$ rpki-client -vvf repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft File: 952177DE616DE181FF461A8481C060AD744E2603.mft (raw, json) Hash identifier: fnWdjaLwlhAAGfpTJ7GDGU8oD8wo8uFD2bAFGqGsWWo= Subject key identifier: 59:16:32:8D:2C:87:83:53:62:30:B3:4F:5A:9C:5E:E7:2A:60:5A:EE Authority key identifier: 95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 Certificate issuer: /CN=952177DE616DE181FF461A8481C060AD744E2603 Certificate serial: 1560D4368DA456278AE3AD7AE3B86AB7868FC729 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft Manifest number: 0117 Signing time: Wed 25 Mar 2026 08:50:46 +0000 Manifest this update: Wed 25 Mar 2026 08:45:46 +0000 Manifest next update: Sat 28 Mar 2026 18:15:46 +0000 Files and hashes: 1: 3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa (hash: keRrjXE2aFv5lood59DLSEKDpD72rCKDg82GWlf1ewQ=) 2: 952177DE616DE181FF461A8481C060AD744E2603.crl (hash: 74vX7Mrb2rjPmkvXTvTVbfHYh4K2dTB9z4NrOI8WqX4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 18:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:60:d4:36:8d:a4:56:27:8a:e3:ad:7a:e3:b8:6a:b7:86:8f:c7:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=952177DE616DE181FF461A8481C060AD744E2603 Validity Not Before: Mar 25 08:45:46 2026 GMT Not After : Mar 28 18:15:46 2026 GMT Subject: CN=5916328D2C8783536230B34F5A9C5EE72A605AEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:52:c8:d8:22:b8:e3:54:34:01:19:de:25:52: ad:dd:cc:7f:7b:2c:b0:d6:a4:0c:ef:30:6d:ee:e3: 2d:92:87:67:e2:6b:1f:68:d1:c4:d3:f2:2e:2e:9f: 2d:75:e3:f6:d0:e9:a6:08:38:78:87:c1:20:4c:c8: 6b:d4:5b:65:9b:f2:0a:ba:1f:18:cb:b7:3c:5f:ce: f0:e8:64:77:86:b9:dc:71:df:0a:d8:dd:2e:af:7b: d0:eb:3e:dd:8b:a6:0c:55:ff:78:85:1d:7a:e9:24: 03:35:f2:d0:08:8f:da:54:97:8c:eb:b4:ff:71:9c: 7d:d5:2d:7e:4b:bc:bb:df:fd:d7:b2:c6:17:24:2f: af:f6:52:d9:97:12:4b:c0:21:88:da:61:c9:9d:f0: bb:ce:e7:70:ed:c5:1c:31:df:99:1f:c1:38:a5:2e: f4:b9:a9:db:d7:d4:73:6b:13:61:46:5a:00:d4:ed: b6:c1:36:f4:ea:22:dd:33:c0:91:8d:f3:6c:7f:0e: 10:b9:04:8c:97:db:14:5b:31:19:17:23:57:34:a5: d2:13:3d:ad:d8:43:9d:0e:7b:8c:28:53:0f:46:33: 47:01:f5:d7:ae:35:c7:34:31:9f:43:91:b0:1c:b4: 53:1c:5f:1f:1e:a1:28:be:d4:bd:d1:27:19:22:b3: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:16:32:8D:2C:87:83:53:62:30:B3:4F:5A:9C:5E:E7:2A:60:5A:EE X509v3 Authority Key Identifier: keyid:95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:43:7e:76:2b:db:a7:5f:53:6f:62:72:74:fb:dd:50:3b:ab: 68:24:0a:0a:b3:b4:d4:3f:b6:f0:39:46:f9:b7:df:17:e4:ec: 05:40:d1:e4:80:a8:68:7d:f4:d3:42:99:30:88:bb:59:d0:11: 40:c3:ec:01:78:5f:77:db:fd:4b:fb:8b:86:7a:e7:f6:6c:b1: e2:9f:a3:5e:ca:d8:c3:55:e7:c5:70:13:ac:a3:fe:52:71:09: 39:49:11:94:15:85:43:fa:72:8e:a5:07:c9:83:c0:ed:2d:06: fb:da:09:84:28:0a:76:a5:90:03:9c:e7:58:cf:1f:bf:8c:d7: 7d:f0:fe:a0:ee:01:26:c3:1b:39:40:72:d1:9f:e4:71:92:1b: ea:7e:08:90:5c:22:2c:17:46:82:ed:fb:0c:76:15:d5:a5:25: 41:be:e6:b9:5b:34:99:1e:cc:af:d4:08:2a:2e:83:35:ed:80: b4:84:a7:14:71:68:b1:83:48:f5:37:02:99:9c:3b:f6:25:a1: b2:10:23:36:1d:f5:10:05:79:16:c7:f3:6d:90:ea:ea:bd:f3: 73:46:19:09:a3:fd:cc:91:90:62:65:32:06:8d:0d:e6:3e:a7: e5:a9:60:1d:0e:30:c8:b6:7b:b8:de:ba:57:9f:5f:1f:fb:a3: 59:d7:be:f5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFWDUNo2kVieK461647hqt4aPxykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3 NDRFMjYwMzAeFw0yNjAzMjUwODQ1NDZaFw0yNjAzMjgxODE1NDZaMDMxMTAvBgNV BAMTKDU5MTYzMjhEMkM4NzgzNTM2MjMwQjM0RjVBOUM1RUU3MkE2MDVBRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfUsjYIrjjVDQBGd4lUq3dzH97 LLDWpAzvMG3u4y2Sh2fiax9o0cTT8i4uny114/bQ6aYIOHiHwSBMyGvUW2Wb8gq6 HxjLtzxfzvDoZHeGudxx3wrY3S6ve9DrPt2LpgxV/3iFHXrpJAM18tAIj9pUl4zr tP9xnH3VLX5LvLvf/deyxhckL6/2UtmXEkvAIYjaYcmd8LvO53DtxRwx35kfwTil LvS5qdvX1HNrE2FGWgDU7bbBNvTqIt0zwJGN82x/DhC5BIyX2xRbMRkXI1c0pdIT Pa3YQ50Oe4woUw9GM0cB9deuNcc0MZ9DkbActFMcXx8eoSi+1L3RJxkis561AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWRYyjSyHg1NiMLNPWpxe5ypgWu4wHwYDVR0j BBgwFoAUlSF33mFt4YH/RhqEgcBgrXROJgMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjAwMjk5Mi1hY2IyLTRmNzctOTk3ZC0zMjE3ZWFkOTliYjUvMC85NTIxNzdERTYx NkRFMTgxRkY0NjFBODQ4MUMwNjBBRDc0NEUyNjAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3NDRF MjYwMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWIwMDI5OTItYWNiMi00Zjc3LTk5 N2QtMzIxN2VhZDk5YmI1LzAvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYw QUQ3NDRFMjYwMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABtDfnYr26dfU29icnT73VA7q2gkCgqztNQ/ tvA5Rvm33xfk7AVA0eSAqGh99NNCmTCIu1nQEUDD7AF4X3fb/Uv7i4Z65/ZsseKf o17K2MNV58VwE6yj/lJxCTlJEZQVhUP6co6lB8mDwO0tBvvaCYQoCnalkAOc51jP H7+M133w/qDuASbDGzlActGf5HGSG+p+CJBcIiwXRoLt+wx2FdWlJUG+5rlbNJke zK/UCCougzXtgLSEpxRxaLGDSPU3ApmcO/YlobIQIzYd9RAFeRbH822Q6uq983NG GQmj/cyRkGJlMgaNDeY+p+WpYB0OMMi2e7jeulefXx/7o1nXvvU= -----END CERTIFICATE-----Generated at Thu Mar 26 20:43:11 2026 by rpki-client