$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: N0+ixgyzImWxaNLNUlqpGMgjsCk/IuJ+mPUPF4JX3wE= Subject key identifier: 4D:3F:55:7C:A8:BB:E9:58:C9:58:71:E4:A0:DF:6B:69:F7:CD:1C:8B Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 0D9C0E4F31F15FC771DEF84A44BEA08141F120DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 012F Signing time: Fri 06 Mar 2026 22:32:33 +0000 Manifest this update: Fri 06 Mar 2026 22:27:33 +0000 Manifest next update: Mon 09 Mar 2026 23:07:33 +0000 Files and hashes: 1: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: Qv64c2n6BHHSH5HAYj0KPzBY02Clhcr8BZgQbcVBqyY=) 2: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: XHVllAX/UXDKrZwLLYWAgUneaiPswSM3kgLSE6ruL6s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9c:0e:4f:31:f1:5f:c7:71:de:f8:4a:44:be:a0:81:41:f1:20:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Mar 6 22:27:33 2026 GMT Not After : Mar 9 23:07:33 2026 GMT Subject: CN=4D3F557CA8BBE958C95871E4A0DF6B69F7CD1C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:86:4e:c8:b8:01:7d:aa:2c:a9:c5:af:af:e3: 6c:5b:bf:a9:96:49:ba:8a:4d:45:75:b2:14:b6:4d: 9a:93:8f:ea:25:54:74:07:34:55:bc:68:53:9e:76: 5e:9a:5a:dd:f4:03:9c:eb:e0:9a:22:c0:03:f0:7e: f2:48:88:7c:52:03:7b:09:49:c7:ca:87:83:ad:5f: ba:ef:0b:3a:d0:75:3f:f3:25:6a:02:6c:2b:70:af: 07:71:14:dc:ad:27:ee:66:40:bf:a5:cb:99:a2:99: 2d:7f:0b:5c:79:b2:71:0a:60:1f:84:fd:1b:c1:09: 53:1c:57:fe:a4:6a:1a:5a:b5:a6:de:fd:2e:36:5a: b4:02:29:ff:63:7f:ad:f8:8c:b0:f0:4e:cb:b2:c6: b2:a3:8c:17:c0:e2:0a:69:92:60:c0:d0:c3:14:04: f1:88:c3:6b:4a:14:a2:ff:a0:18:3b:b8:02:ae:d7: f3:09:17:10:de:5e:e5:7b:b5:e0:10:74:7c:d5:47: 47:c1:12:fd:6c:24:7a:a6:6b:2f:f2:01:20:a9:0c: b9:08:69:be:24:69:a6:f6:8e:dd:2c:b1:27:7b:2f: 68:f6:97:1f:21:a5:a9:83:e1:70:07:8b:41:4f:96: ae:5d:97:2d:05:00:fb:08:bf:b7:0a:91:6e:50:ba: 68:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:3F:55:7C:A8:BB:E9:58:C9:58:71:E4:A0:DF:6B:69:F7:CD:1C:8B X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:78:2d:84:17:cb:a4:50:c7:ad:22:12:29:c8:4d:1e:72:64: 4b:42:6d:31:08:09:83:67:06:be:b8:5b:4f:67:1c:1b:2e:1e: 3d:f2:79:59:95:79:d1:2b:dd:83:58:40:c3:9d:eb:cf:1c:2a: 26:3d:9d:cd:f2:61:d9:42:29:b0:c5:69:8e:29:85:0a:d9:6a: df:b3:17:d4:37:9b:83:83:1f:b6:b2:57:cf:fa:42:f0:89:46: 3f:a3:bc:ad:34:e9:97:80:eb:e1:92:f3:b5:15:b0:50:cd:c8: 8b:31:5b:ed:c0:51:65:78:c0:57:b3:c9:99:8c:77:d4:06:8c: 52:e7:ad:39:90:b7:83:29:0f:96:b9:00:f9:8a:b5:1a:31:7a: ab:d3:df:71:bd:8c:43:89:bf:17:ff:3a:7b:f4:98:ac:16:54: 60:c6:37:35:68:72:dd:3c:89:8b:71:37:1c:38:d9:64:70:d5: 34:a9:5e:22:c9:bb:79:37:d4:98:68:5b:3d:b8:96:5c:1f:5b: e7:4f:ca:93:1c:d1:07:b0:53:e7:5c:22:20:90:02:63:48:ea: 1c:07:5f:18:63:43:b8:63:33:a3:cd:bd:3a:b8:b2:85:3c:a0: e5:96:3e:cd:55:df:78:36:00:7a:69:63:7b:03:d9:66:be:81: 99:98:cd:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDZwOTzHxX8dx3vhKRL6ggUHxINswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNjAzMDYyMjI3MzNaFw0yNjAzMDkyMzA3MzNaMDMxMTAvBgNV BAMTKDREM0Y1NTdDQThCQkU5NThDOTU4NzFFNEEwREY2QjY5RjdDRDFDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7hk7IuAF9qiypxa+v42xbv6mW SbqKTUV1shS2TZqTj+olVHQHNFW8aFOedl6aWt30A5zr4JoiwAPwfvJIiHxSA3sJ ScfKh4OtX7rvCzrQdT/zJWoCbCtwrwdxFNytJ+5mQL+ly5mimS1/C1x5snEKYB+E /RvBCVMcV/6kahpatabe/S42WrQCKf9jf634jLDwTsuyxrKjjBfA4gppkmDA0MMU BPGIw2tKFKL/oBg7uAKu1/MJFxDeXuV7teAQdHzVR0fBEv1sJHqmay/yASCpDLkI ab4kaab2jt0ssSd7L2j2lx8hpamD4XAHi0FPlq5dly0FAPsIv7cKkW5QumhLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTT9VfKi76VjJWHHkoN9raffNHIswHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB94LYQXy6RQx60iEinITR5yZEtCbTEICYNn Br64W09nHBsuHj3yeVmVedEr3YNYQMOd688cKiY9nc3yYdlCKbDFaY4phQrZat+z F9Q3m4ODH7ayV8/6QvCJRj+jvK006ZeA6+GS87UVsFDNyIsxW+3AUWV4wFezyZmM d9QGjFLnrTmQt4MpD5a5APmKtRoxeqvT33G9jEOJvxf/Onv0mKwWVGDGNzVoct08 iYtxNxw42WRw1TSpXiLJu3k31JhoWz24llwfW+dPypMc0QewU+dcIiCQAmNI6hwH XxhjQ7hjM6PNvTq4soU8oOWWPs1V33g2AHppY3sD2Wa+gZmYzRk= -----END CERTIFICATE-----Generated at Sat Mar 7 17:50:31 2026 by rpki-client