$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: 3cIN66TTy2PhTNzYorPZIJEBFqe+OMHfU1xKpuhGbn0= Subject key identifier: 3C:66:60:8D:4A:74:BB:E5:31:01:05:BA:DC:73:54:9A:88:A5:96:E5 Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 6A0B8D314249AD7C9AE706E6898944D1D87A1D19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 0273 Signing time: Thu 26 Mar 2026 00:31:56 +0000 Manifest this update: Thu 26 Mar 2026 00:26:56 +0000 Manifest next update: Sun 29 Mar 2026 12:06:56 +0000 Files and hashes: 1: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: UFqCczfDfSBU26j2HGtddqXEL/KhDqfdTkcMXMWtZOw=) 2: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: etKKSveFADWMloWFgv7k4bcqwUD/JCeti3TZy4ckvfE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 12:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:0b:8d:31:42:49:ad:7c:9a:e7:06:e6:89:89:44:d1:d8:7a:1d:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Mar 26 00:26:56 2026 GMT Not After : Mar 29 12:06:56 2026 GMT Subject: CN=3C66608D4A74BBE5310105BADC73549A88A596E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ff:61:65:d2:07:2f:83:51:7a:7a:1f:4d:d3: 03:8f:fd:7a:2d:c5:63:44:a7:d5:7a:14:84:9f:35: 91:48:d0:ea:0f:2e:3a:ac:ee:40:a6:53:1e:69:a7: c0:78:16:46:6e:d1:67:73:8b:96:4b:37:57:8f:ca: 2b:a4:35:2b:bf:95:cb:56:44:3f:9c:0e:98:97:0a: a5:36:34:78:55:4a:1f:ec:73:86:61:b1:38:10:c6: 70:63:34:7b:dc:ca:84:40:09:bb:7f:f1:4a:e0:16: 41:9b:ad:d2:6f:15:32:bf:37:fe:e9:3b:e0:13:19: 1d:53:89:2a:5c:da:db:b7:61:a4:41:1c:c5:07:82: 52:64:fa:96:1d:10:ee:e4:42:3f:6c:51:68:c8:e7: 45:36:e9:28:9a:12:2f:40:ea:58:b3:dc:15:ce:ed: 0a:e8:4c:f7:f5:19:82:df:1c:8e:3a:66:9f:00:1c: f9:65:36:a1:f0:b9:b6:50:33:09:5c:87:93:95:16: 99:1c:4f:bd:e0:d8:cf:90:cc:da:0a:19:9d:e6:e6: 56:f5:5e:73:ba:6e:7b:a9:28:1d:df:11:47:d6:f9: b4:d3:33:a4:7f:55:18:45:67:6b:34:05:91:44:68: db:97:76:b2:dd:b7:07:f7:f7:0a:ed:61:bd:9a:91: ad:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:66:60:8D:4A:74:BB:E5:31:01:05:BA:DC:73:54:9A:88:A5:96:E5 X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:02:2f:89:df:c9:0e:69:07:96:e3:84:f5:4e:45:d2:bf:ef: 3e:16:a4:0c:88:53:9d:59:a4:97:a5:ce:fd:a9:e2:a7:f7:66: 53:a6:6e:7c:08:b9:df:e2:9b:a3:25:1a:4f:85:50:ec:88:9b: e3:60:df:e7:fa:eb:5e:d8:8b:2c:dd:ca:aa:82:d5:20:a8:a5: cd:27:70:2d:82:aa:74:e3:18:ad:d5:e7:ad:42:bc:e3:0a:24: 1a:ed:29:42:a3:8f:e0:f5:3b:3f:72:1e:44:f7:14:81:38:23: 22:5f:4e:99:4c:7b:ef:cd:d2:4a:d2:1d:52:8c:f7:3f:36:3c: 01:42:d5:55:8d:a0:79:d1:33:ea:55:38:15:f0:27:3f:4d:88: 2f:f6:fa:4a:10:8e:5e:ab:46:ff:cc:87:47:c4:57:a8:d0:3f: 66:5e:ba:2b:98:01:67:ba:19:07:98:57:f7:71:1b:ce:7d:71: 8a:90:21:01:62:ae:5b:7f:3a:b0:10:e6:ed:91:74:c7:49:26: e7:d8:a2:29:71:bd:2f:09:1a:42:f6:d7:3b:92:7a:75:33:ce: 65:59:87:77:9d:7a:e1:e0:e3:3d:cc:78:5b:09:1e:bf:d0:36: ea:99:dd:f1:ba:30:07:67:8f:97:d0:f3:00:d1:34:20:fc:4c: d6:75:67:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaguNMUJJrXya5wbmiYlE0dh6HRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNjAzMjYwMDI2NTZaFw0yNjAzMjkxMjA2NTZaMDMxMTAvBgNV BAMTKDNDNjY2MDhENEE3NEJCRTUzMTAxMDVCQURDNzM1NDlBODhBNTk2RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6/2Fl0gcvg1F6eh9N0wOP/Xot xWNEp9V6FISfNZFI0OoPLjqs7kCmUx5pp8B4FkZu0Wdzi5ZLN1ePyiukNSu/lctW RD+cDpiXCqU2NHhVSh/sc4ZhsTgQxnBjNHvcyoRACbt/8UrgFkGbrdJvFTK/N/7p O+ATGR1TiSpc2tu3YaRBHMUHglJk+pYdEO7kQj9sUWjI50U26SiaEi9A6liz3BXO 7QroTPf1GYLfHI46Zp8AHPllNqHwubZQMwlch5OVFpkcT73g2M+QzNoKGZ3m5lb1 XnO6bnupKB3fEUfW+bTTM6R/VRhFZ2s0BZFEaNuXdrLdtwf39wrtYb2aka3lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPGZgjUp0u+UxAQW63HNUmoilluUwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKUCL4nfyQ5pB5bjhPVORdK/7z4WpAyIU51Z pJelzv2p4qf3ZlOmbnwIud/im6MlGk+FUOyIm+Ng3+f6617YiyzdyqqC1SCopc0n cC2CqnTjGK3V561CvOMKJBrtKUKjj+D1Oz9yHkT3FIE4IyJfTplMe+/N0krSHVKM 9z82PAFC1VWNoHnRM+pVOBXwJz9NiC/2+koQjl6rRv/Mh0fEV6jQP2ZeuiuYAWe6 GQeYV/dxG859cYqQIQFirlt/OrAQ5u2RdMdJJufYoilxvS8JGkL21zuSenUzzmVZ h3edeuHg4z3MeFsJHr/QNuqZ3fG6MAdnj5fQ8wDRNCD8TNZ1ZyM= -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:14 2026 by rpki-client