$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: f1Ous8dRLKxuL2vAh/nFbGOJCiqXSHpE0xSgXCFeMMA= Subject key identifier: D5:65:D0:21:53:EC:23:FB:B8:1F:87:FB:64:5E:28:1F:6B:4C:3D:09 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 5476A90558EB7648AB8DF13012862D8ED4FB8C78 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 055B Signing time: Mon 16 Mar 2026 02:00:51 +0000 Manifest this update: Mon 16 Mar 2026 01:55:51 +0000 Manifest next update: Thu 19 Mar 2026 03:22:51 +0000 Files and hashes: 1: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 2: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 3: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 4: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: zgCNttAMtPpLp7t6O4nfYtznhyGvbBEIMB2+VsTIgFw=) 5: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 6: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 7: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 8: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 9: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 10: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 03:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:76:a9:05:58:eb:76:48:ab:8d:f1:30:12:86:2d:8e:d4:fb:8c:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Mar 16 01:55:51 2026 GMT Not After : Mar 19 03:22:51 2026 GMT Subject: CN=D565D02153EC23FBB81F87FB645E281F6B4C3D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e2:c6:6d:e8:40:02:df:ee:2c:b0:b1:b7:c8: f0:1d:1b:20:d1:9a:a2:55:ec:14:04:15:41:24:0b: 46:df:2d:84:03:c0:16:af:18:0b:98:3e:6d:53:ab: e2:86:9e:48:f1:f0:7a:be:59:65:2a:59:6d:73:ae: a0:5b:4a:56:d5:a8:55:f9:db:f3:49:aa:5a:0c:26: 6c:42:df:ce:58:e2:a5:af:52:f5:78:c3:8d:88:c7: d9:6a:c3:56:2a:72:40:55:a2:8a:5c:5f:0a:cf:0c: 54:df:56:c1:ab:57:c9:5d:9a:af:73:5b:f2:e5:be: f9:7a:67:28:03:f1:64:dd:0d:83:e9:b1:44:4c:ce: ad:c9:e0:3d:fa:f4:c5:c3:c9:24:08:29:6f:3f:af: 73:9b:42:d4:e8:3a:7a:5f:24:3c:99:19:4c:17:7b: e9:d5:b9:09:0f:4a:a7:a1:8b:82:da:36:5a:57:bb: 67:82:f5:7a:da:9c:f1:e6:b2:9d:f6:48:09:dc:3b: bf:d2:b7:c2:92:60:4e:21:29:81:a5:08:19:f2:e8: 7e:d0:d6:60:24:9a:9a:e3:58:6b:84:d9:85:ff:1a: e6:d6:7a:09:5e:0b:26:0f:3c:f7:50:15:28:2b:65: d7:c2:20:2d:29:db:bc:5b:fd:c7:4b:a2:be:92:7d: 6f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:65:D0:21:53:EC:23:FB:B8:1F:87:FB:64:5E:28:1F:6B:4C:3D:09 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ff:82:d1:ed:82:c8:fa:08:ec:3a:61:e4:25:e0:90:e7:c7: 69:9b:69:ac:81:81:50:60:b2:dc:3a:8c:d6:5c:ad:d8:d1:a7: 0d:34:29:2c:79:84:85:ac:0d:5a:8b:4b:18:f1:ea:b6:27:0a: 52:bf:89:c7:b4:9f:07:53:98:67:c6:46:8b:39:9f:ee:94:8b: c6:25:ac:b3:fa:4c:42:16:bc:a6:52:22:95:19:10:aa:4c:4e: bc:9e:b9:b3:6c:cf:44:64:0a:f7:ac:84:4d:c0:6b:08:b9:02: 65:ff:38:c1:ae:8f:b0:27:78:d6:4d:4c:99:0b:fe:68:54:ad: 00:92:0b:a8:99:06:30:fe:5f:6f:7d:7d:72:d2:82:6b:55:b5: 46:4c:96:72:43:e1:0a:5f:cb:9d:85:23:5e:29:48:d6:24:68: 17:27:5c:1c:08:b9:6c:21:25:ae:1e:57:76:00:cb:0e:6d:ab: 31:8f:1c:f2:9d:57:70:28:ec:7e:3d:d4:9d:56:55:08:c1:ed: 3d:f5:f3:ca:df:5f:56:d5:e8:c8:c8:ea:95:d9:ac:b4:26:d3: 35:7e:bf:a2:28:b3:f4:f7:65:d4:3f:94:98:41:76:f6:2d:06: be:20:a1:58:c3:fe:31:55:f3:8b:fd:51:95:5e:27:c4:92:f9: 30:45:e4:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVHapBVjrdkirjfEwEoYtjtT7jHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNjAzMTYwMTU1NTFaFw0yNjAzMTkwMzIyNTFaMDMxMTAvBgNV BAMTKEQ1NjVEMDIxNTNFQzIzRkJCODFGODdGQjY0NUUyODFGNkI0QzNEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn4sZt6EAC3+4ssLG3yPAdGyDR mqJV7BQEFUEkC0bfLYQDwBavGAuYPm1Tq+KGnkjx8Hq+WWUqWW1zrqBbSlbVqFX5 2/NJqloMJmxC385Y4qWvUvV4w42Ix9lqw1YqckBVoopcXwrPDFTfVsGrV8ldmq9z W/Llvvl6ZygD8WTdDYPpsURMzq3J4D369MXDySQIKW8/r3ObQtToOnpfJDyZGUwX e+nVuQkPSqehi4LaNlpXu2eC9XranPHmsp32SAncO7/St8KSYE4hKYGlCBny6H7Q 1mAkmprjWGuE2YX/GubWegleCyYPPPdQFSgrZdfCIC0p27xb/cdLor6SfW8HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1WXQIVPsI/u4H4f7ZF4oH2tMPQkwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFD/gtHtgsj6COw6YeQl4JDnx2mbaayBgVBg stw6jNZcrdjRpw00KSx5hIWsDVqLSxjx6rYnClK/ice0nwdTmGfGRos5n+6Ui8Yl rLP6TEIWvKZSIpUZEKpMTryeubNsz0RkCveshE3Aawi5AmX/OMGuj7AneNZNTJkL /mhUrQCSC6iZBjD+X299fXLSgmtVtUZMlnJD4Qpfy52FI14pSNYkaBcnXBwIuWwh Ja4eV3YAyw5tqzGPHPKdV3Ao7H491J1WVQjB7T3188rfX1bV6MjI6pXZrLQm0zV+ v6Ios/T3ZdQ/lJhBdvYtBr4goVjD/jFV84v9UZVeJ8SS+TBF5AA= -----END CERTIFICATE-----Generated at Mon Mar 16 19:12:57 2026 by rpki-client