$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft File: 645C9D445B2796662EE98A03E50C124F3E962CAB.mft (raw, json) Hash identifier: 963pEQ3Z2rFUcF7/DmkKbNtXGExx0bBlObBfQUZfXxs= Subject key identifier: CC:F3:4D:DC:40:7E:D2:02:9C:19:C2:5E:55:03:99:10:70:28:EA:BB Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 20EFEE1D3D66829884C55D01A43B754A68C6A3A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft Manifest number: 03F7 Signing time: Sat 28 Feb 2026 09:11:12 +0000 Manifest this update: Sat 28 Feb 2026 09:06:12 +0000 Manifest next update: Tue 03 Mar 2026 09:14:12 +0000 Files and hashes: 1: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: bgUQl2KKDVdxSEkmrD5bo1yuFXhp8F+vNio9ZlmO2Lc=) 2: 645C9D445B2796662EE98A03E50C124F3E962CAB.crl (hash: PB/dT2eEsBD46yvjyOUdzAHhj6WkZ2xZFVCZ9tqCTJo=) 3: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: SMPg/3qiOryd428jAGKTXmMedIlqTpx2BfnFfzgQnCk=) 4: 323430313a626534303a3a2f33322d3438203d3e20313336383431.roa (hash: 8QSbauO9NNotVx0xsCiC0xHQEL8XE+fwtGOjSQB5tIM=) 5: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: IX4uPd9N3SkfP7LEqX7tm7Aw2XVAAH51yq8xtLADMD0=) 6: 323430313a626534303a3130303a3a2f34382d3438203d3e20313336383431.roa (hash: e9MuQpUdmZSWJyLwqKXY1nxQlgwTqEZ4CpPjIrRXOr8=) 7: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: +SeGBM9CdtDOWXU9iixLlEgCajKedvFQm/V7StxkJlo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 09:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ef:ee:1d:3d:66:82:98:84:c5:5d:01:a4:3b:75:4a:68:c6:a3:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Feb 28 09:06:12 2026 GMT Not After : Mar 3 09:14:12 2026 GMT Subject: CN=CCF34DDC407ED2029C19C25E550399107028EABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e1:c9:c8:90:9d:e0:20:7e:b7:78:10:fe:bf: ef:b6:66:1c:67:2e:a8:f8:c0:ed:47:48:0c:bd:e1: 08:d1:6e:f7:8f:4c:a0:fb:19:de:11:0b:3b:68:c5: fb:01:6a:c2:79:3b:d5:16:c3:04:94:49:b7:31:9b: 61:6d:e5:81:75:bb:d9:9f:76:b8:b8:1a:be:e0:3e: cf:af:2c:4c:0c:bf:11:a3:65:be:ff:c6:e2:c9:cd: ee:6b:27:b8:88:e7:c4:d0:2c:a7:30:f6:22:18:3f: 78:a9:18:98:ed:1c:e8:e0:8a:1d:85:83:a9:11:a7: 6a:d9:cc:1b:71:ce:72:4c:ba:9b:87:26:92:37:e5: ae:77:f6:a2:ba:ad:17:c3:90:cd:77:b9:9e:48:08: 3e:b9:5e:72:ae:1a:40:1d:35:42:b1:c6:38:ed:45: 28:75:17:21:5c:54:04:e2:16:10:37:c9:68:84:3b: f1:d9:8e:32:3c:26:b0:ce:7e:de:aa:ed:74:13:f0: 6a:af:31:dc:21:67:66:86:04:b5:62:19:1a:8f:68: e0:ac:ec:91:88:39:19:1c:a6:62:46:13:d8:74:a6: 9b:dd:43:70:ce:af:d1:24:62:ca:40:3c:1f:08:39: 13:47:8f:1e:82:82:52:af:c7:f3:d1:cc:b5:f3:5d: 2d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F3:4D:DC:40:7E:D2:02:9C:19:C2:5E:55:03:99:10:70:28:EA:BB X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:19:ba:83:e8:55:f0:56:39:2d:28:77:17:c4:40:9f:46:e8: 94:57:1a:8e:07:c0:13:3b:d1:4d:d5:d8:dd:fe:e9:20:33:57: 23:1f:d7:44:64:ff:9a:9a:76:5e:0e:dd:93:a1:5b:45:52:12: aa:92:e4:8c:52:79:64:67:bd:b1:8e:7d:46:dd:5c:1f:8c:9c: 28:0f:65:b0:58:d8:7a:bd:84:97:2d:9c:bf:a3:8e:e0:4b:c7: aa:17:d1:c5:b9:5a:81:7c:f8:35:43:41:78:8a:09:b7:ee:5c: ea:ef:3d:21:e1:f0:d1:b7:20:21:c7:b1:dd:45:34:ae:11:0e: 76:92:59:fc:26:fe:75:a6:15:a8:11:25:b4:9c:77:dd:25:b2: b2:31:e8:00:31:67:85:04:53:05:b3:99:30:66:7a:41:f5:f7: fd:37:a8:8d:e6:4f:10:5d:d6:a9:6d:32:23:14:39:5b:21:af: 4a:73:0d:61:e6:f3:42:1c:68:c6:b4:e5:48:dc:16:53:0a:6f: 07:50:11:4d:b3:85:25:eb:00:1a:0e:e4:57:49:0d:b5:38:9e: 79:b6:b4:66:98:ab:5e:95:83:84:0b:75:0b:56:f1:54:b1:75: 6e:76:4e:08:df:75:f6:bd:bd:18:9e:8f:0e:01:7c:25:96:db: 47:7d:e2:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIO/uHT1mgpiExV0BpDt1SmjGo6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNjAyMjgwOTA2MTJaFw0yNjAzMDMwOTE0MTJaMDMxMTAvBgNV BAMTKENDRjM0RERDNDA3RUQyMDI5QzE5QzI1RTU1MDM5OTEwNzAyOEVBQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA4cnIkJ3gIH63eBD+v++2Zhxn Lqj4wO1HSAy94QjRbvePTKD7Gd4RCztoxfsBasJ5O9UWwwSUSbcxm2Ft5YF1u9mf dri4Gr7gPs+vLEwMvxGjZb7/xuLJze5rJ7iI58TQLKcw9iIYP3ipGJjtHOjgih2F g6kRp2rZzBtxznJMupuHJpI35a539qK6rRfDkM13uZ5ICD65XnKuGkAdNUKxxjjt RSh1FyFcVATiFhA3yWiEO/HZjjI8JrDOft6q7XQT8GqvMdwhZ2aGBLViGRqPaOCs 7JGIORkcpmJGE9h0ppvdQ3DOr9EkYspAPB8IORNHjx6CglKvx/PRzLXzXS0xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzPNN3EB+0gKcGcJeVQOZEHAo6rswHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEy NEYzRTk2MkNBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFoZuoPoVfBWOS0odxfEQJ9G6JRXGo4HwBM7 0U3V2N3+6SAzVyMf10Rk/5qadl4O3ZOhW0VSEqqS5IxSeWRnvbGOfUbdXB+MnCgP ZbBY2Hq9hJctnL+jjuBLx6oX0cW5WoF8+DVDQXiKCbfuXOrvPSHh8NG3ICHHsd1F NK4RDnaSWfwm/nWmFagRJbScd90lsrIx6AAxZ4UEUwWzmTBmekH19/03qI3mTxBd 1qltMiMUOVshr0pzDWHm80IcaMa05UjcFlMKbwdQEU2zhSXrABoO5FdJDbU4nnm2 tGaYq16Vg4QLdQtW8VSxdW52Tgjfdfa9vRiejw4BfCWW20d94qo= -----END CERTIFICATE-----Generated at Mon Mar 2 07:45:44 2026 by rpki-client