$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: ryGUs9RGWiv6G/gxVTf8/pn9wqalBfx4v4yVbY1tB7Q= Subject key identifier: 8F:4D:67:4A:94:4C:4D:C1:2B:97:5D:1A:0C:1E:29:6E:FD:E6:2C:25 Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 4DE103A40BD8B18AD139730A9A21A82DF27A3D21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 0230 Signing time: Fri 20 Mar 2026 07:41:54 +0000 Manifest this update: Fri 20 Mar 2026 07:36:54 +0000 Manifest next update: Mon 23 Mar 2026 09:43:54 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: 7zBTS0bU7PgzGa8PCcebIzMScdeyLBIAzKr1yoDxbbo=) 2: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: aDPjpRT6pfd3T7ltNqLLQRA6RqqiOtEG5C4gW/hEaTI=) 3: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: 0GFIWUiUrqRfAE/w3eKveKOv4M+2LjJoosY6Pp8ypUc=) 4: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: KwQnXD9IuoErr08UKS+/TilX/W2hpSgMXOx+R0JG8Mo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 09:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e1:03:a4:0b:d8:b1:8a:d1:39:73:0a:9a:21:a8:2d:f2:7a:3d:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Mar 20 07:36:54 2026 GMT Not After : Mar 23 09:43:54 2026 GMT Subject: CN=8F4D674A944C4DC12B975D1A0C1E296EFDE62C25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7b:ee:81:87:47:20:dc:f6:4a:3e:e3:a0:00: 6e:d1:e7:1b:0e:e8:b4:48:ee:dc:ad:83:4e:63:b8: dc:98:a4:ab:ed:9c:58:d0:4c:59:4b:a2:b2:c1:3c: ea:ca:00:22:76:aa:4e:8d:4e:14:b1:74:e1:2d:e5: a4:34:ad:0a:8d:32:bf:08:77:17:34:1f:2c:6c:9e: 3e:dc:d1:68:e2:0f:d3:6e:d5:b9:73:41:4b:be:ad: 2d:c6:ee:f8:06:aa:f2:3e:ca:e4:e9:24:6e:e7:2b: 68:25:d6:bd:0b:2f:1e:89:70:36:2d:40:6e:7b:71: 46:53:cf:34:b7:48:79:70:bc:21:28:95:7c:1c:69: 70:46:44:ca:de:2f:94:8a:1e:7e:c5:f9:eb:b0:65: 43:08:89:41:44:b0:bb:f8:4a:4e:fe:c8:da:56:d6: 42:23:bd:08:c2:67:c4:cd:9f:8d:83:02:bf:2d:e1: d9:bb:b2:26:9e:b3:51:ca:7a:4e:06:be:f7:3f:5c: 62:71:8e:4c:1d:70:af:91:85:7c:50:eb:d4:2b:8c: 10:82:18:0c:c1:f1:0f:c5:1e:d5:f9:26:5a:33:00: 4d:c9:f6:a4:71:f6:70:5d:46:9d:7c:9d:bb:c5:46: a0:6a:8d:ad:c3:ab:6f:3f:27:a7:43:9f:e5:94:00: eb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4D:67:4A:94:4C:4D:C1:2B:97:5D:1A:0C:1E:29:6E:FD:E6:2C:25 X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:41:61:eb:90:4e:b4:77:0c:0d:5b:38:e2:c9:16:86:f8:d1: 11:3f:6c:5b:d8:16:46:df:fb:56:49:ab:15:d2:5e:0f:31:09: ef:d4:7c:b5:68:e7:0f:26:f2:58:20:01:4c:9c:3e:40:d4:6e: 7d:d9:d4:e3:98:7e:aa:e2:ce:31:c4:cd:62:9f:67:81:e5:b3: 2d:13:57:fd:f1:53:b5:a1:b5:5b:d6:c3:4a:d5:20:9c:ba:34: 8d:db:3c:34:54:b8:50:be:50:af:a8:45:7c:42:b9:4e:34:44: 38:be:2b:7c:6b:5d:e2:cd:8d:83:cb:9f:50:70:fa:73:d9:51: 16:13:91:30:a9:de:d4:94:94:03:8e:75:23:a5:6e:90:45:40: df:3a:6f:5c:59:5e:18:11:28:9f:94:8a:cd:2d:38:3c:0a:f0: b0:c4:33:c4:16:95:15:8c:f9:f3:ec:a8:d1:cc:bf:4c:4f:d3: 32:bb:22:2b:fe:87:89:a2:d2:27:cf:76:e0:79:05:51:37:1f: 60:1f:d0:32:b2:88:80:84:1e:7a:24:74:c5:46:cc:8f:2e:8e: 06:45:c9:36:b4:9d:d1:26:f0:e9:37:77:5c:b5:1b:94:0c:4b: c8:27:1a:d5:fa:05:a8:cd:1f:20:9d:81:26:a6:a0:2a:72:da: 28:92:34:3f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTeEDpAvYsYrROXMKmiGoLfJ6PSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNjAzMjAwNzM2NTRaFw0yNjAzMjMwOTQzNTRaMDMxMTAvBgNV BAMTKDhGNEQ2NzRBOTQ0QzREQzEyQjk3NUQxQTBDMUUyOTZFRkRFNjJDMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqe+6Bh0cg3PZKPuOgAG7R5xsO 6LRI7tytg05juNyYpKvtnFjQTFlLorLBPOrKACJ2qk6NThSxdOEt5aQ0rQqNMr8I dxc0Hyxsnj7c0WjiD9Nu1blzQUu+rS3G7vgGqvI+yuTpJG7nK2gl1r0LLx6JcDYt QG57cUZTzzS3SHlwvCEolXwcaXBGRMreL5SKHn7F+euwZUMIiUFEsLv4Sk7+yNpW 1kIjvQjCZ8TNn42DAr8t4dm7siaes1HKek4Gvvc/XGJxjkwdcK+RhXxQ69QrjBCC GAzB8Q/FHtX5JlozAE3J9qRx9nBdRp18nbvFRqBqja3Dq28/J6dDn+WUAOtFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUj01nSpRMTcErl10aDB4pbv3mLCUwHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAItBYeuQTrR3DA1bOOLJFob40RE/bFvYFkbf +1ZJqxXSXg8xCe/UfLVo5w8m8lggAUycPkDUbn3Z1OOYfqrizjHEzWKfZ4Hlsy0T V/3xU7WhtVvWw0rVIJy6NI3bPDRUuFC+UK+oRXxCuU40RDi+K3xrXeLNjYPLn1Bw +nPZURYTkTCp3tSUlAOOdSOlbpBFQN86b1xZXhgRKJ+Uis0tODwK8LDEM8QWlRWM +fPsqNHMv0xP0zK7Iiv+h4mi0ifPduB5BVE3H2Af0DKyiICEHnokdMVGzI8ujgZF yTa0ndEm8Ok3d1y1G5QMS8gnGtX6BajNHyCdgSamoCpy2iiSND8= -----END CERTIFICATE-----Generated at Fri Mar 20 12:42:43 2026 by rpki-client