$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: BXAPXYYlKXfn1ZyNc1f84U1zM4xbmuiKgdzypjG14jo= Subject key identifier: A0:00:02:90:80:19:82:F0:2A:88:79:DD:E9:1F:C6:4F:41:59:24:BB Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 637660C124D0E583D9E6268D3D6E2AB037CE33CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 02DB Signing time: Sat 07 Mar 2026 18:30:58 +0000 Manifest this update: Sat 07 Mar 2026 18:25:58 +0000 Manifest next update: Wed 11 Mar 2026 01:57:58 +0000 Files and hashes: 1: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: nvjDxROQHm7mdDmzwLg6yUuwQNkDoH03tB21+xsxZfA=) 2: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:76:60:c1:24:d0:e5:83:d9:e6:26:8d:3d:6e:2a:b0:37:ce:33:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Mar 7 18:25:58 2026 GMT Not After : Mar 11 01:57:58 2026 GMT Subject: CN=A0000290801982F02A8879DDE91FC64F415924BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:05:ac:0e:ad:05:22:19:79:67:d1:a7:e9:19: f7:b3:b0:dd:43:0b:1a:1b:6f:44:75:8f:c4:a0:66: 7e:2d:6e:8b:cb:6e:3a:6b:00:98:29:8a:0e:78:ba: b6:c6:3a:51:87:18:27:2a:4b:04:a3:39:66:6c:8b: a8:e2:3b:ff:17:30:ca:02:fc:fe:cc:6a:ea:ae:fb: 40:13:e4:96:ce:f2:4e:ac:42:cd:50:46:85:67:3b: 6f:ed:f9:03:71:7c:70:18:44:8c:b5:aa:79:5d:0c: 29:0c:fc:fe:60:a1:96:81:7b:e6:81:e0:8a:30:21: 63:da:74:6f:92:01:18:8f:94:69:a1:ad:76:59:4c: cf:90:39:01:3c:a4:92:9f:3b:b4:4f:1a:95:01:58: a5:dd:8c:fb:2d:9e:82:16:cd:f6:e7:4e:de:55:e1: e4:19:68:c6:c5:a6:3b:0b:b7:a7:e5:44:c2:ef:37: 08:8d:9a:d8:00:ae:ae:87:36:e6:7b:0f:bd:a0:fb: b7:cf:78:3b:a2:48:e7:79:7c:6e:20:98:e6:ec:58: 0b:54:ce:27:2d:bb:81:3b:9d:38:88:9b:89:47:61: 33:59:5d:53:67:0b:af:7d:b3:bd:f4:82:fc:09:1e: 66:72:fb:5d:f1:2a:18:e9:b6:4b:6f:3c:50:e6:75: 78:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:00:02:90:80:19:82:F0:2A:88:79:DD:E9:1F:C6:4F:41:59:24:BB X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:e8:1d:1f:f2:91:01:55:67:7d:e9:72:19:4d:da:20:b1:84: ff:be:51:c9:06:b1:32:ef:6b:19:7e:60:88:7a:d7:74:ea:50: b9:c4:a0:b4:a2:a1:b8:26:5e:f4:05:8b:79:f9:3a:0e:38:0f: bc:fc:12:59:40:09:48:c8:18:5e:6f:dc:54:be:82:41:ed:70: a1:9f:7b:6a:48:6e:86:5a:1c:ef:7c:40:08:42:d8:1e:7b:55: 7b:81:05:ad:6b:1b:7f:59:83:ef:3a:ca:f3:06:a3:fa:fa:89: 9d:62:45:a7:92:85:4b:f9:3c:12:39:14:90:cb:8c:74:08:91: a4:b1:a7:49:61:3e:22:a3:50:32:9a:23:76:b8:cf:a2:1e:7c: 0a:73:32:19:b5:a4:9d:6a:5d:db:dd:11:dc:c1:8a:de:4e:be: 12:68:a0:c7:f4:39:43:af:91:16:de:b0:4f:40:9d:c1:fd:83: e7:2c:d9:e8:06:ea:1a:ca:0b:7f:dc:f2:cb:f6:60:f0:7d:c2: 95:55:91:b3:b8:22:fe:e3:85:76:43:34:2c:ea:19:7d:eb:88: 52:fe:8d:4d:b6:77:f2:ef:8c:63:c8:b1:f6:fa:30:c0:83:b5: 3d:07:74:68:ed:a3:f5:c4:5c:a3:d1:10:ac:4d:3a:66:ad:4d: 31:4f:69:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY3ZgwSTQ5YPZ5iaNPW4qsDfOM84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNjAzMDcxODI1NThaFw0yNjAzMTEwMTU3NThaMDMxMTAvBgNV BAMTKEEwMDAwMjkwODAxOTgyRjAyQTg4NzlEREU5MUZDNjRGNDE1OTI0QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyBawOrQUiGXln0afpGfezsN1D Cxobb0R1j8SgZn4tbovLbjprAJgpig54urbGOlGHGCcqSwSjOWZsi6jiO/8XMMoC /P7Mauqu+0AT5JbO8k6sQs1QRoVnO2/t+QNxfHAYRIy1qnldDCkM/P5goZaBe+aB 4IowIWPadG+SARiPlGmhrXZZTM+QOQE8pJKfO7RPGpUBWKXdjPstnoIWzfbnTt5V 4eQZaMbFpjsLt6flRMLvNwiNmtgArq6HNuZ7D72g+7fPeDuiSOd5fG4gmObsWAtU zictu4E7nTiIm4lHYTNZXVNnC699s730gvwJHmZy+13xKhjptktvPFDmdXghAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoAACkIAZgvAqiHnd6R/GT0FZJLswHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALHoHR/ykQFVZ33pchlN2iCxhP++UckGsTLv axl+YIh613TqULnEoLSiobgmXvQFi3n5Og44D7z8EllACUjIGF5v3FS+gkHtcKGf e2pIboZaHO98QAhC2B57VXuBBa1rG39Zg+86yvMGo/r6iZ1iRaeShUv5PBI5FJDL jHQIkaSxp0lhPiKjUDKaI3a4z6IefApzMhm1pJ1qXdvdEdzBit5OvhJooMf0OUOv kRbesE9AncH9g+cs2egG6hrKC3/c8sv2YPB9wpVVkbO4Iv7jhXZDNCzqGX3riFL+ jU22d/LvjGPIsfb6MMCDtT0HdGjto/XEXKPREKxNOmatTTFPacU= -----END CERTIFICATE-----Generated at Sat Mar 7 21:04:03 2026 by rpki-client