$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft File: 5B558AD01277C8212C974318B6352FB28BF683AD.mft (raw, json) Hash identifier: SsHIhTn+CFkAWLbHY6uvK+H6ujjR4kjNr3+sGDXE97Y= Subject key identifier: 4A:3F:FA:E3:97:A7:33:71:3F:71:B7:CE:6A:F5:16:C8:B9:0F:64:D7 Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 07D509A017F5C421C30AD90615B7A14F4678F7FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft Manifest number: 0213 Signing time: Thu 26 Mar 2026 12:30:58 +0000 Manifest this update: Thu 26 Mar 2026 12:25:58 +0000 Manifest next update: Sun 29 Mar 2026 17:53:58 +0000 Files and hashes: 1: 3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa (hash: ZDqeHH9c3Ge8DQKLptNu9Fe3zE45Y025wBi0fQHXBeg=) 2: 5B558AD01277C8212C974318B6352FB28BF683AD.crl (hash: hQcSFlj1+jFXRCT3lYKW7Hb3Q02zBYp9okMS+dZWKC8=) 3: 3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa (hash: cCo2j3DaRw7ST6xKRFKIc+Fk9WAeawaQpPCFHRoRW38=) 4: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (hash: IAfCc36b+ZuLfkNXk9UGXWqhcIrd0+kkw00XJdFWpic=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d5:09:a0:17:f5:c4:21:c3:0a:d9:06:15:b7:a1:4f:46:78:f7:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Mar 26 12:25:58 2026 GMT Not After : Mar 29 17:53:58 2026 GMT Subject: CN=4A3FFAE397A733713F71B7CE6AF516C8B90F64D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3f:8c:85:38:3b:71:98:41:2c:83:0c:c6:7e: 20:75:2c:e5:fe:6f:f3:03:89:6b:99:66:5d:ea:f3: 07:8c:7a:93:73:5c:40:af:17:49:be:ac:c7:cc:7d: a5:30:6d:1a:90:1c:f3:7e:a5:0a:9e:31:c2:3e:2a: 25:05:15:04:ab:9b:50:e6:3b:9f:60:02:e0:21:f5: 9d:f1:df:cd:5b:dd:95:92:94:bd:a5:60:d0:fc:e9: 15:e3:3d:43:34:22:f3:48:95:83:4a:9e:64:62:77: f5:7f:fd:67:07:80:a0:db:e4:44:fb:05:7a:03:43: 54:79:6b:8e:e0:9f:6a:31:cc:a8:9e:8c:c6:2e:b0: 7e:98:f8:f8:d3:d8:ab:1f:13:9e:1f:5b:6a:13:8a: 2d:cb:11:a0:15:f4:4a:dd:bf:fd:1f:ac:65:73:a3: 1e:93:84:35:c7:71:0d:9b:eb:bc:d0:e8:e6:c7:54: 46:85:84:27:0b:a6:54:10:c0:20:c4:3b:c5:18:7a: 85:8e:96:05:64:2f:8d:26:53:a6:19:48:d1:46:86: da:37:39:92:e3:af:26:b2:95:1d:9a:38:e2:6d:05: 94:d5:64:1e:17:db:e1:39:38:51:11:17:15:2f:ff: 91:54:5f:b7:67:83:a1:1b:53:bb:8e:be:79:49:8e: c3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3F:FA:E3:97:A7:33:71:3F:71:B7:CE:6A:F5:16:C8:B9:0F:64:D7 X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:87:e3:4b:ff:07:fc:4c:25:2a:cf:a9:b5:80:87:c2:0e:ed: 25:7f:06:a5:84:ff:db:28:a7:dd:48:d9:37:59:3b:59:73:6b: 7e:62:7c:d1:09:ae:a9:05:cc:f9:cd:e5:63:9d:bf:60:55:10: 4b:c5:9d:89:f4:e3:db:be:af:c3:93:0d:a7:82:9b:e4:69:8a: 6a:c7:20:df:91:61:4f:8e:81:12:e2:41:e5:6b:1f:97:3c:ff: cc:32:09:af:14:e8:c4:47:13:45:52:28:fc:01:64:40:29:69: ec:d8:be:23:0a:8a:02:8d:d5:c1:9c:f1:76:36:80:58:e6:0e: 4f:30:fa:1a:ea:27:3f:d6:f3:12:29:aa:b3:78:d4:40:1e:bd: 71:be:9b:33:4d:3c:71:6c:3c:96:c9:3a:14:22:7c:bf:ae:46: 57:31:18:6f:fb:e4:3e:5e:e8:03:15:09:e4:24:9c:e9:11:aa: fd:7d:7a:5d:c8:1d:02:ff:c4:15:44:66:88:c2:f4:6a:45:54: 6e:c5:06:c3:99:0f:93:17:95:2f:37:c3:b7:82:ac:5a:7a:83: de:3d:47:18:37:c3:e5:88:b8:f6:f4:30:d9:fc:78:21:94:3f: 70:c2:64:3f:9c:72:1f:67:56:6a:ce:26:37:85:48:e5:cf:5d: d0:68:28:f1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB9UJoBf1xCHDCtkGFbehT0Z49/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNjAzMjYxMjI1NThaFw0yNjAzMjkxNzUzNThaMDMxMTAvBgNV BAMTKDRBM0ZGQUUzOTdBNzMzNzEzRjcxQjdDRTZBRjUxNkM4QjkwRjY0RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlP4yFODtxmEEsgwzGfiB1LOX+ b/MDiWuZZl3q8weMepNzXECvF0m+rMfMfaUwbRqQHPN+pQqeMcI+KiUFFQSrm1Dm O59gAuAh9Z3x381b3ZWSlL2lYND86RXjPUM0IvNIlYNKnmRid/V//WcHgKDb5ET7 BXoDQ1R5a47gn2oxzKiejMYusH6Y+PjT2KsfE54fW2oTii3LEaAV9Erdv/0frGVz ox6ThDXHcQ2b67zQ6ObHVEaFhCcLplQQwCDEO8UYeoWOlgVkL40mU6YZSNFGhto3 OZLjryaylR2aOOJtBZTVZB4X2+E5OFERFxUv/5FUX7dng6EbU7uOvnlJjsPVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSj/645enM3E/cbfOavUWyLkPZNcwHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmE1YjRmYTQtMzI4Yy00Y2YyLWFk ZTMtYzg2ODEzMWQ0ZTBkLzAvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJG QjI4QkY2ODNBRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKeH40v/B/xMJSrPqbWAh8IO7SV/BqWE/9so p91I2TdZO1lza35ifNEJrqkFzPnN5WOdv2BVEEvFnYn049u+r8OTDaeCm+RpimrH IN+RYU+OgRLiQeVrH5c8/8wyCa8U6MRHE0VSKPwBZEApaezYviMKigKN1cGc8XY2 gFjmDk8w+hrqJz/W8xIpqrN41EAevXG+mzNNPHFsPJbJOhQifL+uRlcxGG/75D5e 6AMVCeQknOkRqv19el3IHQL/xBVEZojC9GpFVG7FBsOZD5MXlS83w7eCrFp6g949 Rxg3w+WIuPb0MNn8eCGUP3DCZD+cch9nVmrOJjeFSOXPXdBoKPE= -----END CERTIFICATE-----Generated at Thu Mar 26 17:16:09 2026 by rpki-client