$ rpki-client -vvf repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft File: 24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft (raw, json) Hash identifier: p1+Op5NSUlu2qPCNIL40FOHja985/8GZDWdSgXrb+iw= Subject key identifier: E9:2F:6E:95:FE:67:28:24:CB:75:C9:7D:F1:87:2B:8A:1D:8B:58:CB Authority key identifier: 24:D5:D4:62:77:BE:98:F8:0E:C6:AF:90:1F:D4:32:2A:A2:FA:B2:08 Certificate issuer: /CN=24D5D46277BE98F80EC6AF901FD4322AA2FAB208 Certificate serial: 5100165C243327B6BA219A23D037D159CD249B4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft Manifest number: 0C Signing time: Sat 28 Feb 2026 00:03:19 +0000 Manifest this update: Fri 27 Feb 2026 23:58:19 +0000 Manifest next update: Tue 03 Mar 2026 10:36:19 +0000 Files and hashes: 1: 3135312e3135382e37342e302f32342d3234203d3e20313331343534.roa (hash: b3du5SkGrit+NpSd21sUl+osf6ePmLbD1q8TLf83bBw=) 2: 3135312e3135382e37342e302f32332d3233203d3e20313331343534.roa (hash: l2sRWuDj9NuoGun/QwVKlUMfqQ/mBD+QWaXv9jkfzHs=) 3: 24D5D46277BE98F80EC6AF901FD4322AA2FAB208.crl (hash: D2k+vC/kawAEMJDKSGC5gQ1J8/KRVt70VRWCxlQqQ9g=) 4: 3135312e3135382e37352e302f32342d3234203d3e20313331343534.roa (hash: XFhFebLIPZULajE3nvQRfK4ZgyC1cbWqHGjSgE8qiuc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.crl rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 10:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:00:16:5c:24:33:27:b6:ba:21:9a:23:d0:37:d1:59:cd:24:9b:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24D5D46277BE98F80EC6AF901FD4322AA2FAB208 Validity Not Before: Feb 27 23:58:19 2026 GMT Not After : Mar 3 10:36:19 2026 GMT Subject: CN=E92F6E95FE672824CB75C97DF1872B8A1D8B58CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f3:8b:2d:b4:de:00:92:d1:99:45:ce:01:07: 53:39:6e:f2:be:e1:19:d4:11:68:16:0a:0f:49:81: d9:17:ff:64:1e:bd:4c:c3:5d:dc:a9:6e:e6:95:9a: 6b:72:ef:c7:cc:32:ba:bb:de:01:a2:36:19:97:9c: 17:08:78:71:83:ff:de:cf:89:e4:d7:e7:a7:4a:de: 68:68:56:04:00:0d:48:44:89:34:b4:00:4d:f2:f1: b9:e7:88:14:b1:1d:53:52:33:30:ea:b3:85:9a:82: 9c:a7:f6:3d:8e:c7:10:82:23:44:82:e2:70:7c:a4: 94:f7:a0:99:4e:e9:81:ea:d0:ab:8f:12:f3:bc:22: b8:2d:5b:18:fb:ec:6f:f0:2b:e7:9a:28:ac:bf:38: c0:0d:7e:a8:c2:04:24:91:8b:3f:75:58:e1:7a:ac: bf:fd:85:40:2e:85:b3:fd:12:4b:e5:a3:47:82:0a: 09:05:7b:36:2c:2b:cf:b4:42:2c:8d:0e:70:ce:66: 1d:4d:63:20:29:65:7e:65:9a:ef:09:d7:01:1f:4c: 7b:ed:aa:b0:93:ae:37:54:69:95:9b:b9:d8:64:2b: 83:2c:df:bb:d8:e3:11:6d:db:1d:26:b2:4e:64:37: e3:d7:3b:cb:59:11:0f:3c:dd:87:9b:dd:50:d1:84: 30:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:2F:6E:95:FE:67:28:24:CB:75:C9:7D:F1:87:2B:8A:1D:8B:58:CB X509v3 Authority Key Identifier: keyid:24:D5:D4:62:77:BE:98:F8:0E:C6:AF:90:1F:D4:32:2A:A2:FA:B2:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:d0:1b:a2:1b:a1:54:1f:37:5a:54:ae:47:a0:80:c3:aa:c1: dd:ad:72:33:6a:a6:5b:f9:be:f6:58:57:01:0f:e7:50:70:4d: 08:07:dd:29:18:60:28:96:e4:56:87:20:ed:80:df:24:b6:15: a1:39:0c:b6:3b:8d:47:6a:92:5f:af:dc:61:33:f9:aa:9a:da: 2b:70:db:68:3b:93:61:e0:08:87:30:01:0b:04:5e:b1:40:46: 85:c3:35:89:03:03:46:bb:9f:8d:ed:ab:dc:c7:e4:89:80:af: a6:6c:83:9a:3a:e9:f3:58:73:d4:49:c3:81:80:ae:26:b2:e9: 83:42:27:89:c0:af:d3:ff:48:a2:5c:ca:c0:36:e6:dd:b9:31: 5c:82:66:9d:ec:b3:a1:26:63:89:3d:89:e1:c4:8c:2c:67:b0: a7:4e:74:40:4e:f9:4d:d4:95:05:0c:26:c2:f9:e7:c4:93:19: b0:a0:2d:e7:cb:35:52:47:c1:33:80:4b:df:e5:a4:8e:87:72: 20:40:72:ea:9e:36:67:5f:09:00:95:41:48:5a:d6:5e:46:cb: d8:08:06:aa:bd:33:0b:75:4f:3e:19:02:99:17:8b:14:df:04: 91:13:44:6b:05:e7:fc:8c:4b:d4:89:a3:0b:0c:da:f3:a4:f8: 45:dc:3a:94 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUQAWXCQzJ7a6IZoj0DfRWc0km0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRENUQ0NjI3N0JFOThGODBFQzZBRjkwMUZENDMyMkFB MkZBQjIwODAeFw0yNjAyMjcyMzU4MTlaFw0yNjAzMDMxMDM2MTlaMDMxMTAvBgNV BAMTKEU5MkY2RTk1RkU2NzI4MjRDQjc1Qzk3REYxODcyQjhBMUQ4QjU4Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR84sttN4AktGZRc4BB1M5bvK+ 4RnUEWgWCg9JgdkX/2QevUzDXdypbuaVmmty78fMMrq73gGiNhmXnBcIeHGD/97P ieTX56dK3mhoVgQADUhEiTS0AE3y8bnniBSxHVNSMzDqs4Wagpyn9j2OxxCCI0SC 4nB8pJT3oJlO6YHq0KuPEvO8IrgtWxj77G/wK+eaKKy/OMANfqjCBCSRiz91WOF6 rL/9hUAuhbP9Ekvlo0eCCgkFezYsK8+0QiyNDnDOZh1NYyApZX5lmu8J1wEfTHvt qrCTrjdUaZWbudhkK4Ms37vY4xFt2x0msk5kN+PXO8tZEQ883Yeb3VDRhDDfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6S9ulf5nKCTLdcl98Ycrih2LWMswHwYDVR0j BBgwFoAUJNXUYne+mPgOxq+QH9QyKqL6sggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWYxNmYzMS02MGNlLTQ3YTctYWU4ZC01YTI4YzUxMWM5NDcvMS8yNEQ1RDQ2Mjc3 QkU5OEY4MEVDNkFGOTAxRkQ0MzIyQUEyRkFCMjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzAvMjRENUQ0NjI3N0JFOThGODBFQzZBRjkwMUZENDMyMkFBMkZB QjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmVmMTZmMzEtNjBjZS00N2E3LWFl OGQtNWEyOGM1MTFjOTQ3LzEvMjRENUQ0NjI3N0JFOThGODBFQzZBRjkwMUZENDMy MkFBMkZBQjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAATQG6IboVQfN1pUrkeggMOqwd2tcjNqplv5 vvZYVwEP51BwTQgH3SkYYCiW5FaHIO2A3yS2FaE5DLY7jUdqkl+v3GEz+aqa2itw 22g7k2HgCIcwAQsEXrFARoXDNYkDA0a7n43tq9zH5ImAr6Zsg5o66fNYc9RJw4GA riay6YNCJ4nAr9P/SKJcysA25t25MVyCZp3ss6EmY4k9ieHEjCxnsKdOdEBO+U3U lQUMJsL558STGbCgLefLNVJHwTOAS9/lpI6HciBAcuqeNmdfCQCVQUha1l5Gy9gI Bqq9Mwt1Tz4ZApkXixTfBJETRGsF5/yMS9SJowsM2vOk+EXcOpQ= -----END CERTIFICATE-----Generated at Mon Mar 2 05:10:57 2026 by rpki-client