEZj4srMqeOQng2UqSoQbv0+GE=) 3: 157E8817E413B3A8B2866190AD82151E868B1FA7.crl (hash: vifLI8HlTFRZu2Ej9ZVL6GjengujoyJsr7S7p5MjGss=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 16:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f8:fb:86:fd:09:9d:e7:32:5b:5b:85:37:a4:25:b7:00:bb:63:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: Mar 25 07:47:35 2026 GMT Not After : Mar 28 16:49:35 2026 GMT Subject: CN=4F562E781A84836E4718AF696A4E82B441FBC16D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:9d:42:d8:2a:e2:59:62:34:d4:2a:3c:22: 6b:04:f4:25:38:44:e4:df:40:60:6f:6d:14:04:a6: 80:0e:ed:5a:57:23:e3:30:a0:04:b4:71:34:d6:5f: 91:7d:a1:ef:12:f8:dc:36:15:c0:59:ea:3d:d9:78: c2:8e:16:97:ec:a6:42:cd:37:66:31:80:02:06:f0: b3:f2:f9:a7:83:46:d4:ad:63:33:f0:8c:16:f9:bf: a7:68:38:0f:d8:4e:8e:26:89:fe:15:a0:e5:08:0c: c1:37:d5:c5:15:56:5d:70:20:09:23:2d:f5:85:58: 51:06:41:27:c8:7f:db:50:d0:a8:e0:50:f4:b2:8a: b6:73:25:3f:16:b8:2d:3b:32:61:d0:9a:10:20:5d: de:32:6d:99:22:60:3c:d8:50:9c:6f:91:a3:64:ef: 2a:28:d4:44:75:b7:6a:91:99:98:08:95:5f:c0:51: ab:2b:1d:5d:8b:61:01:ab:8d:3a:77:99:00:90:6e: e8:0f:e9:a2:e9:7d:fa:3b:db:bd:94:80:69:12:12: cb:96:be:9e:14:1e:ad:0a:b6:c8:55:80:08:87:c0: 8a:70:47:d4:21:08:46:10:7a:f6:cc:ed:1f:6f:c7: 33:21:2c:d1:8d:cb:c5:8e:ca:0b:55:a2:be:cf:7b: 79:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:56:2E:78:1A:84:83:6E:47:18:AF:69:6A:4E:82:B4:41:FB:C1:6D X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a1:ea:74:bc:06:9e:27:3d:cc:a2:b7:fc:9c:8d:44:d4:58: 07:93:99:cf:1c:9b:71:b2:ee:ed:aa:ee:2f:55:07:57:ba:81: 77:2f:64:d6:a2:e7:f8:4b:48:ad:dc:40:fe:c2:2f:35:bb:92: 55:99:0b:73:44:70:6f:37:7c:ba:11:bf:12:41:4a:e6:1e:b1: 12:5f:b6:89:07:60:b2:82:4c:e8:2b:dc:20:24:24:47:8e:06: af:76:45:15:c9:18:0d:ce:a1:27:85:71:16:76:66:77:47:e1: 1b:78:e2:2d:7d:4f:c8:fb:bf:92:52:5a:e3:32:09:f1:dd:e4: f0:6b:26:96:b8:de:29:7e:02:d4:69:b4:26:bf:d3:15:f7:27: 5f:36:12:46:09:ec:42:4e:c1:5e:9a:f6:94:a5:76:8d:2d:6e: f6:37:df:15:1f:4c:9d:de:d5:39:f7:38:64:a9:1e:f5:41:e1: 76:f3:ff:6f:e1:69:ad:86:a0:6e:56:0d:8f:e9:ee:57:07:88: 37:96:f0:d8:fb:1a:fa:31:7e:ec:23:89:c4:70:87:b1:53:ae: 66:f0:c9:6e:5b:9b:8f:55:34:8b:5a:69:dc:f0:a6:de:ac:c5: f9:e8:2f:45:bc:9b:13:c5:87:66:49:d7:f1:86:3c:a0:dc:85: 7f:be:96:fc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURPj7hv0JnecyW1uFN6QltwC7YzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNjAzMjUwNzQ3MzVaFw0yNjAzMjgxNjQ5MzVaMDMxMTAvBgNV BAMTKDRGNTYyRTc4MUE4NDgzNkU0NzE4QUY2OTZBNEU4MkI0NDFGQkMxNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4bp1C2CriWWI01Co8ImsE9CU4 ROTfQGBvbRQEpoAO7VpXI+MwoAS0cTTWX5F9oe8S+Nw2FcBZ6j3ZeMKOFpfspkLN N2YxgAIG8LPy+aeDRtStYzPwjBb5v6doOA/YTo4mif4VoOUIDME31cUVVl1wIAkj LfWFWFEGQSfIf9tQ0KjgUPSyirZzJT8WuC07MmHQmhAgXd4ybZkiYDzYUJxvkaNk 7yoo1ER1t2qRmZgIlV/AUasrHV2LYQGrjTp3mQCQbugP6aLpffo7272UgGkSEsuW vp4UHq0KtshVgAiHwIpwR9QhCEYQevbM7R9vxzMhLNGNy8WOygtVor7Pe3lTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUT1YueBqEg25HGK9pak6CtEH7wW0wHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODNjZDYwYjItMGY1Ny00ZmM1LWJj NjItMWQ5YjZjNDhmY2YwLzAvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1 MUU4NjhCMUZBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG2h6nS8Bp4nPcyit/ycjUTUWAeTmc8cm3Gy 7u2q7i9VB1e6gXcvZNai5/hLSK3cQP7CLzW7klWZC3NEcG83fLoRvxJBSuYesRJf tokHYLKCTOgr3CAkJEeOBq92RRXJGA3OoSeFcRZ2ZndH4Rt44i19T8j7v5JSWuMy CfHd5PBrJpa43il+AtRptCa/0xX3J182EkYJ7EJOwV6a9pSldo0tbvY33xUfTJ3e 1Tn3OGSpHvVB4Xbz/2/haa2GoG5WDY/p7lcHiDeW8Nj7GvoxfuwjicRwh7FTrmbw yW5bm49VNItaadzwpt6sxfnoL0W8mxPFh2ZJ1/GGPKDchX++lvw= -----END CERTIFICATE-----Generated at Thu Mar 26 16:46:25 2026 by rpki-client