$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft (raw, json) Hash identifier: JDcWJARWbMvKlHyJnbbeL7PLDDdMCLvIVbL6df36tlY= Subject key identifier: D4:22:43:69:8A:A0:9E:AC:BE:B6:E7:47:F3:46:B1:CC:4D:52:2F:B1 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 09F5047131558110167B5C1C69F815A518C073AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft Manifest number: 0560 Signing time: Thu 26 Mar 2026 07:11:25 +0000 Manifest this update: Thu 26 Mar 2026 07:06:25 +0000 Manifest next update: Sun 29 Mar 2026 08:11:25 +0000 Files and hashes: 1: 3130332e35322e31382e302f32342d3234203d3e20313333383131.roa (hash: MpDUQT8A3dZvwWRQtlzD2B+hHv7+ces35KG+DCb4lSw=) 2: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (hash: hHPw+Xqwsov7fA4EH++xE5Fe/5zBy6SOylLmX+aVZlE=) 3: 3130332e35322e31362e302f32342d3234203d3e20313333383131.roa (hash: KMXBXh+Hz9t8Vs+CANui3lrLwoDdVGoivVhKoGTM+n0=) 4: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (hash: EZ5aOL7mpVTkNbGpU33KXHXodkOhpTQ6YG1hqKJcWtg=) 5: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl (hash: WMLMqPyb6KOe0M7CED+mWHZcs8Ima71xC3ZG/KwuGig=) 6: 3130332e35322e31392e302f32342d3234203d3e20313333383131.roa (hash: frS3InbJAyXvfYFJ9oqdkhlt6S7xP80lfV9ZpnmpcMc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 08:11:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f5:04:71:31:55:81:10:16:7b:5c:1c:69:f8:15:a5:18:c0:73:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Mar 26 07:06:25 2026 GMT Not After : Mar 29 08:11:25 2026 GMT Subject: CN=D42243698AA09EACBEB6E747F346B1CC4D522FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:bf:25:d1:3a:19:7f:be:6c:da:f4:23:4f:89: 66:fe:7b:65:88:bb:56:0a:2b:c8:00:9e:af:82:39: 32:a7:d1:1a:c8:47:af:10:ff:43:12:81:08:ba:58: f0:a1:57:93:74:bf:87:8a:e2:92:34:31:7b:fc:54: 8f:2f:13:4b:dd:9a:ef:29:fe:e2:da:04:4c:e1:5f: 3f:a3:a6:93:c7:5e:63:18:12:a2:cc:63:58:6a:3c: d4:43:00:98:ce:7d:94:fa:c2:ca:f1:49:ee:f7:6e: 9b:f6:df:ad:f1:eb:4c:be:3f:47:92:6b:87:76:cd: 79:75:b8:7b:ec:6f:6e:51:f4:34:a9:e0:97:30:93: b7:48:1b:f8:3d:46:6a:a7:32:8b:10:1a:eb:d3:de: 5a:01:b4:14:9a:2c:4c:1f:06:c7:c6:96:49:ec:7b: e2:61:05:1e:8c:df:4b:90:9e:37:34:c9:a6:7d:15: f6:06:f4:21:11:2d:41:24:3f:19:60:4a:20:19:6e: 98:47:0e:0b:fc:07:bf:03:f6:81:c8:ea:ac:cf:ea: 2d:51:0a:7b:3c:5b:3e:14:0e:f0:5b:c1:a2:09:e4: 6b:29:7e:70:a0:b7:5a:e9:aa:c0:d8:4c:48:9e:9c: 9f:a0:19:b5:7c:0b:2f:5e:10:f2:9b:65:a1:80:d8: 9e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:22:43:69:8A:A0:9E:AC:BE:B6:E7:47:F3:46:B1:CC:4D:52:2F:B1 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:0e:ef:03:da:b9:71:b3:9d:3e:65:48:ac:e1:a6:01:83:a8: 8b:34:86:e7:64:9e:ff:0e:23:19:14:4c:00:c2:47:78:ef:74: aa:13:d6:5a:97:23:0c:cc:5a:31:dd:04:a3:1e:c4:8f:74:fd: 1c:18:5a:d2:3f:60:76:18:2e:7a:71:98:38:66:6d:70:1a:e7: 19:83:7b:02:40:7b:98:5c:79:20:3a:b2:27:aa:fa:4a:c4:e1: 5c:a6:80:71:f3:38:5a:ee:c5:6e:50:57:3c:7a:22:ef:3e:06: 90:80:d6:97:61:50:37:49:0e:20:3c:cc:1b:a2:40:63:19:b7: a7:91:3b:7c:79:c1:91:26:90:43:94:94:48:11:b7:9a:9b:0a: cc:dc:7c:d1:eb:24:62:04:0e:09:6e:bf:fd:fb:27:4c:84:30: 56:82:50:94:2c:ec:7b:4c:d7:1e:87:a6:c6:6d:f2:f5:ee:2a: 90:7c:9e:45:4e:47:82:bc:79:83:5d:7a:d6:0b:58:45:c0:8c: 10:3b:1f:25:75:9f:47:93:46:08:77:62:44:1c:52:36:ef:e3: 81:f6:03:80:13:ff:ff:d8:60:d0:e5:66:0a:cf:e0:9a:33:3b: b4:b6:f5:f4:25:e4:1e:29:54:a1:bb:c3:45:81:50:9c:d0:ff: 25:44:58:89 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCfUEcTFVgRAWe1wcafgVpRjAc6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNjAzMjYwNzA2MjVaFw0yNjAzMjkwODExMjVaMDMxMTAvBgNV BAMTKEQ0MjI0MzY5OEFBMDlFQUNCRUI2RTc0N0YzNDZCMUNDNEQ1MjJGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDovyXROhl/vmza9CNPiWb+e2WI u1YKK8gAnq+COTKn0RrIR68Q/0MSgQi6WPChV5N0v4eK4pI0MXv8VI8vE0vdmu8p /uLaBEzhXz+jppPHXmMYEqLMY1hqPNRDAJjOfZT6wsrxSe73bpv2363x60y+P0eS a4d2zXl1uHvsb25R9DSp4Jcwk7dIG/g9RmqnMosQGuvT3loBtBSaLEwfBsfGlkns e+JhBR6M30uQnjc0yaZ9FfYG9CERLUEkPxlgSiAZbphHDgv8B78D9oHI6qzP6i1R Cns8Wz4UDvBbwaIJ5GspfnCgt1rpqsDYTEienJ+gGbV8Cy9eEPKbZaGA2J6jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1CJDaYqgnqy+tudH80axzE1SL7EwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFkZDdjMGYtMDJkMy00MjE3LTlm YzMtMDA0N2FlMTgzNmRjLzAvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIw NTNBOUMwQjZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACwO7wPauXGznT5lSKzhpgGDqIs0hudknv8O IxkUTADCR3jvdKoT1lqXIwzMWjHdBKMexI90/RwYWtI/YHYYLnpxmDhmbXAa5xmD ewJAe5hceSA6sieq+krE4VymgHHzOFruxW5QVzx6Iu8+BpCA1pdhUDdJDiA8zBui QGMZt6eRO3x5wZEmkEOUlEgRt5qbCszcfNHrJGIEDgluv/37J0yEMFaCUJQs7HtM 1x6HpsZt8vXuKpB8nkVOR4K8eYNdetYLWEXAjBA7HyV1n0eTRgh3YkQcUjbv44H2 A4AT///YYNDlZgrP4JozO7S29fQl5B4pVKG7w0WBUJzQ/yVEWIk= -----END CERTIFICATE-----Generated at Thu Mar 26 17:10:45 2026 by rpki-client