$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: f4MK1TauAiYp12ObdfdkYALekJJIjDADTRYuvPGn9G0= Subject key identifier: 0D:98:9B:7B:59:9E:5C:51:BC:0B:05:63:38:5E:A7:7C:2D:4B:0B:6E Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 71944060480C0998489DD7E986AB53850BAF1BE7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 04F0 Signing time: Tue 24 Mar 2026 11:41:29 +0000 Manifest this update: Tue 24 Mar 2026 11:36:29 +0000 Manifest next update: Fri 27 Mar 2026 17:44:29 +0000 Files and hashes: 1: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: gUi4DEVY02N7kGelUzmZWOVjWss+0Qm6SrnWURHEAOM=) 2: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: q5CuF5e5qYX8bk7E7KseYjajuExzeTaBW1PNtQOhgkQ=) 3: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: e3tuv4bUE+5sOOhpfdGmGuOFPlroiW0z6wkdn0Eg6vM=) 4: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: j9xUg13KQEtQqrg9g3ERUl0kaedTdjzl5FAcPmtGqCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 17:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:94:40:60:48:0c:09:98:48:9d:d7:e9:86:ab:53:85:0b:af:1b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Mar 24 11:36:29 2026 GMT Not After : Mar 27 17:44:29 2026 GMT Subject: CN=0D989B7B599E5C51BC0B0563385EA77C2D4B0B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:aa:b5:88:32:94:77:b6:8f:f4:7f:ea:c4:d0: b3:f2:c2:8c:24:f9:45:b0:0e:a2:f9:fb:0b:50:74: 14:5b:0d:b7:a9:e1:f4:e3:f9:c6:5b:f1:ed:1f:4c: d2:86:2e:a9:c0:05:88:1b:d3:81:57:7f:11:a0:86: 73:c7:62:32:20:53:ca:48:c9:e9:52:ce:e4:00:f6: d3:e4:43:5e:a8:61:d7:0a:0e:e6:09:fa:70:89:cb: fc:46:06:88:96:e3:c8:f3:24:af:fa:64:cb:a1:76: 3e:c1:1d:ba:7e:b8:b1:f8:3b:49:6f:dc:fb:8b:13: ae:05:48:44:fa:ef:43:ed:86:f4:ba:21:39:1d:f2: 60:fb:7d:f0:8b:f6:e1:5a:c5:85:66:1a:75:0c:12: 89:55:fb:bb:fa:a5:7e:2d:04:18:7f:a3:3f:42:33: 7f:de:01:34:7b:08:ad:e7:a2:84:5e:76:3a:85:4e: 4f:ee:8f:a2:7e:84:ae:9d:41:2d:a2:f4:b0:27:79: b3:b8:05:d9:6f:49:05:86:a1:4f:9f:e3:89:89:fa: 3b:d3:46:51:3f:96:d4:4f:e8:72:3e:9a:60:f1:8c: 63:99:ed:17:0f:24:e2:d4:f2:f2:ef:2c:e9:12:64: ea:90:b6:99:64:fe:58:a0:38:d7:51:0b:9d:52:8b: 19:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:98:9B:7B:59:9E:5C:51:BC:0B:05:63:38:5E:A7:7C:2D:4B:0B:6E X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:90:9e:45:02:2e:4a:e5:e7:3a:b6:cb:a9:6f:03:0c:12:6d: 11:e6:3a:0f:43:bf:e0:ec:c6:6a:4a:c1:ce:2f:41:38:63:b0: ef:8a:51:c5:89:0b:41:18:12:d6:de:4d:c8:dc:68:f0:a8:88: 74:2b:77:95:32:9e:04:1e:05:19:09:d7:33:50:b5:98:b6:bf: 5a:ee:b0:26:bb:49:9b:db:6f:37:8a:a0:29:2e:60:ec:d0:9a: ad:50:7f:af:7d:f6:80:95:8d:80:88:85:e0:6f:b7:f9:3f:44: cc:44:c6:c3:fb:6b:16:a3:5c:c9:0c:78:2e:70:dd:26:6f:ae: ce:59:96:44:61:38:cc:4d:75:1d:6d:12:5b:d1:3c:f2:5f:21: 3b:31:23:01:03:94:96:a7:84:52:81:ca:80:fd:70:dc:6e:1c: e4:78:8b:9c:16:98:8c:f0:0c:4f:bd:7d:d9:ee:50:95:5d:15: 19:e7:0c:b1:f0:cd:84:f7:4d:9b:ca:83:7b:66:cf:91:25:59: e2:8a:04:66:5a:50:bb:09:84:0e:9b:90:3e:b1:fc:9a:01:5e: 73:ee:4d:29:94:c3:5f:4a:22:cf:75:32:6c:e3:9a:97:9b:29: 88:4e:a1:b1:76:6c:7c:d5:50:26:88:89:19:92:b3:32:54:67: ec:5d:53:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcZRAYEgMCZhIndfphqtThQuvG+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNjAzMjQxMTM2MjlaFw0yNjAzMjcxNzQ0MjlaMDMxMTAvBgNV BAMTKDBEOTg5QjdCNTk5RTVDNTFCQzBCMDU2MzM4NUVBNzdDMkQ0QjBCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0qrWIMpR3to/0f+rE0LPywowk +UWwDqL5+wtQdBRbDbep4fTj+cZb8e0fTNKGLqnABYgb04FXfxGghnPHYjIgU8pI yelSzuQA9tPkQ16oYdcKDuYJ+nCJy/xGBoiW48jzJK/6ZMuhdj7BHbp+uLH4O0lv 3PuLE64FSET670PthvS6ITkd8mD7ffCL9uFaxYVmGnUMEolV+7v6pX4tBBh/oz9C M3/eATR7CK3nooRedjqFTk/uj6J+hK6dQS2i9LAnebO4BdlvSQWGoU+f44mJ+jvT RlE/ltRP6HI+mmDxjGOZ7RcPJOLU8vLvLOkSZOqQtplk/ligONdRC51SixnLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDZibe1meXFG8CwVjOF6nfC1LC24wHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE6QnkUCLkrl5zq2y6lvAwwSbRHmOg9Dv+Ds xmpKwc4vQThjsO+KUcWJC0EYEtbeTcjcaPCoiHQrd5UyngQeBRkJ1zNQtZi2v1ru sCa7SZvbbzeKoCkuYOzQmq1Qf6999oCVjYCIheBvt/k/RMxExsP7axajXMkMeC5w 3SZvrs5ZlkRhOMxNdR1tElvRPPJfITsxIwEDlJanhFKByoD9cNxuHOR4i5wWmIzw DE+9fdnuUJVdFRnnDLHwzYT3TZvKg3tmz5ElWeKKBGZaULsJhA6bkD6x/JoBXnPu TSmUw19KIs91MmzjmpebKYhOobF2bHzVUCaIiRmSszJUZ+xdUwc= -----END CERTIFICATE-----Generated at Thu Mar 26 11:28:39 2026 by rpki-client