$ rpki-client -vvf repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft File: CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft (raw, json) Hash identifier: eyFWIur/ntUPQzvknTA9oa1DrHERw739L3M+EJV83gw= Subject key identifier: 54:6C:BB:24:93:F9:EC:FB:C0:D4:B8:D6:B6:E0:38:C9:24:EA:6E:B3 Authority key identifier: CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 Certificate issuer: /CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Certificate serial: 15176A543B7A9AC0B720E406F7EE4C13937DAD45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft Manifest number: 01E2 Signing time: Wed 25 Mar 2026 21:41:16 +0000 Manifest this update: Wed 25 Mar 2026 21:36:16 +0000 Manifest next update: Sat 28 Mar 2026 22:50:16 +0000 Files and hashes: 1: 3130332e3133322e34302e302f32342d3234203d3e20313530393730.roa (hash: qHXQ3QdEStqD3uKNvFn/PgcoJYTH2F/sc5gVhh/RXSU=) 2: CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl (hash: mUIRCmUu8Y4rUqFtC5P8qrs+QMh/uT83LNPq8v7eyq0=) 3: 3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa (hash: CRwU0L1ssLkMhvFPkriFbIaLrVr0CAOnZXuoJx/zYFU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:17:6a:54:3b:7a:9a:c0:b7:20:e4:06:f7:ee:4c:13:93:7d:ad:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Validity Not Before: Mar 25 21:36:16 2026 GMT Not After : Mar 28 22:50:16 2026 GMT Subject: CN=546CBB2493F9ECFBC0D4B8D6B6E038C924EA6EB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:a1:22:96:ec:ae:9e:07:50:c6:22:87:96: 90:54:d1:ec:5b:26:79:9c:e4:a6:ad:51:12:46:41: 17:99:df:8b:de:da:37:82:8a:25:cc:03:5c:80:02: c6:42:4c:89:7c:22:b2:21:38:8c:91:eb:b0:33:59: a5:61:ac:e4:73:b1:3f:db:b9:4f:f0:9b:05:df:b3: 07:a7:7e:84:02:25:eb:19:6d:5f:2a:ed:aa:7a:8c: af:30:3f:90:39:6a:65:20:69:42:b0:5c:e7:29:c8: 29:1b:c8:c3:e2:ad:1b:af:2b:44:de:bb:dc:0e:64: e9:2f:ab:72:71:5a:9b:e2:00:0c:97:48:39:4c:8f: d9:bb:3f:9c:86:21:fd:39:49:a5:9d:2a:9c:b5:d3: b5:e6:46:9f:bf:43:04:f5:38:6e:ff:9f:cc:81:19: 5a:7c:e3:b2:34:00:aa:0f:ee:78:e6:03:ee:0c:0f: f1:16:6b:10:bf:ae:ec:dd:e2:72:d0:57:3e:dd:5f: 44:32:15:4c:2b:88:28:17:2e:96:ca:b0:2c:5c:79: 93:93:84:0d:4d:c1:a1:01:fc:48:ef:c9:b7:b3:89: 04:bc:b8:cb:ad:f3:70:b5:e7:71:fb:4d:b0:17:64: 4b:e1:42:48:a3:62:c2:cc:5a:3b:3a:34:a6:87:fa: 91:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:6C:BB:24:93:F9:EC:FB:C0:D4:B8:D6:B6:E0:38:C9:24:EA:6E:B3 X509v3 Authority Key Identifier: keyid:CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:4c:4f:e4:00:4e:1f:ea:d2:36:fe:09:e1:e2:b6:bf:f7:7e: 2f:39:d6:12:3f:20:7a:dc:c5:27:41:59:8e:5f:4e:6d:1d:e6: 3a:65:cb:ea:fb:6c:fa:4b:eb:a3:bd:ad:56:95:c0:32:e2:2f: ce:bd:58:97:15:dc:96:18:93:03:e5:7a:97:62:c1:33:20:f0: d1:0d:b3:59:cf:d0:6a:a5:5d:43:7c:84:50:dd:fc:4e:9c:fa: a3:a3:07:e3:89:f5:16:27:96:1e:a6:48:59:d0:97:fe:63:8d: f7:60:47:4c:58:7b:a9:2b:77:e8:2c:13:1f:47:3e:8e:a9:f0: af:5a:45:25:74:02:3d:b7:39:15:94:7a:d9:ba:5b:88:20:e7: d7:17:b4:15:79:f4:31:1a:75:dc:86:c8:d5:2d:eb:00:b2:63: ee:28:49:31:d4:01:40:b3:50:20:93:d2:c7:58:a2:2e:4a:ea: 37:55:4c:95:33:b8:95:f8:31:3e:a3:da:f8:e7:1f:e9:ff:5a: 9a:de:6e:d8:b2:cc:39:0f:df:37:68:c1:df:b2:d5:79:a6:3d: 46:e4:bf:4b:16:a7:b4:5a:4d:6d:85:72:1f:8e:86:23:d2:d7: 60:df:7b:2a:f3:ba:a1:f2:d9:0b:62:24:66:a4:24:0c:c8:67: 20:76:d4:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFRdqVDt6msC3IOQG9+5ME5N9rUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJE MkYwRUI4NTAeFw0yNjAzMjUyMTM2MTZaFw0yNjAzMjgyMjUwMTZaMDMxMTAvBgNV BAMTKDU0NkNCQjI0OTNGOUVDRkJDMEQ0QjhENkI2RTAzOEM5MjRFQTZFQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/DqEiluyungdQxiKHlpBU0exb Jnmc5KatURJGQReZ34ve2jeCiiXMA1yAAsZCTIl8IrIhOIyR67AzWaVhrORzsT/b uU/wmwXfswenfoQCJesZbV8q7ap6jK8wP5A5amUgaUKwXOcpyCkbyMPirRuvK0Te u9wOZOkvq3JxWpviAAyXSDlMj9m7P5yGIf05SaWdKpy107XmRp+/QwT1OG7/n8yB GVp847I0AKoP7njmA+4MD/EWaxC/ruzd4nLQVz7dX0QyFUwriCgXLpbKsCxceZOT hA1NwaEB/EjvybeziQS8uMut83C153H7TbAXZEvhQkijYsLMWjs6NKaH+pHNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVGy7JJP57PvA1LjWtuA4ySTqbrMwHwYDVR0j BBgwFoAUy5ZiczFTwC5MQRt9LyueItLw64UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGYyZmZkYS0wNWQxLTQwODUtYTEzNS0wMzk4N2EwN2YzOWUvMC9DQjk2NjI3MzMx NTNDMDJFNEM0MTFCN0QyRjJCOUUyMkQyRjBFQjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJEMkYw RUI4NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGRmMmZmZGEtMDVkMS00MDg1LWEx MzUtMDM5ODdhMDdmMzllLzAvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlF MjJEMkYwRUI4NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpMT+QATh/q0jb+CeHitr/3fi851hI/IHrc xSdBWY5fTm0d5jply+r7bPpL66O9rVaVwDLiL869WJcV3JYYkwPlepdiwTMg8NEN s1nP0GqlXUN8hFDd/E6c+qOjB+OJ9RYnlh6mSFnQl/5jjfdgR0xYe6krd+gsEx9H Po6p8K9aRSV0Aj23ORWUetm6W4gg59cXtBV59DEaddyGyNUt6wCyY+4oSTHUAUCz UCCT0sdYoi5K6jdVTJUzuJX4MT6j2vjnH+n/WprebtiyzDkP3zdowd+y1XmmPUbk v0sWp7RaTW2Fch+OhiPS12DfeyrzuqHy2QtiJGakJAzIZyB21Ls= -----END CERTIFICATE-----Generated at Thu Mar 26 08:54:55 2026 by rpki-client