$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: /b5gwvlfeyxXNhAZlZMVcEIfui7ZJiZpw0/1fuhoosE= Subject key identifier: F7:C9:C2:66:AE:86:3E:77:6E:AB:62:63:A1:46:30:EF:FD:51:78:89 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 2F6B640695A1EADE42482D6EA38B8D4047421CE9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 0555 Signing time: Sun 01 Mar 2026 08:20:51 +0000 Manifest this update: Sun 01 Mar 2026 08:15:51 +0000 Manifest next update: Wed 04 Mar 2026 17:19:51 +0000 Files and hashes: 1: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=) 2: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 3: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) 4: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 5: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=) 6: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) 7: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 8: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: rqpxq4Y0lnNfA4M1D0GkDIdiPiaa5jkR6LPK02rv6rw=) 9: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 17:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:6b:64:06:95:a1:ea:de:42:48:2d:6e:a3:8b:8d:40:47:42:1c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Mar 1 08:15:51 2026 GMT Not After : Mar 4 17:19:51 2026 GMT Subject: CN=F7C9C266AE863E776EAB6263A14630EFFD517889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:03:3f:17:6d:04:68:40:c3:3b:f7:53:84:17: c6:e5:1b:d0:4d:92:c4:0f:40:98:6a:d4:85:d8:ee: 47:d9:9b:fc:b5:11:1a:4f:f7:e1:cd:ec:3c:8c:bf: e3:c0:f0:05:f8:26:ef:6f:1e:4b:ab:b5:a3:6d:12: c6:f9:51:1b:1b:f7:90:88:11:25:c7:98:ac:83:b8: f4:06:9b:94:75:5c:a4:a0:a5:a7:ce:bc:a5:3c:6b: c9:e0:8e:b1:b5:76:eb:9e:54:48:d5:e5:53:59:05: 0a:5f:fc:e4:53:39:e7:90:63:18:b1:3d:11:d1:4a: 5e:ba:8d:5f:3f:dc:5f:78:6a:f8:8e:53:63:97:65: 63:5e:3e:48:ec:da:f7:c5:38:bb:69:4d:9e:73:86: c6:b7:50:a4:70:94:69:0b:df:34:61:46:92:5d:3b: 4f:f8:ca:37:a0:c9:72:ce:58:61:6d:70:52:40:be: 98:bb:e4:64:e4:68:6d:1f:f4:27:36:40:58:d4:f8: 96:28:04:d7:37:9f:09:f0:9f:64:3e:eb:94:71:d8: 0b:8a:8f:73:8b:9c:9f:0f:20:f4:97:0b:e8:ea:f4: a5:a5:3a:e3:5e:d5:23:6b:cf:9f:e8:e8:89:b5:7e: 46:e1:c4:73:c5:89:2e:d8:d0:b8:0f:d4:0c:72:e3: 6d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C9:C2:66:AE:86:3E:77:6E:AB:62:63:A1:46:30:EF:FD:51:78:89 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:06:a3:be:09:b9:63:b3:75:94:08:86:4f:6f:f8:1a:e9:09: 15:91:f6:29:bf:81:6b:05:dc:07:2e:79:07:32:7d:ac:4c:cd: d9:dd:d8:e2:6c:6d:c7:2d:46:96:57:c4:0a:1a:71:ac:d7:a4: 9c:5e:ca:4a:cd:9f:05:41:e5:d3:65:da:10:0c:fd:53:38:85: 39:b2:2f:bc:c3:73:89:7c:3a:d0:62:f4:04:ee:56:55:9b:93: 82:12:26:3a:a5:42:f7:56:66:72:61:de:9d:58:5b:b1:57:9d: 9b:9e:e2:2e:92:b0:eb:9c:d4:73:ab:97:88:71:9e:af:48:f8: af:66:6a:d7:61:d7:25:6a:72:f9:b0:f5:9e:68:bb:2e:fc:f9: b9:4d:76:4a:30:b5:81:a2:d3:57:d4:fd:76:c4:3f:e1:c0:61: 8f:5b:85:93:e7:b4:0d:6d:8f:7a:64:02:3f:59:7e:3a:60:ef: ea:6c:4d:ce:39:90:95:94:77:57:b0:5d:4b:15:87:71:51:83: ce:16:11:f3:b1:d1:6d:6a:56:a2:a1:f3:bd:9f:f3:5c:55:6f: 14:1f:f1:ce:f9:aa:41:20:0e:3c:c4:ca:ea:ac:6c:5c:a4:a8: 56:f3:d2:47:2f:c4:4c:90:0e:02:02:e2:be:f6:fd:f7:2e:a6: fc:d5:5f:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL2tkBpWh6t5CSC1uo4uNQEdCHOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNjAzMDEwODE1NTFaFw0yNjAzMDQxNzE5NTFaMDMxMTAvBgNV BAMTKEY3QzlDMjY2QUU4NjNFNzc2RUFCNjI2M0ExNDYzMEVGRkQ1MTc4ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyAz8XbQRoQMM791OEF8blG9BN ksQPQJhq1IXY7kfZm/y1ERpP9+HN7DyMv+PA8AX4Ju9vHkurtaNtEsb5URsb95CI ESXHmKyDuPQGm5R1XKSgpafOvKU8a8ngjrG1duueVEjV5VNZBQpf/ORTOeeQYxix PRHRSl66jV8/3F94aviOU2OXZWNePkjs2vfFOLtpTZ5zhsa3UKRwlGkL3zRhRpJd O0/4yjegyXLOWGFtcFJAvpi75GTkaG0f9Cc2QFjU+JYoBNc3nwnwn2Q+65Rx2AuK j3OLnJ8PIPSXC+jq9KWlOuNe1SNrz5/o6Im1fkbhxHPFiS7Y0LgP1Axy4229AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU98nCZq6GPnduq2JjoUYw7/1ReIkwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJYGo74JuWOzdZQIhk9v+BrpCRWR9im/gWsF 3AcueQcyfaxMzdnd2OJsbcctRpZXxAoacazXpJxeykrNnwVB5dNl2hAM/VM4hTmy L7zDc4l8OtBi9ATuVlWbk4ISJjqlQvdWZnJh3p1YW7FXnZue4i6SsOuc1HOrl4hx nq9I+K9matdh1yVqcvmw9Z5ouy78+blNdkowtYGi01fU/XbEP+HAYY9bhZPntA1t j3pkAj9Zfjpg7+psTc45kJWUd1ewXUsVh3FRg84WEfOx0W1qVqKh872f81xVbxQf 8c75qkEgDjzEyuqsbFykqFbz0kcvxEyQDgIC4r72/fcupvzVX8c= -----END CERTIFICATE-----Generated at Mon Mar 2 08:03:54 2026 by rpki-client