$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: sN8cqRXCfilpHNb71SQPAqgZQN/BcK2Wg7qCySVdd7I= Subject key identifier: A0:0E:E0:8F:B8:50:41:E9:AC:77:C8:6D:75:0D:93:B5:C3:3D:BA:65 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 41470F03FC5E9540EFB50DC987E169562AE27D08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 01EF Signing time: Sun 01 Mar 2026 22:22:29 +0000 Manifest this update: Sun 01 Mar 2026 22:17:29 +0000 Manifest next update: Thu 05 Mar 2026 00:13:29 +0000 Files and hashes: 1: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: gdb4jUrpYgvuBprsa+zK/C/c369fli8fjnNllUG42kM=) 2: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: OMSstG+v7qZjFWCJ4NvuRl4cKaVI80js4sry1SoLSN0=) 3: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: 96CJnoxRV4HGvhsn3PFsL8qIqJQvuSs5NCO8lzcHZm0=) 4: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: U3QvM9qWK+TJhBGDojanDKA8oPNCYIB5ZhNuA/z08gw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 00:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:47:0f:03:fc:5e:95:40:ef:b5:0d:c9:87:e1:69:56:2a:e2:7d:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Mar 1 22:17:29 2026 GMT Not After : Mar 5 00:13:29 2026 GMT Subject: CN=A00EE08FB85041E9AC77C86D750D93B5C33DBA65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:26:f7:51:a1:62:90:9e:17:ab:ad:af:eb:93: 78:c1:14:98:21:72:c7:7e:82:a7:aa:d0:54:6a:3f: d7:c4:53:28:b1:c5:d0:b2:b8:13:ab:11:00:95:ce: e1:a0:54:5f:82:68:30:3b:c5:5e:3a:00:d8:e3:07: ec:9f:8c:87:9a:9b:37:3b:84:df:e5:07:58:21:01: 67:36:2d:09:f8:3b:17:39:8b:9d:b2:f7:d9:b1:b1: 64:96:ac:aa:ea:e9:57:fc:7a:7b:f0:77:29:9f:e4: 2a:c3:49:90:91:b2:b3:51:92:08:af:59:24:b6:2c: 0f:8c:06:b0:96:bf:16:31:5c:48:90:a8:72:ff:f9: b3:eb:34:aa:66:b9:ab:a3:ad:e4:fa:48:8f:35:24: a6:e7:42:28:68:cc:be:2c:c2:4b:8f:1a:0f:21:75: 02:cb:79:6b:d4:14:62:ff:92:02:dd:01:87:f1:28: 3c:5c:62:04:c5:d4:b3:48:85:de:f4:45:c7:f2:e3: 90:89:05:03:49:c8:ad:5b:85:a9:81:2d:f2:5a:3b: 9c:36:3e:21:93:38:bb:5f:6b:79:b0:af:da:4e:f0: 1f:b6:5d:c3:b0:5b:71:2c:4a:c0:0b:33:14:1c:9a: 4c:a1:a1:da:b1:4d:c4:3c:fb:1f:24:00:d7:81:7a: da:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:0E:E0:8F:B8:50:41:E9:AC:77:C8:6D:75:0D:93:B5:C3:3D:BA:65 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:5f:02:c9:a7:ff:3d:87:b9:e5:52:39:d7:51:07:85:5d:5d: ad:b3:25:3d:30:49:c7:1f:e0:6b:3d:11:9e:e7:7c:bf:9e:16: 4b:cb:b7:65:28:27:8b:2e:13:ae:be:a4:a8:cc:05:b5:64:14: 37:a1:7f:17:79:c3:18:6f:db:ee:c9:38:cf:e2:d7:2c:66:db: 60:8c:dc:21:8b:8a:aa:24:41:4d:f1:ae:50:1c:3b:8b:03:3a: fb:43:92:27:fb:e7:11:47:fe:da:1f:43:87:f0:c5:64:f1:b6: a4:f7:58:db:b0:e1:8d:cc:d6:94:ca:89:b0:73:6c:ea:7a:2e: 22:82:91:91:9d:f1:1f:67:3c:2f:7a:51:cd:2e:50:3d:ba:36: 57:95:09:51:1b:a2:73:5d:63:ce:9e:ba:c5:d8:b1:80:2f:0a: 86:45:e0:9e:92:8b:64:9e:4d:bf:27:51:00:c5:d7:46:d2:10: b3:40:ec:c4:0d:53:f5:41:3a:a5:fc:d6:d0:82:1b:e7:26:34: 28:26:f9:b2:69:d5:c1:ea:9d:de:8e:b0:af:c5:49:d2:b0:03: 77:25:36:b8:0c:a9:4c:7c:14:d9:fc:e0:63:ff:7d:cd:58:ad: 9a:4f:1c:57:8f:31:53:ea:fe:91:43:93:f5:4f:64:9f:e2:1b: e6:92:c4:8a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQUcPA/xelUDvtQ3Jh+FpVirifQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNjAzMDEyMjE3MjlaFw0yNjAzMDUwMDEzMjlaMDMxMTAvBgNV BAMTKEEwMEVFMDhGQjg1MDQxRTlBQzc3Qzg2RDc1MEQ5M0I1QzMzREJBNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxJvdRoWKQnherra/rk3jBFJgh csd+gqeq0FRqP9fEUyixxdCyuBOrEQCVzuGgVF+CaDA7xV46ANjjB+yfjIeamzc7 hN/lB1ghAWc2LQn4Oxc5i52y99mxsWSWrKrq6Vf8envwdymf5CrDSZCRsrNRkgiv WSS2LA+MBrCWvxYxXEiQqHL/+bPrNKpmuaujreT6SI81JKbnQihozL4swkuPGg8h dQLLeWvUFGL/kgLdAYfxKDxcYgTF1LNIhd70Rcfy45CJBQNJyK1bhamBLfJaO5w2 PiGTOLtfa3mwr9pO8B+2XcOwW3EsSsALMxQcmkyhodqxTcQ8+x8kANeBetpzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoA7gj7hQQemsd8htdQ2TtcM9umUwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADNfAsmn/z2HueVSOddRB4VdXa2zJT0wSccf 4Gs9EZ7nfL+eFkvLt2UoJ4suE66+pKjMBbVkFDehfxd5wxhv2+7JOM/i1yxm22CM 3CGLiqokQU3xrlAcO4sDOvtDkif75xFH/tofQ4fwxWTxtqT3WNuw4Y3M1pTKibBz bOp6LiKCkZGd8R9nPC96Uc0uUD26NleVCVEbonNdY86eusXYsYAvCoZF4J6Si2Se Tb8nUQDF10bSELNA7MQNU/VBOqX81tCCG+cmNCgm+bJp1cHqnd6OsK/FSdKwA3cl NrgMqUx8FNn84GP/fc1YrZpPHFePMVPq/pFDk/VPZJ/iG+aSxIo= -----END CERTIFICATE-----Generated at Mon Mar 2 10:02:12 2026 by rpki-client