$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: dQ/iWgEL69khhHKadEtK3TlRRdJV5fHskQ0yvAZzGU0= Subject key identifier: 20:07:BE:EF:C8:5E:95:01:FD:A2:FC:72:98:7A:F0:EC:CB:B7:F2:B6 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 19B967C1501E0072F571131FD67D7225F35D9367 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 0220 Signing time: Wed 18 Mar 2026 07:51:25 +0000 Manifest this update: Wed 18 Mar 2026 07:46:25 +0000 Manifest next update: Sat 21 Mar 2026 19:08:25 +0000 Files and hashes: 1: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) 2: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: tYFmyFEG2U12fmshL1SEVNz6aJboEZa5WiUzf+rgM2I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 19:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b9:67:c1:50:1e:00:72:f5:71:13:1f:d6:7d:72:25:f3:5d:93:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Mar 18 07:46:25 2026 GMT Not After : Mar 21 19:08:25 2026 GMT Subject: CN=2007BEEFC85E9501FDA2FC72987AF0ECCBB7F2B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:be:2c:65:72:6c:bf:3c:d2:6f:70:89:2a: d6:66:f3:69:eb:cd:d3:c0:68:86:35:02:11:a1:a8: 14:ee:f7:bf:52:e9:ec:4f:66:7f:23:93:16:cd:a9: be:57:cb:13:99:47:34:ce:49:a0:74:ce:1d:e4:4a: 84:66:97:31:8d:0c:2f:04:6e:c1:fd:98:b1:7f:74: 3e:d8:a1:0d:71:dd:d2:df:5f:98:5f:78:f4:90:86: f0:9d:75:3d:12:b7:54:be:8c:9a:7d:2b:c5:92:fc: 80:94:e4:51:8a:39:af:f1:1e:2a:5d:22:82:02:6c: f7:5f:8b:e1:6d:91:98:98:43:bd:4a:7f:bd:55:59: 1a:b1:e3:39:6e:56:51:f4:8c:c7:ac:db:15:ca:fa: af:2f:3c:b1:ad:ed:30:45:8d:12:90:9c:a8:26:66: f1:39:c9:ab:f0:5d:7d:d6:83:0e:a6:49:88:07:ce: 81:f3:2a:1b:e4:f0:f8:5e:14:21:ee:e3:f0:42:ba: 0b:3b:fa:b6:3c:cc:49:7c:ea:37:b7:8b:c7:77:61: 61:da:89:fb:72:ef:b8:57:76:88:22:6a:ad:1e:86: 8e:b9:a9:ea:cb:f4:34:af:57:0e:89:48:b4:7a:c8: d5:19:4a:32:3d:9a:fa:fc:4d:c7:52:6d:5e:54:db: ba:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:07:BE:EF:C8:5E:95:01:FD:A2:FC:72:98:7A:F0:EC:CB:B7:F2:B6 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:5a:21:e1:3e:7a:fd:af:ff:24:2f:ff:e9:53:f2:40:86:56: 1f:ba:48:95:82:2c:61:6f:58:9c:3f:32:98:51:45:10:90:87: db:8d:25:7c:f8:9b:72:72:bb:9d:94:50:56:72:d2:f1:0b:b9: fb:ba:71:3e:99:e0:f6:c6:43:4f:46:c9:9b:da:f1:c3:9d:f6: fc:8a:30:fc:c8:75:d1:32:fa:82:64:ab:ad:e1:ea:e8:e0:06: 76:e1:78:f2:54:11:7c:bc:9c:1f:b6:f5:fa:38:a8:76:95:86: 76:d4:6b:69:ac:db:0a:d9:c7:85:e4:cc:8f:d1:17:72:43:3c: 9e:cb:2f:02:b1:47:f5:b6:06:2b:2b:98:fa:74:12:2c:84:1e: 93:c9:a3:95:38:12:d3:6d:68:c8:34:03:b6:46:71:2d:77:18: 9c:88:c3:81:d4:fc:8e:92:8b:3c:2a:b5:b2:91:7b:ae:bf:d4: 96:b3:a7:d4:27:6b:1c:0a:c0:57:45:84:3e:57:57:a0:d2:0a: 13:9f:83:06:1e:8e:75:84:cd:ea:48:7e:84:4e:1f:29:62:49: fa:eb:f3:f6:14:d3:bc:ed:37:31:15:70:bc:ee:49:4b:dc:16: 13:5d:8c:18:f6:0a:fa:95:5b:57:99:a0:bc:ee:29:93:da:e9: 9a:93:a0:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGblnwVAeAHL1cRMf1n1yJfNdk2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNjAzMTgwNzQ2MjVaFw0yNjAzMjExOTA4MjVaMDMxMTAvBgNV BAMTKDIwMDdCRUVGQzg1RTk1MDFGREEyRkM3Mjk4N0FGMEVDQ0JCN0YyQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxL4sZXJsvzzSb3CJKtZm82nr zdPAaIY1AhGhqBTu979S6exPZn8jkxbNqb5XyxOZRzTOSaB0zh3kSoRmlzGNDC8E bsH9mLF/dD7YoQ1x3dLfX5hfePSQhvCddT0St1S+jJp9K8WS/ICU5FGKOa/xHipd IoICbPdfi+FtkZiYQ71Kf71VWRqx4zluVlH0jMes2xXK+q8vPLGt7TBFjRKQnKgm ZvE5yavwXX3Wgw6mSYgHzoHzKhvk8PheFCHu4/BCugs7+rY8zEl86je3i8d3YWHa ifty77hXdogiaq0eho65qerL9DSvVw6JSLR6yNUZSjI9mvr8TcdSbV5U27pFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIAe+78helQH9ovxymHrw7Mu38rYwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpaIeE+ev2v/yQv/+lT8kCGVh+6SJWCLGFv WJw/MphRRRCQh9uNJXz4m3Jyu52UUFZy0vELufu6cT6Z4PbGQ09GyZva8cOd9vyK MPzIddEy+oJkq63h6ujgBnbhePJUEXy8nB+29fo4qHaVhnbUa2ms2wrZx4XkzI/R F3JDPJ7LLwKxR/W2BisrmPp0EiyEHpPJo5U4EtNtaMg0A7ZGcS13GJyIw4HU/I6S izwqtbKRe66/1Jazp9QnaxwKwFdFhD5XV6DSChOfgwYejnWEzepIfoROHyliSfrr 8/YU07ztNzEVcLzuSUvcFhNdjBj2CvqVW1eZoLzuKZPa6ZqToMs= -----END CERTIFICATE-----Generated at Thu Mar 19 09:38:15 2026 by rpki-client