$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft File: 4E52504397B6835784BD4E67D8048C0D1CE3B242.mft (raw, json) Hash identifier: TuIbFEdYcIeSVo0W/41Do4APnVrsRLtlZ8dM1PsZ2cw= Subject key identifier: 7B:13:EB:F2:96:53:D8:03:3C:63:72:C7:61:19:E3:7F:01:13:8A:78 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 17B5EEDBF18DF88120059EE8C8C7F6C6AF221915 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft Manifest number: 0560 Signing time: Thu 26 Mar 2026 04:32:29 +0000 Manifest this update: Thu 26 Mar 2026 04:27:29 +0000 Manifest next update: Sun 29 Mar 2026 08:35:29 +0000 Files and hashes: 1: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (hash: AI/USbQ/a0LFBdjZWtV22hxC6HEFmmDia8w1dNa/lbM=) 2: 4E52504397B6835784BD4E67D8048C0D1CE3B242.crl (hash: ow+1iaSSBh8Qjt03yVYSgV+uGrsmGTYtmYWrsMidE4U=) 3: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (hash: kZ6+BhGljQylz/AhW+5O41yNHq5oDRG+mIs3e+fq18E=) 4: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (hash: AgqSIkRIGOrQPc+1mZW5lGFc3zRhyUQtTv3vz8FdAPU=) 5: 323430333a653630303a3a2f33322d3332203d3e203538333736.roa (hash: bVu2SaAa9IWvlQ6o6+veKHD0ZA7xlveBNCWEZ2Ja1Z4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 08:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b5:ee:db:f1:8d:f8:81:20:05:9e:e8:c8:c7:f6:c6:af:22:19:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Mar 26 04:27:29 2026 GMT Not After : Mar 29 08:35:29 2026 GMT Subject: CN=7B13EBF29653D8033C6372C76119E37F01138A78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:89:33:e6:24:4d:10:c9:fb:03:c4:ba:9b:3b: fe:25:94:e5:74:d8:dc:71:d7:df:bc:74:47:13:02: 96:5c:35:ad:b2:c6:64:5b:8a:7a:42:f6:0c:5b:61: d0:4f:3c:47:6a:1d:82:59:42:f0:74:56:9f:37:17: 1b:1c:c7:26:f5:f4:9e:c7:e5:b9:2e:8b:54:30:89: ff:35:bf:4f:54:b3:9d:af:90:33:b3:ea:4f:2f:ec: 94:8b:9f:af:2e:59:8b:1d:ef:9b:fd:2a:fc:de:bb: 76:2a:7f:f3:19:33:db:23:6c:57:6a:b5:ff:25:72: 22:8f:14:7b:a9:0d:64:f7:84:85:75:a3:e7:e5:25: 99:e5:0a:ec:32:93:e3:83:11:91:a7:c0:95:e2:9d: ec:93:b4:2d:ba:08:33:93:a6:1c:37:67:c6:b1:df: ed:6e:43:14:aa:63:2a:50:fa:01:ad:00:21:5d:00: 9b:cd:58:3a:7c:46:4a:5e:d0:61:34:35:ee:12:8e: 76:1a:4f:76:46:4c:7b:1b:4f:75:31:5e:73:8b:37: cc:b0:e5:8c:aa:a2:21:56:dc:a5:ee:58:47:35:f9: cb:c5:10:47:f4:ca:d2:87:3f:e2:e8:d8:e5:48:f3: 89:31:d0:09:98:f1:0f:ed:9a:b5:52:81:54:3e:76: 3c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:13:EB:F2:96:53:D8:03:3C:63:72:C7:61:19:E3:7F:01:13:8A:78 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:9c:c1:d7:c6:12:fe:b5:0a:2e:b2:d6:72:a9:e9:be:57:88: 26:bf:d5:66:29:53:9e:5c:0b:16:fe:6b:27:55:47:9b:7f:a1: 66:5b:70:ca:57:f4:94:e3:89:c3:a9:9a:4c:15:5b:ac:a3:58: 59:10:c1:c0:57:5d:ae:28:42:b6:49:90:54:63:01:c6:4f:6c: ce:6c:cd:21:e6:a4:32:55:14:af:50:2b:c7:24:2c:66:9c:45: e7:05:e5:ae:04:c8:bb:6b:18:db:3e:cf:fa:2d:7e:6a:ee:c8: 22:5e:36:1e:15:3a:ea:76:21:5a:13:12:c0:e9:bc:38:04:6b: 80:5d:d0:05:63:c2:98:43:28:44:77:79:b0:25:3d:d7:32:b5: 4d:1b:bb:cc:23:b3:0d:45:e5:81:8f:d9:10:ae:4a:e2:86:2c: 4f:51:6a:ad:6e:36:51:52:e8:7f:b8:a6:30:5f:f3:4a:51:86: 21:00:9b:37:3e:0f:0a:fc:41:26:f2:ff:90:d7:cd:c2:c3:5e: 03:85:d7:3d:02:7e:85:c1:2f:53:8d:62:6e:bf:4e:fc:89:4a: 88:02:15:d3:50:ec:34:cd:61:1e:5f:94:95:e6:cf:f5:70:6b: 3e:36:2d:fb:9f:18:b2:85:36:3a:71:02:80:ea:f0:3a:d6:b7: 69:10:7a:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF7Xu2/GN+IEgBZ7oyMf2xq8iGRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNjAzMjYwNDI3MjlaFw0yNjAzMjkwODM1MjlaMDMxMTAvBgNV BAMTKDdCMTNFQkYyOTY1M0Q4MDMzQzYzNzJDNzYxMTlFMzdGMDExMzhBNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDniTPmJE0QyfsDxLqbO/4llOV0 2Nxx19+8dEcTApZcNa2yxmRbinpC9gxbYdBPPEdqHYJZQvB0Vp83Fxscxyb19J7H 5bkui1Qwif81v09Us52vkDOz6k8v7JSLn68uWYsd75v9Kvzeu3Yqf/MZM9sjbFdq tf8lciKPFHupDWT3hIV1o+flJZnlCuwyk+ODEZGnwJXineyTtC26CDOTphw3Z8ax 3+1uQxSqYypQ+gGtACFdAJvNWDp8Rkpe0GE0Ne4SjnYaT3ZGTHsbT3UxXnOLN8yw 5YyqoiFW3KXuWEc1+cvFEEf0ytKHP+Lo2OVI84kx0AmY8Q/tmrVSgVQ+djz5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUexPr8pZT2AM8Y3LHYRnjfwETingwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODkxZDNjMzAtOTVkYy00YjcyLWFl MWItYWQxZTk4YjBlMTc5LzAvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhD MEQxQ0UzQjI0Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGCcwdfGEv61Ci6y1nKp6b5XiCa/1WYpU55c Cxb+aydVR5t/oWZbcMpX9JTjicOpmkwVW6yjWFkQwcBXXa4oQrZJkFRjAcZPbM5s zSHmpDJVFK9QK8ckLGacRecF5a4EyLtrGNs+z/otfmruyCJeNh4VOup2IVoTEsDp vDgEa4Bd0AVjwphDKER3ebAlPdcytU0bu8wjsw1F5YGP2RCuSuKGLE9Raq1uNlFS 6H+4pjBf80pRhiEAmzc+Dwr8QSby/5DXzcLDXgOF1z0CfoXBL1ONYm6/TvyJSogC FdNQ7DTNYR5flJXmz/Vwaz42LfufGLKFNjpxAoDq8DrWt2kQemM= -----END CERTIFICATE-----Generated at Thu Mar 26 17:44:45 2026 by rpki-client