$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft File: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft (raw, json) Hash identifier: Bq0vFGh6/QmVQCCYTJ2meDPlxjfDhrRcQavQ4ve3XQs= Subject key identifier: F3:CA:90:38:1A:E9:54:2D:77:9D:13:3D:02:3F:51:BE:CD:AE:83:3C Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 1C6066B79027BB72C6C0C04BAD77EBC64BDDADF0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft Manifest number: F6 Signing time: Thu 05 Mar 2026 21:52:11 +0000 Manifest this update: Thu 05 Mar 2026 21:47:11 +0000 Manifest next update: Mon 09 Mar 2026 06:51:11 +0000 Files and hashes: 1: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl (hash: YD/VuRtsE78O/gq+g/2pj/rt5o+UQI18amjY1zXzCNY=) 2: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: sRyhu6fDfcemdhV/NAA1n4G4NdnybRSnokvW0ioWtBY=) 3: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: IGC+YzF7hbNTh+lU4Xp4ZN99v7lUHzjLqU8mpRmWZMw=) 4: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: mDFd08tPILLw1T3gAXQau9nwubN6g+t2GLdqlL1NiMc=) 5: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: Sds95Ss3ilJlMKDO38Rkj40VQdzRD9GgP564MrRxXGU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 06:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:60:66:b7:90:27:bb:72:c6:c0:c0:4b:ad:77:eb:c6:4b:dd:ad:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Mar 5 21:47:11 2026 GMT Not After : Mar 9 06:51:11 2026 GMT Subject: CN=F3CA90381AE9542D779D133D023F51BECDAE833C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:d3:67:32:c4:f5:23:27:69:96:55:28:17: bb:2a:59:6f:c9:27:e2:43:21:b7:d5:98:a6:21:52: 5e:87:d6:20:a9:bb:d4:4d:09:ae:57:97:1b:62:dd: d2:1b:3b:b9:6e:0f:7d:49:3a:b9:a6:9a:f5:87:81: 4a:e1:bb:79:42:f0:21:45:03:61:75:7d:2c:36:56: ad:dc:84:62:56:58:2e:75:09:f9:87:51:77:e9:b2: 23:2f:58:00:5b:15:b0:81:92:0f:97:57:22:6e:88: 13:95:1e:d6:98:68:c9:5a:e3:9e:fb:1f:dc:95:35: ae:43:70:6d:67:0e:c9:f2:4d:0b:c3:ab:be:63:fc: 21:f5:e4:66:e2:b8:e2:6b:a4:1a:98:4d:84:48:a8: 3e:7c:b2:41:a5:80:0d:4c:08:6d:13:b8:0e:2c:03: d3:ca:b3:c3:25:d3:23:6d:4f:40:9f:64:83:e1:74: 8d:1e:fd:5d:ae:8a:37:8b:0d:41:bc:85:48:dc:7b: 0f:ce:b2:05:a4:bd:0f:1b:ec:b6:81:d0:75:d2:1f: 14:09:d1:1a:97:c1:7f:96:e1:fa:16:ad:a0:8b:4a: 0d:09:45:ee:6e:3b:1d:ea:c6:32:5c:fd:dc:c0:54: 49:2e:fd:28:f6:a2:be:b5:81:be:d1:c3:79:0b:50: 2c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CA:90:38:1A:E9:54:2D:77:9D:13:3D:02:3F:51:BE:CD:AE:83:3C X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:f4:da:9c:bb:29:01:e0:c8:b6:6f:56:e5:5c:8b:28:3b:d4: 30:bc:c3:7e:93:ee:58:f5:a1:be:01:cc:a9:71:2c:2e:f6:06: 44:09:2a:f7:23:5a:0a:9e:9c:6a:36:fb:39:12:90:42:9a:2a: 02:3b:ec:4e:07:06:07:a1:6d:10:e1:e4:ca:47:96:e4:27:a3: 40:3b:65:c6:2c:8b:ef:97:70:58:a7:80:6b:ef:45:b4:51:aa: a5:0c:bc:a2:9e:c6:73:bb:5e:c1:d9:df:b9:9c:f5:4e:92:9f: 6c:18:0a:a1:0d:07:07:71:31:0a:7d:6e:84:47:1b:78:2d:50: 37:34:07:5e:02:2e:bd:40:7e:e1:91:cd:7c:6f:5e:be:01:51: 55:1e:f7:e9:e9:36:f6:04:a7:5a:3d:cc:28:04:b9:77:ea:2b: 5c:ec:84:2e:05:59:95:0a:7e:00:d2:c0:2e:a8:0a:e8:19:91: 21:0d:92:de:63:c2:9d:37:93:7e:d3:66:ab:99:e0:dc:8d:af: 56:2a:e3:16:73:89:a3:4f:58:c4:b0:5d:d8:37:b1:cd:38:ce: 69:c0:91:9a:ec:9b:9f:88:cb:d5:32:c3:f9:00:91:19:40:fb: 4c:11:28:58:64:9d:e3:1e:32:bf:27:2b:7e:fc:ed:99:cc:ab: dd:87:32:a6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHGBmt5Anu3LGwMBLrXfrxkvdrfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNjAzMDUyMTQ3MTFaFw0yNjAzMDkwNjUxMTFaMDMxMTAvBgNV BAMTKEYzQ0E5MDM4MUFFOTU0MkQ3NzlEMTMzRDAyM0Y1MUJFQ0RBRTgzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBp9NnMsT1IydpllUoF7sqWW/J J+JDIbfVmKYhUl6H1iCpu9RNCa5Xlxti3dIbO7luD31JOrmmmvWHgUrhu3lC8CFF A2F1fSw2Vq3chGJWWC51CfmHUXfpsiMvWABbFbCBkg+XVyJuiBOVHtaYaMla4577 H9yVNa5DcG1nDsnyTQvDq75j/CH15GbiuOJrpBqYTYRIqD58skGlgA1MCG0TuA4s A9PKs8Ml0yNtT0CfZIPhdI0e/V2uijeLDUG8hUjcew/OsgWkvQ8b7LaB0HXSHxQJ 0RqXwX+W4foWraCLSg0JRe5uOx3qxjJc/dzAVEku/Sj2or61gb7Rw3kLUCydAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU88qQOBrpVC13nRM9Aj9Rvs2ugzwwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcx MTQzNEM0OEFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACf02py7KQHgyLZvVuVciyg71DC8w36T7lj1 ob4BzKlxLC72BkQJKvcjWgqenGo2+zkSkEKaKgI77E4HBgehbRDh5MpHluQno0A7 ZcYsi++XcFingGvvRbRRqqUMvKKexnO7XsHZ37mc9U6Sn2wYCqENBwdxMQp9boRH G3gtUDc0B14CLr1AfuGRzXxvXr4BUVUe9+npNvYEp1o9zCgEuXfqK1zshC4FWZUK fgDSwC6oCugZkSENkt5jwp03k37TZquZ4NyNr1Yq4xZziaNPWMSwXdg3sc04zmnA kZrsm5+Iy9Uyw/kAkRlA+0wRKFhkneMeMr8nK3787ZnMq92HMqY= -----END CERTIFICATE-----Generated at Sat Mar 7 21:18:14 2026 by rpki-client