$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: myibhmDlJWfqyVzMABv7x8Wp2rl8AvCJlYSkKFJZ+5U= Subject key identifier: C0:92:C1:13:3F:99:74:CA:8C:15:92:11:D3:E8:2F:D0:0A:2C:BB:20 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 7BCED69987E610AB45FA077B158BC6B55B150C62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 02AF Signing time: Wed 25 Mar 2026 15:21:09 +0000 Manifest this update: Wed 25 Mar 2026 15:16:09 +0000 Manifest next update: Sat 28 Mar 2026 15:50:09 +0000 Files and hashes: 1: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) 2: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4=) 3: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: vJ0JThPWN5z9ya3yGVitmhJSsuKICvURyRQCb1oSUaA=) 4: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: cvL9/f1kWI/MTqpUjgOyKs8TZdFaoRuVSnIGa9bh5HQ=) 5: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E=) 6: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 15:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ce:d6:99:87:e6:10:ab:45:fa:07:7b:15:8b:c6:b5:5b:15:0c:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Mar 25 15:16:09 2026 GMT Not After : Mar 28 15:50:09 2026 GMT Subject: CN=C092C1133F9974CA8C159211D3E82FD00A2CBB20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ed:ad:98:69:4a:60:a6:1e:e1:f4:b3:1e:82: 42:6b:af:1f:8c:be:d6:78:99:52:1e:cc:23:15:5f: d3:24:b7:8a:a6:e6:b2:fd:2a:39:78:4c:8a:f6:61: 03:ec:5e:ae:75:15:5f:e0:cc:3b:ec:49:c4:68:57: d3:a2:7c:72:13:95:4f:41:32:7b:68:2c:90:6a:5e: 43:f2:64:60:8c:a9:f6:32:a6:71:8b:2a:9a:3e:1a: 6d:61:27:29:66:1e:f9:c2:0a:84:46:04:0e:56:aa: 6b:52:2e:1d:d3:19:c5:43:d2:40:17:49:d9:d9:8d: 1b:d5:ef:6e:9f:5a:71:f3:c3:0f:b2:c8:80:73:29: 29:f1:ab:22:17:b2:12:01:07:25:72:db:6a:24:19: e9:9a:73:ed:b6:d7:a2:54:47:3d:f2:97:67:23:ca: 84:f9:98:37:0e:c9:d4:c8:ef:fb:92:c6:b6:78:06: 8f:fe:86:7b:63:5b:91:d3:95:5f:c4:5c:f9:26:cf: 05:43:4d:dc:af:34:e0:a7:9a:c4:3f:93:ab:95:a3: 7f:bd:0b:25:d7:2a:40:f5:49:7b:37:d2:52:a5:bd: 78:66:0c:a3:b5:03:ef:a0:aa:fe:aa:26:08:89:da: 85:a3:d6:40:f5:1b:dc:fd:0d:44:17:a7:9a:e1:76: 42:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:92:C1:13:3F:99:74:CA:8C:15:92:11:D3:E8:2F:D0:0A:2C:BB:20 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:5c:58:fe:47:19:7c:84:00:fa:62:8d:1b:aa:8b:05:5e:0b: 90:5d:d5:3c:90:e0:d2:13:5d:6c:4a:d1:4a:51:75:fa:b2:cd: 22:88:b7:1f:1b:15:34:a2:39:e5:e7:28:eb:75:be:0a:8a:d9: e9:17:3e:4e:ed:90:4f:29:8e:e9:19:ac:50:89:5f:c3:ca:1e: bc:6b:86:71:f9:70:88:1b:01:6d:f2:bf:cc:e0:0f:70:0a:df: ca:8b:1b:54:c6:9a:34:ec:09:c5:e4:1a:c6:7f:03:a3:2d:d3: 45:e4:00:b0:67:35:a5:77:14:40:15:4c:53:bb:b9:a6:5b:e9: 73:1c:05:ce:6f:31:a7:f8:00:e6:f9:a7:d5:0d:22:ba:d6:66: ba:ca:18:cf:ff:d6:98:af:ca:6f:41:bc:c1:e0:4a:f2:76:f2: 10:d7:dc:20:4e:d8:16:31:fd:ee:87:8f:b2:26:01:7f:2d:a2: f8:4e:4e:27:4b:77:f2:62:76:13:d1:d1:a5:c2:6a:8a:3b:4e: 1a:ef:db:96:0c:2e:3c:3e:27:ac:4b:dc:63:6f:e4:6d:aa:e2: 4f:c4:c1:6c:6b:92:99:8b:70:da:5d:e6:06:71:b3:ed:83:fd: 4f:e8:ea:f2:bf:7b:e8:1d:5e:70:6f:31:cc:d2:8f:40:d5:fa: a7:0d:6c:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe87WmYfmEKtF+gd7FYvGtVsVDGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNjAzMjUxNTE2MDlaFw0yNjAzMjgxNTUwMDlaMDMxMTAvBgNV BAMTKEMwOTJDMTEzM0Y5OTc0Q0E4QzE1OTIxMUQzRTgyRkQwMEEyQ0JCMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK7a2YaUpgph7h9LMegkJrrx+M vtZ4mVIezCMVX9Mkt4qm5rL9Kjl4TIr2YQPsXq51FV/gzDvsScRoV9OifHITlU9B MntoLJBqXkPyZGCMqfYypnGLKpo+Gm1hJylmHvnCCoRGBA5WqmtSLh3TGcVD0kAX SdnZjRvV726fWnHzww+yyIBzKSnxqyIXshIBByVy22okGemac+2216JURz3yl2cj yoT5mDcOydTI7/uSxrZ4Bo/+hntjW5HTlV/EXPkmzwVDTdyvNOCnmsQ/k6uVo3+9 CyXXKkD1SXs30lKlvXhmDKO1A++gqv6qJgiJ2oWj1kD1G9z9DUQXp5rhdkI9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwJLBEz+ZdMqMFZIR0+gv0AosuyAwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABBcWP5HGXyEAPpijRuqiwVeC5Bd1TyQ4NIT XWxK0UpRdfqyzSKItx8bFTSiOeXnKOt1vgqK2ekXPk7tkE8pjukZrFCJX8PKHrxr hnH5cIgbAW3yv8zgD3AK38qLG1TGmjTsCcXkGsZ/A6Mt00XkALBnNaV3FEAVTFO7 uaZb6XMcBc5vMaf4AOb5p9UNIrrWZrrKGM//1pivym9BvMHgSvJ28hDX3CBO2BYx /e6Hj7ImAX8tovhOTidLd/JidhPR0aXCaoo7Thrv25YMLjw+J6xL3GNv5G2q4k/E wWxrkpmLcNpd5gZxs+2D/U/o6vK/e+gdXnBvMczSj0DV+qcNbGg= -----END CERTIFICATE-----Generated at Thu Mar 26 09:13:10 2026 by rpki-client