$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft File: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft (raw, json) Hash identifier: ZXq6C69UArm8ldUatJexQWp8eL6Gx6spQcV1oRxz0io= Subject key identifier: 6E:69:CD:AE:C7:D5:90:37:ED:6C:D4:1F:F3:40:3B:29:38:2C:D1:0F Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 5E1D30F704A969FF65D9290FC9ECE21E8C63E9C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft Manifest number: 055F Signing time: Wed 25 Mar 2026 14:42:18 +0000 Manifest this update: Wed 25 Mar 2026 14:37:18 +0000 Manifest next update: Sat 28 Mar 2026 22:27:18 +0000 Files and hashes: 1: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (hash: CeNMr8Y0wuM60Zt6nplzMluIcrI9La3EhazffayBItA=) 2: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl (hash: dfqyzM7fiJjnIwO921qgaPr3+BKScp9BxMXZ+NP5aLQ=) 3: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (hash: B78QMc7X1AynG/67CvGHE09qoTlYPrnz5pImIeutRLM=) 4: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (hash: 1GnFCQ0Tavqgsu3zMfhYc58ad3h7NpVZT5asqIEYmDA=) 5: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (hash: JSx+5xTx71eWK8GnVgu4sokLS7+0LsCbDYaq7VNDJRQ=) 6: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (hash: WF4j8x2tGr44aFsHKkav+2ARzcYAA9lGEfxLV4cOOpQ=) 7: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (hash: JY5X7Ni0FqjOLHL/IBAcPoDotTFSEzReZjChPfIbLws=) 8: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (hash: olwDZQoWpFkRsK81GVJEPLld+99Dlx/8F9oVv6zB3jQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:1d:30:f7:04:a9:69:ff:65:d9:29:0f:c9:ec:e2:1e:8c:63:e9:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Mar 25 14:37:18 2026 GMT Not After : Mar 28 22:27:18 2026 GMT Subject: CN=6E69CDAEC7D59037ED6CD41FF3403B29382CD10F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d9:31:57:7b:01:f5:8e:e6:6d:98:72:3f:41: f0:f1:72:cd:a5:96:7c:5f:b1:12:f5:c7:ec:85:db: 41:db:e5:2f:44:cf:75:56:b3:38:52:7f:7f:ce:4b: 30:9c:dd:97:84:20:55:39:45:84:0c:26:75:e6:c5: 75:38:5b:ee:9e:32:fa:d8:78:48:e5:11:3c:74:2d: 83:a3:44:38:f1:70:66:b5:14:f2:05:b4:8b:60:5b: d0:19:aa:ce:ef:d1:a6:d3:1c:ee:1a:13:02:f8:f8: 78:58:33:fb:65:0b:40:4e:5a:9c:a2:c6:52:b9:b2: 7c:3c:d7:f2:b5:60:ae:bb:d6:ef:dc:ca:db:45:4c: 62:ca:24:a2:89:1a:5b:a4:e6:9a:97:89:47:cf:24: 7d:b5:59:f1:be:f7:c0:76:0b:69:4a:00:19:c3:f0: 2c:17:53:9b:fa:06:8a:44:cf:c8:93:37:9e:98:40: ba:66:70:cd:69:35:e4:06:f9:f2:22:2f:32:3c:6e: dc:53:41:3a:8c:84:bb:7d:ea:a8:0d:23:a6:bb:d9: 88:d3:66:93:cc:e9:6e:54:da:09:85:f9:93:67:5d: 12:4a:fc:0b:a4:0d:d3:dc:d5:86:bc:89:e8:36:95: f1:8f:3b:31:35:77:82:4d:49:4d:31:ef:52:b9:82: 3d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:69:CD:AE:C7:D5:90:37:ED:6C:D4:1F:F3:40:3B:29:38:2C:D1:0F X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:64:2e:21:a0:e4:0a:bd:b2:24:fe:ce:f3:9f:77:8d:51:99: 43:b5:56:e8:bb:fc:c3:16:6f:ec:1e:72:a0:70:af:e7:95:4c: cb:6f:fe:ac:f9:57:10:25:80:e3:a2:64:b6:7b:54:62:37:05: ca:4c:ba:38:19:c8:d9:93:ac:fe:5c:53:52:cf:d9:5f:38:6d: a1:1c:c1:87:ce:98:6a:12:aa:b3:7f:1d:3d:d4:f6:b8:5a:80: 66:f8:71:3b:aa:0d:ad:6c:09:62:0e:a8:85:1d:ad:f6:f5:a2: d9:78:bb:07:47:10:40:53:5c:b7:5b:53:1f:d7:13:2a:8c:7c: 5a:7e:c6:f1:19:f2:12:1a:2a:88:3a:98:cf:52:d8:d5:0c:7d: 9a:c6:a9:ec:5b:6d:bd:07:2b:d5:ba:4a:95:2c:c6:8b:1e:34: d6:b2:bb:11:07:74:b1:6f:fc:71:2c:17:47:98:04:cb:d3:f3: 11:75:77:1d:ce:41:47:49:ba:b0:d7:21:d4:30:48:99:34:94: 8b:13:70:86:db:e8:e5:5f:fb:44:2b:58:03:2d:26:c9:4d:a7: 98:be:ff:da:91:11:68:23:09:f3:03:34:bb:78:37:56:47:83: b6:fc:ae:a2:70:3c:5d:c2:cf:b0:2c:09:1a:8c:d5:00:2e:f9: aa:33:a3:7d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXh0w9wSpaf9l2SkPyeziHoxj6cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNjAzMjUxNDM3MThaFw0yNjAzMjgyMjI3MThaMDMxMTAvBgNV BAMTKDZFNjlDREFFQzdENTkwMzdFRDZDRDQxRkYzNDAzQjI5MzgyQ0QxMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe2TFXewH1juZtmHI/QfDxcs2l lnxfsRL1x+yF20Hb5S9Ez3VWszhSf3/OSzCc3ZeEIFU5RYQMJnXmxXU4W+6eMvrY eEjlETx0LYOjRDjxcGa1FPIFtItgW9AZqs7v0abTHO4aEwL4+HhYM/tlC0BOWpyi xlK5snw81/K1YK671u/cyttFTGLKJKKJGluk5pqXiUfPJH21WfG+98B2C2lKABnD 8CwXU5v6BopEz8iTN56YQLpmcM1pNeQG+fIiLzI8btxTQTqMhLt96qgNI6a72YjT ZpPM6W5U2gmF+ZNnXRJK/AukDdPc1Ya8ieg2lfGPOzE1d4JNSU0x71K5gj15AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbmnNrsfVkDftbNQf80A7KTgs0Q8wHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQzZTJlNjctYTE3MS00ZDllLWE5 MzUtNDA2OTAyYjFlMTNiLzAvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVG MEFFQ0M3RkU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFRkLiGg5Aq9siT+zvOfd41RmUO1Vui7/MMW b+wecqBwr+eVTMtv/qz5VxAlgOOiZLZ7VGI3BcpMujgZyNmTrP5cU1LP2V84baEc wYfOmGoSqrN/HT3U9rhagGb4cTuqDa1sCWIOqIUdrfb1otl4uwdHEEBTXLdbUx/X EyqMfFp+xvEZ8hIaKog6mM9S2NUMfZrGqexbbb0HK9W6SpUsxoseNNayuxEHdLFv /HEsF0eYBMvT8xF1dx3OQUdJurDXIdQwSJk0lIsTcIbb6OVf+0QrWAMtJslNp5i+ /9qREWgjCfMDNLt4N1ZHg7b8rqJwPF3Cz7AsCRqM1QAu+aozo30= -----END CERTIFICATE-----Generated at Thu Mar 26 11:39:35 2026 by rpki-client