$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: JJEfjK+EvXtkfNPPNRdgkr4si9SAv2CsCRwY1KzzkzU= Subject key identifier: E0:77:9A:7B:D4:84:E0:72:F8:F3:8D:F6:1A:DB:BC:9D:60:F6:46:E8 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 47B18AE9732B3BFB3A92961D64F4740620D94692 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0228 Signing time: Thu 12 Mar 2026 01:11:58 +0000 Manifest this update: Thu 12 Mar 2026 01:06:58 +0000 Manifest next update: Sun 15 Mar 2026 08:14:58 +0000 Files and hashes: 1: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 2: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 3: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: WNDV1t2myDo62cgyGDerWtg/PxqWtyFFl4IGglMMlvg=) 4: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 08:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b1:8a:e9:73:2b:3b:fb:3a:92:96:1d:64:f4:74:06:20:d9:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Mar 12 01:06:58 2026 GMT Not After : Mar 15 08:14:58 2026 GMT Subject: CN=E0779A7BD484E072F8F38DF61ADBBC9D60F646E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ee:45:95:fb:b0:e5:88:ad:41:75:e5:5f:77: 64:a7:87:c2:f5:83:63:b3:b0:cd:e7:88:a4:6a:22: 6c:98:6d:d4:07:72:b9:0f:66:a4:e5:24:c2:5b:7c: 27:b8:43:41:13:bf:38:56:bb:a6:0b:7c:3b:a4:2f: f7:9e:89:cf:12:b4:4a:b1:c6:35:57:37:cd:41:ff: 45:2b:89:05:b5:70:13:0d:42:4e:ac:ed:67:18:ff: 7f:92:f8:56:82:ed:4f:86:a4:82:af:90:ca:86:f6: 43:06:ae:48:21:af:fe:d7:a0:fe:34:7b:d7:32:39: 64:7c:5d:de:cf:7c:ef:44:98:59:fc:5b:45:de:ba: 18:02:c7:f0:2c:da:e9:5f:02:f5:c2:74:8e:6d:b5: e5:2b:33:3c:bd:65:46:1a:1a:a0:6b:e9:bd:58:53: 76:70:e0:73:2e:14:fa:c1:7f:d5:ba:64:0b:32:d4: 42:77:7c:8f:b7:23:b1:09:c9:fc:6c:e5:59:0c:e4: 95:12:f1:b3:f0:a7:11:e7:af:4c:7d:1c:72:49:b7: 6f:74:16:e0:31:c5:85:79:59:6a:b3:5a:d1:29:10: f1:4d:5f:a3:fe:92:c6:74:c3:7c:e4:e4:bd:3f:42: c3:7f:a6:6f:1c:b2:db:20:ef:ea:db:cf:73:0b:9f: 7c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:77:9A:7B:D4:84:E0:72:F8:F3:8D:F6:1A:DB:BC:9D:60:F6:46:E8 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:2a:41:bb:a2:d4:74:89:77:c9:cf:2c:d2:f9:60:34:f5:29: 04:f9:e1:6f:fb:d0:9b:14:92:a0:44:a7:1c:73:d3:1f:b2:a9: be:c1:72:6f:b2:ee:b6:79:a2:36:fd:d0:b5:38:1e:43:19:44: 5e:03:6a:68:d5:9d:6b:c0:31:1f:0c:43:2a:bf:96:1f:92:0e: ad:2c:4b:0e:89:9b:6c:b4:70:23:55:bc:88:34:92:60:73:20: ab:22:39:e8:3c:ad:72:c5:d7:b1:4f:c7:c2:f7:b9:8c:41:1b: b3:cb:8a:47:c5:39:d6:d2:db:35:25:a8:bd:41:39:7e:e9:d7: f5:fe:4a:05:68:9a:58:10:fb:bf:fd:57:4d:db:35:1f:0a:f9: 26:5e:62:86:16:15:42:2a:2f:1c:e0:d3:d9:79:2e:69:66:b0: db:b4:58:42:7c:6c:e3:a7:e8:d9:97:8a:64:9e:82:cf:f6:cf: 3d:9a:ec:ba:ac:bd:01:9f:a7:72:bf:47:ff:bd:aa:d9:bf:40: 89:a5:dd:8e:69:f1:af:ad:5d:d3:7d:84:40:36:f6:4c:71:66: c3:72:5f:98:22:09:88:09:d0:7b:c7:0b:22:5f:0c:43:46:00: c7:dd:8a:ea:66:f3:53:64:9e:24:95:ef:f2:38:7a:b9:c1:44: 26:9c:51:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR7GK6XMrO/s6kpYdZPR0BiDZRpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNjAzMTIwMTA2NThaFw0yNjAzMTUwODE0NThaMDMxMTAvBgNV BAMTKEUwNzc5QTdCRDQ4NEUwNzJGOEYzOERGNjFBREJCQzlENjBGNjQ2RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX7kWV+7DliK1BdeVfd2Snh8L1 g2OzsM3niKRqImyYbdQHcrkPZqTlJMJbfCe4Q0ETvzhWu6YLfDukL/eeic8StEqx xjVXN81B/0UriQW1cBMNQk6s7WcY/3+S+FaC7U+GpIKvkMqG9kMGrkghr/7XoP40 e9cyOWR8Xd7PfO9EmFn8W0XeuhgCx/As2ulfAvXCdI5tteUrMzy9ZUYaGqBr6b1Y U3Zw4HMuFPrBf9W6ZAsy1EJ3fI+3I7EJyfxs5VkM5JUS8bPwpxHnr0x9HHJJt290 FuAxxYV5WWqzWtEpEPFNX6P+ksZ0w3zk5L0/QsN/pm8cstsg7+rbz3MLn3w/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4Heae9SE4HL48432Gtu8nWD2RugwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHcqQbui1HSJd8nPLNL5YDT1KQT54W/70JsU kqBEpxxz0x+yqb7Bcm+y7rZ5ojb90LU4HkMZRF4DamjVnWvAMR8MQyq/lh+SDq0s Sw6Jm2y0cCNVvIg0kmBzIKsiOeg8rXLF17FPx8L3uYxBG7PLikfFOdbS2zUlqL1B OX7p1/X+SgVomlgQ+7/9V03bNR8K+SZeYoYWFUIqLxzg09l5LmlmsNu0WEJ8bOOn 6NmXimSegs/2zz2a7LqsvQGfp3K/R/+9qtm/QIml3Y5p8a+tXdN9hEA29kxxZsNy X5giCYgJ0HvHCyJfDENGAMfdiupm81NkniSV7/I4ernBRCacUSo= -----END CERTIFICATE-----Generated at Thu Mar 12 15:24:19 2026 by rpki-client