$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: HIuGNGv+k+zgur57/kMM43xBQ8l46Gx7IZGTVWzgyuk= Subject key identifier: 3F:8B:6D:4D:7B:B4:96:67:E7:6A:D4:0D:15:B4:CB:BB:12:4D:81:AC Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 7F632B41EDED9DD75E184E3B1C5CF6A6401AC7DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 02BA Signing time: Thu 26 Mar 2026 10:22:17 +0000 Manifest this update: Thu 26 Mar 2026 10:17:17 +0000 Manifest next update: Sun 29 Mar 2026 10:56:17 +0000 Files and hashes: 1: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: btn366wZk5X/LbhkknHgrSEj+dlkWgK4+w6HiC3XS9g=) 2: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: kzF5yTng2nsAricqtS3yvK+w9DfNlAwfQFzAL4v5DWA=) 3: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: t1OWN6gm90SvImzwws28CQ53gTfOaLXKxfqrgXh94Y4=) 4: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: g6JykGSCyvPJN6suwP4pksfv3CU4McJpDF6g+WQNj7o=) 5: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: mkYIFZYx4d0/cIAZy1+c0yjUX/D1gvzA3zbfyHKddvs=) 6: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: 2PpG67/Hif4l3pFwRCwEQ7HNcb5HgHsPLTC3ZJMlI9c=) 7: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: Sm06GHSoPRIPv6XD1gNPg1K9/gWUKXeN37Yf09pVMC8=) 8: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 9: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: FyCE3LyMNMrGnPbdrpK5+sH4y62xX8bxVpZUT6w7BJU=) 10: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: G0y3tssGsefR1ItOMtc1BYHuZ0hgATuC18s9snklT+E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 10:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:63:2b:41:ed:ed:9d:d7:5e:18:4e:3b:1c:5c:f6:a6:40:1a:c7:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Mar 26 10:17:17 2026 GMT Not After : Mar 29 10:56:17 2026 GMT Subject: CN=3F8B6D4D7BB49667E76AD40D15B4CBBB124D81AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:1e:61:f8:87:fc:29:41:3d:26:6d:ff:ec: b2:35:96:34:1f:c8:1f:5f:f2:2c:c7:4b:72:77:46: 7e:e1:ec:d2:7a:93:dc:8d:95:c0:f5:8f:fd:0f:4d: ea:71:7a:12:e2:3d:e3:43:80:1c:22:02:8c:38:6a: 64:a8:b5:f4:a7:dc:c2:6e:e5:65:47:37:1d:53:1e: e8:af:d2:d5:63:31:d9:0c:d0:70:84:1e:30:0c:80: 64:90:08:6b:38:29:c5:dd:86:5e:9b:60:cd:c2:d9: 0b:ab:32:8d:31:ba:21:ce:4c:30:26:64:20:77:48: 78:e2:06:ea:63:13:9a:6a:e1:de:1e:e4:f3:80:90: 81:fc:cf:a5:95:e2:c0:37:5e:a2:4b:e5:4b:81:0e: 20:a0:ff:95:8a:90:83:76:71:63:c2:11:45:f9:c3: 25:84:5b:b1:0f:0a:c2:90:84:ad:a4:83:4d:d2:95: 72:c7:7a:de:2e:2c:5a:00:b3:dd:d4:09:7d:cc:cf: c2:29:3b:8f:f7:c2:84:bb:40:90:f4:c2:72:c2:17: 7f:de:3c:30:78:09:a3:4f:10:4e:c7:1e:d5:b1:b4: 12:11:7b:14:be:51:55:c0:c9:53:fa:11:35:a6:b6: 95:9a:d7:d8:8d:c5:20:27:8b:78:6d:ab:82:0d:1b: b0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:8B:6D:4D:7B:B4:96:67:E7:6A:D4:0D:15:B4:CB:BB:12:4D:81:AC X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:43:c9:15:3b:82:89:0b:04:64:9a:77:41:52:ce:95:0f:07: 17:63:0e:c7:7f:95:33:cb:91:e1:d0:43:80:b8:70:35:0d:08: f2:8c:6f:b0:57:ff:70:4e:3d:ab:94:5c:fc:2b:c4:78:b8:2e: bf:ba:75:b1:92:e8:88:f7:cc:c6:20:83:72:6a:a9:c1:aa:d9: b0:a2:52:79:4b:01:c3:3a:ee:d1:57:18:ba:1b:26:af:9f:3a: 01:cc:04:db:4e:a2:54:df:aa:b4:1b:d0:b3:ad:68:5f:2b:03: 12:03:e8:e2:29:e4:2c:1a:43:d3:36:b6:62:ae:4f:48:c9:9b: 94:b7:b1:57:d9:37:dc:cf:e7:25:f3:65:bb:fc:69:9c:bb:55: 9f:ce:56:b1:7b:b0:b4:0f:8d:e3:76:a1:43:d1:7b:92:0a:79: 5b:ea:54:05:45:54:56:a5:84:af:f8:7f:a1:5f:da:ad:bb:c6: 47:aa:86:9f:15:4c:0e:e8:a0:c3:35:c5:d4:f7:ee:76:ca:e0: 41:7e:eb:dc:18:ec:bb:8a:72:d5:6f:cb:aa:0c:f2:5e:f3:e7: cf:2a:5f:0c:0a:7a:8b:e9:7c:44:ee:1b:ec:e0:3b:5f:97:94: f7:ef:83:bd:84:06:42:d2:e9:81:c5:84:fa:8e:13:14:09:72: 89:44:83:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf2MrQe3tnddeGE47HFz2pkAax9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNjAzMjYxMDE3MTdaFw0yNjAzMjkxMDU2MTdaMDMxMTAvBgNV BAMTKDNGOEI2RDREN0JCNDk2NjdFNzZBRDQwRDE1QjRDQkJCMTI0RDgxQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC75B5h+If8KUE9Jm3/7LI1ljQf yB9f8izHS3J3Rn7h7NJ6k9yNlcD1j/0PTepxehLiPeNDgBwiAow4amSotfSn3MJu 5WVHNx1THuiv0tVjMdkM0HCEHjAMgGSQCGs4KcXdhl6bYM3C2QurMo0xuiHOTDAm ZCB3SHjiBupjE5pq4d4e5POAkIH8z6WV4sA3XqJL5UuBDiCg/5WKkIN2cWPCEUX5 wyWEW7EPCsKQhK2kg03SlXLHet4uLFoAs93UCX3Mz8IpO4/3woS7QJD0wnLCF3/e PDB4CaNPEE7HHtWxtBIRexS+UVXAyVP6ETWmtpWa19iNxSAni3htq4ING7AJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUP4ttTXu0lmfnatQNFbTLuxJNgawwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIpDyRU7gokLBGSad0FSzpUPBxdjDsd/lTPL keHQQ4C4cDUNCPKMb7BX/3BOPauUXPwrxHi4Lr+6dbGS6Ij3zMYgg3JqqcGq2bCi UnlLAcM67tFXGLobJq+fOgHMBNtOolTfqrQb0LOtaF8rAxID6OIp5CwaQ9M2tmKu T0jJm5S3sVfZN9zP5yXzZbv8aZy7VZ/OVrF7sLQPjeN2oUPRe5IKeVvqVAVFVFal hK/4f6Ff2q27xkeqhp8VTA7ooMM1xdT37nbK4EF+69wY7LuKctVvy6oM8l7z588q XwwKeovpfETuG+zgO1+XlPfvg72EBkLS6YHFhPqOExQJcolEg0Q= -----END CERTIFICATE-----Generated at Thu Mar 26 12:23:11 2026 by rpki-client