$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: LsSd7VEt+gyOGUtjERdz75M1kx1ic13z+I/IG8GuC08= Subject key identifier: CE:39:E9:89:DE:5C:CB:D7:97:04:86:29:D6:DF:14:23:67:52:AB:26 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 03768FF12F3FAF96EA77C9DF7FB95894617BC6AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: D9 Signing time: Tue 24 Mar 2026 07:41:19 +0000 Manifest this update: Tue 24 Mar 2026 07:36:19 +0000 Manifest next update: Fri 27 Mar 2026 18:30:19 +0000 Files and hashes: 1: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: E4Gvpo5D/NeUbbz+zUDpV78niTppp2APH+i1gYLD2PM=) 2: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: ZH3ysWinAYpBQ8LW3s6lLo7NDyMkNJ7uLxTgNK/hSHs=) 3: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: E7LmVcTtrOc0QLca3OKgAjrGPUq24WcKvpibpJhqwMo=) 4: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: /bOtG6Hq4cCxQBrZ1Nbmvs+Hrm8cpxmM7Q2j13q5aYY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 18:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:76:8f:f1:2f:3f:af:96:ea:77:c9:df:7f:b9:58:94:61:7b:c6:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Mar 24 07:36:19 2026 GMT Not After : Mar 27 18:30:19 2026 GMT Subject: CN=CE39E989DE5CCBD797048629D6DF14236752AB26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6a:9e:1a:f5:aa:be:83:53:75:bf:93:86:d2: 10:2c:2b:3f:92:b6:77:bb:8a:7a:26:d7:38:fd:eb: 35:30:6a:48:cf:e6:d6:d2:29:77:0b:b3:46:37:9f: 53:d6:fd:91:f1:09:da:81:88:dd:e4:80:1d:6b:16: df:bf:63:bd:bf:62:25:d3:18:e7:a6:b2:9c:e2:78: ba:af:3f:30:79:5d:d2:eb:6b:74:d5:79:05:51:ac: c4:05:33:00:fc:ca:f3:42:ae:a7:32:9d:d1:ad:1b: 36:cc:ab:71:95:1f:12:9b:c5:1a:0e:00:e0:fa:8d: 85:79:e4:e7:b2:d1:65:0b:02:b3:e6:d3:ff:43:d7: 33:93:c6:52:ba:f7:7d:00:d4:b8:99:0f:04:83:ba: 81:c7:dc:f5:d9:04:2b:7c:49:54:99:2b:50:5c:25: eb:54:d6:d1:89:9e:1e:4b:4c:99:b0:76:4c:69:a4: ac:bc:80:9f:42:1c:f7:86:1c:41:8d:30:c6:d5:c5: fe:7d:49:00:c9:77:d8:5b:c9:ca:20:13:5c:7d:7b: 28:b5:11:b3:c3:30:fa:91:d8:af:c6:fe:29:79:f8: f4:00:d6:49:17:04:3f:04:f7:c2:ad:20:b9:94:75: 89:89:de:ff:48:d1:ea:c9:0d:75:f5:f8:58:bf:b0: 3c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:39:E9:89:DE:5C:CB:D7:97:04:86:29:D6:DF:14:23:67:52:AB:26 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:09:f6:6f:e5:34:1a:89:2b:53:55:3b:88:6d:0b:e1:f3:b0: 23:0f:46:ff:29:be:d7:15:69:90:8a:c9:53:54:f2:92:4c:f5: 48:88:0e:76:b3:34:23:b8:3f:08:db:bc:9c:31:6b:76:af:8d: 1a:53:b2:68:70:fb:d5:bf:8c:6e:41:5b:01:17:1f:86:e2:d6: 03:0c:f6:39:15:5f:78:1e:70:68:90:46:f9:fc:49:af:5a:cc: 9c:c6:57:e0:11:0a:0f:13:6c:4b:24:f5:d2:e1:2c:9a:7c:da: 38:ac:5f:2a:d3:f4:11:d6:af:5c:9c:c9:0f:d2:03:aa:4f:77: 03:46:57:1e:6c:df:ef:ab:f3:f1:30:85:ed:2a:ed:1a:ff:42: 51:7f:3b:c9:3f:cd:fd:47:87:ce:b2:42:4d:f0:a9:20:c6:82: 07:68:5f:ac:aa:67:96:bf:43:82:9a:24:1b:c6:71:d7:37:c3: 78:ce:de:30:d6:3e:7c:9c:dc:db:27:8f:a7:ed:9d:d4:ac:5f: 40:8a:1c:a5:10:0e:87:85:ec:71:55:26:b2:7b:86:3d:14:81: 80:1d:0c:df:b2:77:3c:4a:4b:0e:29:0a:f4:f1:d0:fd:8d:08: 2e:b6:ff:f7:77:b5:ba:13:02:ed:0c:c5:64:8b:60:23:af:e4: 8d:d1:3d:1a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUA3aP8S8/r5bqd8nff7lYlGF7xq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNjAzMjQwNzM2MTlaFw0yNjAzMjcxODMwMTlaMDMxMTAvBgNV BAMTKENFMzlFOTg5REU1Q0NCRDc5NzA0ODYyOUQ2REYxNDIzNjc1MkFCMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBap4a9aq+g1N1v5OG0hAsKz+S tne7inom1zj96zUwakjP5tbSKXcLs0Y3n1PW/ZHxCdqBiN3kgB1rFt+/Y72/YiXT GOemspzieLqvPzB5XdLra3TVeQVRrMQFMwD8yvNCrqcyndGtGzbMq3GVHxKbxRoO AOD6jYV55Oey0WULArPm0/9D1zOTxlK6930A1LiZDwSDuoHH3PXZBCt8SVSZK1Bc JetU1tGJnh5LTJmwdkxppKy8gJ9CHPeGHEGNMMbVxf59SQDJd9hbycogE1x9eyi1 EbPDMPqR2K/G/il5+PQA1kkXBD8E98KtILmUdYmJ3v9I0erJDXX1+Fi/sDwlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzjnpid5cy9eXBIYp1t8UI2dSqyYwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKsJ9m/lNBqJK1NVO4htC+HzsCMPRv8pvtcV aZCKyVNU8pJM9UiIDnazNCO4PwjbvJwxa3avjRpTsmhw+9W/jG5BWwEXH4bi1gMM 9jkVX3gecGiQRvn8Sa9azJzGV+ARCg8TbEsk9dLhLJp82jisXyrT9BHWr1ycyQ/S A6pPdwNGVx5s3++r8/Ewhe0q7Rr/QlF/O8k/zf1Hh86yQk3wqSDGggdoX6yqZ5a/ Q4KaJBvGcdc3w3jO3jDWPnyc3Nsnj6ftndSsX0CKHKUQDoeF7HFVJrJ7hj0UgYAd DN+ydzxKSw4pCvTx0P2NCC62//d3tboTAu0MxWSLYCOv5I3RPRo= -----END CERTIFICATE-----Generated at Thu Mar 26 20:47:27 2026 by rpki-client