$ rpki-client -vvf repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft File: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft (raw, json) Hash identifier: WblgVICO29Q9DtapN+lcehCJRfwfs+rtS4m6ffhAGaU= Subject key identifier: 82:BC:87:83:D0:32:C1:95:5C:07:F1:AE:E9:C7:58:4F:AD:67:C2:5A Authority key identifier: 2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F Certificate issuer: /CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Certificate serial: 7691B699E00F5540492D19C62B33F50B2C3A3A9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft Manifest number: 0140 Signing time: Sun 01 Mar 2026 11:30:57 +0000 Manifest this update: Sun 01 Mar 2026 11:25:57 +0000 Manifest next update: Wed 04 Mar 2026 21:27:57 +0000 Files and hashes: 1: 3130332e3135362e3131302e302f32342d3234203d3e20313431303839.roa (hash: lTXXqDvVb99/4yIHlkQaywB5MQKhKyYSxakzkjkU+yg=) 2: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl (hash: D6QK6xo/NBlzmQYrZnT781pR8hZSeqMxkFTRqyJN/7s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:91:b6:99:e0:0f:55:40:49:2d:19:c6:2b:33:f5:0b:2c:3a:3a:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Validity Not Before: Mar 1 11:25:57 2026 GMT Not After : Mar 4 21:27:57 2026 GMT Subject: CN=82BC8783D032C1955C07F1AEE9C7584FAD67C25A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:84:08:33:de:e5:8d:0c:6a:2d:2b:43:b8:a3: 1f:62:90:7e:8a:15:b9:21:83:9d:63:7b:9b:1a:8e: c3:fe:d3:ec:4e:04:fe:35:8e:6f:63:af:8f:ca:d8: 76:fd:5e:17:d2:4c:53:4b:7b:3a:af:f1:b5:8a:86: 77:ff:a2:5c:f5:64:a1:d4:25:97:2e:c8:14:38:e6: cb:02:37:4f:5a:40:54:29:e9:4c:09:a2:2d:21:d1: 5f:dd:d7:49:5b:f5:9d:52:a3:74:d3:9d:e4:7c:f7: 01:19:56:b3:5c:00:6f:21:19:e7:22:05:4e:5e:22: b4:ce:25:55:ac:d8:6c:be:4d:7a:70:9c:67:e3:7a: f8:6e:84:1a:f9:8c:89:ab:c9:81:b1:06:85:df:38: 5c:76:d0:56:81:d4:09:d9:58:24:4d:c7:df:bb:66: 53:36:04:18:c4:af:65:9e:c8:79:c4:f4:2e:f8:97: 5d:fd:58:94:27:a6:67:cf:0d:a8:eb:03:c7:35:cd: be:40:01:59:ac:4f:91:c0:cb:9b:2f:15:27:a8:6c: b5:a9:60:5f:98:bf:e2:d6:0c:a8:1c:f3:a1:c5:d0: 6e:3d:ff:90:0c:1f:44:db:06:b0:54:98:79:27:06: 97:da:7b:69:75:38:8d:66:21:fd:9f:61:2d:a3:54: cc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BC:87:83:D0:32:C1:95:5C:07:F1:AE:E9:C7:58:4F:AD:67:C2:5A X509v3 Authority Key Identifier: keyid:2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:c5:f5:6c:63:5c:eb:19:d9:59:16:30:57:17:cf:09:b9:b1: 0e:63:a2:87:a9:04:7e:e2:f9:ac:f7:c1:30:bf:15:22:0d:79: ca:c6:64:f0:37:62:fe:0e:d5:52:06:06:a4:41:68:d9:c7:07: 2f:41:4f:f3:45:a9:1f:08:76:54:ce:ab:e5:6b:b2:c4:6c:69: ed:99:c4:33:0e:34:6d:01:ee:93:dd:11:90:99:92:1a:6c:08: c6:90:64:aa:99:50:c3:d6:32:7a:2c:87:a0:b5:7f:e2:6b:3e: e8:e1:cb:bf:d0:85:11:47:d9:56:1f:89:5b:ea:68:06:03:f1: 31:dd:39:c4:79:40:7a:83:36:a0:cc:59:5c:64:fa:b4:2b:68: 7b:16:f7:af:a2:03:0e:14:1d:04:d5:e2:2c:f6:c8:23:de:43: 13:11:fc:70:49:8f:03:91:51:d1:19:fb:be:93:94:4b:3f:d7: 05:6a:74:45:05:7f:6f:fc:22:a5:57:f4:b5:c7:e9:19:2d:97: 26:de:da:0d:23:63:24:8f:87:60:8f:8a:83:78:a3:1a:fc:ee: b0:27:47:72:ef:6d:88:d4:12:1a:b3:e9:60:53:52:52:3d:68: 1c:2f:8f:97:50:47:e3:e9:87:49:49:84:9b:dd:94:5f:fb:68: 25:01:82:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdpG2meAPVUBJLRnGKzP1Cyw6OpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0 RTk0RjEyRjAeFw0yNjAzMDExMTI1NTdaFw0yNjAzMDQyMTI3NTdaMDMxMTAvBgNV BAMTKDgyQkM4NzgzRDAzMkMxOTU1QzA3RjFBRUU5Qzc1ODRGQUQ2N0MyNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzhAgz3uWNDGotK0O4ox9ikH6K Fbkhg51je5sajsP+0+xOBP41jm9jr4/K2Hb9XhfSTFNLezqv8bWKhnf/olz1ZKHU JZcuyBQ45ssCN09aQFQp6UwJoi0h0V/d10lb9Z1So3TTneR89wEZVrNcAG8hGeci BU5eIrTOJVWs2Gy+TXpwnGfjevhuhBr5jImryYGxBoXfOFx20FaB1AnZWCRNx9+7 ZlM2BBjEr2WeyHnE9C74l139WJQnpmfPDajrA8c1zb5AAVmsT5HAy5svFSeobLWp YF+Yv+LWDKgc86HF0G49/5AMH0TbBrBUmHknBpfae2l1OI1mIf2fYS2jVMzFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgryHg9AywZVcB/Gu6cdYT61nwlowHwYDVR0j BBgwFoAULVF9wCTO/Pr4DPf9OSJGiU6U8S8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDMzYTFjNi0wZjcwLTRjOTgtOTZiMC1jYWI1ODEyNmFiOTQvMC8yRDUxN0RDMDI0 Q0VGQ0ZBRjgwQ0Y3RkQzOTIyNDY4OTRFOTRGMTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0RTk0 RjEyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQzM2ExYzYtMGY3MC00Yzk4LTk2 YjAtY2FiNTgxMjZhYjk0LzAvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2 ODk0RTk0RjEyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEnF9WxjXOsZ2VkWMFcXzwm5sQ5jooepBH7i +az3wTC/FSINecrGZPA3Yv4O1VIGBqRBaNnHBy9BT/NFqR8IdlTOq+VrssRsae2Z xDMONG0B7pPdEZCZkhpsCMaQZKqZUMPWMnosh6C1f+JrPujhy7/QhRFH2VYfiVvq aAYD8THdOcR5QHqDNqDMWVxk+rQraHsW96+iAw4UHQTV4iz2yCPeQxMR/HBJjwOR UdEZ+76TlEs/1wVqdEUFf2/8IqVX9LXH6Rktlybe2g0jYySPh2CPioN4oxr87rAn R3LvbYjUEhqz6WBTUlI9aBwvj5dQR+Pph0lJhJvdlF/7aCUBgvI= -----END CERTIFICATE-----Generated at Mon Mar 2 10:01:49 2026 by rpki-client