$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft File: DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft (raw, json) Hash identifier: L5Z26+htbDCIh1xbJ8XKxlc0/vLxVL35QKlSJrDOYuo= Subject key identifier: CE:EE:9B:D5:C3:4A:C6:96:B5:B1:D9:E7:87:6C:0D:D0:18:F4:C9:51 Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 76CA43AF164498834CC9138586FEB0B787E8C5FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft Manifest number: 010D Signing time: Mon 02 Mar 2026 11:02:03 +0000 Manifest this update: Mon 02 Mar 2026 10:57:03 +0000 Manifest next update: Thu 05 Mar 2026 15:21:03 +0000 Files and hashes: 1: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (hash: yOguTTJn/ofmmFRzNxB5PQD5Wur97XppCIr80azCbnE=) 2: 3130332e38312e3131312e302f32342d3234203d3e20313530393538.roa (hash: CSEyFnNOQdFjnYqiU1M0FD+ncVnXGi/YiRfm0U9hHlg=) 3: DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl (hash: nig0T4F27gthOiV3dNUQPn8fmP+lLvGEAIyiQTva4js=) 4: 3130332e38312e3131302e302f32342d3234203d3e20313530393538.roa (hash: l+woQG8NGXwscppt3BLv8pY3gFICf9F1+Mc2HYpLxj0=) 5: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (hash: BIDljILBNKsrSwzyZxnTSaIaANst4K6p4IMi96hI1tI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:ca:43:af:16:44:98:83:4c:c9:13:85:86:fe:b0:b7:87:e8:c5:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Mar 2 10:57:03 2026 GMT Not After : Mar 5 15:21:03 2026 GMT Subject: CN=CEEE9BD5C34AC696B5B1D9E7876C0DD018F4C951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bd:9f:3c:d2:7d:2c:55:48:da:06:cc:36:75: cf:9e:17:db:d1:8b:c8:fa:71:d8:a1:ba:bb:9b:72: ab:3f:c9:65:56:12:a0:83:11:88:f0:aa:e6:69:4b: 6f:3f:3b:ef:12:69:13:28:f1:1b:69:54:5b:9e:e3: 71:68:a7:f3:3c:9d:9b:86:d4:80:ec:77:54:fc:5a: 91:55:a7:f7:01:5f:8d:e3:48:73:69:d1:08:b2:c1: 62:05:5a:9c:47:c3:68:ef:01:33:91:f6:36:a8:ec: a7:dc:f8:e2:69:db:18:45:9e:eb:d5:cb:ab:00:18: fb:fe:c7:89:17:3a:88:94:d2:71:de:76:36:3b:74: a9:25:0d:fd:55:6e:11:07:d2:eb:1a:da:c1:44:bd: 2a:9a:64:ff:17:cc:f7:72:9b:98:bf:e5:b6:34:e3: eb:fa:4f:e1:3b:58:3b:01:39:33:3f:b1:41:66:db: 76:fc:d7:e5:ba:57:1b:fc:16:8b:34:f5:af:f3:5b: 15:a8:67:3d:bd:53:f0:73:85:44:99:23:84:df:b7: ca:10:51:bd:d4:c3:33:13:a2:24:17:0f:fd:42:a1: 42:f7:a3:9a:c1:fa:ee:c0:2a:01:ae:84:df:a8:9c: 4b:8f:ae:9f:30:ca:c9:80:0a:a8:53:4d:ed:43:96: e2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EE:9B:D5:C3:4A:C6:96:B5:B1:D9:E7:87:6C:0D:D0:18:F4:C9:51 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:15:4b:16:13:57:f9:68:89:2a:a9:8e:35:05:6c:46:75:77: 6c:2e:de:8e:8f:2f:ec:52:1d:fd:78:3b:33:b0:a2:30:48:67: cc:ea:4e:b0:7d:2e:bd:bb:22:1e:1d:0e:62:48:63:2d:e1:7c: 81:8e:ec:1c:c4:5b:56:62:f2:d3:a5:f1:36:23:d6:20:1a:33: 9a:c1:83:df:76:6f:84:c9:b8:4f:18:d5:4c:09:a6:ab:57:b6: b0:1f:24:88:dd:e1:37:04:fa:b3:a4:23:40:77:8b:54:a9:5f: d5:b5:34:a9:53:ea:7f:ac:32:63:bd:37:46:16:fe:84:ad:59: ae:db:f4:57:ce:89:7b:5a:1d:ff:98:70:ae:7b:ab:ba:2b:cd: 7f:c6:49:cd:47:4c:85:8a:2e:90:dd:5f:c1:26:f8:6e:14:88: 23:e4:3c:a5:c7:04:44:bc:3d:64:89:84:39:4c:db:21:d2:a4: a5:a1:85:5c:d9:c4:3f:b4:ac:79:43:44:95:e0:93:5a:85:ad: ce:2e:c8:67:0e:b7:62:f6:b0:68:14:30:75:9b:fa:a4:9e:9d: b7:bc:dd:ab:eb:05:00:65:65:44:82:69:41:1b:a0:3c:1b:8a: ca:3c:de:b4:18:19:37:dd:8f:1a:6d:7b:24:30:6b:bf:3d:22: e2:67:5c:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdspDrxZEmINMyROFhv6wt4foxf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNjAzMDIxMDU3MDNaFw0yNjAzMDUxNTIxMDNaMDMxMTAvBgNV BAMTKENFRUU5QkQ1QzM0QUM2OTZCNUIxRDlFNzg3NkMwREQwMThGNEM5NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpvZ880n0sVUjaBsw2dc+eF9vR i8j6cdihurubcqs/yWVWEqCDEYjwquZpS28/O+8SaRMo8RtpVFue43Fop/M8nZuG 1IDsd1T8WpFVp/cBX43jSHNp0QiywWIFWpxHw2jvATOR9jao7Kfc+OJp2xhFnuvV y6sAGPv+x4kXOoiU0nHedjY7dKklDf1VbhEH0usa2sFEvSqaZP8XzPdym5i/5bY0 4+v6T+E7WDsBOTM/sUFm23b81+W6Vxv8Fos09a/zWxWoZz29U/BzhUSZI4Tft8oQ Ub3UwzMToiQXD/1CoUL3o5rB+u7AKgGuhN+onEuPrp8wysmACqhTTe1DluLtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzu6b1cNKxpa1sdnnh2wN0Bj0yVEwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGYwYmNkYzMtMGZlYS00NzQ3LTk5 MDctNjU2NDg2YmFlOGRhLzAvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlG MzYwRDJDNDYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABgVSxYTV/loiSqpjjUFbEZ1d2wu3o6PL+xS Hf14OzOwojBIZ8zqTrB9Lr27Ih4dDmJIYy3hfIGO7BzEW1Zi8tOl8TYj1iAaM5rB g992b4TJuE8Y1UwJpqtXtrAfJIjd4TcE+rOkI0B3i1SpX9W1NKlT6n+sMmO9N0YW /oStWa7b9FfOiXtaHf+YcK57q7orzX/GSc1HTIWKLpDdX8Em+G4UiCPkPKXHBES8 PWSJhDlM2yHSpKWhhVzZxD+0rHlDRJXgk1qFrc4uyGcOt2L2sGgUMHWb+qSenbe8 3avrBQBlZUSCaUEboDwbiso83rQYGTfdjxpteyQwa789IuJnXFA= -----END CERTIFICATE-----Generated at Mon Mar 2 20:15:13 2026 by rpki-client