$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: /OeUe/9F8G+3K5K/wEIWTi5ljIFMaTKFAE0M5BWoO6k= Subject key identifier: 02:4B:72:4D:6F:AC:F7:3A:DC:5B:9A:44:0E:B9:1D:12:4A:7C:31:1A Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 02E3E70C11516191B49580DF808C3D5CEF9782CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 011A Signing time: Thu 26 Mar 2026 10:51:14 +0000 Manifest this update: Thu 26 Mar 2026 10:46:14 +0000 Manifest next update: Sun 29 Mar 2026 22:07:14 +0000 Files and hashes: 1: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: YkF0IVVKWh8wkdp4LVgtLzGbGhTh5HQ8LA3cG7rwlWw=) 2: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 3: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) 4: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:e3:e7:0c:11:51:61:91:b4:95:80:df:80:8c:3d:5c:ef:97:82:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Mar 26 10:46:14 2026 GMT Not After : Mar 29 22:07:14 2026 GMT Subject: CN=024B724D6FACF73ADC5B9A440EB91D124A7C311A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:4e:4d:93:b7:7e:f3:38:c1:96:7f:f7:80:ad: 8d:f7:65:4c:af:d6:19:e8:a7:16:74:26:04:a5:07: 34:2a:55:fc:8e:02:42:16:b1:22:d5:58:81:d3:a0: c9:ee:3f:84:2c:5f:c4:85:d4:9a:66:83:5d:d7:93: 1b:19:bb:ec:52:05:06:ae:a2:26:24:40:27:6c:da: 8e:35:a5:10:10:35:28:3c:c9:dd:44:87:25:4f:e1: 73:1a:3f:6a:3c:cf:07:69:e6:83:f3:0e:40:77:cf: 28:1c:a6:d0:20:80:2f:9b:41:d2:1a:d4:4f:1b:a8: 63:fa:86:03:e5:a5:d5:19:fa:6a:0f:ed:6d:51:8c: 0a:13:4a:a5:c9:28:24:d6:ed:ad:c0:78:e4:94:dc: 96:9d:07:07:42:34:72:3e:38:91:12:be:6e:71:49: 27:c7:66:dd:ff:51:f5:e5:65:13:ad:b3:bd:0d:3e: f8:80:cb:a4:2d:ea:f0:ab:64:bc:9a:2a:65:43:76: 96:99:0d:5b:64:65:2a:a2:51:c2:cf:e1:04:c8:24: e0:7b:09:96:ad:05:f4:08:fd:eb:b4:19:98:af:55: 73:39:d3:37:de:91:2a:ca:45:f8:47:72:03:fd:90: 9b:ff:80:b8:9c:a2:ce:38:f1:5e:35:dd:67:48:75: 65:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4B:72:4D:6F:AC:F7:3A:DC:5B:9A:44:0E:B9:1D:12:4A:7C:31:1A X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:55:d8:b0:3a:a5:01:cc:18:1b:ec:f1:4c:04:69:b1:8a:79: a1:15:80:61:67:b9:f6:f0:c4:44:85:9c:2c:f8:2d:01:17:30: f4:5a:fe:a3:8a:7b:f3:fc:3b:2f:5c:7c:4e:0f:dc:4f:d7:2e: 10:0e:61:08:6f:2a:e5:06:42:43:56:d1:07:f4:d4:c2:5b:85: 95:23:cc:dd:90:84:7d:e6:bf:e0:41:14:57:5b:d7:2c:94:ce: b3:4f:e2:a1:8a:95:8d:02:ff:ce:72:23:42:fe:b2:c5:66:90: e0:63:36:38:13:23:3e:eb:e9:6e:cc:50:48:94:20:be:27:df: cb:bb:09:64:79:1a:6a:a5:30:d7:b0:7e:b1:f3:2e:32:0c:fe: 8e:1a:d0:0e:26:cd:5c:e9:d8:9c:23:a4:ed:72:dd:4b:93:87: 06:f1:ae:d2:52:bc:a5:f8:50:50:e2:d5:f7:07:20:ad:e1:a3: 64:60:7a:01:a0:c3:a2:a4:a2:9c:68:7d:3e:ad:34:bd:00:93: f0:cb:1e:35:84:f7:2a:05:0f:59:45:a4:49:25:af:7b:29:74: 76:43:a8:a3:f2:37:a6:0d:38:91:3f:c3:bb:45:66:dc:b5:ad: 6b:1d:ba:81:e7:d6:f0:8c:9b:9a:56:53:cc:19:7a:eb:71:d8: 5c:f7:93:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAuPnDBFRYZG0lYDfgIw9XO+XgsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNjAzMjYxMDQ2MTRaFw0yNjAzMjkyMjA3MTRaMDMxMTAvBgNV BAMTKDAyNEI3MjRENkZBQ0Y3M0FEQzVCOUE0NDBFQjkxRDEyNEE3QzMxMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmTk2Tt37zOMGWf/eArY33ZUyv 1hnopxZ0JgSlBzQqVfyOAkIWsSLVWIHToMnuP4QsX8SF1Jpmg13XkxsZu+xSBQau oiYkQCds2o41pRAQNSg8yd1EhyVP4XMaP2o8zwdp5oPzDkB3zygcptAggC+bQdIa 1E8bqGP6hgPlpdUZ+moP7W1RjAoTSqXJKCTW7a3AeOSU3JadBwdCNHI+OJESvm5x SSfHZt3/UfXlZROts70NPviAy6Qt6vCrZLyaKmVDdpaZDVtkZSqiUcLP4QTIJOB7 CZatBfQI/eu0GZivVXM50zfekSrKRfhHcgP9kJv/gLicos448V413WdIdWU9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAktyTW+s9zrcW5pEDrkdEkp8MRowHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKNV2LA6pQHMGBvs8UwEabGKeaEVgGFnufbw xESFnCz4LQEXMPRa/qOKe/P8Oy9cfE4P3E/XLhAOYQhvKuUGQkNW0Qf01MJbhZUj zN2QhH3mv+BBFFdb1yyUzrNP4qGKlY0C/85yI0L+ssVmkOBjNjgTIz7r6W7MUEiU IL4n38u7CWR5GmqlMNewfrHzLjIM/o4a0A4mzVzp2JwjpO1y3UuThwbxrtJSvKX4 UFDi1fcHIK3ho2RgegGgw6KkopxofT6tNL0Ak/DLHjWE9yoFD1lFpEklr3spdHZD qKPyN6YNOJE/w7tFZty1rWsduoHn1vCMm5pWU8wZeutx2Fz3k7s= -----END CERTIFICATE-----Generated at Thu Mar 26 15:26:13 2026 by rpki-client