$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft File: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft (raw, json) Hash identifier: HgFq7H0jUzExdpioiE2Tveg5S/OpeVh6p3WM+HP3yZA= Subject key identifier: 2A:A1:A7:E3:6C:3C:78:76:2D:50:ED:DE:DC:A1:46:E1:B9:7D:3A:BA Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 614EB3ABE46E26D033C6426AAB604D0A26FDDCB8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft Manifest number: 04F1 Signing time: Mon 02 Mar 2026 10:00:47 +0000 Manifest this update: Mon 02 Mar 2026 09:55:46 +0000 Manifest next update: Thu 05 Mar 2026 12:31:46 +0000 Files and hashes: 1: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (hash: Hp5JXQrEPxCMGP++NvFxm2uvusi9TtoQlGvA7/UOH1I=) 2: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl (hash: HclLa/Zh54jSydLEQq1Rws5YbwF87Bp0md/BXp9VOPk=) 3: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (hash: 5V8TdCs3cgs+nmmoF4z5Y22rIV0qGc1uTgZVGMrslKU=) 4: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (hash: MfxGUIrhtjjGajjX90ABbBqTVuaaEFP6XuBr1Yslsx0=) 5: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (hash: DTVsh2XoacQGQ0M4VZPcXWe9xYvlSB7Zv3KJ/YTK1Yw=) 6: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (hash: laLJUGonDC43HjG3ZGNawYIEQ9ln67j38UngxvM2zgQ=) 7: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (hash: Mt5SrkBl0TnCuOW6KjiUo7KU17URT0CCUG/IFHUWPhI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:4e:b3:ab:e4:6e:26:d0:33:c6:42:6a:ab:60:4d:0a:26:fd:dc:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Mar 2 09:55:46 2026 GMT Not After : Mar 5 12:31:46 2026 GMT Subject: CN=2AA1A7E36C3C78762D50EDDEDCA146E1B97D3ABA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:19:54:15:fd:50:60:2d:7f:e2:ab:6d:ba:36: 25:4a:98:c0:b3:15:eb:e6:10:39:12:a5:b2:bd:a7: e9:3d:6d:de:23:98:c8:f7:30:0b:0e:db:8c:4e:8c: a7:57:f5:34:52:e9:c0:4f:2b:1d:1e:0b:e0:1d:4e: b2:4b:4c:1d:4d:97:0b:89:06:7c:ae:15:c6:ae:f6: 50:87:9e:fd:c8:b8:74:76:93:03:ee:18:78:74:27: 30:d5:7b:06:fb:85:13:5f:a4:f6:a3:cb:7e:b6:aa: 46:5b:e6:6a:0f:e5:28:89:ec:fa:2d:8a:71:9c:c0: ce:76:85:d2:9b:11:7b:db:e1:c2:b7:82:6a:80:13: d8:39:28:d7:1f:fb:f5:97:98:8e:9d:3e:52:ad:da: 73:a1:0c:7a:e2:9c:92:ec:74:b3:57:0f:9d:d3:76: 15:fc:b2:d4:80:d7:57:e3:79:d2:cb:b9:36:e2:e8: 4e:4e:1f:f7:d7:75:f5:58:8d:1c:9a:5d:1f:bb:69: d4:d2:fe:1b:b5:72:5b:92:a1:a8:2d:f3:94:16:36: 8c:06:19:69:8f:f9:5e:4d:87:e4:92:1e:47:f5:e1: 07:9e:cf:11:b9:6c:bf:e4:f4:53:3e:ff:93:c5:1e: 1c:a9:c8:43:70:7b:a1:a7:63:cb:68:c1:3d:a3:83: f8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A1:A7:E3:6C:3C:78:76:2D:50:ED:DE:DC:A1:46:E1:B9:7D:3A:BA X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:2b:9d:9f:f1:2b:5e:91:64:2d:e6:ca:45:ce:9f:6f:e3:d0: b2:2c:c3:17:ca:9b:3a:e0:73:3b:08:74:a0:7d:c0:77:ff:a3: a1:c9:b6:0c:ec:63:03:4d:ce:63:3c:0b:6e:78:9d:b7:ca:3b: b8:ff:47:19:41:f2:56:cc:40:ff:f9:9b:e4:a5:8f:f9:6e:99: 4f:f0:cd:43:8f:a0:a2:83:0d:58:c1:7a:34:f6:62:9b:21:05: 33:f4:fd:b2:7d:19:86:43:af:46:b3:66:1b:ca:98:99:42:2d: 46:e8:d1:3c:f9:61:1b:6b:d0:ca:f4:99:59:d1:40:67:16:e6: 1d:4a:01:81:53:77:6b:c5:61:2d:e8:ed:96:fd:1b:fb:bf:55: 9f:68:60:dc:51:3e:f4:2c:67:f2:1c:8f:27:d9:7b:c9:1d:ac: 3c:ef:a5:3f:e3:b9:d7:ef:a3:d5:e5:79:93:87:d1:61:b3:1e: 31:7c:dc:e8:0c:b7:26:7e:4f:ae:c3:84:60:d7:da:b2:c2:ab: f8:b7:04:0f:1e:01:ff:e7:49:33:0d:d2:4a:a2:91:3f:b7:33: 87:9f:0b:12:ff:98:74:4a:47:09:40:09:a4:9d:b8:27:6e:d8: 1d:2c:14:f1:72:ce:5a:e4:88:19:1b:8e:01:07:4e:98:e7:56: df:04:2d:0d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYU6zq+RuJtAzxkJqq2BNCib93LgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNjAzMDIwOTU1NDZaFw0yNjAzMDUxMjMxNDZaMDMxMTAvBgNV BAMTKDJBQTFBN0UzNkMzQzc4NzYyRDUwRURERURDQTE0NkUxQjk3RDNBQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfGVQV/VBgLX/iq226NiVKmMCz FevmEDkSpbK9p+k9bd4jmMj3MAsO24xOjKdX9TRS6cBPKx0eC+AdTrJLTB1NlwuJ BnyuFcau9lCHnv3IuHR2kwPuGHh0JzDVewb7hRNfpPajy362qkZb5moP5SiJ7Pot inGcwM52hdKbEXvb4cK3gmqAE9g5KNcf+/WXmI6dPlKt2nOhDHrinJLsdLNXD53T dhX8stSA11fjedLLuTbi6E5OH/fXdfVYjRyaXR+7adTS/hu1cluSoagt85QWNowG GWmP+V5Nh+SSHkf14QeezxG5bL/k9FM+/5PFHhypyENwe6GnY8towT2jg/jNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKqGn42w8eHYtUO3e3KFG4bl9OrowHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3 OGYtYzhiMThhNDQyNDQ1LzAvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5 NUNBNzlDQUFEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFErnZ/xK16RZC3mykXOn2/j0LIswxfKmzrg czsIdKB9wHf/o6HJtgzsYwNNzmM8C254nbfKO7j/RxlB8lbMQP/5m+Slj/lumU/w zUOPoKKDDVjBejT2YpshBTP0/bJ9GYZDr0azZhvKmJlCLUbo0Tz5YRtr0Mr0mVnR QGcW5h1KAYFTd2vFYS3o7Zb9G/u/VZ9oYNxRPvQsZ/IcjyfZe8kdrDzvpT/judfv o9XleZOH0WGzHjF83OgMtyZ+T67DhGDX2rLCq/i3BA8eAf/nSTMN0kqikT+3M4ef CxL/mHRKRwlACaSduCdu2B0sFPFyzlrkiBkbjgEHTpjnVt8ELQ0= -----END CERTIFICATE-----Generated at Mon Mar 2 12:43:27 2026 by rpki-client