$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: iZl95G/sILBn/UaXRHGPyvGhX7nwdvntUBxAnZvPeP4= Subject key identifier: A5:76:B1:4F:38:0B:88:DE:D1:F0:EF:28:E8:8B:7F:F9:25:93:CA:56 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 665676A1BA3312BA6151C60D33C58D98573F40CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 020D Signing time: Mon 02 Mar 2026 02:02:38 +0000 Manifest this update: Mon 02 Mar 2026 01:57:38 +0000 Manifest next update: Thu 05 Mar 2026 09:08:38 +0000 Files and hashes: 1: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: 1yTR12zVNlgV/3lhF5YF8WQX2wlBuTs2UGOXRfg1gpk=) 2: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: OWnBgNYLGkA96RsufdZjDxO8ZN/BDv7rlkiNkHccTdM=) 3: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: bKAiHhmlEj4IgvE00Lo3377sGcryUEP8JoeR2a9n6WM=) 4: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: uNA/yO7Jurn3EZm3l95rlsLVpHCEIuUhUwihJjKDdLE=) 5: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: Hj/Oe+Radw8pbluCv/VN2XxQ+sX4+0STYPYTyYPvjyc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:56:76:a1:ba:33:12:ba:61:51:c6:0d:33:c5:8d:98:57:3f:40:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Mar 2 01:57:38 2026 GMT Not After : Mar 5 09:08:38 2026 GMT Subject: CN=A576B14F380B88DED1F0EF28E88B7FF92593CA56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2f:73:5e:1c:1e:ba:9e:4b:74:31:01:80:68: 00:5c:51:d0:72:1e:93:04:77:83:d9:5b:0e:81:49: 98:54:aa:9e:33:8d:d0:63:5d:2c:60:48:1f:fa:78: 76:5a:85:e7:5a:de:1b:5f:36:b1:63:5d:40:45:9a: e4:dc:85:8b:f8:81:11:58:3d:48:c6:8f:b6:fe:2b: 0c:b9:d5:b5:6f:7d:05:ef:b3:bb:fa:a0:e4:02:72: f9:9d:45:47:d2:a4:2e:d6:43:0b:ec:7b:90:fc:48: e8:01:bf:8a:c9:7e:9b:82:0e:2d:69:72:2a:69:0d: d4:34:21:26:4a:e0:cc:be:66:01:e2:7f:7d:1d:36: 56:64:e1:41:f3:fd:a7:42:be:b7:cd:33:20:2d:b4: 78:21:0c:a2:8d:3c:0d:73:fa:4f:21:c0:b4:ef:ef: 4e:7f:4a:8b:8b:6d:d2:fa:b7:99:92:98:77:0e:46: 83:af:3e:32:aa:7b:58:d8:1c:a9:e7:67:0b:50:a2: 46:4e:2f:28:04:d7:93:5a:01:5f:14:7d:02:30:a7: 99:d0:d6:ca:b9:df:57:fe:e2:cb:42:d5:aa:79:13: cd:68:96:50:74:34:6e:75:b5:9b:e9:05:8f:27:80: a3:e8:7e:ed:e5:da:cb:7e:4b:1a:66:d9:01:4c:05: 09:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:76:B1:4F:38:0B:88:DE:D1:F0:EF:28:E8:8B:7F:F9:25:93:CA:56 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:52:54:ac:1d:4f:c5:b0:c0:1a:68:b4:ed:d8:71:11:c3:ea: 7d:dd:b7:7e:85:53:90:cb:b1:4b:74:eb:af:a6:c2:61:da:9e: 78:d6:06:9d:dd:40:14:f5:18:84:9d:89:e0:14:d9:cd:a5:37: 22:81:ea:e0:ce:dc:e0:49:ce:17:00:1d:bc:ff:8b:62:78:ba: 11:5d:d3:43:5b:57:49:bc:20:38:7d:8a:d1:16:99:7f:c3:f1: 12:26:7f:98:ed:71:e0:05:32:8a:f9:69:19:cc:da:8d:26:5a: 39:90:a7:36:15:77:8f:db:78:a0:9e:8a:4e:ac:03:c7:e3:ee: 0b:00:f7:7b:0f:23:bb:50:ba:4d:47:91:da:c8:a2:4b:c1:94: c2:3a:56:8b:b9:4e:56:5a:5d:ce:96:bc:b4:6c:58:8f:ea:44: 99:81:53:25:51:05:59:44:4b:9b:20:7e:9c:55:86:28:a1:da: 02:6b:da:f3:d0:a8:e9:de:1a:4e:07:c3:82:93:37:e6:9c:9a: ca:0a:b7:a5:09:b9:86:fb:68:82:84:8f:b8:3e:04:58:9f:ab: 21:62:66:37:d7:30:f2:28:62:5e:4a:a2:a8:9d:51:7e:b4:1b: 61:dd:db:91:ed:66:f4:08:52:d1:3e:65:45:7d:a0:6c:d4:0c: b8:35:57:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZlZ2obozErphUcYNM8WNmFc/QM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNjAzMDIwMTU3MzhaFw0yNjAzMDUwOTA4MzhaMDMxMTAvBgNV BAMTKEE1NzZCMTRGMzgwQjg4REVEMUYwRUYyOEU4OEI3RkY5MjU5M0NBNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwL3NeHB66nkt0MQGAaABcUdBy HpMEd4PZWw6BSZhUqp4zjdBjXSxgSB/6eHZaheda3htfNrFjXUBFmuTchYv4gRFY PUjGj7b+Kwy51bVvfQXvs7v6oOQCcvmdRUfSpC7WQwvse5D8SOgBv4rJfpuCDi1p cippDdQ0ISZK4My+ZgHif30dNlZk4UHz/adCvrfNMyAttHghDKKNPA1z+k8hwLTv 705/SouLbdL6t5mSmHcORoOvPjKqe1jYHKnnZwtQokZOLygE15NaAV8UfQIwp5nQ 1sq531f+4stC1ap5E81ollB0NG51tZvpBY8ngKPofu3l2st+Sxpm2QFMBQkTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpXaxTzgLiN7R8O8o6It/+SWTylYwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAINSVKwdT8WwwBpotO3YcRHD6n3dt36FU5DL sUt066+mwmHannjWBp3dQBT1GISdieAU2c2lNyKB6uDO3OBJzhcAHbz/i2J4uhFd 00NbV0m8IDh9itEWmX/D8RImf5jtceAFMor5aRnM2o0mWjmQpzYVd4/beKCeik6s A8fj7gsA93sPI7tQuk1HkdrIokvBlMI6Vou5TlZaXc6WvLRsWI/qRJmBUyVRBVlE S5sgfpxVhiih2gJr2vPQqOneGk4Hw4KTN+acmsoKt6UJuYb7aIKEj7g+BFifqyFi ZjfXMPIoYl5KoqidUX60G2Hd25HtZvQIUtE+ZUV9oGzUDLg1V7I= -----END CERTIFICATE-----Generated at Mon Mar 2 16:49:49 2026 by rpki-client