$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft File: 8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft (raw, json) Hash identifier: O4++dZjuNeAYENXozta4A7xTVA/V7YFmjY7ypv2242I= Subject key identifier: E8:AA:06:FF:8D:EE:DF:01:DF:F0:A1:4F:27:13:9F:59:99:DA:DB:E0 Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 4ABE30DE3BB92F5F7309F5C742B80F64D01E0D08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft Manifest number: 0449 Signing time: Wed 18 Mar 2026 23:52:13 +0000 Manifest this update: Wed 18 Mar 2026 23:47:13 +0000 Manifest next update: Sun 22 Mar 2026 07:25:13 +0000 Files and hashes: 1: 3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa (hash: U5t1gz5Lu8bYdTDoG7TIErUjYPNGo4xQEu5agXugT3k=) 2: 3130332e3134382e31382e302f32332d3233203d3e20313339393738.roa (hash: 4K0py4cnYyh8vI10iLQo1yG8FCXY4pSX4oMXyg6m2pw=) 3: 8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl (hash: PeDWKrxJzo15Nj7F5Gwd+UDa9ca729wuDrWX5b05qGg=) 4: 3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa (hash: bezCvX8XgFSa6OMSK27HUjxxwyFifSYbogKsMqbTNHQ=) 5: 323430353a633763303a3a2f33322d3332203d3e20313339393738.roa (hash: piwF7+ON2R793sJiaX+4aFfo5D7cOZdp7goWhivyjxE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 07:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:be:30:de:3b:b9:2f:5f:73:09:f5:c7:42:b8:0f:64:d0:1e:0d:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Mar 18 23:47:13 2026 GMT Not After : Mar 22 07:25:13 2026 GMT Subject: CN=E8AA06FF8DEEDF01DFF0A14F27139F5999DADBE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e0:26:61:ed:18:f4:5a:fe:4f:bb:5b:84:40: 88:56:fe:eb:60:00:e7:3a:26:dd:57:fa:c2:15:8b: 37:51:fa:e5:55:f5:7e:96:1a:52:ea:79:62:f3:d6: 4c:d1:a7:fd:44:31:78:31:00:c9:fd:4d:c4:e4:2a: e0:d2:f7:75:ab:d5:83:be:cb:00:72:15:cd:45:eb: a2:5c:34:56:d6:53:06:c4:a7:f8:4d:06:8e:55:39: 0f:67:5f:97:4d:0f:2b:5e:64:df:53:25:11:5b:71: 8a:33:55:c0:81:a9:9e:b9:4f:20:df:2f:ad:b8:9e: 00:cf:63:5c:af:53:74:67:97:95:ce:0c:68:c1:e1: 37:6c:79:55:4a:00:98:f2:8c:4c:c1:c6:47:10:c8: 5f:dc:4a:3f:ad:8b:20:e6:e2:22:b9:25:71:23:e2: 1e:00:c7:a8:ce:2a:37:22:78:c8:c4:40:69:95:9d: 96:dd:21:4e:51:f6:72:49:c2:23:d3:1a:48:2b:40: aa:a2:eb:3f:0a:e8:d6:58:77:8c:80:83:ed:8a:ff: 86:fe:6c:e1:75:77:e2:69:41:88:c7:98:4c:ac:38: 6f:85:d5:e8:cf:87:78:b1:ca:50:50:3b:2f:b8:f0: 33:3c:e6:54:f3:c5:79:9d:eb:0c:67:9e:83:68:17: f1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AA:06:FF:8D:EE:DF:01:DF:F0:A1:4F:27:13:9F:59:99:DA:DB:E0 X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:c8:48:cc:02:ab:6e:ec:04:99:fe:8e:84:66:7b:e9:a7:98: ae:68:50:1d:be:f8:f7:d0:12:93:de:96:6a:a0:8b:08:7d:85: c8:a6:32:22:cc:3e:c3:5e:61:50:88:34:ff:31:56:af:59:9d: bd:eb:f3:47:1c:94:43:35:07:2d:c0:7f:01:c4:cf:4e:b2:dd: 5d:fa:1d:62:7e:0e:2e:51:33:40:a2:72:c3:5a:0e:53:2c:73: 27:ec:b1:96:22:6b:60:10:6f:9d:2f:2f:54:7e:85:7d:9f:cf: 34:79:1d:e0:ef:57:d6:24:f1:03:5b:9d:7f:a2:02:20:fe:f2: 20:ea:ac:ca:5e:fb:39:b2:0e:9d:14:c5:0f:20:45:0a:8d:df: 23:fd:39:ac:23:7c:2f:99:08:c8:3e:98:f2:30:1e:31:12:0e: e2:5e:e0:72:1e:22:3a:60:14:bb:bc:02:81:1d:ae:2c:e1:28: 42:dd:e6:de:74:06:68:96:0a:39:e4:c5:1f:35:77:64:5c:94: 72:f4:1e:9f:14:3a:40:a2:dc:f6:8c:4b:3c:3d:45:6e:d8:24: 7a:e8:88:9d:0a:a9:a0:d5:20:63:09:5e:fc:8f:a6:fb:e8:ba: eb:d8:ae:c3:18:3b:fd:98:24:3a:9d:b6:d0:6a:b6:6b:27:8a: e1:ff:37:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSr4w3ju5L19zCfXHQrgPZNAeDQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNjAzMTgyMzQ3MTNaFw0yNjAzMjIwNzI1MTNaMDMxMTAvBgNV BAMTKEU4QUEwNkZGOERFRURGMDFERkYwQTE0RjI3MTM5RjU5OTlEQURCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm4CZh7Rj0Wv5Pu1uEQIhW/utg AOc6Jt1X+sIVizdR+uVV9X6WGlLqeWLz1kzRp/1EMXgxAMn9TcTkKuDS93Wr1YO+ ywByFc1F66JcNFbWUwbEp/hNBo5VOQ9nX5dNDyteZN9TJRFbcYozVcCBqZ65TyDf L624ngDPY1yvU3Rnl5XODGjB4TdseVVKAJjyjEzBxkcQyF/cSj+tiyDm4iK5JXEj 4h4Ax6jOKjcieMjEQGmVnZbdIU5R9nJJwiPTGkgrQKqi6z8K6NZYd4yAg+2K/4b+ bOF1d+JpQYjHmEysOG+F1ejPh3ixylBQOy+48DM85lTzxXmd6wxnnoNoF/GFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6KoG/43u3wHf8KFPJxOfWZna2+AwHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjdiODdmNmQtMjlhNy00YjRjLTgx YzctNWI0Y2JkYjJjYjZhLzAvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhF Mjc5NjNBRkUxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHTISMwCq27sBJn+joRme+mnmK5oUB2++PfQ EpPelmqgiwh9hcimMiLMPsNeYVCINP8xVq9Znb3r80cclEM1By3AfwHEz06y3V36 HWJ+Di5RM0CicsNaDlMscyfssZYia2AQb50vL1R+hX2fzzR5HeDvV9Yk8QNbnX+i AiD+8iDqrMpe+zmyDp0UxQ8gRQqN3yP9OawjfC+ZCMg+mPIwHjESDuJe4HIeIjpg FLu8AoEdrizhKELd5t50BmiWCjnkxR81d2RclHL0Hp8UOkCi3PaMSzw9RW7YJHro iJ0KqaDVIGMJXvyPpvvouuvYrsMYO/2YJDqdttBqtmsniuH/N8M= -----END CERTIFICATE-----Generated at Thu Mar 19 09:23:19 2026 by rpki-client