$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: ma1Fu4L4CwPNWqzyV8cICq5D2CYv/LKohxFKrpj1u4M= Subject key identifier: A8:72:77:47:04:3F:92:F6:51:98:EF:5B:20:5F:98:BD:77:AB:B3:9C Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 46CFA28FD9EDDCB8FA1DE815CD5417DA1B0AB56D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 0526 Signing time: Tue 24 Mar 2026 19:20:57 +0000 Manifest this update: Tue 24 Mar 2026 19:15:57 +0000 Manifest next update: Sat 28 Mar 2026 02:19:57 +0000 Files and hashes: 1: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: 62GbeYTYSTLXbPMh2Tfn/LIz618X1BVuzy7ue3CO9H4=) 2: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 3: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) 4: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 02:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:cf:a2:8f:d9:ed:dc:b8:fa:1d:e8:15:cd:54:17:da:1b:0a:b5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Mar 24 19:15:57 2026 GMT Not After : Mar 28 02:19:57 2026 GMT Subject: CN=A8727747043F92F65198EF5B205F98BD77ABB39C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b1:c3:95:04:38:f5:0f:e1:85:b2:b9:64:bc: 8d:c5:1b:a3:8e:e6:dc:7a:65:5a:a7:e7:bd:ce:8b: 21:67:bc:24:30:7a:ff:28:35:30:8a:1b:b1:26:fd: 3e:02:cb:33:05:eb:a0:23:17:0a:be:6a:51:29:1b: b5:5a:19:bc:f4:35:ec:fe:2b:68:23:00:22:d0:03: dc:2d:0e:38:3b:6e:c2:e9:ca:8f:c6:59:2c:02:2f: d3:ef:82:6e:e9:78:e6:c0:8e:2a:ef:cd:b5:fa:e8: 81:b6:27:74:67:dd:5c:9d:5d:cc:19:0b:80:ad:30: 91:bf:17:f5:34:c6:2a:0f:1e:2f:1b:a6:65:a4:57: ca:3b:bd:60:6e:29:e2:b0:e5:e9:1c:3c:fb:8f:dc: 20:a1:19:99:54:5c:73:31:cc:e8:5a:1b:7f:70:fc: 07:00:14:67:9c:44:4a:42:e9:02:ba:a4:ff:e0:53: 60:78:8c:08:05:1b:de:0d:d0:20:f2:c4:a2:45:84: 66:4b:53:cd:7d:b7:72:42:93:0d:19:85:66:22:9f: 04:dc:f5:c9:e7:ff:ea:25:ed:fa:b4:e6:a9:f8:4a: b7:b2:0b:ed:b1:1d:c1:b5:54:88:24:d6:71:9c:20: e7:f0:b3:1d:49:eb:2a:13:16:5f:1b:11:7a:25:ec: 21:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:72:77:47:04:3F:92:F6:51:98:EF:5B:20:5F:98:BD:77:AB:B3:9C X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:e5:e1:d1:d5:fe:e4:2a:df:52:62:1f:71:fd:a2:a8:76:f3: 6a:be:8f:87:8f:f9:e7:b2:48:cd:03:db:af:40:ac:19:a6:a6: 49:45:3b:e8:98:bc:ac:90:ad:ec:1e:11:ea:eb:ef:ae:e9:fe: 06:20:ba:2c:05:49:77:69:d9:e0:4a:0b:fa:49:02:c3:c2:e1: f6:ab:5c:f1:fe:d2:05:fd:a1:8a:3b:f3:b1:c1:81:bd:67:d4: 29:76:c1:09:3a:52:6d:35:5f:19:16:75:a0:5c:46:3d:7d:bd: 8d:c8:6a:55:44:fb:a9:5d:ef:87:6b:5c:2f:46:09:f0:f6:0b: 46:2e:9c:7e:ca:e4:6f:02:1e:9e:b5:ec:78:30:8e:56:ce:0c: 78:81:10:cd:24:da:47:6b:47:44:17:ca:52:b3:9d:b1:ac:c6: 61:af:f1:d3:15:66:01:ff:13:63:36:15:b5:1e:59:1e:ed:2c: 0f:0e:0c:0c:54:8b:db:14:25:c1:ff:f2:28:dd:74:01:5a:09: 6f:ca:92:08:66:fa:72:83:3f:cf:15:d3:96:29:9b:82:1b:f9: b2:91:90:4c:d5:80:01:ba:18:1a:a6:49:cc:a6:a4:8e:ed:f9: d9:3c:56:93:0c:aa:d5:5e:c7:3d:c5:d8:5b:49:6f:e0:44:06: 97:19:5e:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURs+ij9nt3Lj6HegVzVQX2hsKtW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNjAzMjQxOTE1NTdaFw0yNjAzMjgwMjE5NTdaMDMxMTAvBgNV BAMTKEE4NzI3NzQ3MDQzRjkyRjY1MTk4RUY1QjIwNUY5OEJENzdBQkIzOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBscOVBDj1D+GFsrlkvI3FG6OO 5tx6ZVqn573OiyFnvCQwev8oNTCKG7Em/T4CyzMF66AjFwq+alEpG7VaGbz0Nez+ K2gjACLQA9wtDjg7bsLpyo/GWSwCL9Pvgm7peObAjirvzbX66IG2J3Rn3VydXcwZ C4CtMJG/F/U0xioPHi8bpmWkV8o7vWBuKeKw5ekcPPuP3CChGZlUXHMxzOhaG39w /AcAFGecREpC6QK6pP/gU2B4jAgFG94N0CDyxKJFhGZLU819t3JCkw0ZhWYinwTc 9cnn/+ol7fq05qn4SreyC+2xHcG1VIgk1nGcIOfwsx1J6yoTFl8bEXol7CERAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqHJ3RwQ/kvZRmO9bIF+YvXers5wwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjl4dHV/uQq31JiH3H9oqh282q+j4eP+eey SM0D269ArBmmpklFO+iYvKyQreweEerr767p/gYguiwFSXdp2eBKC/pJAsPC4far XPH+0gX9oYo787HBgb1n1Cl2wQk6Um01XxkWdaBcRj19vY3IalVE+6ld74drXC9G CfD2C0YunH7K5G8CHp617HgwjlbODHiBEM0k2kdrR0QXylKznbGsxmGv8dMVZgH/ E2M2FbUeWR7tLA8ODAxUi9sUJcH/8ijddAFaCW/Kkghm+nKDP88V05Ypm4Ib+bKR kEzVgAG6GBqmScympI7t+dk8VpMMqtVexz3F2FtJb+BEBpcZXo4= -----END CERTIFICATE-----Generated at Thu Mar 26 10:13:20 2026 by rpki-client