$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft File: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft (raw, json) Hash identifier: 8kBsWi6x94E1XwG44+q38nGdPQf6eWUinbKNNqUCuik= Subject key identifier: 9E:04:F9:F1:CA:5C:FC:5E:55:5B:9E:A3:42:EF:7F:22:EE:84:82:3C Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Certificate serial: 63D9D43313AD5458B4AD963FB044352F2A21285E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft Manifest number: 0237 Signing time: Mon 02 Mar 2026 02:24:44 +0000 Manifest this update: Mon 02 Mar 2026 02:19:44 +0000 Manifest next update: Thu 05 Mar 2026 07:58:44 +0000 Files and hashes: 1: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (hash: a5a2FZuaU8+YwWyJiNpJaq/a07NXsjnc5SwcHCXziC4=) 2: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl (hash: jWDpWYaem/COBZ/r16krDmIUUxtsuSqiAvfwOzGTqhM=) 3: 3130332e3139312e35342e302f32342d3234203d3e20313439393133.roa (hash: CllgKLcIRd3lX7KQsM2tAZpeFF8Rj9z8kpx3sCEVEDA=) 4: 3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa (hash: MzEupSrXlebebmZ66Gd92DusEJ4mRAdQ/8taDo8z+bk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d9:d4:33:13:ad:54:58:b4:ad:96:3f:b0:44:35:2f:2a:21:28:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Validity Not Before: Mar 2 02:19:44 2026 GMT Not After : Mar 5 07:58:44 2026 GMT Subject: CN=9E04F9F1CA5CFC5E555B9EA342EF7F22EE84823C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4a:f8:fb:9e:63:f6:7b:41:1c:4a:a3:d0:ce: 87:b5:6e:e8:b2:68:c4:21:19:af:cf:f7:d4:c6:a0: 2a:77:8b:74:33:38:81:57:56:e1:34:a6:a5:1b:43: 5f:ac:ff:7a:0c:f0:f8:b4:38:d2:9b:1b:0d:e5:92: da:ac:03:c7:b7:60:4d:5e:44:c9:cf:42:f4:23:e7: ce:5a:4f:b7:f1:52:75:f4:6c:68:12:4c:d8:c0:a6: 56:d8:ab:c8:c0:ce:86:92:b4:54:07:7a:b0:9b:00: 37:b4:99:f8:6b:30:a1:f5:8e:18:d7:9f:54:c5:65: e9:55:36:c9:0a:10:6b:bd:cf:56:46:b4:ba:35:97: 50:c4:d3:6b:28:1f:b9:22:29:c8:4a:1a:3a:29:fe: 42:95:06:a9:ed:74:6e:42:85:69:86:d8:06:38:ec: ab:f0:f9:4b:db:8e:b0:5e:1f:54:9d:4b:ef:55:ea: 59:df:e7:53:95:7e:59:bb:35:10:27:cb:1a:05:4a: 9b:e0:e9:f6:96:58:7a:79:eb:46:c6:06:78:68:81: c8:5a:0c:8f:ba:e9:95:5b:d2:47:41:6c:45:ea:d2: 62:6d:b2:be:39:f4:84:9c:2a:e1:8f:d2:1b:61:51: a4:a2:b3:97:4d:43:e6:71:a5:16:87:f4:d3:01:35: 4a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:04:F9:F1:CA:5C:FC:5E:55:5B:9E:A3:42:EF:7F:22:EE:84:82:3C X509v3 Authority Key Identifier: keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:f7:ea:df:c7:b6:e6:c7:2d:5c:a9:56:9e:ef:21:9e:e8:14: 68:9d:89:a2:56:e2:de:6f:1e:b7:00:3f:15:b8:9d:e8:76:c3: bd:32:12:f0:1b:36:1b:9e:40:c7:14:82:97:77:e8:80:ff:b1: 1f:5f:a0:7f:54:9d:ac:d2:e5:3a:b5:e1:c0:93:67:65:5e:4b: ef:2d:4a:b4:25:9d:4c:00:9b:da:06:04:4c:c8:39:2b:d9:a5: d8:09:0c:21:e2:32:96:e5:2e:39:13:47:29:3a:8a:7c:b8:b0: dd:78:40:6e:cd:6f:bf:eb:8f:f7:e0:67:5f:17:13:b4:43:39: 37:77:1e:56:01:b6:65:35:04:09:7b:44:5a:05:73:9e:35:be: 67:2d:08:45:ac:20:e0:fa:96:45:09:84:74:03:7e:51:28:b4: 1d:0b:91:a6:0c:28:8d:89:5e:bd:0f:f4:13:8f:c3:87:36:96: 56:e8:85:54:10:44:2f:1c:f7:7f:ad:e3:8f:2d:b1:91:84:71: cd:ee:c1:75:90:6b:a5:86:b6:b3:b7:bb:86:1b:8c:a1:36:b7: 9a:2a:c1:0a:99:c9:04:e3:3a:5d:f0:17:8c:37:49:a5:5e:d5: 75:5d:f5:3c:7a:9b:b8:2d:eb:68:f3:ab:ea:65:3b:a2:fc:ea: f9:6b:97:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY9nUMxOtVFi0rZY/sEQ1LyohKF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJC RTBERkQzMzAeFw0yNjAzMDIwMjE5NDRaFw0yNjAzMDUwNzU4NDRaMDMxMTAvBgNV BAMTKDlFMDRGOUYxQ0E1Q0ZDNUU1NTVCOUVBMzQyRUY3RjIyRUU4NDgyM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYSvj7nmP2e0EcSqPQzoe1buiy aMQhGa/P99TGoCp3i3QzOIFXVuE0pqUbQ1+s/3oM8Pi0ONKbGw3lktqsA8e3YE1e RMnPQvQj585aT7fxUnX0bGgSTNjAplbYq8jAzoaStFQHerCbADe0mfhrMKH1jhjX n1TFZelVNskKEGu9z1ZGtLo1l1DE02soH7kiKchKGjop/kKVBqntdG5ChWmG2AY4 7Kvw+UvbjrBeH1SdS+9V6lnf51OVflm7NRAnyxoFSpvg6faWWHp560bGBnhogcha DI+66ZVb0kdBbEXq0mJtsr459IScKuGP0hthUaSis5dNQ+ZxpRaH9NMBNUqNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUngT58cpc/F5VW56jQu9/Iu6EgjwwHwYDVR0j BBgwFoAURY2aK0wi/1AWri4kcp0j4r4N/TMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODZkNmJhMS0xZjczLTQ3NzYtOGE2YS00ZjQ1MTIwNzkyYjEvMC80NThEOUEyQjRD MjJGRjUwMTZBRTJFMjQ3MjlEMjNFMkJFMERGRDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJCRTBE RkQzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzg2ZDZiYTEtMWY3My00Nzc2LThh NmEtNGY0NTEyMDc5MmIxLzAvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIz RTJCRTBERkQzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABT36t/HtubHLVypVp7vIZ7oFGidiaJW4t5v HrcAPxW4neh2w70yEvAbNhueQMcUgpd36ID/sR9foH9UnazS5Tq14cCTZ2VeS+8t SrQlnUwAm9oGBEzIOSvZpdgJDCHiMpblLjkTRyk6iny4sN14QG7Nb7/rj/fgZ18X E7RDOTd3HlYBtmU1BAl7RFoFc541vmctCEWsIOD6lkUJhHQDflEotB0LkaYMKI2J Xr0P9BOPw4c2llbohVQQRC8c93+t448tsZGEcc3uwXWQa6WGtrO3u4YbjKE2t5oq wQqZyQTjOl3wF4w3SaVe1XVd9Tx6m7gt62jzq+plO6L86vlrl4M= -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:27 2026 by rpki-client