$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: D4huepMaj5ZC1Lklw9mz4+d4elhTsT2Q38s0aibw3Ms= Subject key identifier: 9A:C4:62:A1:65:B6:1B:D1:CD:E8:AB:2A:11:F7:66:EE:89:EF:AE:E5 Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 4B62947327449B4D37D581AEF525BE6924450AE6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: 013E Signing time: Fri 06 Mar 2026 07:32:36 +0000 Manifest this update: Fri 06 Mar 2026 07:27:36 +0000 Manifest next update: Mon 09 Mar 2026 18:09:36 +0000 Files and hashes: 1: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: GPhJfUMUrQaLYf5EcbO1GzBXSqajFt4tBpF3/vPWS/o=) 2: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: JACumO3VAE1t5FuWuqXfdX1npziOW8EOlg7XX4OQbh8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:62:94:73:27:44:9b:4d:37:d5:81:ae:f5:25:be:69:24:45:0a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Mar 6 07:27:36 2026 GMT Not After : Mar 9 18:09:36 2026 GMT Subject: CN=9AC462A165B61BD1CDE8AB2A11F766EE89EFAEE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:31:7a:15:19:56:b2:bc:39:f7:4f:74:e9:62: 9e:b1:76:37:b2:46:2c:f0:df:39:7e:0d:6e:0f:87: ef:14:3d:a7:b7:f3:c7:c8:54:eb:cb:56:96:ee:6f: 50:6c:27:93:5f:fe:d5:f2:90:c7:14:a0:13:a1:39: 7f:b6:b0:f8:93:ee:3e:c0:b8:67:c2:25:20:64:07: 36:34:c6:49:97:b0:00:13:9a:5c:2f:c1:a9:15:45: 7e:53:4c:0f:07:87:d3:d9:98:f9:66:64:76:76:19: 03:b5:3b:63:b9:15:99:9b:9f:1d:0c:af:92:94:7f: fe:0a:a2:94:da:e1:d3:91:54:19:2a:c4:0a:ec:00: b0:51:05:79:9c:1c:7c:1a:96:ca:f2:ae:4c:17:c3: 37:b2:a0:cf:9c:a4:26:32:2f:8e:3e:60:63:a0:f0: 7e:8e:7a:d8:95:2f:a3:89:c8:16:8b:41:bf:43:3f: 84:14:7a:87:7e:86:5a:78:a1:c7:d8:3e:92:5b:40: 01:1a:d3:96:9f:5f:23:ee:ce:bf:d6:a9:e6:f6:d1: 04:f7:34:01:23:f2:09:a5:e7:89:b1:3e:01:13:df: 2d:27:8d:64:b0:3d:93:92:9f:ea:e3:05:2e:01:a1: b7:f6:64:57:a0:34:8d:d0:d6:01:2d:2b:75:a9:91: da:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C4:62:A1:65:B6:1B:D1:CD:E8:AB:2A:11:F7:66:EE:89:EF:AE:E5 X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:83:26:82:93:1f:81:eb:4a:22:be:44:09:72:f3:5d:06:a5: 4f:22:c0:d7:52:6c:41:27:0a:6d:88:6b:6f:4f:53:47:ac:c2: c3:2a:74:3a:21:a0:a5:a5:92:16:36:e9:8b:83:3a:1a:b6:92: 44:26:04:00:7e:d1:8f:e3:72:0e:dd:e5:fd:e9:5d:a2:e8:14: 23:9f:f7:54:0a:97:ad:93:70:d5:44:9d:ce:e1:ca:de:a9:13: 87:81:cd:33:71:48:da:63:bd:3e:ab:75:85:3c:8f:77:20:2e: 42:a6:12:0d:2d:a1:95:0b:ae:e0:97:b2:b0:fb:d1:6c:bf:19: 09:10:88:25:56:a1:e7:6b:1c:c9:2c:6b:3e:2f:08:70:a3:03: 4e:91:16:8c:c9:4e:26:69:82:91:78:d0:ca:46:e0:06:e7:c0: 63:de:48:3d:b5:ab:02:fd:a6:1e:de:f9:77:16:c8:e8:d7:72: 4c:44:92:02:c4:58:df:6d:c2:04:89:5b:58:72:18:ec:c9:ba: fa:52:fc:54:24:bc:74:7e:68:58:e3:39:8c:3b:06:4e:7d:ad: 0f:d9:88:b9:7a:9a:2a:e2:20:52:59:58:32:e3:67:10:15:d7: bc:a3:7b:b3:11:9c:64:ed:5f:f9:6b:02:0e:7b:42:8e:a5:a4: 59:fb:a3:a9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS2KUcydEm0031YGu9SW+aSRFCuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNjAzMDYwNzI3MzZaFw0yNjAzMDkxODA5MzZaMDMxMTAvBgNV BAMTKDlBQzQ2MkExNjVCNjFCRDFDREU4QUIyQTExRjc2NkVFODlFRkFFRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxMXoVGVayvDn3T3TpYp6xdjey Rizw3zl+DW4Ph+8UPae388fIVOvLVpbub1BsJ5Nf/tXykMcUoBOhOX+2sPiT7j7A uGfCJSBkBzY0xkmXsAATmlwvwakVRX5TTA8Hh9PZmPlmZHZ2GQO1O2O5FZmbnx0M r5KUf/4KopTa4dORVBkqxArsALBRBXmcHHwalsryrkwXwzeyoM+cpCYyL44+YGOg 8H6OetiVL6OJyBaLQb9DP4QUeod+hlp4ocfYPpJbQAEa05afXyPuzr/Wqeb20QT3 NAEj8gml54mxPgET3y0njWSwPZOSn+rjBS4Bobf2ZFegNI3Q1gEtK3WpkdrLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmsRioWW2G9HN6KsqEfdm7onvruUwHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB6DJoKTH4HrSiK+RAly810GpU8iwNdSbEEn Cm2Ia29PU0eswsMqdDohoKWlkhY26YuDOhq2kkQmBAB+0Y/jcg7d5f3pXaLoFCOf 91QKl62TcNVEnc7hyt6pE4eBzTNxSNpjvT6rdYU8j3cgLkKmEg0toZULruCXsrD7 0Wy/GQkQiCVWoedrHMksaz4vCHCjA06RFozJTiZpgpF40MpG4AbnwGPeSD21qwL9 ph7e+XcWyOjXckxEkgLEWN9twgSJW1hyGOzJuvpS/FQkvHR+aFjjOYw7Bk59rQ/Z iLl6miriIFJZWDLjZxAV17yje7MRnGTtX/lrAg57Qo6lpFn7o6k= -----END CERTIFICATE-----Generated at Sat Mar 7 17:51:57 2026 by rpki-client