$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft File: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft (raw, json) Hash identifier: n8CMtIbDwytVsKGNC6wu7xC6k7FWabNvkVdUzlkM2GE= Subject key identifier: 75:8D:E1:6E:DC:46:C7:1A:D2:16:CB:BF:AD:08:34:B9:10:82:D3:75 Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 4AA284ECB5742B79DB1DA99DBFFD3C4330D74AD4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft Manifest number: 014B Signing time: Mon 02 Mar 2026 03:30:56 +0000 Manifest this update: Mon 02 Mar 2026 03:25:56 +0000 Manifest next update: Thu 05 Mar 2026 05:11:56 +0000 Files and hashes: 1: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (hash: ILDuTAsK8lVD87kg3m/pYLNNkFpQ3NK/TkzPdZb+cXI=) 2: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (hash: Ytw+F2IuhNctJo7Mq4Aaa3GXpRtkG7WpHGa2dilsfso=) 3: 3230332e3134352e35382e302f32342d3234203d3e20313432333735.roa (hash: 8PwAQvSewzdVUf4Jq+quL23phhlsATOC3lb6zK0pxD0=) 4: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl (hash: 6/jYz2/CgXZxYRFxd14sMs0t56DjaQMwa5wvp8jWiPw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 05:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a2:84:ec:b5:74:2b:79:db:1d:a9:9d:bf:fd:3c:43:30:d7:4a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Mar 2 03:25:56 2026 GMT Not After : Mar 5 05:11:56 2026 GMT Subject: CN=758DE16EDC46C71AD216CBBFAD0834B91082D375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c3:a3:78:12:d8:64:fd:f2:de:d9:3f:d1:8e: 5f:ca:43:4f:ce:90:7f:d0:fd:47:f4:43:2e:74:84: cd:32:8f:2e:85:e8:b1:ff:39:2c:70:9d:e2:9d:71: 90:8c:d2:7d:7b:0a:58:ab:95:e7:29:0c:af:43:08: d1:d7:d5:73:dd:2c:f3:71:73:cf:82:fe:34:b6:8f: e7:36:8b:a5:6d:25:6e:da:3f:1d:43:ac:9f:61:fe: b9:a6:d6:66:94:47:00:c5:f5:ac:a7:cb:78:aa:52: a2:f5:09:f2:49:83:51:3a:38:ac:56:0e:9e:81:a7: e0:2d:df:4c:63:97:d5:a2:38:49:9a:5a:63:41:7b: 80:fd:92:aa:b6:cf:9e:9f:f2:56:bb:0b:c0:16:01: 47:30:07:63:e3:e5:49:35:f5:2f:a4:48:36:1e:5f: b4:4b:84:e3:2b:38:68:ba:60:ce:94:9c:b6:fd:86: a7:44:12:86:1a:1f:a2:17:40:eb:22:af:b8:18:84: 0d:aa:d7:6b:ec:4c:67:86:38:2d:99:70:42:a3:dc: e1:59:c1:73:5a:17:b4:3a:2f:5c:61:79:ab:81:91: fc:c4:15:f9:79:07:47:74:c6:06:70:f7:19:60:66: 54:ff:9d:b3:db:34:de:b4:a9:51:66:1a:02:fa:e6: dc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:8D:E1:6E:DC:46:C7:1A:D2:16:CB:BF:AD:08:34:B9:10:82:D3:75 X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:5a:75:35:ec:05:73:ca:d2:a0:73:1b:7b:84:14:9a:00:b3: 72:1f:f1:41:a9:72:61:d1:90:4e:b4:57:f2:38:ce:d8:c5:f3: e7:56:10:84:a9:7c:a7:f4:ed:06:a3:e8:01:33:90:df:85:db: 77:43:18:3d:3f:cd:8f:8b:a9:85:05:72:9c:7a:c0:a7:53:60: d3:b4:1d:24:5c:cb:15:ad:57:0b:13:03:37:f6:01:80:ac:c7: 85:b7:10:aa:c3:29:3e:d8:e1:d1:0a:43:6b:82:d5:c5:76:47: ad:31:e3:f7:21:9d:cb:cb:bc:50:05:8e:65:78:5c:8c:ca:09: 0a:6e:f0:3e:2b:fb:f1:e0:4c:89:db:a4:73:24:a7:bc:54:17: 13:ef:6c:89:5c:85:50:92:ae:92:5e:ea:44:f3:55:f3:9b:26: 48:17:0e:c9:68:19:ef:b2:52:bc:1b:a1:e6:fd:d1:83:2f:0e: e4:bb:f9:e0:60:0f:22:ae:24:d3:22:e8:70:24:97:3b:ef:68: 19:b2:0c:97:3a:af:51:a7:0a:b1:f6:4a:31:dd:ef:26:25:68: 09:75:f0:95:2a:e2:83:8d:3c:85:db:a9:e6:70:f4:7d:fe:af: d9:64:af:6c:e2:60:1a:60:ce:5b:47:ee:3f:47:67:1d:44:b7: da:63:06:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSqKE7LV0K3nbHamdv/08QzDXStQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNjAzMDIwMzI1NTZaFw0yNjAzMDUwNTExNTZaMDMxMTAvBgNV BAMTKDc1OERFMTZFREM0NkM3MUFEMjE2Q0JCRkFEMDgzNEI5MTA4MkQzNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5w6N4Ethk/fLe2T/Rjl/KQ0/O kH/Q/Uf0Qy50hM0yjy6F6LH/OSxwneKdcZCM0n17ClirlecpDK9DCNHX1XPdLPNx c8+C/jS2j+c2i6VtJW7aPx1DrJ9h/rmm1maURwDF9ayny3iqUqL1CfJJg1E6OKxW Dp6Bp+At30xjl9WiOEmaWmNBe4D9kqq2z56f8la7C8AWAUcwB2Pj5Uk19S+kSDYe X7RLhOMrOGi6YM6UnLb9hqdEEoYaH6IXQOsir7gYhA2q12vsTGeGOC2ZcEKj3OFZ wXNaF7Q6L1xheauBkfzEFfl5B0d0xgZw9xlgZlT/nbPbNN60qVFmGgL65tzZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdY3hbtxGxxrSFsu/rQg0uRCC03UwHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzZhYTNiZWItNTc2MS00YzM0LTg4 ZDMtMDE1Y2NjNjQwMDJmLzAvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMz RTFCNTMwNjMzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKZadTXsBXPK0qBzG3uEFJoAs3If8UGpcmHR kE60V/I4ztjF8+dWEISpfKf07Qaj6AEzkN+F23dDGD0/zY+LqYUFcpx6wKdTYNO0 HSRcyxWtVwsTAzf2AYCsx4W3EKrDKT7Y4dEKQ2uC1cV2R60x4/chncvLvFAFjmV4 XIzKCQpu8D4r+/HgTInbpHMkp7xUFxPvbIlchVCSrpJe6kTzVfObJkgXDsloGe+y Urwboeb90YMvDuS7+eBgDyKuJNMi6HAklzvvaBmyDJc6r1GnCrH2SjHd7yYlaAl1 8JUq4oONPIXbqeZw9H3+r9lkr2ziYBpgzltH7j9HZx1Et9pjBqc= -----END CERTIFICATE-----Generated at Mon Mar 2 17:29:39 2026 by rpki-client