$ rpki-client -vvf repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft File: BD685C24FF8F432543C3E583484044A44E53067B.mft (raw, json) Hash identifier: uqf0ofMX88Z7kRXLJIPLdVvOcePn9poXTf3G13rRnzA= Subject key identifier: 30:46:DD:76:BA:B8:2F:98:0B:FD:DF:59:C9:A4:53:03:73:B7:38:9B Authority key identifier: BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B Certificate issuer: /CN=BD685C24FF8F432543C3E583484044A44E53067B Certificate serial: 0EF26BD6BC6443E3988AB2B0F8A1B10A5B7526C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft Manifest number: 43 Signing time: Thu 26 Mar 2026 04:42:52 +0000 Manifest this update: Thu 26 Mar 2026 04:37:52 +0000 Manifest next update: Sun 29 Mar 2026 05:06:52 +0000 Files and hashes: 1: 3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa (hash: dhpkhk04ab2tWVnfTiYy7HAwnFkFS5/nKq6B26Ta2Ao=) 2: BD685C24FF8F432543C3E583484044A44E53067B.crl (hash: Kt9ToqFdOnvMLYvNdfZdBUNxHAm5TZgxwZerKQwiuOE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 05:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f2:6b:d6:bc:64:43:e3:98:8a:b2:b0:f8:a1:b1:0a:5b:75:26:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD685C24FF8F432543C3E583484044A44E53067B Validity Not Before: Mar 26 04:37:52 2026 GMT Not After : Mar 29 05:06:52 2026 GMT Subject: CN=3046DD76BAB82F980BFDDF59C9A4530373B7389B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:cd:59:7e:92:60:5e:01:da:e7:5a:83:0e: d5:23:af:89:a7:2f:f8:7b:78:8f:a3:51:f5:a1:f3: 24:9e:92:0c:a3:88:5b:ca:e6:69:59:b2:39:8c:73: 22:d9:9b:f9:78:40:42:8a:2a:88:4c:89:e4:2a:e9: 30:c9:e4:73:16:09:45:6f:bb:41:7d:7b:31:a5:fb: 89:07:5b:69:8d:3a:55:10:52:8f:e3:7b:d6:17:a3: 53:70:2c:dd:89:25:16:1f:9c:3d:b0:a4:03:33:67: 14:12:04:b6:d5:d0:8e:dd:27:30:87:5b:d1:e2:20: 81:07:a1:8c:1e:8d:2e:1a:f1:73:84:08:35:5f:b7: c6:25:ed:af:cc:af:07:86:7d:38:96:e3:e7:bd:e6: 86:19:08:62:a3:b5:57:61:cd:da:0b:f3:41:ac:01: 48:4f:a0:73:6b:9d:84:01:88:14:2e:b8:ab:38:21: 60:57:d5:68:c2:af:46:d4:62:21:f9:da:a9:d8:19: d5:78:fa:db:29:a6:30:f4:d0:28:a3:01:1e:6b:a9: 65:c3:52:6a:a3:2c:43:18:0e:da:1d:d8:d6:d5:9b: 7a:7e:3e:39:e4:ba:c1:48:f2:67:4f:1f:36:42:48: e0:36:6f:bd:87:cf:b7:57:b2:f5:c3:19:4f:c8:0c: b0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:46:DD:76:BA:B8:2F:98:0B:FD:DF:59:C9:A4:53:03:73:B7:38:9B X509v3 Authority Key Identifier: keyid:BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:ee:8b:c7:c3:da:ee:35:b1:78:2b:34:0b:42:e5:bf:8f:cc: 3e:57:bf:9c:96:79:48:e3:00:9a:35:31:2e:a5:21:43:ad:51: 5a:f4:5d:82:56:3a:94:98:06:0a:ac:09:7a:ef:16:02:0c:be: f1:fe:15:fe:a2:af:e3:77:07:f5:7b:5b:d8:68:91:f5:50:d0: 32:2e:3b:ac:6f:eb:12:1c:87:d0:17:72:d8:b6:fc:31:eb:f5: 16:1c:e6:fd:2f:14:9f:76:28:6a:42:98:18:4e:a0:9e:23:b3: ec:d6:93:6e:10:e0:68:82:6c:20:4f:df:7c:09:d6:68:26:e9: 2e:f1:c7:16:30:a1:6f:f5:7e:dd:32:89:03:68:db:4d:f0:70: 40:9b:3a:71:cd:e3:06:d6:7d:15:6b:21:c1:78:e5:d3:76:a2: d6:d5:11:f4:33:e3:63:57:8f:0f:2a:97:5f:7c:4c:54:d7:6e: dc:6a:36:02:c3:38:0a:48:7b:cc:e8:c6:fc:b2:49:30:e3:ac: 70:dd:34:25:5c:fd:db:41:12:23:9c:63:b7:7f:65:ed:eb:ad: 75:ab:f2:d2:76:05:ec:01:3c:45:ee:0f:31:df:a9:ac:b0:2b: e5:dc:15:bc:37:90:13:e2:a1:d1:a6:23:00:4a:b3:a4:55:a2: b4:1f:d7:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDvJr1rxkQ+OYirKw+KGxClt1JskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0 RTUzMDY3QjAeFw0yNjAzMjYwNDM3NTJaFw0yNjAzMjkwNTA2NTJaMDMxMTAvBgNV BAMTKDMwNDZERDc2QkFCODJGOTgwQkZEREY1OUM5QTQ1MzAzNzNCNzM4OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5QM1ZfpJgXgHa51qDDtUjr4mn L/h7eI+jUfWh8ySekgyjiFvK5mlZsjmMcyLZm/l4QEKKKohMieQq6TDJ5HMWCUVv u0F9ezGl+4kHW2mNOlUQUo/je9YXo1NwLN2JJRYfnD2wpAMzZxQSBLbV0I7dJzCH W9HiIIEHoYwejS4a8XOECDVft8Yl7a/MrweGfTiW4+e95oYZCGKjtVdhzdoL80Gs AUhPoHNrnYQBiBQuuKs4IWBX1WjCr0bUYiH52qnYGdV4+tsppjD00CijAR5rqWXD UmqjLEMYDtod2NbVm3p+PjnkusFI8mdPHzZCSOA2b72Hz7dXsvXDGU/IDLDDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMEbddrq4L5gL/d9ZyaRTA3O3OJswHwYDVR0j BBgwFoAUvWhcJP+PQyVDw+WDSEBEpE5TBnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGJmODY0MS1iZjcwLTRlM2YtOTg3MS1lZTI2YTMzZGIzYTIvMC9CRDY4NUMyNEZG OEY0MzI1NDNDM0U1ODM0ODQwNDRBNDRFNTMwNjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0RTUz MDY3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRiZjg2NDEtYmY3MC00ZTNmLTk4 NzEtZWUyNmEzM2RiM2EyLzAvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0 QTQ0RTUzMDY3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHbui8fD2u41sXgrNAtC5b+PzD5Xv5yWeUjj AJo1MS6lIUOtUVr0XYJWOpSYBgqsCXrvFgIMvvH+Ff6ir+N3B/V7W9hokfVQ0DIu O6xv6xIch9AXcti2/DHr9RYc5v0vFJ92KGpCmBhOoJ4js+zWk24Q4GiCbCBP33wJ 1mgm6S7xxxYwoW/1ft0yiQNo203wcECbOnHN4wbWfRVrIcF45dN2otbVEfQz42NX jw8ql198TFTXbtxqNgLDOApIe8zoxvyySTDjrHDdNCVc/dtBEiOcY7d/Ze3rrXWr 8tJ2BewBPEXuDzHfqaywK+XcFbw3kBPiodGmIwBKs6RVorQf108= -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:11 2026 by rpki-client