$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft File: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft (raw, json) Hash identifier: d3ZKX9DTuL5Fgpg1ih9fOgLDdO5vtpLyh6CPpfRv0BU= Subject key identifier: 76:1B:9A:A7:0C:31:70:55:C6:1D:F7:51:48:E8:04:1D:5A:C8:12:BE Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 2123B5167D0D4F600C6D4637A97976F00F354D8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft Manifest number: 01BE Signing time: Sun 01 Mar 2026 01:42:20 +0000 Manifest this update: Sun 01 Mar 2026 01:37:20 +0000 Manifest next update: Wed 04 Mar 2026 11:56:20 +0000 Files and hashes: 1: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl (hash: 3vpOmGqFNJOAB/YUuxR8fIjpKJrxsvxftBLDuPECkEg=) 2: 3130332e3135392e36332e302f32342d3234203d3e20313431353931.roa (hash: jZdzzwUnE5NySNtgaEjKcLOBnZGLd0OeUfLgUNjS8h8=) 3: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (hash: HdUQMZ7SOKpAyFz6JesRqd55RtIwIZs1nM/RQd+kRrc=) 4: 3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa (hash: Ss0eIh55eF1+18NBRc56XTthBY2pyra5MKG9X4X5KfE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 11:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:23:b5:16:7d:0d:4f:60:0c:6d:46:37:a9:79:76:f0:0f:35:4d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Mar 1 01:37:20 2026 GMT Not After : Mar 4 11:56:20 2026 GMT Subject: CN=761B9AA70C317055C61DF75148E8041D5AC812BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2f:c3:36:80:f9:37:13:23:2f:30:4a:f5:49: 8b:02:e0:cf:a0:c5:f1:2a:34:05:6c:99:ef:3d:82: 9d:97:fd:39:84:fc:ba:06:97:4f:be:04:7f:0f:33: f7:db:bf:e0:ae:d6:4e:b2:f6:03:6b:dd:c3:67:03: ee:5e:74:c1:1a:44:75:85:30:98:30:7f:31:d5:2a: ed:69:81:e7:43:3a:37:eb:78:3d:18:07:47:2e:b4: 1f:9f:b1:1d:38:5e:89:67:c5:e9:bd:06:25:19:86: b5:39:46:cd:c0:35:d4:68:7b:ff:af:20:d1:f5:11: 7c:56:c8:e2:e3:7a:37:26:fa:f2:84:91:32:7d:5a: 36:b1:68:91:4a:c1:48:fa:be:b3:98:9e:66:4b:66: 8c:4e:d0:28:86:01:59:b0:f9:f0:49:5c:5a:5a:b8: b8:ba:d3:a1:46:99:0f:13:d4:b5:37:96:15:c4:66: 39:0f:6d:14:73:29:be:01:e6:35:fb:92:e7:dd:40: df:45:e6:fb:58:e1:9a:02:a9:65:d7:65:94:c3:8d: 1c:b7:1b:d3:35:4d:22:55:c5:3d:62:28:cd:ce:2c: 3b:d2:41:4e:f8:62:1e:15:ee:0a:9b:06:d2:55:63: 9f:99:8e:1f:af:7c:4b:cb:de:b8:85:f9:52:3b:bb: 9c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1B:9A:A7:0C:31:70:55:C6:1D:F7:51:48:E8:04:1D:5A:C8:12:BE X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e5:1b:16:3e:c5:67:fb:ab:e8:ee:0e:28:3b:51:2c:5c:65: cb:24:5f:4e:25:e2:bf:dd:51:95:85:43:40:2d:fd:43:eb:04: 0b:6d:0b:fc:60:e8:bf:36:47:fa:d8:c6:0c:46:ce:a1:94:80: e1:6f:77:7b:2a:c9:ae:50:cc:7d:ed:8f:c2:e9:32:a0:74:6e: 9d:b3:7b:6e:9b:cb:b4:c4:ba:29:12:d1:f8:15:0c:7b:21:b5: 56:8c:77:48:a0:cc:75:f8:a5:a0:d1:ae:be:3f:7c:7e:5e:ae: 7b:30:51:d5:b1:8d:c6:53:c3:07:5a:81:71:6c:4a:8a:20:87: ae:e4:d3:b2:3e:00:74:fa:60:67:ab:ba:51:17:7d:98:82:fd: 47:67:fe:80:9e:ad:f2:7c:dc:9b:33:9e:5e:5d:6d:ba:67:4e: b5:43:2c:4e:f3:4d:a9:26:8d:1a:92:24:5b:84:35:2a:ab:61: 03:3a:f8:8c:0c:ba:78:80:d9:ba:f3:8b:8e:a9:05:fc:51:5e: b9:e0:24:f6:29:e7:b8:58:4a:f9:00:5c:5d:6c:6e:44:aa:3c: 29:c5:b3:66:dd:b8:ba:e5:24:e2:7e:20:85:3d:4d:ef:7a:57: f2:15:fa:5c:f5:22:52:93:70:2c:d1:3b:15:3a:7b:83:aa:0b: 7e:27:58:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUISO1Fn0NT2AMbUY3qXl28A81TYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNjAzMDEwMTM3MjBaFw0yNjAzMDQxMTU2MjBaMDMxMTAvBgNV BAMTKDc2MUI5QUE3MEMzMTcwNTVDNjFERjc1MTQ4RTgwNDFENUFDODEyQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1L8M2gPk3EyMvMEr1SYsC4M+g xfEqNAVsme89gp2X/TmE/LoGl0++BH8PM/fbv+Cu1k6y9gNr3cNnA+5edMEaRHWF MJgwfzHVKu1pgedDOjfreD0YB0cutB+fsR04Xolnxem9BiUZhrU5Rs3ANdRoe/+v INH1EXxWyOLjejcm+vKEkTJ9WjaxaJFKwUj6vrOYnmZLZoxO0CiGAVmw+fBJXFpa uLi606FGmQ8T1LU3lhXEZjkPbRRzKb4B5jX7kufdQN9F5vtY4ZoCqWXXZZTDjRy3 G9M1TSJVxT1iKM3OLDvSQU74Yh4V7gqbBtJVY5+Zjh+vfEvL3riF+VI7u5yDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdhuapwwxcFXGHfdRSOgEHVrIEr4wHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBjMTcxZjQtYmQxMS00OGVkLTg3 ZjAtMjdlYTEyMDkwNjRmLzAvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkx OTNGMDU0ODFCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACrlGxY+xWf7q+juDig7USxcZcskX04l4r/d UZWFQ0At/UPrBAttC/xg6L82R/rYxgxGzqGUgOFvd3sqya5QzH3tj8LpMqB0bp2z e26by7TEuikS0fgVDHshtVaMd0igzHX4paDRrr4/fH5ernswUdWxjcZTwwdagXFs Soogh67k07I+AHT6YGerulEXfZiC/Udn/oCerfJ83Jsznl5dbbpnTrVDLE7zTakm jRqSJFuENSqrYQM6+IwMuniA2brzi46pBfxRXrngJPYp57hYSvkAXF1sbkSqPCnF s2bduLrlJOJ+IIU9Te96V/IV+lz1IlKTcCzROxU6e4OqC34nWBs= -----END CERTIFICATE-----Generated at Mon Mar 2 08:06:43 2026 by rpki-client