$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft (raw, json) Hash identifier: A/FPXltfDZ/C3k/Fi6yk3KROXMX/gvsVGupZojjPLcc= Subject key identifier: 8A:97:42:FC:20:17:11:DC:2D:89:53:3D:AB:6A:2C:34:41:A7:02:64 Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 785FB458C4B3DBF3821244874E8E49FC192A72EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft Manifest number: 024D Signing time: Thu 26 Mar 2026 13:01:36 +0000 Manifest this update: Thu 26 Mar 2026 12:56:36 +0000 Manifest next update: Sun 29 Mar 2026 19:59:36 +0000 Files and hashes: 1: 3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa (hash: RK/lRgQFYGeXg6Bzk3ovyOFZdgVFVtKMAYe3R6PnsZs=) 2: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (hash: uL3SdGViVTN4twtj5fvseawDw7MHu5q6qt8dKfGSkqk=) 3: 3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa (hash: cqOcJAZKbrP9HYe2ShHrvgf1/zKk7TB83EYec3+QDIo=) 4: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl (hash: TdMUJPyFUWnhWd6R4waSpD8zdD1hrWgxYag1vb/LhNM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 19:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:5f:b4:58:c4:b3:db:f3:82:12:44:87:4e:8e:49:fc:19:2a:72:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Mar 26 12:56:36 2026 GMT Not After : Mar 29 19:59:36 2026 GMT Subject: CN=8A9742FC201711DC2D89533DAB6A2C3441A70264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:08:47:b9:9f:fc:ac:25:b4:48:32:5d:a2:4d: 88:5d:86:80:8f:29:6f:62:97:fb:15:90:48:17:1a: 57:d2:e6:40:9c:51:17:f6:8c:eb:bc:35:64:3a:54: ae:cc:b7:01:2a:7a:16:51:40:68:1d:39:45:78:5b: cf:68:7a:32:c1:2e:34:ed:c6:77:2d:73:7d:93:bc: 3a:c1:fd:c4:21:5c:8d:3d:82:9e:b4:a8:df:95:7c: 11:d0:dc:5b:12:aa:61:5c:9f:ed:9e:3f:e8:64:85: 7e:9f:01:44:33:64:b5:b7:57:43:6b:65:e5:e6:35: 83:d0:1c:b2:f4:72:51:c6:32:90:c4:66:22:c0:f8: 5d:22:c6:1a:9e:90:24:4e:b3:b1:22:c5:7a:1c:03: a7:36:10:56:f5:62:bc:c6:6b:6d:00:70:88:dc:f9: 65:8e:75:52:42:56:08:15:c2:de:84:85:5d:e9:58: b1:74:7f:64:80:16:11:b5:83:db:af:83:9f:43:4e: 0c:eb:e3:c4:82:75:db:c1:df:7b:ba:c1:b3:e6:8c: 13:3e:c8:c7:5d:d0:a7:e9:7b:2a:eb:f0:aa:a8:25: 12:b2:a7:c6:3a:98:c5:47:7b:49:d6:c7:be:71:06: 38:b3:a5:88:9f:60:ee:44:db:30:0a:51:99:2c:7d: 47:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:97:42:FC:20:17:11:DC:2D:89:53:3D:AB:6A:2C:34:41:A7:02:64 X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:95:df:a3:98:f8:5e:5f:13:67:1e:5d:15:50:46:78:84:fa: 29:e1:25:fa:8a:ce:22:bc:4e:73:01:1d:22:30:98:e8:7c:d4: e9:c2:16:b8:84:9c:c3:d6:91:6e:e1:ea:a6:f2:6c:63:45:1d: 5d:49:5c:a6:f9:fb:78:7f:84:0a:95:8f:24:09:46:84:c4:8b: 0a:ac:64:46:dd:9c:65:03:77:c8:f4:00:b7:cb:64:4f:ca:d5: 95:0d:6c:2c:07:55:14:c6:9d:68:df:61:a2:ae:35:f2:fc:b3: 94:2a:08:d2:28:ff:b7:fb:0d:5c:da:40:2c:e8:2f:ed:08:58: 19:85:b0:3a:b6:6f:97:6a:5c:d4:45:4b:fc:8b:b5:f0:e3:4f: 00:f9:d8:16:23:e1:01:aa:50:21:11:4b:42:9b:4f:94:7d:0b: 8d:c3:fb:2d:39:0d:75:32:23:ad:14:d2:70:32:07:d3:28:49: 6a:09:07:51:7a:79:13:22:90:ce:be:e4:c5:b3:ec:a5:17:16: 33:c0:55:5f:da:97:c5:65:b7:70:ce:e0:40:8d:e6:46:3d:0d: ec:79:5d:27:02:6d:0d:05:74:60:ab:7a:8c:52:8d:86:86:8c: d7:71:f8:ff:57:0f:7f:1d:94:14:d6:d0:c0:8c:0b:9e:92:50: 2b:0b:44:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeF+0WMSz2/OCEkSHTo5J/BkqcuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNjAzMjYxMjU2MzZaFw0yNjAzMjkxOTU5MzZaMDMxMTAvBgNV BAMTKDhBOTc0MkZDMjAxNzExREMyRDg5NTMzREFCNkEyQzM0NDFBNzAyNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/CEe5n/ysJbRIMl2iTYhdhoCP KW9il/sVkEgXGlfS5kCcURf2jOu8NWQ6VK7MtwEqehZRQGgdOUV4W89oejLBLjTt xnctc32TvDrB/cQhXI09gp60qN+VfBHQ3FsSqmFcn+2eP+hkhX6fAUQzZLW3V0Nr ZeXmNYPQHLL0clHGMpDEZiLA+F0ixhqekCROs7EixXocA6c2EFb1YrzGa20AcIjc +WWOdVJCVggVwt6EhV3pWLF0f2SAFhG1g9uvg59DTgzr48SCddvB33u6wbPmjBM+ yMdd0Kfpeyrr8KqoJRKyp8Y6mMVHe0nWx75xBjizpYifYO5E2zAKUZksfUdNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUipdC/CAXEdwtiVM9q2osNEGnAmQwHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjcwMzY5NzQtODEzMS00NWFmLTk0 Y2UtZjQ5YjQ4MTFjMTczLzAvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1 MjJEQzlCODFBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFyV36OY+F5fE2ceXRVQRniE+inhJfqKziK8 TnMBHSIwmOh81OnCFriEnMPWkW7h6qbybGNFHV1JXKb5+3h/hAqVjyQJRoTEiwqs ZEbdnGUDd8j0ALfLZE/K1ZUNbCwHVRTGnWjfYaKuNfL8s5QqCNIo/7f7DVzaQCzo L+0IWBmFsDq2b5dqXNRFS/yLtfDjTwD52BYj4QGqUCERS0KbT5R9C43D+y05DXUy I60U0nAyB9MoSWoJB1F6eRMikM6+5MWz7KUXFjPAVV/al8Vlt3DO4ECN5kY9Dex5 XScCbQ0FdGCreoxSjYaGjNdx+P9XD38dlBTW0MCMC56SUCsLRJs= -----END CERTIFICATE-----Generated at Thu Mar 26 19:50:55 2026 by rpki-client