$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: Y7l5pxJkZkp9s3ApRdN+A6FwXSZCbkmU0pp+B5zqO6E= Subject key identifier: D4:C2:35:42:8E:9A:6C:10:03:E8:68:80:54:8D:E1:29:16:D8:1E:7E Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 2761D90139E1BE8D3952F68866083FEA34191FC2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: 010D Signing time: Wed 25 Mar 2026 09:52:19 +0000 Manifest this update: Wed 25 Mar 2026 09:47:19 +0000 Manifest next update: Sat 28 Mar 2026 15:35:19 +0000 Files and hashes: 1: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 2: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 3: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 4: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 5: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: OG8qgyRhPpDxrDwyFqVtyEU+QGVFuP8DBrLV9S9kAxk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 15:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:61:d9:01:39:e1:be:8d:39:52:f6:88:66:08:3f:ea:34:19:1f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Mar 25 09:47:19 2026 GMT Not After : Mar 28 15:35:19 2026 GMT Subject: CN=D4C235428E9A6C1003E86880548DE12916D81E7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fe:d8:bb:d9:d4:d8:de:71:5c:5f:a6:d4:ec: f8:dd:5d:26:dd:1e:83:55:5f:af:86:ff:95:52:8b: 56:44:9a:2b:31:01:ed:83:77:fc:3f:8d:41:1a:e6: 43:23:c8:ed:f3:7e:b0:31:bf:df:fd:3d:e3:3f:2a: 23:b0:6e:a8:58:c6:76:f4:3f:a0:32:77:37:b3:0b: ae:7a:b7:52:f4:cc:07:1f:ec:15:cc:5f:e0:1e:eb: 24:c8:a6:75:31:fe:24:1b:d1:34:87:5c:f7:ec:68: 3a:5a:55:44:36:0c:ea:d7:fd:0b:99:56:1d:44:8a: c9:7e:90:c8:dd:04:cd:9d:f1:1f:70:8c:71:78:9a: 25:6d:67:29:20:da:88:ae:72:c3:ca:18:a7:6e:d0: 7b:ad:be:eb:c9:52:5b:b7:4e:1f:67:f6:fc:0f:de: 41:f3:93:61:29:15:8e:38:3b:ca:c5:7a:4c:71:4e: 85:36:53:a9:f9:d9:4d:85:90:34:53:02:aa:04:9f: 82:b8:98:1d:0c:b3:8e:cb:20:b7:b4:ad:3a:07:bf: 72:1a:ef:f2:d7:6d:ee:4c:65:77:c3:b1:a9:ee:2a: 4b:12:3c:91:12:14:6f:1b:88:8e:70:c8:4a:e7:9c: 57:45:3a:d6:cc:74:65:08:1e:32:1d:3a:a0:d2:e4: 79:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C2:35:42:8E:9A:6C:10:03:E8:68:80:54:8D:E1:29:16:D8:1E:7E X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:a8:d1:28:5f:02:af:5e:c0:e2:9c:9e:8d:25:fe:fc:8f:d7: 55:cd:25:1d:d8:3f:f9:5c:0c:3d:e9:15:d9:0a:77:86:1f:dd: 40:64:52:0a:92:db:c2:62:cd:fc:bf:f0:b3:1b:a5:50:73:68: b9:b6:ab:91:40:fc:61:09:23:d3:2e:09:d9:6a:21:76:b4:aa: c4:f3:40:d6:8c:48:b5:11:3a:62:80:15:8b:4b:cf:d0:f2:00: 58:a7:7c:69:4f:b3:6d:3c:aa:52:75:02:5f:11:62:b6:ab:37: 23:e6:e5:a8:c4:de:54:ea:0b:5a:c9:ce:a9:13:99:fc:63:f5: 8e:af:2d:fe:42:42:73:42:0d:1a:99:c2:f5:0d:3d:dc:dd:9d: e6:d6:99:53:7e:96:16:68:ee:07:1c:32:f0:9c:67:1b:13:41: d1:8d:4b:52:99:8e:d3:d4:41:c4:df:6d:68:36:76:59:0d:0c: 8e:74:1f:09:5b:cb:2d:1c:69:33:71:03:b6:f8:11:1b:77:db: fc:e1:3a:32:40:4e:e4:f9:b6:3f:d8:6d:c9:93:8d:0e:82:e6: 68:f0:77:8e:47:ef:e5:31:50:23:3a:84:99:4a:58:c3:93:08: 77:5e:27:0c:99:f7:b8:ee:1a:19:10:01:3c:c4:28:93:23:e0: 0c:5e:46:d5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ2HZATnhvo05UvaIZgg/6jQZH8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNjAzMjUwOTQ3MTlaFw0yNjAzMjgxNTM1MTlaMDMxMTAvBgNV BAMTKEQ0QzIzNTQyOEU5QTZDMTAwM0U4Njg4MDU0OERFMTI5MTZEODFFN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX/ti72dTY3nFcX6bU7PjdXSbd HoNVX6+G/5VSi1ZEmisxAe2Dd/w/jUEa5kMjyO3zfrAxv9/9PeM/KiOwbqhYxnb0 P6AydzezC656t1L0zAcf7BXMX+Ae6yTIpnUx/iQb0TSHXPfsaDpaVUQ2DOrX/QuZ Vh1Eisl+kMjdBM2d8R9wjHF4miVtZykg2oiucsPKGKdu0HutvuvJUlu3Th9n9vwP 3kHzk2EpFY44O8rFekxxToU2U6n52U2FkDRTAqoEn4K4mB0Ms47LILe0rToHv3Ia 7/LXbe5MZXfDsanuKksSPJESFG8biI5wyErnnFdFOtbMdGUIHjIdOqDS5HlBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1MI1Qo6abBAD6GiAVI3hKRbYHn4wHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACOo0ShfAq9ewOKcno0l/vyP11XNJR3YP/lc DD3pFdkKd4Yf3UBkUgqS28Jizfy/8LMbpVBzaLm2q5FA/GEJI9MuCdlqIXa0qsTz QNaMSLUROmKAFYtLz9DyAFinfGlPs208qlJ1Al8RYrarNyPm5ajE3lTqC1rJzqkT mfxj9Y6vLf5CQnNCDRqZwvUNPdzdnebWmVN+lhZo7gccMvCcZxsTQdGNS1KZjtPU QcTfbWg2dlkNDI50Hwlbyy0caTNxA7b4ERt32/zhOjJATuT5tj/YbcmTjQ6C5mjw d45H7+UxUCM6hJlKWMOTCHdeJwyZ97juGhkQATzEKJMj4AxeRtU= -----END CERTIFICATE-----Generated at Thu Mar 26 09:11:18 2026 by rpki-client