$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: +dTJgxGvqfe1Pi97a958fHE9hKQx14qKAJOm42ZA4bk= Subject key identifier: AD:0F:D4:44:6C:AA:60:D9:EF:E1:0B:30:6F:32:69:78:40:D5:B5:F7 Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 275DDFF9FBC499A7430FB54D93131E5A77513022 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 0240 Signing time: Sun 01 Mar 2026 15:51:16 +0000 Manifest this update: Sun 01 Mar 2026 15:46:16 +0000 Manifest next update: Wed 04 Mar 2026 23:10:16 +0000 Files and hashes: 1: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: fOQF1V5qX4CUlfx0rqOQuIferyQRdfhmyNx7gn4Uh8Y=) 2: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: 6UhOGV8DI7PfyTejWhCSmpLpe0trLgn56lREPd3WDVA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 23:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:5d:df:f9:fb:c4:99:a7:43:0f:b5:4d:93:13:1e:5a:77:51:30:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Mar 1 15:46:16 2026 GMT Not After : Mar 4 23:10:16 2026 GMT Subject: CN=AD0FD4446CAA60D9EFE10B306F32697840D5B5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:32:27:95:4a:ac:86:7f:4f:6c:e6:01:02: d4:e9:8d:83:ba:cc:22:e6:99:b0:ad:0e:3c:cd:d5: 06:9c:02:8a:f2:75:96:a1:34:52:d4:dd:7b:14:78: 0e:65:cd:66:72:e4:b0:ab:26:7f:75:d5:b8:f0:dc: cd:34:2d:41:ab:3b:35:d6:c6:ee:b0:82:0a:12:b8: 42:6d:23:0f:ce:fc:37:1b:57:1e:0c:0f:e2:ee:3e: dc:da:ae:e7:71:82:6b:75:d6:51:31:d9:c5:09:bd: f1:9e:0b:5c:51:50:fc:76:0e:df:a7:2b:ff:a2:76: ab:b9:46:59:4e:26:f0:f5:73:02:9a:db:d5:34:ab: 5d:89:bc:7c:83:28:a3:f9:d5:71:12:8b:e8:86:ac: 7b:42:b8:26:a8:3a:fb:90:7f:57:f3:d7:1c:38:d7: 8c:62:0c:3f:31:15:cd:a7:ed:4d:fb:3e:13:ae:b3: 04:61:a7:c6:e2:7d:91:f5:fc:f1:39:25:bb:e3:35: 82:03:a3:fc:ff:42:67:cd:56:ba:e8:03:b1:69:cb: 53:d2:6f:e6:fd:48:de:ea:c6:de:a9:55:b9:e3:c6: 54:55:eb:08:49:01:81:38:03:fc:e6:dd:96:6f:93: 52:95:24:8c:7a:ff:27:9c:ee:29:7b:49:bd:af:12: 48:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0F:D4:44:6C:AA:60:D9:EF:E1:0B:30:6F:32:69:78:40:D5:B5:F7 X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:e5:c8:00:be:9f:94:9c:23:3c:fd:75:59:28:4a:99:30:b6: 6d:34:cf:b2:a9:51:8d:a7:e9:ac:0c:d9:d1:cf:d7:2f:85:91: 68:0c:1c:01:9d:49:d6:e4:7a:5e:61:ae:7d:8d:bb:d2:21:cf: 2d:8b:a8:b3:29:67:e7:81:a1:87:b2:df:2e:89:b0:19:24:82: 97:2d:d8:cc:21:98:45:e6:b4:68:c0:c2:51:10:21:66:8f:2a: 95:50:1d:25:d0:9c:71:78:ee:f8:b9:8a:9e:5c:94:8f:1c:2b: 44:1a:41:97:6d:43:75:65:22:1d:84:d6:fa:67:d5:c0:49:6f: 67:bb:cd:71:59:18:7c:90:20:fd:b6:be:95:cb:ff:4e:ad:f6: 7e:fa:54:ea:fa:d6:f0:69:a2:b7:38:87:29:e3:2b:b5:42:61: c0:9c:08:ca:1d:02:f4:bf:bd:6d:81:80:c7:cf:87:07:de:85: cf:3b:6c:21:bc:f3:a4:31:a4:43:45:c3:c3:20:14:38:3f:60: a4:e6:89:3f:ca:e0:f9:87:c4:6f:a2:c6:10:9f:af:87:68:1d: 66:94:28:f2:ad:30:f9:d6:b9:95:7c:cd:c9:17:90:3b:a5:3d: 51:16:8c:ec:5b:2d:0a:31:f6:b6:ee:1d:34:b4:7b:58:b5:0c: a7:bf:82:f5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ13f+fvEmadDD7VNkxMeWndRMCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNjAzMDExNTQ2MTZaFw0yNjAzMDQyMzEwMTZaMDMxMTAvBgNV BAMTKEFEMEZENDQ0NkNBQTYwRDlFRkUxMEIzMDZGMzI2OTc4NDBENUI1RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqLDInlUqshn9PbOYBAtTpjYO6 zCLmmbCtDjzN1QacAorydZahNFLU3XsUeA5lzWZy5LCrJn911bjw3M00LUGrOzXW xu6wggoSuEJtIw/O/DcbVx4MD+LuPtzarudxgmt11lEx2cUJvfGeC1xRUPx2Dt+n K/+idqu5RllOJvD1cwKa29U0q12JvHyDKKP51XESi+iGrHtCuCaoOvuQf1fz1xw4 14xiDD8xFc2n7U37PhOuswRhp8bifZH1/PE5JbvjNYIDo/z/QmfNVrroA7Fpy1PS b+b9SN7qxt6pVbnjxlRV6whJAYE4A/zm3ZZvk1KVJIx6/yec7il7Sb2vEkgRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrQ/URGyqYNnv4QswbzJpeEDVtfcwHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI3lyAC+n5ScIzz9dVkoSpkwtm00z7KpUY2n 6awM2dHP1y+FkWgMHAGdSdbkel5hrn2Nu9Ihzy2LqLMpZ+eBoYey3y6JsBkkgpct 2MwhmEXmtGjAwlEQIWaPKpVQHSXQnHF47vi5ip5clI8cK0QaQZdtQ3VlIh2E1vpn 1cBJb2e7zXFZGHyQIP22vpXL/06t9n76VOr61vBporc4hynjK7VCYcCcCModAvS/ vW2BgMfPhwfehc87bCG886QxpENFw8MgFDg/YKTmiT/K4PmHxG+ixhCfr4doHWaU KPKtMPnWuZV8zckXkDulPVEWjOxbLQox9rbuHTS0e1i1DKe/gvU= -----END CERTIFICATE-----Generated at Mon Mar 2 04:19:29 2026 by rpki-client