$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft File: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft (raw, json) Hash identifier: 56tD7OytPFdC1BIggP5HTzR6YoxRXnq4mVSWtFINtwY= Subject key identifier: 16:E0:E9:86:C3:7A:57:FF:B9:C0:44:D7:C5:22:3B:D5:24:45:F4:FA Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 39A61AE65CA158A39BF8C6A627D227E98F911D6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft Manifest number: 050E Signing time: Fri 27 Feb 2026 20:21:56 +0000 Manifest this update: Fri 27 Feb 2026 20:16:56 +0000 Manifest next update: Tue 03 Mar 2026 06:56:56 +0000 Files and hashes: 1: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (hash: VKvXvb3BP6384nLUH1LdjT/mbF098hu6bIg7H4DeDLk=) 2: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (hash: voGeHKK4ikA3uaKs2J+WeJLtpIfTnr3JdLSLAJpRJmc=) 3: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (hash: 1I55HZV9ASBX91G1gmKkN8XsoZ52BjLH6TscAGFfb1w=) 4: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl (hash: NzO5jcGXS+VlukMfraEuBqekPZ3KldbeT9+qOQ4TEyo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 06:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a6:1a:e6:5c:a1:58:a3:9b:f8:c6:a6:27:d2:27:e9:8f:91:1d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Feb 27 20:16:56 2026 GMT Not After : Mar 3 06:56:56 2026 GMT Subject: CN=16E0E986C37A57FFB9C044D7C5223BD52445F4FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b4:08:79:76:5a:fc:bc:e7:f7:43:cf:e3:7c: c1:33:ee:91:60:fd:1c:46:81:dd:dc:26:50:3d:92: 76:46:31:b7:69:cf:03:21:9b:94:5e:fc:d0:32:d6: b3:62:cc:6e:19:6b:ff:d2:37:46:b1:ba:95:08:7d: 9c:59:0b:aa:8c:be:8f:72:c1:72:79:c6:76:fe:49: 98:fe:31:00:a1:48:ae:65:2b:15:b4:e8:5f:c2:71: 9e:28:ff:c2:08:67:99:89:f1:18:1c:bc:a0:7b:39: b4:34:54:17:b9:99:88:a1:bf:63:1e:ee:7d:29:a7: a4:1e:d1:84:fa:4d:e7:6c:10:86:58:2a:94:ad:1e: 2f:dc:a9:fb:45:8b:26:39:ad:f3:75:e0:97:83:31: ec:27:73:b3:ae:38:55:f9:a3:e6:dd:ad:e5:b0:6a: bc:8d:82:0e:5b:26:ce:17:8c:a0:87:10:4b:05:4f: 7c:e8:8d:ac:5a:4e:15:ff:77:6d:b1:4b:67:ea:bb: 9a:97:bc:56:50:50:7d:48:59:58:98:ae:6c:07:cd: 79:b2:ba:fc:7d:a8:45:12:1e:25:88:4b:e5:ee:00: 1f:11:e0:e0:8c:ea:0d:ad:54:f0:d8:0e:c7:fd:32: 13:e1:a6:8b:49:89:03:c4:a9:d0:db:b3:69:ed:f3: 73:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E0:E9:86:C3:7A:57:FF:B9:C0:44:D7:C5:22:3B:D5:24:45:F4:FA X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:d7:42:1d:82:c5:3b:ac:16:d2:6d:9d:ea:96:0f:ed:a9:6b: ce:b5:e1:15:19:78:15:99:ad:fe:91:74:fb:ab:b6:f5:fe:d1: 97:e7:d1:31:a7:25:c1:0a:50:77:23:87:cb:84:2f:6f:87:a1: 36:28:65:3f:80:a3:70:e5:ff:2b:ae:fe:aa:a8:9f:db:6c:8c: de:36:5e:4c:74:54:cc:7e:df:ea:45:65:f0:e3:57:7a:38:64: 82:84:e0:d0:df:88:39:cd:ae:e4:bd:1b:63:8b:e3:11:e4:e5: a1:dd:b1:fa:97:6b:2a:5f:a2:88:9e:21:8b:57:bc:ee:3e:54: 24:a6:6c:36:7c:0d:48:19:db:be:2d:f9:f6:86:a8:e3:c2:c9: 09:75:ca:e1:94:84:ff:3f:f4:9e:01:84:eb:fc:5e:c3:72:e0: 12:de:91:08:a5:84:29:f6:28:2c:6e:90:cb:47:e1:df:30:5d: 1b:fe:ce:cb:d1:f1:b8:f7:8b:04:28:04:d3:51:e8:8f:2b:be: 51:40:be:0c:8f:e1:94:29:ca:7f:f9:91:c9:e5:a4:35:5a:76: 98:c3:96:2d:5e:2a:82:31:41:f4:a6:a3:69:1d:37:7c:9b:70: 44:58:d2:4d:21:d3:21:cd:6b:b3:30:00:ad:4e:0c:92:d0:0f: 2a:ab:94:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOaYa5lyhWKOb+MamJ9In6Y+RHW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNjAyMjcyMDE2NTZaFw0yNjAzMDMwNjU2NTZaMDMxMTAvBgNV BAMTKDE2RTBFOTg2QzM3QTU3RkZCOUMwNDREN0M1MjIzQkQ1MjQ0NUY0RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3tAh5dlr8vOf3Q8/jfMEz7pFg /RxGgd3cJlA9knZGMbdpzwMhm5Re/NAy1rNizG4Za//SN0axupUIfZxZC6qMvo9y wXJ5xnb+SZj+MQChSK5lKxW06F/CcZ4o/8IIZ5mJ8RgcvKB7ObQ0VBe5mYihv2Me 7n0pp6Qe0YT6TedsEIZYKpStHi/cqftFiyY5rfN14JeDMewnc7OuOFX5o+bdreWw aryNgg5bJs4XjKCHEEsFT3zojaxaThX/d22xS2fqu5qXvFZQUH1IWViYrmwHzXmy uvx9qEUSHiWIS+XuAB8R4OCM6g2tVPDYDsf9MhPhpotJiQPEqdDbs2nt83MTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFuDphsN6V/+5wETXxSI71SRF9PowHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjAwNDIzM2YtYmIyYy00N2Q3LTkw MWMtZTNjODJmOGQ0MjNjLzAvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5 MzcyRUJEMkExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACbXQh2CxTusFtJtneqWD+2pa8614RUZeBWZ rf6RdPurtvX+0Zfn0TGnJcEKUHcjh8uEL2+HoTYoZT+Ao3Dl/yuu/qqon9tsjN42 Xkx0VMx+3+pFZfDjV3o4ZIKE4NDfiDnNruS9G2OL4xHk5aHdsfqXaypfooieIYtX vO4+VCSmbDZ8DUgZ274t+faGqOPCyQl1yuGUhP8/9J4BhOv8XsNy4BLekQilhCn2 KCxukMtH4d8wXRv+zsvR8bj3iwQoBNNR6I8rvlFAvgyP4ZQpyn/5kcnlpDVadpjD li1eKoIxQfSmo2kdN3ybcERY0k0h0yHNa7MwAK1ODJLQDyqrlHk= -----END CERTIFICATE-----Generated at Mon Mar 2 04:12:28 2026 by rpki-client