$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: kd8X+4RTE2q6Wl3FHP+7TkTOGZkHqI8i2h6Xw15BUTE= Subject key identifier: 5A:A2:F1:1E:66:C0:A3:B8:16:50:8E:13:96:70:61:B6:93:48:DB:E7 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 7DA242A704CC37897E87AF8BF88707BD183A5828 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0277 Signing time: Sat 28 Feb 2026 16:20:04 +0000 Manifest this update: Sat 28 Feb 2026 16:15:04 +0000 Manifest next update: Tue 03 Mar 2026 22:58:04 +0000 Files and hashes: 1: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) 2: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: BKyQIbI3klEYoH9ujtvdxRvtpiWS/SEPSMXSlmmWzjE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a2:42:a7:04:cc:37:89:7e:87:af:8b:f8:87:07:bd:18:3a:58:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Feb 28 16:15:04 2026 GMT Not After : Mar 3 22:58:04 2026 GMT Subject: CN=5AA2F11E66C0A3B816508E13967061B69348DBE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:1c:27:4b:93:03:41:1e:6f:4f:c2:e3:15: f8:69:27:a5:05:f1:8a:b7:a3:d0:c5:33:ba:1e:9b: 77:0d:97:a9:95:8f:c4:5b:ca:f9:2f:e3:a0:85:71: c9:c8:23:36:49:9a:df:c8:c7:7c:19:70:69:73:74: 58:d9:b4:69:aa:ba:58:09:ff:55:75:15:fb:64:9e: 6d:30:d4:27:e4:d6:5c:d9:15:e5:39:3c:10:9d:70: c4:75:e8:bb:7c:3e:9f:5e:66:e1:13:33:52:13:3c: ac:54:d2:14:f7:48:98:53:a4:4b:cb:48:71:98:bf: c7:03:3a:ee:57:aa:90:02:f6:8c:07:7b:32:bf:61: 1c:3e:01:99:1d:1d:45:1b:5d:2e:88:59:2a:8d:ff: 7d:0b:d1:49:c0:a6:2b:13:59:5b:9e:25:7a:31:75: 3a:71:28:fb:57:9f:9f:cd:52:dd:34:18:17:5e:8e: 08:b4:8b:c7:2e:e9:28:fb:42:f2:0e:91:77:13:d4: 5d:b5:c0:49:c4:1a:df:7c:77:ea:9e:84:6c:8d:ac: 20:aa:1b:f5:45:bb:8a:f8:ca:c8:54:eb:b1:89:81: b6:38:ac:7e:8e:c5:5f:a2:05:d2:6e:da:e2:70:2d: f5:66:79:f0:6e:c1:54:32:b6:bb:3d:63:89:16:22: 6a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A2:F1:1E:66:C0:A3:B8:16:50:8E:13:96:70:61:B6:93:48:DB:E7 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:b8:f4:ec:45:83:2b:38:00:43:a8:b4:32:2a:8a:96:74:1e: 8d:d7:00:c6:a3:91:3d:a0:c7:67:b9:80:b4:f0:95:1b:bd:2b: 05:14:c2:16:26:fc:b4:fc:48:c8:af:69:e3:44:1f:85:08:00: 3d:10:66:65:3d:8d:42:7a:60:99:59:db:bb:a8:cf:15:10:02: f0:41:ee:83:27:8d:ab:f5:17:99:30:96:9b:f4:be:cf:00:bb: 5c:85:00:e3:8c:0e:a0:4c:57:e4:37:c8:a0:de:e8:58:3c:32: b7:51:60:89:43:88:bb:ed:fc:99:fe:b1:b7:b6:33:6c:a3:6b: e4:63:5f:9a:31:e7:e1:57:71:6b:4e:ca:a7:18:26:4d:13:7c: c0:8b:21:cd:b1:79:84:04:b4:b1:92:f0:4a:3b:1e:ca:02:b6: 88:70:49:24:51:7a:4c:c1:c6:14:d8:3d:a7:62:79:85:c4:df: 7f:d4:7d:24:8a:5e:0e:71:28:f5:c6:06:06:9b:11:00:9b:9e: 2e:02:e0:6a:5e:7d:c7:3d:c7:a2:a9:8f:71:e5:7b:29:67:5d: 54:02:42:ee:aa:fa:6e:3b:67:b4:f5:99:bd:cd:c3:a1:e3:9a: 43:88:1e:2e:4f:73:af:4c:37:70:52:27:b3:6c:ff:a3:34:e2: b7:f9:ad:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfaJCpwTMN4l+h6+L+IcHvRg6WCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNjAyMjgxNjE1MDRaFw0yNjAzMDMyMjU4MDRaMDMxMTAvBgNV BAMTKDVBQTJGMTFFNjZDMEEzQjgxNjUwOEUxMzk2NzA2MUI2OTM0OERCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lhwnS5MDQR5vT8LjFfhpJ6UF 8Yq3o9DFM7oem3cNl6mVj8Rbyvkv46CFccnIIzZJmt/Ix3wZcGlzdFjZtGmqulgJ /1V1Fftknm0w1Cfk1lzZFeU5PBCdcMR16Lt8Pp9eZuETM1ITPKxU0hT3SJhTpEvL SHGYv8cDOu5XqpAC9owHezK/YRw+AZkdHUUbXS6IWSqN/30L0UnApisTWVueJXox dTpxKPtXn5/NUt00GBdejgi0i8cu6Sj7QvIOkXcT1F21wEnEGt98d+qehGyNrCCq G/VFu4r4yshU67GJgbY4rH6OxV+iBdJu2uJwLfVmefBuwVQytrs9Y4kWImpfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWqLxHmbAo7gWUI4TlnBhtpNI2+cwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABa49OxFgys4AEOotDIqipZ0Ho3XAMajkT2g x2e5gLTwlRu9KwUUwhYm/LT8SMivaeNEH4UIAD0QZmU9jUJ6YJlZ27uozxUQAvBB 7oMnjav1F5kwlpv0vs8Au1yFAOOMDqBMV+Q3yKDe6Fg8MrdRYIlDiLvt/Jn+sbe2 M2yja+RjX5ox5+FXcWtOyqcYJk0TfMCLIc2xeYQEtLGS8Eo7HsoCtohwSSRRekzB xhTYPadieYXE33/UfSSKXg5xKPXGBgabEQCbni4C4Gpefcc9x6Kpj3HleylnXVQC Qu6q+m47Z7T1mb3Nw6HjmkOIHi5Pc69MN3BSJ7Ns/6M04rf5re0= -----END CERTIFICATE-----Generated at Mon Mar 2 18:00:47 2026 by rpki-client