$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft File: 20566897603B029812606C25ABC972BAC5BF4AFB.mft (raw, json) Hash identifier: nVeg1l4g0FUxXxujvhckgOXSqy2CJE1OyFWwANcriIc= Subject key identifier: 4D:8C:38:1B:ED:3D:DD:B8:90:E1:FE:4D:3F:75:8E:D0:26:8A:9E:3B Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 6B84E05CCBDBE50BEEE68AFE893C7A6C2F95F1DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft Manifest number: 02A7 Signing time: Thu 26 Mar 2026 09:52:35 +0000 Manifest this update: Thu 26 Mar 2026 09:47:35 +0000 Manifest next update: Sun 29 Mar 2026 15:55:35 +0000 Files and hashes: 1: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (hash: HofDLGmwqIsnj587taUbViIIFJnwZV6L29IBKkzVuIE=) 2: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (hash: TjP7GmHfPb+wwoosrfBI6nsarX9S8cjrwBDpRp71p84=) 3: 20566897603B029812606C25ABC972BAC5BF4AFB.crl (hash: oHf69ZfucJO30sfsGqXXPapsMOYQZCNh3XHNg3Flzps=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 15:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:84:e0:5c:cb:db:e5:0b:ee:e6:8a:fe:89:3c:7a:6c:2f:95:f1:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Mar 26 09:47:35 2026 GMT Not After : Mar 29 15:55:35 2026 GMT Subject: CN=4D8C381BED3DDDB890E1FE4D3F758ED0268A9E3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:35:8e:9c:b3:44:92:8c:a8:2d:b5:8c:99:fd: 1e:54:9c:83:40:be:ea:01:9f:e0:50:d2:e6:2b:06: 2e:b6:c7:1b:3f:a0:66:6d:b1:ac:5c:32:72:50:b5: e7:25:68:2e:c0:17:d8:07:a8:84:b7:6b:69:e6:19: 26:2e:d6:ed:09:f2:5c:9e:99:64:2d:cc:05:7c:5b: 2c:48:57:56:b4:d8:1c:43:ca:cc:1f:e9:49:22:2c: 62:0f:72:8a:b3:b2:b0:76:de:af:94:7b:d6:27:f5: 4d:94:6d:e1:1c:67:f2:55:a3:ca:a3:6e:ee:e8:4e: 44:88:2d:0f:0b:77:98:59:67:68:30:6a:4f:15:3f: ca:d1:6c:f4:f5:09:67:41:77:f8:a7:de:14:16:32: 3b:87:de:ed:ba:49:4c:83:88:70:0d:17:a3:ae:2a: 3a:1d:ac:ce:c9:4e:60:91:6e:80:42:fb:1b:37:6e: 65:15:3f:19:24:de:8a:7f:75:a1:ab:91:2f:39:45: 41:63:83:e8:b0:78:24:24:d0:59:af:ed:f9:14:9c: ad:a5:5b:94:48:77:62:3c:6a:43:b5:50:13:21:08: 94:af:18:e1:70:ca:a7:3a:8f:e9:3a:db:0d:67:3b: 32:47:82:ab:68:8c:d4:67:b3:ed:89:a9:aa:f1:c4: aa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8C:38:1B:ED:3D:DD:B8:90:E1:FE:4D:3F:75:8E:D0:26:8A:9E:3B X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:bb:26:f0:42:2a:0d:f0:dc:39:3c:30:f2:af:dd:91:1c:88: 17:6d:f8:f6:b7:87:e5:eb:22:4d:17:31:c8:fc:7d:ce:bf:ba: a6:69:76:a8:04:e3:86:e5:fc:87:c8:81:00:b7:cb:24:f6:49: 85:36:1b:fb:d0:77:37:a3:ac:65:6c:63:d7:dc:da:47:ed:5f: 30:f7:66:c2:ef:5c:bd:8c:93:dd:28:d9:87:e4:89:eb:32:88: e6:87:bd:53:3c:09:28:bd:12:d3:d4:0b:b4:07:07:ba:4b:e0: 15:92:99:da:a9:d2:92:95:43:4b:fb:ca:04:0f:ca:dd:7b:c8: 0c:79:a9:43:47:e5:91:12:24:ed:da:25:ee:dc:0d:f4:3e:c7: 7c:a1:02:47:f7:2d:7b:eb:1e:fe:6a:da:f1:8a:7c:48:1c:57: 91:e9:a8:f4:2b:03:e5:9e:a2:7b:7a:4a:ad:cc:1b:88:ca:73: d6:20:b4:01:21:bd:98:71:e9:ec:0e:dc:56:6f:1d:46:b2:0e: 84:a5:5d:dd:d3:d6:9d:53:b8:26:56:46:46:aa:65:f1:9c:94: 14:95:1e:44:00:fd:a2:54:58:0e:7a:3a:e7:cf:22:65:b9:ca: 0d:d8:af:01:ae:7f:82:78:1b:83:32:98:78:e7:d2:35:ff:5c: 6b:3c:e4:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa4TgXMvb5Qvu5or+iTx6bC+V8d0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNjAzMjYwOTQ3MzVaFw0yNjAzMjkxNTU1MzVaMDMxMTAvBgNV BAMTKDREOEMzODFCRUQzREREQjg5MEUxRkU0RDNGNzU4RUQwMjY4QTlFM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKNY6cs0SSjKgttYyZ/R5UnINA vuoBn+BQ0uYrBi62xxs/oGZtsaxcMnJQteclaC7AF9gHqIS3a2nmGSYu1u0J8lye mWQtzAV8WyxIV1a02BxDyswf6UkiLGIPcoqzsrB23q+Ue9Yn9U2UbeEcZ/JVo8qj bu7oTkSILQ8Ld5hZZ2gwak8VP8rRbPT1CWdBd/in3hQWMjuH3u26SUyDiHANF6Ou KjodrM7JTmCRboBC+xs3bmUVPxkk3op/daGrkS85RUFjg+iweCQk0Fmv7fkUnK2l W5RId2I8akO1UBMhCJSvGOFwyqc6j+k62w1nOzJHgqtojNRns+2JqarxxKrDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTYw4G+093biQ4f5NP3WO0CaKnjswHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWRhY2MzNjUtZTE5NC00YWMwLTk1 M2EtNGRmM2E1OTAwYjE0LzAvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcy QkFDNUJGNEFGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABi7JvBCKg3w3Dk8MPKv3ZEciBdt+Pa3h+Xr Ik0XMcj8fc6/uqZpdqgE44bl/IfIgQC3yyT2SYU2G/vQdzejrGVsY9fc2kftXzD3 ZsLvXL2Mk90o2YfkiesyiOaHvVM8CSi9EtPUC7QHB7pL4BWSmdqp0pKVQ0v7ygQP yt17yAx5qUNH5ZESJO3aJe7cDfQ+x3yhAkf3LXvrHv5q2vGKfEgcV5HpqPQrA+We ont6Sq3MG4jKc9YgtAEhvZhx6ewO3FZvHUayDoSlXd3T1p1TuCZWRkaqZfGclBSV HkQA/aJUWA56OufPImW5yg3YrwGuf4J4G4MymHjn0jX/XGs85Ck= -----END CERTIFICATE-----Generated at Thu Mar 26 15:07:00 2026 by rpki-client