$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft File: 28612772543E43335B080C32808B7FDC277E71E4.mft (raw, json) Hash identifier: B1lvY0DBoPuHfFjA9vtB2XhM4NFJsr22HlReKy65/GY= Subject key identifier: CE:2A:D6:00:4C:FD:6A:2E:84:CA:4E:AF:5A:61:BF:D3:83:1C:22:4B Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4 Certificate serial: 5EAC44521913516BD83762951A9779DB6D52EE33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft Manifest number: 0196 Signing time: Mon 23 Mar 2026 06:11:16 +0000 Manifest this update: Mon 23 Mar 2026 06:06:16 +0000 Manifest next update: Thu 26 Mar 2026 12:58:16 +0000 Files and hashes: 1: 3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa (hash: Gn1y+vGI1pMr1RUP5Xcp6ZX24+/thjU5EMlcN69zymE=) 2: 3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa (hash: RAlnEnom5DxgyjJGz4HMb0m9LakHmzQTvYvsB15UJ40=) 3: 28612772543E43335B080C32808B7FDC277E71E4.crl (hash: 1XSxae++6HJ5ND4d7S2kPEB8EoH/n/Tf3uvgo75qcSc=) 4: 3130332e3134322e32312e302f32342d3234203d3e20313338313331.roa (hash: xGMt/qz2gLSpF2/GLoO76XEkXVnWKO075lHn2nkpucQ=) 5: 3130332e3131352e3136342e302f32342d3234203d3e20313338313331.roa (hash: eKlNzLcXtNJ6j9o2YNvxo9gNUcarXxr4w6XmmCIYGdU=) 6: 3130332e3134322e32312e302f32342d3234203d3e20313339393536.roa (hash: oosppneRoSbmwD3s+VWSjVI8PDvHs2L2ec3h4IZjW/8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 09:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ac:44:52:19:13:51:6b:d8:37:62:95:1a:97:79:db:6d:52:ee:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4 Validity Not Before: Mar 23 06:06:16 2026 GMT Not After : Mar 26 12:58:16 2026 GMT Subject: CN=CE2AD6004CFD6A2E84CA4EAF5A61BFD3831C224B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d4:6d:7a:16:9f:91:ee:e2:b8:b0:a4:d3:93: bb:dc:36:74:15:2d:5b:89:de:5c:b8:44:00:32:66: db:37:e6:5c:10:34:c4:91:90:01:7f:49:68:3e:ff: f3:b5:10:70:40:ba:c7:64:f3:7a:e1:2e:5a:9e:5f: 45:dc:4e:76:d5:a4:0e:5e:f8:1b:ac:d6:38:f6:bc: ad:9f:8e:b7:20:b8:e1:11:ee:bb:3e:8c:4d:30:f3: 4e:74:e1:e0:01:dd:a5:1f:40:0c:14:07:08:dd:12: 25:f9:a3:74:95:78:b5:60:ea:9f:e6:a6:8e:26:66: fa:e9:58:9e:12:13:03:50:ce:76:fd:b2:40:53:f7: b5:c4:38:e6:0c:32:cc:db:d3:bb:29:26:b2:b9:1c: 2b:d3:56:ca:2d:10:b4:82:da:99:69:a1:8c:87:95: 4e:d6:a7:9b:6f:42:ac:92:79:8a:6c:12:4d:64:c0: 69:03:a2:e3:ef:51:d0:59:89:9b:22:2f:a9:30:61: d9:b6:8d:83:b2:2c:3d:1a:f7:56:65:32:c8:82:32: 13:95:18:5e:60:47:75:60:6e:df:5a:02:70:08:00: f8:01:76:aa:7b:11:85:fe:48:b9:1e:75:43:18:85: c4:c2:4a:bf:e6:b1:7b:74:87:5d:28:9e:4d:24:fa: a2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2A:D6:00:4C:FD:6A:2E:84:CA:4E:AF:5A:61:BF:D3:83:1C:22:4B X509v3 Authority Key Identifier: keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:9b:b8:dc:3d:09:74:0f:6d:f2:cd:11:a4:15:ac:83:e8:86: 60:f1:4f:53:18:1b:2f:0d:3b:6f:7b:7c:09:20:d6:19:d3:0b: aa:10:5f:2b:d6:d5:31:28:b9:38:33:d8:e8:eb:24:3b:5c:95: 72:69:56:97:0f:b9:1a:12:98:49:fe:18:41:fe:10:f2:93:d3: 31:fa:c8:29:c7:c6:1f:3f:5b:47:19:ce:cf:07:ab:1a:46:32: 33:d4:c1:78:61:0c:fd:0d:b9:65:00:a1:67:20:fc:db:ae:56: a9:d4:ad:f0:07:4b:36:85:68:3f:7d:c2:13:cb:7b:e7:58:3c: b3:3f:50:bd:71:63:f3:2f:23:86:d2:8e:52:29:8a:76:c1:9b: 86:33:91:38:87:f2:a1:43:a6:03:88:9f:2b:21:e4:20:e9:fa: 6f:2f:15:41:17:8e:4a:dc:69:8f:81:08:5e:d1:eb:4c:5e:b1: ec:e6:f6:6a:c9:90:6c:2c:a6:15:91:1f:e3:1d:23:1a:c7:a8: 9c:21:ef:97:85:b6:44:f2:27:e1:af:0f:9c:90:4d:3b:1a:fb: a8:cc:89:97:4e:7c:3b:0e:32:68:69:c5:b1:2c:05:4e:b0:ee: 57:b9:0d:b9:27:ec:bb:f9:20:9f:6c:88:52:f0:d6:2d:e7:19: f3:4f:d9:09 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXqxEUhkTUWvYN2KVGpd5221S7jMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMy NzdFNzFFNDAeFw0yNjAzMjMwNjA2MTZaFw0yNjAzMjYxMjU4MTZaMDMxMTAvBgNV BAMTKENFMkFENjAwNENGRDZBMkU4NENBNEVBRjVBNjFCRkQzODMxQzIyNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU1G16Fp+R7uK4sKTTk7vcNnQV LVuJ3ly4RAAyZts35lwQNMSRkAF/SWg+//O1EHBAusdk83rhLlqeX0XcTnbVpA5e +Bus1jj2vK2fjrcguOER7rs+jE0w80504eAB3aUfQAwUBwjdEiX5o3SVeLVg6p/m po4mZvrpWJ4SEwNQznb9skBT97XEOOYMMszb07spJrK5HCvTVsotELSC2plpoYyH lU7Wp5tvQqySeYpsEk1kwGkDouPvUdBZiZsiL6kwYdm2jYOyLD0a91ZlMsiCMhOV GF5gR3Vgbt9aAnAIAPgBdqp7EYX+SLkedUMYhcTCSr/msXt0h10onk0k+qLnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzirWAEz9ai6Eyk6vWmG/04McIkswHwYDVR0j BBgwFoAUKGEnclQ+QzNbCAwygIt/3Cd+ceQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjEzMGI3NS00NTkzLTQxNDEtYTA2Zi01N2EyMmEwMjNkZDAvMC8yODYxMjc3MjU0 M0U0MzMzNUIwODBDMzI4MDhCN0ZEQzI3N0U3MUU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMyNzdF NzFFNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2IxMzBiNzUtNDU5My00MTQxLWEw NmYtNTdhMjJhMDIzZGQwLzAvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdG REMyNzdFNzFFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALibuNw9CXQPbfLNEaQVrIPohmDxT1MYGy8N O297fAkg1hnTC6oQXyvW1TEouTgz2OjrJDtclXJpVpcPuRoSmEn+GEH+EPKT0zH6 yCnHxh8/W0cZzs8HqxpGMjPUwXhhDP0NuWUAoWcg/NuuVqnUrfAHSzaFaD99whPL e+dYPLM/UL1xY/MvI4bSjlIpinbBm4YzkTiH8qFDpgOInysh5CDp+m8vFUEXjkrc aY+BCF7R60xesezm9mrJkGwsphWRH+MdIxrHqJwh75eFtkTyJ+GvD5yQTTsa+6jM iZdOfDsOMmhpxbEsBU6w7le5Dbkn7Lv5IJ9siFLw1i3nGfNP2Qk= -----END CERTIFICATE-----Generated at Mon Mar 23 08:26:55 2026 by rpki-client