$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: NG2TA+TvBtKdIpMT6oibEoCxUbaUIbijWELIC6H/E5M= Subject key identifier: 36:EE:57:DA:2E:0C:1C:9B:8B:0C:A5:A5:CE:B6:A2:48:E7:EC:58:CC Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 7078F47117560696DB52EF09A15A6CA00C705FB3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: 011A Signing time: Wed 25 Mar 2026 21:51:19 +0000 Manifest this update: Wed 25 Mar 2026 21:46:19 +0000 Manifest next update: Sat 28 Mar 2026 23:26:19 +0000 Files and hashes: 1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: B/SzE7FdJHP7zDKGKKISc42fTXoKr09+O9FuV7h08ik=) 2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 23:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:78:f4:71:17:56:06:96:db:52:ef:09:a1:5a:6c:a0:0c:70:5f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: Mar 25 21:46:19 2026 GMT Not After : Mar 28 23:26:19 2026 GMT Subject: CN=36EE57DA2E0C1C9B8B0CA5A5CEB6A248E7EC58CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:6f:e1:fd:2a:d7:e2:65:c6:60:3c:5a:85: d7:48:9d:8f:e2:4c:e8:d9:40:6c:d6:61:5b:ac:5a: 32:69:aa:42:e1:52:7a:f9:2a:27:45:c4:b6:70:8e: 78:40:7f:4d:ad:d5:ee:89:1b:ff:73:6a:e4:45:f4: 6a:c1:fb:ed:e8:03:52:4e:c4:df:d7:ed:89:84:e1: 5d:89:05:9b:7c:1a:0c:93:70:7f:df:d7:91:79:43: e4:76:bb:0d:84:1f:39:45:39:2f:ee:5e:f2:90:aa: 0c:f7:41:fe:e0:fc:45:7f:46:aa:95:c9:1a:9c:52: 74:48:3c:af:c8:f7:ed:03:9e:8b:3d:4d:c9:4b:59: ad:99:4d:06:98:29:b5:06:df:c3:5f:cb:a8:0c:fd: 0b:ad:5d:72:47:3c:17:95:c1:15:5f:4e:97:e5:02: 35:58:c2:ed:f3:f1:51:a1:ac:4f:f7:57:f3:2e:4d: 3c:66:b2:98:1e:b1:a4:82:5f:d1:35:bb:8f:dd:f0: 0a:ee:9f:63:51:b8:98:41:e9:48:f4:8a:8e:ad:a7: b1:27:32:db:cd:eb:ef:70:1f:f1:5f:be:3f:3c:b5: 36:81:52:ec:75:95:40:d3:3d:6c:1f:4c:66:3b:2f: 83:56:5b:9d:33:45:4c:30:ea:b0:08:10:02:97:26: d1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:EE:57:DA:2E:0C:1C:9B:8B:0C:A5:A5:CE:B6:A2:48:E7:EC:58:CC X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:37:c1:8b:7e:3e:eb:24:39:f9:61:63:d8:55:60:b6:25:32: 39:68:9e:5f:e0:88:90:33:18:bb:f2:61:56:c6:1b:8c:f0:c6: f6:91:11:8b:96:20:59:78:b3:94:2a:08:aa:94:e4:47:77:b1: 4f:18:09:10:ce:97:3d:ac:c4:1e:e6:95:22:b3:6f:c3:74:47: af:60:69:8e:c5:59:34:bb:10:99:4a:f7:e1:08:94:e2:23:75: 3c:fb:7d:76:28:f9:f2:06:08:bf:7b:5c:cc:11:58:03:59:dc: fc:f1:a5:29:32:c3:cd:ed:46:e6:84:ed:df:88:b2:46:8f:f5: 15:21:71:f0:79:cf:0f:30:56:9f:54:6e:9b:da:0a:98:0a:36: 60:3f:fb:dd:43:5c:df:d0:7d:3b:7d:f9:af:ac:c2:ce:72:e9: 3f:32:d0:02:00:46:46:a4:14:a4:a3:40:ca:0f:c0:58:09:40: f2:7c:d3:29:66:ba:03:97:de:70:63:bb:1c:c6:c5:ee:7f:19: 67:a4:cb:70:e5:aa:d6:c8:1e:0e:29:6e:30:4f:a0:cf:46:42: d2:d3:8f:4b:17:7a:c1:15:72:35:c6:1d:2b:95:b4:f8:69:f9: 7d:ef:e0:a9:2f:70:f9:89:69:6b:b3:52:ff:28:d1:10:ca:86: 04:ce:2c:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcHj0cRdWBpbbUu8JoVpsoAxwX7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNjAzMjUyMTQ2MTlaFw0yNjAzMjgyMzI2MTlaMDMxMTAvBgNV BAMTKDM2RUU1N0RBMkUwQzFDOUI4QjBDQTVBNUNFQjZBMjQ4RTdFQzU4Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPm/h/SrX4mXGYDxahddInY/i TOjZQGzWYVusWjJpqkLhUnr5KidFxLZwjnhAf02t1e6JG/9zauRF9GrB++3oA1JO xN/X7YmE4V2JBZt8GgyTcH/f15F5Q+R2uw2EHzlFOS/uXvKQqgz3Qf7g/EV/RqqV yRqcUnRIPK/I9+0Dnos9TclLWa2ZTQaYKbUG38Nfy6gM/QutXXJHPBeVwRVfTpfl AjVYwu3z8VGhrE/3V/MuTTxmspgesaSCX9E1u4/d8Arun2NRuJhB6Uj0io6tp7En MtvN6+9wH/Ffvj88tTaBUux1lUDTPWwfTGY7L4NWW50zRUww6rAIEAKXJtG5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNu5X2i4MHJuLDKWlzraiSOfsWMwwHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHw3wYt+PuskOflhY9hVYLYlMjlonl/giJAz GLvyYVbGG4zwxvaREYuWIFl4s5QqCKqU5Ed3sU8YCRDOlz2sxB7mlSKzb8N0R69g aY7FWTS7EJlK9+EIlOIjdTz7fXYo+fIGCL97XMwRWANZ3PzxpSkyw83tRuaE7d+I skaP9RUhcfB5zw8wVp9UbpvaCpgKNmA/+91DXN/QfTt9+a+sws5y6T8y0AIARkak FKSjQMoPwFgJQPJ80ylmugOX3nBjuxzGxe5/GWeky3DlqtbIHg4pbjBPoM9GQtLT j0sXesEVcjXGHSuVtPhp+X3v4KkvcPmJaWuzUv8o0RDKhgTOLFk= -----END CERTIFICATE-----Generated at Thu Mar 26 23:04:11 2026 by rpki-client