$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: JAmS02x3uax94AfdgyJVhqnTgTedVTZ3g1tcc+b26Qc= Subject key identifier: DA:29:72:B7:2C:E7:88:5A:AD:1B:12:34:CE:E5:BA:6F:7C:A5:80:05 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 59C1CC09141814C13C5C616FDE3A5C76F7074390 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 056F Signing time: Mon 23 Mar 2026 21:41:40 +0000 Manifest this update: Mon 23 Mar 2026 21:36:40 +0000 Manifest next update: Fri 27 Mar 2026 03:38:40 +0000 Files and hashes: 1: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: rMaF7Q5MH66fB43sjFU7KFf+jSsxMN2DLHihs4pTcNE=) 2: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: FAtVlldec4RoFv3q2j7FVnmrtGRtRRfXUz6I4U8sRwI=) 3: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 4: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) 5: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: Qpwv0ckmoMTjhft1g8XYl7Cg9KVoQd3mfoBa7/15QUw=) 6: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: ZZmhtd+kvnB+qiIIirmPZ+PBFZw13KvG2RKerxPSCqA=) 7: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 03:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c1:cc:09:14:18:14:c1:3c:5c:61:6f:de:3a:5c:76:f7:07:43:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Mar 23 21:36:40 2026 GMT Not After : Mar 27 03:38:40 2026 GMT Subject: CN=DA2972B72CE7885AAD1B1234CEE5BA6F7CA58005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:7f:52:32:48:b8:6e:af:14:50:cc:af:8d: a0:59:09:cd:ea:b6:6f:13:7e:ec:e9:a4:d3:2d:0e: f5:c8:ba:35:80:b1:a7:90:d8:1f:fc:f2:19:0a:7b: df:06:4b:ae:9b:95:b7:5f:8f:4c:a5:d5:aa:c8:ed: f6:d6:ad:a6:a4:96:af:1f:16:b8:c7:33:08:ef:4c: d8:6a:b4:8b:1d:67:a0:f4:ac:06:57:84:49:ce:fe: 06:c6:a1:7f:43:ff:d2:98:8d:e0:b3:44:8c:bd:5c: 3d:d7:63:87:51:24:90:c5:43:83:46:ec:69:2f:e7: 65:38:de:53:4f:da:e6:8a:5d:fc:88:f4:8f:03:58: 02:4e:70:50:ea:c9:69:e3:28:18:6b:a0:ce:f8:73: 97:c1:2c:a2:1e:df:b9:15:8a:f0:5a:68:0e:71:a8: fe:65:b2:e7:f2:12:6c:ac:2e:d2:14:b6:47:66:72: db:ae:fc:b4:58:14:03:47:5a:9a:93:75:4c:b3:d6: 2c:71:48:35:a5:f8:33:ba:68:de:1e:5b:f6:cd:df: 56:08:be:91:03:19:19:dd:3b:9d:8e:c9:81:99:c4: 8b:4f:72:49:ad:ac:80:14:f4:6a:93:a2:4e:5d:5f: 94:6f:19:90:f5:25:17:f0:8d:6f:af:24:c4:fc:cd: 24:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:29:72:B7:2C:E7:88:5A:AD:1B:12:34:CE:E5:BA:6F:7C:A5:80:05 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:ef:aa:a4:00:10:46:fc:f8:bc:2c:60:0f:86:b3:d6:47:25: 21:8e:e1:c0:d2:31:78:23:8a:f0:fe:fb:db:20:a3:eb:08:4f: c1:c9:74:b7:44:a4:d9:c2:76:c5:a5:b6:11:40:96:1e:31:75: 7b:a2:26:36:0c:db:af:cb:8c:5a:22:db:29:99:ad:ea:7a:42: 51:39:1e:2c:41:57:3a:f1:87:14:f3:cc:bf:66:17:0b:e9:7c: 93:15:6b:e0:36:21:0d:0a:e7:b1:32:9a:70:1f:93:1a:b3:80: c2:1b:7a:41:c5:04:b2:a3:7b:a7:9b:f2:84:07:a5:4a:e0:68: 55:7c:eb:10:f7:b9:10:e3:c0:cb:88:e4:a0:31:81:33:c2:ce: 90:e9:53:50:75:db:ce:ac:66:9a:cb:f4:90:5c:a7:20:5b:c0: 0e:ea:b3:1c:b7:f6:ac:07:0e:60:26:9c:85:d0:15:1b:96:43: 35:ed:53:b3:44:36:44:9b:16:6a:d9:64:e7:3e:a8:78:a8:13: 0b:15:24:f3:d8:aa:d6:a3:95:89:49:5f:3c:49:f7:b3:59:b7: 04:13:12:f9:70:d4:d2:57:22:ac:80:d7:c1:66:e7:0f:3f:1d: 87:b2:ed:03:75:be:1e:ae:4d:34:fd:24:1a:55:25:7f:13:59: f1:ad:ce:99 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWcHMCRQYFME8XGFv3jpcdvcHQ5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNjAzMjMyMTM2NDBaFw0yNjAzMjcwMzM4NDBaMDMxMTAvBgNV BAMTKERBMjk3MkI3MkNFNzg4NUFBRDFCMTIzNENFRTVCQTZGN0NBNTgwMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9WX9SMki4bq8UUMyvjaBZCc3q tm8TfuzppNMtDvXIujWAsaeQ2B/88hkKe98GS66blbdfj0yl1arI7fbWraaklq8f FrjHMwjvTNhqtIsdZ6D0rAZXhEnO/gbGoX9D/9KYjeCzRIy9XD3XY4dRJJDFQ4NG 7Gkv52U43lNP2uaKXfyI9I8DWAJOcFDqyWnjKBhroM74c5fBLKIe37kVivBaaA5x qP5lsufyEmysLtIUtkdmctuu/LRYFANHWpqTdUyz1ixxSDWl+DO6aN4eW/bN31YI vpEDGRndO52OyYGZxItPckmtrIAU9GqTok5dX5RvGZD1JRfwjW+vJMT8zSTfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2ilytyzniFqtGxI0zuW6b3ylgAUwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJTvqqQAEEb8+LwsYA+Gs9ZHJSGO4cDSMXgj ivD++9sgo+sIT8HJdLdEpNnCdsWlthFAlh4xdXuiJjYM26/LjFoi2ymZrep6QlE5 HixBVzrxhxTzzL9mFwvpfJMVa+A2IQ0K57EymnAfkxqzgMIbekHFBLKje6eb8oQH pUrgaFV86xD3uRDjwMuI5KAxgTPCzpDpU1B1286sZprL9JBcpyBbwA7qsxy39qwH DmAmnIXQFRuWQzXtU7NENkSbFmrZZOc+qHioEwsVJPPYqtajlYlJXzxJ97NZtwQT Evlw1NJXIqyA18Fm5w8/HYey7QN1vh6uTTT9JBpVJX8TWfGtzpk= -----END CERTIFICATE-----Generated at Thu Mar 26 05:39:02 2026 by rpki-client