$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: sOvfJrUyQZwak/r7/gC2AYgIOtM9jV63F+HXQ9ucedA= Subject key identifier: A0:5C:5A:4F:16:84:88:55:33:E5:17:A5:77:45:EE:47:AB:8A:EF:6E Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 189090287310859ED8BC143027D2437877B97F87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 03AA Signing time: Tue 24 Mar 2026 00:42:07 +0000 Manifest this update: Tue 24 Mar 2026 00:37:07 +0000 Manifest next update: Fri 27 Mar 2026 01:08:07 +0000 Files and hashes: 1: 3130332e3136312e37332e302f32342d3234203d3e20313430333936.roa (hash: /rt35EUSw4Ix6/cmxLUEYEesdVZ42xEum9IJJSBZ0aY=) 2: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (hash: KGeHvvLL7YUj6ruPXwXmEedVa7petv8U3MdeekZgjts=) 3: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (hash: yhKeiwU+JCs9UN8oh228h1Q0h11o4+yJwLGZRxsDQjM=) 4: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: S4ol0/Un07iFa4bK+rSr6JcyUf1TcnuDrvp36A5a/c4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 01:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:90:90:28:73:10:85:9e:d8:bc:14:30:27:d2:43:78:77:b9:7f:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Mar 24 00:37:07 2026 GMT Not After : Mar 27 01:08:07 2026 GMT Subject: CN=A05C5A4F1684885533E517A57745EE47AB8AEF6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0c:34:76:db:bc:48:fe:72:2c:8c:c8:95:e2: a3:75:00:8b:2d:1e:54:bf:e6:13:c2:e2:b5:45:f5: 0c:ea:02:f7:ff:9d:3d:cc:61:18:cf:6c:34:1e:c8: 2a:47:04:41:05:8c:c3:2e:87:d3:94:cd:69:79:75: dd:d2:89:85:40:93:f6:16:49:e9:27:79:70:48:18: 52:0f:68:37:44:5a:cd:5b:ad:54:98:3a:0b:5d:92: 71:27:70:af:40:f3:06:e7:6c:e5:09:2d:32:37:7c: 94:73:c3:84:bc:4e:24:a9:8f:a6:ad:0e:3d:6d:96: 0c:21:85:84:d4:29:91:0c:b1:91:a5:00:08:a9:21: 9e:8e:b1:69:9d:21:00:fe:4e:8a:65:76:51:2d:64: 3c:26:08:f5:d4:55:be:76:27:6c:e1:c1:f1:57:17: eb:ec:20:05:41:59:e4:d2:0f:3a:9a:ca:26:a7:1e: d6:8b:2b:c8:6a:3f:b0:0e:be:50:ab:b2:87:7e:d8: 64:1a:d7:57:5d:55:11:e6:ce:79:ad:f9:a7:b4:79: a0:76:7d:d1:ce:17:1e:46:71:11:1e:c1:42:70:fa: c2:cd:e3:8d:55:4c:05:1e:b8:82:e7:e0:5d:df:5a: e2:d3:6e:ab:18:6e:f9:7c:bc:16:32:a1:05:c3:81: 23:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5C:5A:4F:16:84:88:55:33:E5:17:A5:77:45:EE:47:AB:8A:EF:6E X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:53:99:9b:0d:29:9b:70:2b:51:4f:42:26:ac:95:08:3b:27: e1:d3:fd:a2:80:c9:a1:ef:84:8a:9e:2f:04:23:86:bb:50:fe: 93:02:32:fa:bb:bb:0c:63:07:8b:86:d7:9b:b1:7a:f5:e2:e0: 05:b5:82:c5:a2:91:78:d4:8b:8d:32:09:a9:79:1b:81:4b:56: 17:6d:ca:06:93:51:20:a6:56:2a:83:86:6f:55:54:71:37:58: b3:38:b0:ed:c3:a8:42:f8:d0:74:8e:14:b9:21:91:9a:e6:7b: 9a:2c:ad:d2:b8:e4:ec:39:65:67:c0:99:27:da:78:e6:50:24: fc:ff:20:30:dd:a3:bc:1e:39:1c:3e:aa:40:51:31:ee:46:7d: 7f:c0:62:a0:80:2c:57:cd:37:bd:f3:b1:70:4f:54:24:69:1b: 58:ff:87:3b:b3:74:ad:e6:4b:94:26:66:9d:80:ec:da:63:62: e0:9c:29:a0:e7:e4:4c:cd:d4:c5:8c:b3:0a:5b:38:7e:ee:dd: 4e:3d:e8:1c:1a:3f:9c:4f:ab:f5:09:70:cb:89:b4:7e:c5:23: 36:30:4d:16:cb:88:6f:4c:c6:f6:02:17:c1:c7:e7:01:33:2b: fb:8f:e8:2f:a6:03:8c:e0:e2:bb:9f:75:f0:89:63:4c:5a:f5: 29:32:08:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGJCQKHMQhZ7YvBQwJ9JDeHe5f4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNjAzMjQwMDM3MDdaFw0yNjAzMjcwMTA4MDdaMDMxMTAvBgNV BAMTKEEwNUM1QTRGMTY4NDg4NTUzM0U1MTdBNTc3NDVFRTQ3QUI4QUVGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtDDR227xI/nIsjMiV4qN1AIst HlS/5hPC4rVF9QzqAvf/nT3MYRjPbDQeyCpHBEEFjMMuh9OUzWl5dd3SiYVAk/YW SekneXBIGFIPaDdEWs1brVSYOgtdknEncK9A8wbnbOUJLTI3fJRzw4S8TiSpj6at Dj1tlgwhhYTUKZEMsZGlAAipIZ6OsWmdIQD+TopldlEtZDwmCPXUVb52J2zhwfFX F+vsIAVBWeTSDzqayianHtaLK8hqP7AOvlCrsod+2GQa11ddVRHmznmt+ae0eaB2 fdHOFx5GcREewUJw+sLN441VTAUeuILn4F3fWuLTbqsYbvl8vBYyoQXDgSOHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoFxaTxaEiFUz5Reld0XuR6uK724wHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWViZTdhZDgtZTE1Yy00MDE0LWJm YjMtYmU2OWI3ZDVkZTg4LzAvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4 RjA4MTgxOTZGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAElTmZsNKZtwK1FPQiaslQg7J+HT/aKAyaHv hIqeLwQjhrtQ/pMCMvq7uwxjB4uG15uxevXi4AW1gsWikXjUi40yCal5G4FLVhdt ygaTUSCmViqDhm9VVHE3WLM4sO3DqEL40HSOFLkhkZrme5osrdK45Ow5ZWfAmSfa eOZQJPz/IDDdo7weORw+qkBRMe5GfX/AYqCALFfNN73zsXBPVCRpG1j/hzuzdK3m S5QmZp2A7NpjYuCcKaDn5EzN1MWMswpbOH7u3U496BwaP5xPq/UJcMuJtH7FIzYw TRbLiG9MxvYCF8HH5wEzK/uP6C+mA4zg4rufdfCJY0xa9SkyCNI= -----END CERTIFICATE-----Generated at Wed Mar 25 04:24:50 2026 by rpki-client