$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft File: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft (raw, json) Hash identifier: Dp+WpDDP2sy7gR0wjYtiSf7j9gtceEPuxav8gVqHwok= Subject key identifier: 80:6D:0C:4C:F0:FB:7C:00:2A:2E:6A:01:E8:7D:79:71:A2:79:0D:74 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 2AD8B30AC402867E5244E0AFF3A342F7BF150DA0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft Manifest number: 01E9 Signing time: Wed 25 Mar 2026 10:21:25 +0000 Manifest this update: Wed 25 Mar 2026 10:16:25 +0000 Manifest next update: Sat 28 Mar 2026 12:32:25 +0000 Files and hashes: 1: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: BDEKh8gnBvlltX9WR1GmG6qKqh+pe65R6Xx0+s/IyP8=) 2: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: 1OEa/bsOORulkyfivOT1LWE6Ar5F7pwDFWbnAlkWMec=) 3: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: a77WyK1qTdgIRkUuNKGD5zyWCvIAGB4ZwYU+fJ2Gtpw=) 4: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: AXguxGCyMmqijzUfDJ6sW4bhnWRijiQgcsQ13oNgZs4=) 5: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: r8NqRUCsHtvXIJ0/QDdvuNRC6uOu98LXcwUGX23wEMs=) 6: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl (hash: 5pVWi7EGA2RW5uQxKkiS4DXf2nrm660qxKOVjJlketA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 12:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d8:b3:0a:c4:02:86:7e:52:44:e0:af:f3:a3:42:f7:bf:15:0d:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Mar 25 10:16:25 2026 GMT Not After : Mar 28 12:32:25 2026 GMT Subject: CN=806D0C4CF0FB7C002A2E6A01E87D7971A2790D74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:b5:ce:bd:3c:9a:62:48:95:8e:3d:df:ed: 01:21:26:16:8f:02:b9:97:e4:e6:2a:bd:10:b1:b7: a4:13:2f:38:33:07:e1:ab:65:90:0d:0b:75:b4:e2: 74:77:5b:cd:3f:a5:cd:e5:7a:7e:93:71:91:7a:5d: 31:03:2c:8c:3d:c3:ce:dc:f0:c0:f0:b7:56:77:45: ab:57:56:e8:db:01:82:d4:36:7e:8f:7b:8e:5e:df: ff:e9:49:37:5a:c9:68:ce:4f:54:95:4d:04:27:7f: a3:dc:8f:05:ea:bc:92:fd:81:2f:7b:9b:36:f2:1d: 28:d7:f9:ed:e4:b9:8e:4b:2e:ec:cb:d4:ee:7d:c0: 56:fb:c9:b3:14:9b:72:bb:d1:83:c6:cd:59:7a:e5: ce:01:1c:f9:23:10:29:e3:76:64:6b:c7:f8:ca:e9: cd:85:1b:bb:56:7a:a0:1b:8c:a2:0c:52:58:2b:31: 68:e7:80:ba:64:03:41:1b:40:12:6c:5e:cd:22:33: 96:b5:ba:48:9b:09:5a:80:e3:e7:3f:67:43:7f:c9: 2a:49:38:84:f3:c8:38:1b:4e:c8:dd:3f:40:81:ef: 91:06:6a:f6:4a:f2:4e:d8:e6:ed:bc:a5:49:01:2e: 26:9b:2b:83:83:3e:a3:f9:20:bf:92:22:7f:8f:a8: 1f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6D:0C:4C:F0:FB:7C:00:2A:2E:6A:01:E8:7D:79:71:A2:79:0D:74 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:98:ff:89:e6:13:4a:a0:66:a3:b2:fa:08:ee:cc:8c:b6:0e: 90:42:3b:fc:82:d6:ff:84:57:c9:d3:5a:a0:7b:f8:5d:d5:f3: e5:33:f1:d1:94:09:f2:b3:ba:14:14:42:e4:d2:ba:15:fe:36: e8:1e:39:86:83:db:6d:0e:bd:11:19:9c:4e:09:e4:e5:78:fa: 97:07:fc:63:e4:98:b9:6f:54:de:59:8a:f2:a8:6e:22:be:d4: 66:1b:9f:bd:96:c1:a7:e8:d9:7b:cb:cc:b6:25:b6:e3:91:09: c8:cd:e9:08:a4:28:84:a1:57:20:a7:4c:bb:69:fc:ff:d3:51: 90:a8:1b:d5:57:56:41:4d:87:18:1b:10:f8:dc:a8:a7:0a:05: 06:ad:63:60:7c:17:6a:d7:76:44:fe:dc:53:f1:2a:dd:6d:0c: bd:2f:8c:2f:7a:37:31:59:47:27:16:0f:82:f0:1b:f2:4d:3c: 14:7a:1e:e3:b0:36:d7:59:84:9c:4a:b5:ec:c5:01:ee:be:67: d0:be:6a:91:f8:1b:8b:17:ae:fe:73:59:3b:9d:99:cf:d6:02: 06:1e:53:3a:d2:34:f1:5f:56:bf:d5:b9:84:06:37:e4:7d:f1: 5b:12:b7:fc:5e:55:b2:00:84:df:cc:f3:b7:03:42:cc:18:fd: 1e:24:6f:1c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKtizCsQChn5SROCv86NC978VDaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNjAzMjUxMDE2MjVaFw0yNjAzMjgxMjMyMjVaMDMxMTAvBgNV BAMTKDgwNkQwQzRDRjBGQjdDMDAyQTJFNkEwMUU4N0Q3OTcxQTI3OTBENzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCYLXOvTyaYkiVjj3f7QEhJhaP ArmX5OYqvRCxt6QTLzgzB+GrZZANC3W04nR3W80/pc3len6TcZF6XTEDLIw9w87c 8MDwt1Z3RatXVujbAYLUNn6Pe45e3//pSTdayWjOT1SVTQQnf6PcjwXqvJL9gS97 mzbyHSjX+e3kuY5LLuzL1O59wFb7ybMUm3K70YPGzVl65c4BHPkjECnjdmRrx/jK 6c2FG7tWeqAbjKIMUlgrMWjngLpkA0EbQBJsXs0iM5a1ukibCVqA4+c/Z0N/ySpJ OITzyDgbTsjdP0CB75EGavZK8k7Y5u28pUkBLiabK4ODPqP5IL+SIn+PqB9hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgG0MTPD7fAAqLmoB6H15caJ5DXQwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4 MDlCNTM2OTVGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIuY/4nmE0qgZqOy+gjuzIy2DpBCO/yC1v+E V8nTWqB7+F3V8+Uz8dGUCfKzuhQUQuTSuhX+NugeOYaD220OvREZnE4J5OV4+pcH /GPkmLlvVN5ZivKobiK+1GYbn72Wwafo2XvLzLYltuORCcjN6QikKIShVyCnTLtp /P/TUZCoG9VXVkFNhxgbEPjcqKcKBQatY2B8F2rXdkT+3FPxKt1tDL0vjC96NzFZ RycWD4LwG/JNPBR6HuOwNtdZhJxKtezFAe6+Z9C+apH4G4sXrv5zWTudmc/WAgYe UzrSNPFfVr/VuYQGN+R98VsSt/xeVbIAhN/M87cDQswY/R4kbxw= -----END CERTIFICATE-----Generated at Thu Mar 26 11:59:52 2026 by rpki-client