$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft File: 1952B074D19D5AB562D7EE537AD3059EA097353B.mft (raw, json) Hash identifier: TQmypRcjtuuPjPDm5ZKH3+P74c2p74i+u+aN9s/Jjzc= Subject key identifier: 03:4A:AC:15:FE:0C:53:22:33:62:6E:76:C7:0C:61:8F:0F:A9:D6:51 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 05A79DD0439A42900BB88026F499E4669DAF10D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft Manifest number: 025D Signing time: Thu 26 Mar 2026 13:51:50 +0000 Manifest this update: Thu 26 Mar 2026 13:46:50 +0000 Manifest next update: Mon 30 Mar 2026 01:25:50 +0000 Files and hashes: 1: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (hash: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg=) 2: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (hash: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E=) 3: 323430363a616563303a613a3a2f34382d3438203d3e20313431363735.roa (hash: Ty7LXGWFu77417YzD9LySsWN2AIJ4KwCcp3kNzWJAIM=) 4: 1952B074D19D5AB562D7EE537AD3059EA097353B.crl (hash: Ms5dldFpRur/mZJzFBHwdb9PgpnDH+rTvXaDryU26GA=) 5: 3130332e3135382e32362e302f32342d3234203d3e20313431363735.roa (hash: ykRWiMSaAsP4Z39Whyu3kvlehUT+9RaQnqBPMyF4FR0=) 6: 323430363a616563303a633a3a2f34382d3438203d3e20313431363735.roa (hash: mPh7GdsHOCij5+t8LRe0pT3jX8ibPd0uc3fcqsjEKco=) 7: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (hash: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA=) 8: 323430363a616563303a623a3a2f34382d3438203d3e20313431363735.roa (hash: D0b7YQ9CGnuoR/guzqV8sUGQy2lE5KoINh6LVHdhIG8=) 9: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (hash: AS7ErBWYOh3ltpqaacXCmV2CVPom+cE/4rFVdqtAK+c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a7:9d:d0:43:9a:42:90:0b:b8:80:26:f4:99:e4:66:9d:af:10:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Mar 26 13:46:50 2026 GMT Not After : Mar 30 01:25:50 2026 GMT Subject: CN=034AAC15FE0C532233626E76C70C618F0FA9D651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e5:3e:e5:3b:69:38:ef:cf:be:66:1e:72:2e: 6e:3a:b6:1e:76:b9:88:45:80:31:7d:82:30:c6:ed: 82:ad:13:44:7c:06:8a:8b:20:ee:9c:df:a8:d3:47: 67:b9:51:bc:e9:ae:ab:22:76:22:2a:2f:99:35:83: 54:27:03:14:13:d8:ef:4b:1a:ce:ca:5e:d8:be:a8: d7:b4:15:0d:14:a0:0b:09:9b:6e:44:40:fc:7a:ce: 83:d6:2c:c0:5d:96:ad:fe:97:50:6d:19:00:73:32: d7:ca:95:9c:a3:ab:84:d5:41:fe:39:5e:56:68:f5: c7:1b:80:57:bb:e5:a8:15:f1:b1:59:60:fe:4a:e6: a9:e9:63:77:02:61:fa:0e:b7:5f:d5:64:42:6f:e9: 08:d7:cc:ca:93:30:8c:16:87:3b:7b:cd:9b:06:5a: d8:05:82:d4:60:8e:29:ed:73:e8:a8:e0:0a:e8:5e: 31:4f:3a:c4:f3:2c:94:84:54:66:30:d7:a5:64:f9: 35:d3:be:b8:f6:89:15:ea:2f:c6:49:f5:fa:12:bb: 68:f7:d0:06:01:75:19:32:f2:d0:7b:66:bd:aa:3a: d7:c1:e1:df:e1:6a:36:1f:1a:60:a5:d7:4e:d2:5f: 0c:f3:dc:07:fa:dc:76:44:30:1b:97:2d:43:88:07: 84:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4A:AC:15:FE:0C:53:22:33:62:6E:76:C7:0C:61:8F:0F:A9:D6:51 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:22:9c:26:e4:05:5b:55:04:d1:9b:78:9f:3f:cb:d6:c8:0a: 1c:7f:2a:09:67:9c:69:84:6b:e9:e5:8a:3e:3d:1d:d0:48:af: 2c:db:f6:7b:17:18:f1:ef:8d:11:80:9f:ba:b1:31:80:3c:5a: e7:88:14:c8:48:bf:59:59:d6:10:5b:11:a3:b4:b6:37:72:88: 5b:50:c9:5a:29:c1:06:be:7b:07:56:ce:bf:95:d5:03:4c:7c: 2c:7c:17:c9:4c:9b:e4:9c:72:3c:f2:d4:57:13:15:87:b0:1e: b7:51:77:f5:8b:4f:f7:04:40:2f:09:75:9b:62:6d:3c:1b:4a: 89:1d:61:66:d6:3f:06:b4:a7:0a:19:31:9a:4b:28:49:0f:2a: 0e:58:a5:5f:8a:c1:66:39:3e:3d:c0:51:a6:6f:59:05:b3:19: df:b9:8f:c0:d8:83:1a:49:f4:b4:e6:a3:db:01:ac:94:3c:47: 78:11:02:42:23:8c:c5:51:d8:95:a7:29:d9:1f:94:a8:fb:29: fa:59:de:f3:1e:8e:ca:8e:29:be:83:e7:64:ad:fe:72:0b:2e: d1:85:7e:58:3a:37:76:5c:e0:62:78:15:76:ad:1b:90:e9:20: 15:87:c9:24:a1:d3:75:2c:d6:e3:68:ce:e9:9a:1b:83:3c:82: e8:01:fd:3a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBaed0EOaQpALuIAm9JnkZp2vENcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNjAzMjYxMzQ2NTBaFw0yNjAzMzAwMTI1NTBaMDMxMTAvBgNV BAMTKDAzNEFBQzE1RkUwQzUzMjIzMzYyNkU3NkM3MEM2MThGMEZBOUQ2NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz5T7lO2k478++Zh5yLm46th52 uYhFgDF9gjDG7YKtE0R8BoqLIO6c36jTR2e5UbzprqsidiIqL5k1g1QnAxQT2O9L Gs7KXti+qNe0FQ0UoAsJm25EQPx6zoPWLMBdlq3+l1BtGQBzMtfKlZyjq4TVQf45 XlZo9ccbgFe75agV8bFZYP5K5qnpY3cCYfoOt1/VZEJv6QjXzMqTMIwWhzt7zZsG WtgFgtRgjintc+io4AroXjFPOsTzLJSEVGYw16Vk+TXTvrj2iRXqL8ZJ9foSu2j3 0AYBdRky8tB7Zr2qOtfB4d/hajYfGmCl107SXwzz3Af63HZEMBuXLUOIB4RpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUA0qsFf4MUyIzYm52xwxhjw+p1lEwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDRmMmMwMjUtMWQ3Ni00YTM2LTgx NjAtYTllOGFmZTM1NzlmLzAvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1 OUVBMDk3MzUzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIIinCbkBVtVBNGbeJ8/y9bIChx/KglnnGmE a+nlij49HdBIryzb9nsXGPHvjRGAn7qxMYA8WueIFMhIv1lZ1hBbEaO0tjdyiFtQ yVopwQa+ewdWzr+V1QNMfCx8F8lMm+Sccjzy1FcTFYewHrdRd/WLT/cEQC8JdZti bTwbSokdYWbWPwa0pwoZMZpLKEkPKg5YpV+KwWY5Pj3AUaZvWQWzGd+5j8DYgxpJ 9LTmo9sBrJQ8R3gRAkIjjMVR2JWnKdkflKj7KfpZ3vMejsqOKb6D52St/nILLtGF flg6N3Zc4GJ4FXatG5DpIBWHySSh03Us1uNozumaG4M8gugB/To= -----END CERTIFICATE-----Generated at Thu Mar 26 16:56:21 2026 by rpki-client