$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: LIcbR8JKVi8SgJJAWJvyemrjYQOVHCgq3cP52CZPKIM= Subject key identifier: C2:61:86:05:3C:52:96:5E:40:1C:FC:4E:63:CF:0F:79:15:EA:91:F0 Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 38766C510E4DADA05A0433D4C3F55411602FD79E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 01B8 Signing time: Thu 19 Mar 2026 07:10:54 +0000 Manifest this update: Thu 19 Mar 2026 07:05:54 +0000 Manifest next update: Sun 22 Mar 2026 14:32:54 +0000 Files and hashes: 1: 3130332e32392e31302e302f32342d3234203d3e20313431303634.roa (hash: g42xSqBdbww2iHC490qUVGv715w1+ed6Uwshy2/cUBk=) 2: 3130332e32392e31302e302f32332d3233203d3e20313431303634.roa (hash: ox/jPDjPCSM2yBDuW5lKFEBzvZUEEtg9kdQcbRM/Nsc=) 3: 3130332e32392e31312e302f32342d3234203d3e20313431303634.roa (hash: 7ZuQrAyTpSXLw2zTTFdrCC17EZNzNmUBwi/56OEgq84=) 4: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: P5PvTSPs3KKvpWdBQJ3Tyv0F0JUVPBAeF1s74XvoEzI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 09:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:76:6c:51:0e:4d:ad:a0:5a:04:33:d4:c3:f5:54:11:60:2f:d7:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Mar 19 07:05:54 2026 GMT Not After : Mar 22 14:32:54 2026 GMT Subject: CN=C26186053C52965E401CFC4E63CF0F7915EA91F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e0:60:42:48:16:25:83:3a:ee:de:38:8d:ef: 03:6d:95:cc:0d:70:02:02:f8:01:66:c3:3e:16:bf: 7d:4d:c9:80:d4:72:01:54:e0:c3:74:39:96:2d:58: ab:2f:43:2c:87:8d:18:97:9d:66:97:f1:fe:42:10: 0c:55:05:e9:61:4c:f5:8f:3c:bc:f1:23:c5:68:1a: d7:a1:4e:36:53:4e:7d:ff:8b:aa:6b:96:90:d7:3e: 54:2f:1b:43:5a:fb:a8:bf:76:17:ad:99:00:2e:8c: 71:d1:a4:cf:3b:1f:c9:a6:67:d8:ae:a4:34:45:4b: e3:45:7f:60:33:ce:c6:52:8b:fd:46:09:a0:e1:55: 68:c4:23:15:bf:3a:a8:a1:5c:1d:34:e3:c9:f3:5a: b0:47:91:2e:bb:d8:79:f6:a4:24:0c:c6:51:db:5f: a8:58:a3:cb:b1:f6:66:ff:21:a5:88:02:41:84:1d: 06:85:a7:0e:66:ae:ad:95:90:a1:fe:be:5e:c4:05: da:93:fc:07:79:23:c8:b6:a8:13:de:60:64:3a:e2: f0:5e:89:a4:96:07:ac:97:15:7d:6f:c1:96:2b:e2: 4e:20:e9:bc:df:3b:b4:c1:e1:4c:58:f1:37:d7:74: 68:07:da:71:c8:da:35:58:7c:62:53:6a:46:5f:a9: 23:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:61:86:05:3C:52:96:5E:40:1C:FC:4E:63:CF:0F:79:15:EA:91:F0 X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:50:81:df:dd:cd:3c:61:33:8f:8d:1c:ab:82:b5:1e:36:53: a0:39:51:6e:5c:5e:98:60:31:fa:a8:f3:f2:8f:98:6a:4e:8c: 6e:a7:f1:dc:81:73:dc:f1:fa:cd:86:b6:41:97:df:64:2a:7d: e0:3c:b8:8a:7b:2f:60:38:e1:9f:d7:5b:81:d7:3b:19:78:2f: fc:f3:a8:8c:c2:18:4f:ef:7e:5c:82:b4:2e:30:61:ac:d4:4c: e1:3c:69:30:fb:24:2f:27:fd:0f:c2:64:fb:02:e3:78:5d:f5: bf:89:44:fe:61:5a:4c:2e:50:17:1b:71:f1:6a:aa:59:44:be: 93:a0:2a:e5:84:ca:9c:db:f9:c1:f7:b0:e4:90:9d:6f:70:25: 6b:73:13:2f:45:93:12:89:17:fa:91:29:44:b2:2e:a5:97:68: 7e:74:b2:29:96:b0:f0:b0:81:91:81:d5:4a:4c:b5:6e:87:16: 0b:86:ce:16:b0:8c:17:8c:5a:df:77:df:ec:60:b6:11:3f:71: 82:ec:d0:43:e5:c5:71:55:e3:5f:d5:96:cb:e7:1b:47:5f:8c: 38:9c:39:47:d8:89:65:57:c0:39:a8:1c:99:1f:3a:e0:95:72: 54:54:f7:9b:e5:e2:c8:e4:d4:70:29:73:62:85:01:17:5b:cb: 0e:e2:22:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOHZsUQ5NraBaBDPUw/VUEWAv154wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNjAzMTkwNzA1NTRaFw0yNjAzMjIxNDMyNTRaMDMxMTAvBgNV BAMTKEMyNjE4NjA1M0M1Mjk2NUU0MDFDRkM0RTYzQ0YwRjc5MTVFQTkxRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ4GBCSBYlgzru3jiN7wNtlcwN cAIC+AFmwz4Wv31NyYDUcgFU4MN0OZYtWKsvQyyHjRiXnWaX8f5CEAxVBelhTPWP PLzxI8VoGtehTjZTTn3/i6prlpDXPlQvG0Na+6i/dhetmQAujHHRpM87H8mmZ9iu pDRFS+NFf2AzzsZSi/1GCaDhVWjEIxW/OqihXB0048nzWrBHkS672Hn2pCQMxlHb X6hYo8ux9mb/IaWIAkGEHQaFpw5mrq2VkKH+vl7EBdqT/Ad5I8i2qBPeYGQ64vBe iaSWB6yXFX1vwZYr4k4g6bzfO7TB4UxY8TfXdGgH2nHI2jVYfGJTakZfqSNxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwmGGBTxSll5AHPxOY88PeRXqkfAwHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJZQgd/dzTxhM4+NHKuCtR42U6A5UW5cXphg Mfqo8/KPmGpOjG6n8dyBc9zx+s2GtkGX32QqfeA8uIp7L2A44Z/XW4HXOxl4L/zz qIzCGE/vflyCtC4wYazUTOE8aTD7JC8n/Q/CZPsC43hd9b+JRP5hWkwuUBcbcfFq qllEvpOgKuWEypzb+cH3sOSQnW9wJWtzEy9FkxKJF/qRKUSyLqWXaH50simWsPCw gZGB1UpMtW6HFguGzhawjBeMWt933+xgthE/cYLs0EPlxXFV41/VlsvnG0dfjDic OUfYiWVXwDmoHJkfOuCVclRU95vl4sjk1HApc2KFARdbyw7iIoc= -----END CERTIFICATE-----Generated at Thu Mar 19 09:41:05 2026 by rpki-client