$ rpki-client -vvf repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft (raw, json) Hash identifier: CERJw+tEL6sn8xsr4xEvWiiN2tXgZlTzB7w/sxf+r1I= Subject key identifier: 2F:BD:18:AA:FE:70:A3:63:5D:86:81:B6:CA:C7:01:EA:45:D1:73:99 Authority key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Certificate issuer: /CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Certificate serial: 7CAE4305DDAE0193BAEC98753988794F0D9722E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft Manifest number: E1 Signing time: Sun 01 Mar 2026 10:40:54 +0000 Manifest this update: Sun 01 Mar 2026 10:35:54 +0000 Manifest next update: Wed 04 Mar 2026 19:09:54 +0000 Files and hashes: 1: 3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa (hash: pR6eogbZvQzPFnI0kZLcItGmRoYFBBreikW5pxdST7Q=) 2: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl (hash: egE2hLjJHlt/S790Qt3etGWANY+mVxCaSxTeCZuWvCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 19:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ae:43:05:dd:ae:01:93:ba:ec:98:75:39:88:79:4f:0d:97:22:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Validity Not Before: Mar 1 10:35:54 2026 GMT Not After : Mar 4 19:09:54 2026 GMT Subject: CN=2FBD18AAFE70A3635D8681B6CAC701EA45D17399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:15:78:f4:55:b7:2a:93:6b:c9:28:76:78:de: ff:f9:c2:9a:40:c4:5b:72:83:39:df:c9:8c:52:d8: 86:21:51:d6:88:9e:19:09:4f:95:37:26:35:1d:9d: 5e:1e:fa:61:78:a3:82:20:74:c4:fc:6d:1e:0e:14: 92:b7:c0:4d:52:9c:4c:5d:0c:08:d4:3a:6b:81:77: 8c:47:10:cc:60:aa:7b:20:e7:6e:0e:73:0d:a0:40: 1b:68:ee:4e:7b:2e:f9:dc:9b:1c:f3:9e:17:7e:a1: b3:b5:cd:47:c6:6e:be:79:f1:fa:8a:d0:55:e8:6c: 3a:13:e5:c6:af:78:e7:8a:90:41:8c:41:8b:ad:34: ce:30:ff:17:94:f3:f2:6f:2b:3a:1e:f3:eb:b8:2c: 1f:49:16:65:59:8e:c6:fb:29:ae:22:1b:a8:b3:d6: 62:4c:46:d0:72:0a:45:71:2a:d5:00:7e:03:85:73: ee:e7:eb:2a:98:09:4d:30:de:93:09:16:4d:14:0d: 06:c8:38:27:e0:67:f6:00:f7:b8:1c:dc:ce:4e:07: 5a:13:30:5e:22:64:97:08:8c:92:bc:e5:d6:7b:6d: 79:ec:92:43:bf:c8:da:5f:15:38:8d:7a:c6:d7:6e: 00:b3:af:db:50:2a:a7:7b:a4:74:49:2f:cc:27:dc: 10:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BD:18:AA:FE:70:A3:63:5D:86:81:B6:CA:C7:01:EA:45:D1:73:99 X509v3 Authority Key Identifier: keyid:52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:1d:d0:97:b0:e9:3a:c0:0f:20:2d:ce:93:c9:f0:e1:0f:51: ea:59:4a:32:7e:28:e4:4a:b2:08:b1:a6:a5:25:a5:96:fd:d6: af:ae:4b:3b:d2:7c:d3:bf:1b:9d:1b:c2:0a:af:f3:0f:1a:58: fd:fa:ab:af:97:42:42:b0:04:a4:c6:27:db:5a:82:1e:3a:c9: 7b:f6:a5:56:43:bd:6c:c0:a4:62:f9:da:9a:f2:f9:e0:65:d5: d4:28:66:f0:b2:70:b0:04:76:fe:65:4b:8f:ac:b2:13:7c:66: c1:50:ca:44:22:11:e2:4a:19:2d:a6:c8:8a:d8:7d:52:45:4a: 5c:88:99:ea:76:fc:64:0d:92:12:37:43:f1:75:22:29:de:92: 82:54:53:d2:5f:f6:3c:35:f6:ea:2b:6f:ac:c7:21:d3:ee:cb: b1:a6:75:72:6a:62:38:b8:dc:0c:07:61:ba:cf:5f:2d:f0:39: c4:f7:a7:c3:66:ec:27:50:2f:75:5f:3c:ce:74:9e:79:2a:87: 99:c5:9c:b3:68:30:f6:5e:87:3b:ec:dc:15:55:55:ad:20:d3: c0:eb:6f:34:25:88:7f:70:10:62:52:e3:d7:0c:49:15:bf:c3: 85:6b:9e:3c:c6:50:58:96:27:81:6d:67:4b:da:ea:6e:54:c7: dd:3e:ee:1c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfK5DBd2uAZO67Jh1OYh5Tw2XIuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0Iz OUU1Q0YzQTAeFw0yNjAzMDExMDM1NTRaFw0yNjAzMDQxOTA5NTRaMDMxMTAvBgNV BAMTKDJGQkQxOEFBRkU3MEEzNjM1RDg2ODFCNkNBQzcwMUVBNDVEMTczOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjFXj0Vbcqk2vJKHZ43v/5wppA xFtygznfyYxS2IYhUdaInhkJT5U3JjUdnV4e+mF4o4IgdMT8bR4OFJK3wE1SnExd DAjUOmuBd4xHEMxgqnsg524Ocw2gQBto7k57Lvncmxzznhd+obO1zUfGbr558fqK 0FXobDoT5caveOeKkEGMQYutNM4w/xeU8/JvKzoe8+u4LB9JFmVZjsb7Ka4iG6iz 1mJMRtByCkVxKtUAfgOFc+7n6yqYCU0w3pMJFk0UDQbIOCfgZ/YA97gc3M5OB1oT MF4iZJcIjJK85dZ7bXnskkO/yNpfFTiNesbXbgCzr9tQKqd7pHRJL8wn3BAlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL70Yqv5wo2NdhoG2yscB6kXRc5kwHwYDVR0j BBgwFoAUUrnB5fC680XEDy55ZpxjyznlzzowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMC81MkI5QzFFNUYw QkFGMzQ1QzQwRjJFNzk2NjlDNjNDQjM5RTVDRjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0IzOUU1 Q0YzQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTBhODU5MGUtZTRkYy00NDE2LWE2 ZmEtZmI3OGQ2ZGQxMmQ3LzAvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYz Q0IzOUU1Q0YzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEQd0Jew6TrADyAtzpPJ8OEPUepZSjJ+KORK sgixpqUlpZb91q+uSzvSfNO/G50bwgqv8w8aWP36q6+XQkKwBKTGJ9tagh46yXv2 pVZDvWzApGL52pry+eBl1dQoZvCycLAEdv5lS4+sshN8ZsFQykQiEeJKGS2myIrY fVJFSlyImep2/GQNkhI3Q/F1IinekoJUU9Jf9jw19uorb6zHIdPuy7GmdXJqYji4 3AwHYbrPXy3wOcT3p8Nm7CdQL3VfPM50nnkqh5nFnLNoMPZehzvs3BVVVa0g08Dr bzQliH9wEGJS49cMSRW/w4VrnjzGUFiWJ4FtZ0va6m5Ux90+7hw= -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:32 2026 by rpki-client