$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: ghfHxPx9CNIGZzQ6rRJIfvxPLyYe+IiayxmIBdvZJ8E= Subject key identifier: 4D:FE:06:FC:9C:3D:63:39:7C:BC:45:D4:65:0C:D5:55:E6:42:AB:74 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 11C26632B0DFEE0C388E97FBB72DC77936996982 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 01CD Signing time: Sun 01 Mar 2026 13:11:13 +0000 Manifest this update: Sun 01 Mar 2026 13:06:13 +0000 Manifest next update: Wed 04 Mar 2026 19:23:13 +0000 Files and hashes: 1: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: WPB0w9n7mCdc21HVfo06mm6RPH3lHaCHs4qLmynGO70=) 2: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: J8nc/ZkZUuiaLnI5jAoWLgIJJR1NS9p7mlRSvT0aL/o=) 3: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: PTzTUTP+tcbec6oQ8XF9BBUTPEmaQDT9+JJ/xv7s79o=) 4: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: Vl2dDV/fuaKszLKyD92Hp16tXilr+MpTYCxdPcF3Z2g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 19:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c2:66:32:b0:df:ee:0c:38:8e:97:fb:b7:2d:c7:79:36:99:69:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Mar 1 13:06:13 2026 GMT Not After : Mar 4 19:23:13 2026 GMT Subject: CN=4DFE06FC9C3D63397CBC45D4650CD555E642AB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9a:52:42:1f:a4:fa:42:c0:6e:54:a2:bf:d6: cc:71:ca:4b:b5:a5:6c:bd:9e:e3:fa:c6:fb:e7:99: e8:b6:7b:4b:20:b2:e2:59:49:e1:08:7f:ec:11:d7: a3:c7:17:b0:e6:e4:7a:12:f1:08:09:3d:d5:9c:67: 84:96:d0:3a:f6:d8:d6:ac:1c:3c:fd:98:ce:69:1f: 87:1d:67:fa:1f:e3:a4:20:0b:bd:b8:37:7d:eb:57: d7:49:06:42:c0:ac:d9:cd:a3:ca:b6:f0:22:b7:6e: 50:dc:61:89:9a:a2:aa:f3:f9:84:f4:fb:00:96:8c: ba:60:b6:76:c4:1b:5d:ff:e1:01:b3:02:04:27:b2: 87:d9:c3:9e:38:bb:04:06:33:56:19:98:6f:3a:bf: 13:33:02:4a:b9:57:29:1b:ba:76:4e:3e:4c:58:ac: a6:42:d7:53:0e:25:46:85:83:07:78:29:7b:c5:bf: e4:ce:93:e0:70:75:8b:4d:4c:3a:be:12:5a:d7:a8: ec:cd:d5:26:e2:2a:22:78:ac:e9:cc:56:55:05:45: 27:a1:b8:91:d4:06:d6:74:ef:13:3f:22:44:a0:5d: f4:99:97:18:aa:ed:83:a5:c8:71:5c:fe:58:dd:30: fa:90:8b:c4:91:af:26:a5:64:57:f0:db:cd:d8:a6: bf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:FE:06:FC:9C:3D:63:39:7C:BC:45:D4:65:0C:D5:55:E6:42:AB:74 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d5:7d:e0:ae:92:89:bd:93:0b:88:b0:e4:ec:90:4f:d1:c6: 5c:26:39:1b:25:b8:7d:2f:97:74:a7:b2:5c:76:a9:e9:0e:2d: 9e:e8:b2:07:77:de:4f:94:2d:e4:74:f5:8c:4f:0b:a2:3c:5c: cc:26:45:eb:4d:17:15:f9:54:95:c2:34:81:b7:a1:1b:2b:87: cc:d0:0e:d8:b5:61:4a:21:9a:1d:c5:fc:73:af:d5:5c:15:29: d7:96:1a:c6:1e:52:94:85:c5:67:a3:bf:9f:6a:b1:0a:f9:8e: be:ac:8b:2b:57:d0:f5:be:b1:cf:c0:3a:d6:eb:dd:09:2b:f6: 69:59:fa:dc:b4:66:d3:da:50:6e:a6:a1:5a:b6:fe:cf:6c:96: 36:68:95:ea:6c:c7:18:71:ea:26:92:06:d7:5b:32:fe:e5:58: 8b:d6:62:7d:87:41:3a:8c:83:41:5e:bd:e5:43:d6:40:e1:08: 67:cf:33:c1:0f:e2:07:04:f9:e1:56:56:88:5f:23:5c:bb:08: bc:07:14:03:c0:26:18:28:9b:c7:26:49:bc:ad:28:55:26:63: 15:77:4d:17:32:3f:94:bb:d9:5f:a2:dd:ab:6e:e6:cc:cc:56: de:e6:ff:25:9e:72:f2:bf:c9:7c:ea:d5:b2:66:24:df:65:eb: 9f:5f:6b:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEcJmMrDf7gw4jpf7ty3HeTaZaYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNjAzMDExMzA2MTNaFw0yNjAzMDQxOTIzMTNaMDMxMTAvBgNV BAMTKDRERkUwNkZDOUMzRDYzMzk3Q0JDNDVENDY1MENENTU1RTY0MkFCNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdmlJCH6T6QsBuVKK/1sxxyku1 pWy9nuP6xvvnmei2e0sgsuJZSeEIf+wR16PHF7Dm5HoS8QgJPdWcZ4SW0Dr22Nas HDz9mM5pH4cdZ/of46QgC724N33rV9dJBkLArNnNo8q28CK3blDcYYmaoqrz+YT0 +wCWjLpgtnbEG13/4QGzAgQnsofZw544uwQGM1YZmG86vxMzAkq5VykbunZOPkxY rKZC11MOJUaFgwd4KXvFv+TOk+BwdYtNTDq+ElrXqOzN1SbiKiJ4rOnMVlUFRSeh uJHUBtZ07xM/IkSgXfSZlxiq7YOlyHFc/ljdMPqQi8SRryalZFfw283Ypr/hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTf4G/Jw9Yzl8vEXUZQzVVeZCq3QwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACzVfeCukom9kwuIsOTskE/RxlwmORsluH0v l3Snslx2qekOLZ7osgd33k+ULeR09YxPC6I8XMwmRetNFxX5VJXCNIG3oRsrh8zQ Dti1YUohmh3F/HOv1VwVKdeWGsYeUpSFxWejv59qsQr5jr6siytX0PW+sc/AOtbr 3Qkr9mlZ+ty0ZtPaUG6moVq2/s9sljZolepsxxhx6iaSBtdbMv7lWIvWYn2HQTqM g0FeveVD1kDhCGfPM8EP4gcE+eFWVohfI1y7CLwHFAPAJhgom8cmSbytKFUmYxV3 TRcyP5S72V+i3atu5szMVt7m/yWecvK/yXzq1bJmJN9l659fawE= -----END CERTIFICATE-----Generated at Mon Mar 2 19:09:10 2026 by rpki-client