$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft (raw, json) Hash identifier: /LngkQxmipck28Mk9cXSw8QlRBloh3wCRW4Anuam6lo= Subject key identifier: C6:A1:8B:D0:5A:59:44:83:37:7D:3C:64:3D:67:F5:B6:74:CA:C7:41 Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 58E2C0AD5179FC0AD8530EDD825C37C9C5A50CC6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft Manifest number: 0238 Signing time: Mon 02 Mar 2026 06:11:30 +0000 Manifest this update: Mon 02 Mar 2026 06:06:30 +0000 Manifest next update: Thu 05 Mar 2026 08:00:30 +0000 Files and hashes: 1: 3131392e34372e39302e302f32342d3234203d3e203338353237.roa (hash: I3DXvvonrBchTQI06S4LkT6TVSxWcWBTNXL8OzRmw6c=) 2: 3130332e32352e3130382e302f32342d3234203d3e20313332363334.roa (hash: fBDOlCYFIj49Ll99j2HPW9RAkablwrcxgHTldEFv/Jk=) 3: 3132342e3130392e32322e302f32342d3234203d3e20313431313037.roa (hash: B91fipTOFpAzkFwpO49IAHAPfA5wpoTEbowTI/TzKsk=) 4: 3131392e34372e38392e302f32342d3234203d3e203338353237.roa (hash: M5eMsMOetidsRy/C8PwAw9YejdbuLdHg+PDsTMdviAE=) 5: 32372e3132342e38332e302f32342d3234203d3e20313332363334.roa (hash: 2EEYdzWr91JIl7YnldqA+u9ZlAli1CH0l6dUJ+oRlZU=) 6: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl (hash: kD9VKyCe8iyDXIkxU/ffbAP9mwS/4YfiRXfftYIlvq8=) 7: 3131392e34372e38382e302f32342d3234203d3e203338353237.roa (hash: ZHYZolADCQ3Nh0kSpTOhEiQyqWLeuJaaRLk6yahYzfE=) 8: 3131392e34372e39352e302f32342d3234203d3e20313439343039.roa (hash: IOQi+x8HL04tSdZdkybbwTiZjcbDVMFrGx/+Tn9mObQ=) 9: 3132342e3130392e32332e302f32342d3234203d3e203538333738.roa (hash: E8p39FK+OhNYyY8SwwTjQ8JEs2K6blfiyf4IMTEJdyY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e2:c0:ad:51:79:fc:0a:d8:53:0e:dd:82:5c:37:c9:c5:a5:0c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Mar 2 06:06:30 2026 GMT Not After : Mar 5 08:00:30 2026 GMT Subject: CN=C6A18BD05A594483377D3C643D67F5B674CAC741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3b:dc:19:bf:4d:49:6a:5f:b2:d5:b1:d0:cc: 0d:11:d5:e9:f5:81:58:cc:1a:d6:98:6f:5e:9d:a2: cd:f6:11:75:61:23:38:c0:df:56:f7:01:e4:64:32: ca:a7:b1:b0:e8:aa:6a:79:4a:03:c3:e4:ae:1d:b1: 05:2a:fb:3d:66:4b:6e:a9:2e:78:87:9f:10:69:01: 1d:c6:8a:3c:3b:50:e8:9b:b2:f6:3c:e3:76:28:9f: e2:b0:69:c3:de:00:61:92:9c:73:41:c5:0d:67:21: 94:d0:fe:21:ad:b9:ad:18:bd:b1:ae:72:21:b5:d0: dd:d7:9c:e1:44:37:6b:15:f3:01:25:46:31:fd:6e: 83:e6:e3:c5:63:33:45:60:b8:e9:ed:b8:c3:dc:fa: c6:7a:da:51:a1:96:9b:5c:70:a6:dd:94:87:57:a6: 71:8f:8a:5a:02:d8:34:6f:03:b9:26:a5:fd:81:43: 3d:fe:33:f4:6c:9d:9b:fa:d0:c8:fd:82:13:87:a2: 23:8d:e3:a1:35:c7:1c:18:4a:57:fa:43:ff:c5:e3: 31:5d:0e:10:77:af:10:1b:df:c5:52:15:41:cd:62: e6:9c:a0:3a:c9:59:4b:bf:22:ad:b0:33:51:4f:18: 16:78:16:05:b7:08:25:7b:03:f8:73:5f:b2:f3:25: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A1:8B:D0:5A:59:44:83:37:7D:3C:64:3D:67:F5:B6:74:CA:C7:41 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:3a:4d:d1:1f:85:74:9d:4e:19:71:33:ac:e9:65:cd:52:cd: 05:cb:81:7e:79:a5:62:13:0b:20:9a:cd:ad:02:8c:fc:e5:1f: 25:a0:25:82:49:4e:84:6d:5c:6d:5f:d1:4c:a6:3a:d7:59:78: cc:b7:10:be:40:e6:49:83:78:6e:1a:d0:c2:d1:1e:58:e3:f9: 41:7e:7a:0e:fa:48:ff:4c:82:e7:2d:ef:ca:45:b9:86:73:0f: 65:c6:7a:6b:99:8a:7d:cf:24:5f:b9:55:0e:a2:a3:17:fa:b6: 9a:43:c5:1b:c8:1d:87:59:e4:b7:42:71:4b:12:d1:aa:2e:eb: 47:ad:24:99:b4:07:78:d7:83:21:77:d3:d3:14:27:9f:ca:69: a7:8b:8d:5d:a0:55:0f:37:2e:08:e0:f1:72:dc:4f:36:40:54: 00:5d:48:fd:82:ca:56:8e:fe:e0:74:6e:8c:2f:de:80:06:d5: a5:12:b5:c2:00:64:53:a4:16:d5:22:e3:6a:f2:a2:99:1c:ce: 4f:84:82:62:5b:21:d0:02:99:66:3b:69:a3:f7:fc:ba:2b:ff: cb:53:3c:2e:8c:6e:29:e6:0a:32:61:63:cd:1f:ce:9f:f7:d6: 61:04:4d:e0:0c:72:0b:04:c1:fd:dc:cd:7c:4f:45:d5:18:75: d8:a8:63:8d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWOLArVF5/ArYUw7dglw3ycWlDMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNjAzMDIwNjA2MzBaFw0yNjAzMDUwODAwMzBaMDMxMTAvBgNV BAMTKEM2QTE4QkQwNUE1OTQ0ODMzNzdEM0M2NDNENjdGNUI2NzRDQUM3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoO9wZv01Jal+y1bHQzA0R1en1 gVjMGtaYb16dos32EXVhIzjA31b3AeRkMsqnsbDoqmp5SgPD5K4dsQUq+z1mS26p LniHnxBpAR3Gijw7UOibsvY843Yon+KwacPeAGGSnHNBxQ1nIZTQ/iGtua0YvbGu ciG10N3XnOFEN2sV8wElRjH9boPm48VjM0VguOntuMPc+sZ62lGhlptccKbdlIdX pnGPiloC2DRvA7kmpf2BQz3+M/RsnZv60Mj9ghOHoiON46E1xxwYSlf6Q//F4zFd DhB3rxAb38VSFUHNYuacoDrJWUu/Iq2wM1FPGBZ4FgW3CCV7A/hzX7LzJR8fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxqGL0FpZRIM3fTxkPWf1tnTKx0EwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzE3ZWZkMmEtMDJhYi00MjAyLTk3 MGYtZjY5OWRmZjk3ZGU1LzAvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VE NTBDRjlBNjQ3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF06TdEfhXSdThlxM6zpZc1SzQXLgX55pWIT CyCaza0CjPzlHyWgJYJJToRtXG1f0UymOtdZeMy3EL5A5kmDeG4a0MLRHljj+UF+ eg76SP9Mguct78pFuYZzD2XGemuZin3PJF+5VQ6ioxf6tppDxRvIHYdZ5LdCcUsS 0aou60etJJm0B3jXgyF309MUJ5/KaaeLjV2gVQ83Lgjg8XLcTzZAVABdSP2CylaO /uB0bowv3oAG1aUStcIAZFOkFtUi42ryopkczk+EgmJbIdACmWY7aaP3/Lor/8tT PC6MbinmCjJhY80fzp/31mEETeAMcgsEwf3czXxPRdUYddioY40= -----END CERTIFICATE-----Generated at Mon Mar 2 14:31:06 2026 by rpki-client