$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft File: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft (raw, json) Hash identifier: cbwUYJfOhOeZAyWFi7EApeF7gHfL4AbHxQD6Sl9vX24= Subject key identifier: 0E:7F:9C:18:1E:03:CE:EE:8E:F4:AF:4A:04:6A:88:E7:99:46:44:3D Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 4A0E4811A77F95860C5B15EE20AA9E246489F34A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft Manifest number: 0524 Signing time: Tue 24 Mar 2026 13:21:43 +0000 Manifest this update: Tue 24 Mar 2026 13:16:43 +0000 Manifest next update: Fri 27 Mar 2026 18:02:43 +0000 Files and hashes: 1: 3130332e3133382e3132372e302f32342d3234203d3e20313338383531.roa (hash: 8uluz9oQUOC33A/yP5J6qEWwFa5BN6LUXooNJ8KA6Pw=) 2: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (hash: z4oYCZWDew+XBZrkivYPBIEa8esU/2et9t2LDZPakkY=) 3: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl (hash: lvHbb1Zep2nCH0p0o01KqiWK21IA8ABQKCTXaLzx6to=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 18:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:0e:48:11:a7:7f:95:86:0c:5b:15:ee:20:aa:9e:24:64:89:f3:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Mar 24 13:16:43 2026 GMT Not After : Mar 27 18:02:43 2026 GMT Subject: CN=0E7F9C181E03CEEE8EF4AF4A046A88E79946443D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:49:54:6e:3e:51:11:bf:5b:af:09:d0:3b:5a: 00:79:b0:3b:4c:23:6d:86:8c:ae:0a:d6:48:19:0a: 6e:65:02:de:bc:f8:4d:0f:7c:ca:f8:bd:8f:4b:34: 1a:94:02:a9:c7:e3:92:57:ff:84:b8:78:07:67:da: 86:a8:9d:d5:d8:c6:97:ac:86:04:5a:20:c6:43:6a: eb:ad:80:ad:d9:10:32:c5:e1:c7:c7:f1:de:8e:9c: 4f:23:15:fd:fd:41:1b:e6:4f:8f:df:76:e3:43:a3: 6c:36:2f:36:46:bc:a8:03:65:2a:f4:94:65:c5:28: 3f:4c:56:23:ae:52:36:5e:d9:67:bc:ae:da:9c:2a: ae:f0:c5:f7:d6:6d:8c:80:cc:f8:69:28:82:81:75: 74:9d:41:8f:f2:bf:14:ac:d4:e4:2c:f7:1f:0f:76: cd:a1:56:b6:83:0b:aa:b3:7e:e1:17:34:c9:2d:ae: a8:f9:b7:ac:e8:17:37:ab:aa:6e:2e:61:09:ea:ba: eb:14:8f:ed:b5:0e:5d:5d:ec:14:e2:aa:d8:aa:b1: fc:f7:de:8c:47:e6:d7:fe:36:c7:46:ef:f7:55:15: c4:34:b6:48:f5:ae:f7:bc:32:39:2b:e6:ae:6e:46: f2:00:c3:f9:6a:b2:bb:88:a6:23:43:b8:1b:e7:61: 4f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:7F:9C:18:1E:03:CE:EE:8E:F4:AF:4A:04:6A:88:E7:99:46:44:3D X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:09:d7:ac:ca:e8:ee:8d:e3:ac:7b:62:b3:8e:83:e1:c5:e0: 54:d6:ba:7d:87:73:4b:64:d1:e1:be:f8:7e:64:ac:e7:19:9e: ba:63:4b:da:ce:30:b4:17:5d:c4:14:d7:e0:2f:d8:94:f4:c2: fb:18:02:26:96:1a:7c:29:f5:54:95:20:3c:19:d4:34:ee:be: 24:63:3e:ea:e2:b2:83:df:33:5c:92:d8:4f:94:ff:ef:5e:ed: ff:d6:e3:c0:30:94:0d:2b:77:3e:9f:f4:3b:43:26:a4:c9:91: 50:9c:ba:17:56:65:9e:53:ef:92:3b:21:03:4a:ab:52:22:cc: 19:18:f7:85:22:99:13:c1:aa:ae:df:68:1d:42:24:a0:7b:31: e5:cc:db:59:e7:7b:b9:b0:0c:18:94:48:ad:51:70:d1:b8:94: 6e:c4:ce:53:e7:ce:fa:20:c8:ef:f6:ad:5d:4d:78:86:01:bb: 90:5c:fb:21:19:c2:c2:3f:33:3d:d0:05:bd:31:1b:c3:26:66: dc:01:8e:ef:2b:bd:b9:3e:0c:bf:a3:10:a6:d5:ab:e9:3a:54: ca:ef:a0:fd:7d:6a:6b:ec:6d:05:af:a1:2d:cd:ff:9d:de:42: 37:43:48:4f:06:49:23:63:76:47:12:73:b6:f1:ca:0c:db:b7: 5c:02:0c:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSg5IEad/lYYMWxXuIKqeJGSJ80owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yNjAzMjQxMzE2NDNaFw0yNjAzMjcxODAyNDNaMDMxMTAvBgNV BAMTKDBFN0Y5QzE4MUUwM0NFRUU4RUY0QUY0QTA0NkE4OEU3OTk0NjQ0M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+SVRuPlERv1uvCdA7WgB5sDtM I22GjK4K1kgZCm5lAt68+E0PfMr4vY9LNBqUAqnH45JX/4S4eAdn2oaondXYxpes hgRaIMZDauutgK3ZEDLF4cfH8d6OnE8jFf39QRvmT4/fduNDo2w2LzZGvKgDZSr0 lGXFKD9MViOuUjZe2We8rtqcKq7wxffWbYyAzPhpKIKBdXSdQY/yvxSs1OQs9x8P ds2hVraDC6qzfuEXNMktrqj5t6zoFzerqm4uYQnquusUj+21Dl1d7BTiqtiqsfz3 3oxH5tf+NsdG7/dVFcQ0tkj1rve8Mjkr5q5uRvIAw/lqsruIpiNDuBvnYU8bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDn+cGB4Dzu6O9K9KBGqI55lGRD0wHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmMwNzJkYjctMDEyNy00NTY0LThk MjAtYmNlZDUyNWExNGI4LzAvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRB NEIwM0Q1MzVERi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGcJ16zK6O6N46x7YrOOg+HF4FTWun2Hc0tk 0eG++H5krOcZnrpjS9rOMLQXXcQU1+Av2JT0wvsYAiaWGnwp9VSVIDwZ1DTuviRj PurisoPfM1yS2E+U/+9e7f/W48AwlA0rdz6f9DtDJqTJkVCcuhdWZZ5T75I7IQNK q1IizBkY94UimRPBqq7faB1CJKB7MeXM21nne7mwDBiUSK1RcNG4lG7EzlPnzvog yO/2rV1NeIYBu5Bc+yEZwsI/Mz3QBb0xG8MmZtwBju8rvbk+DL+jEKbVq+k6VMrv oP19amvsbQWvoS3N/53eQjdDSE8GSSNjdkcSc7bxygzbt1wCDHk= -----END CERTIFICATE-----Generated at Thu Mar 26 15:18:59 2026 by rpki-client