$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: 4zoXEK+bLQepxAh/6FEt4GKs/RFAvf3HoEaAyJIV6IU= Subject key identifier: 00:82:FE:82:CB:3B:E0:D5:76:13:5D:8F:F1:6F:4F:D4:48:BF:5E:DF Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 740B2CA5F02538D9C0D5B9277C1CB7B3475553B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 0226 Signing time: Sun 01 Mar 2026 06:20:57 +0000 Manifest this update: Sun 01 Mar 2026 06:15:57 +0000 Manifest next update: Wed 04 Mar 2026 11:11:57 +0000 Files and hashes: 1: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: s7xt6atAlnuk0NCp/3UKrnkCS/YpsE7vKEiGKhHlUBE=) 2: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: /Hrj7Hhtcw8RkH5UnRcguaqPW3h4pQwd8b0OfcHFCIg=) 3: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 11:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:0b:2c:a5:f0:25:38:d9:c0:d5:b9:27:7c:1c:b7:b3:47:55:53:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Mar 1 06:15:57 2026 GMT Not After : Mar 4 11:11:57 2026 GMT Subject: CN=0082FE82CB3BE0D576135D8FF16F4FD448BF5EDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:78:ca:b4:08:67:0f:f0:59:30:51:cf:a3: d4:0a:2c:74:23:36:61:d0:c7:1a:3b:63:01:13:c0: c1:b0:2d:86:25:3e:e7:6b:c9:d5:c6:e0:1a:23:bc: 1a:f8:01:2e:ad:ce:7e:23:90:2e:ce:51:18:73:ba: be:6a:3c:f5:b8:8e:94:1e:f2:2c:9a:0d:75:06:b5: aa:b8:99:ae:9e:ca:dc:7f:5c:f9:cf:15:9d:af:c4: 11:f2:6f:b9:b5:45:59:10:cb:98:56:96:85:39:b0: fa:2c:96:18:ec:28:ca:56:5b:9e:3e:12:9b:e8:0d: cc:e5:25:4e:b0:48:cc:f4:7f:4f:ba:2c:28:7f:7f: 5c:7e:fb:8e:50:bd:db:09:64:4b:3b:60:e0:ca:58: 54:3c:ef:83:68:33:83:f0:6d:d4:ab:cb:97:ee:78: a4:e9:e8:3a:57:95:35:c7:d9:66:a9:df:58:e5:ec: 56:91:aa:82:f2:c0:d7:6c:84:db:fa:d4:63:01:47: 97:26:87:4e:75:50:38:9a:f4:3b:4c:8e:66:26:45: 28:e6:56:b3:5e:84:e0:d4:c2:4f:7d:8f:30:92:63: 9a:ea:4f:6f:46:94:49:e0:da:11:bb:d2:ed:79:29: 33:e2:5a:b3:ed:be:f9:69:ce:63:1c:c6:95:63:f7: 34:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:82:FE:82:CB:3B:E0:D5:76:13:5D:8F:F1:6F:4F:D4:48:BF:5E:DF X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:76:a0:90:e7:04:27:2d:dd:1e:33:be:8b:5c:02:cd:e8:e7: 6e:12:91:6c:76:bc:fc:ec:57:cb:39:6f:3a:eb:b5:11:5b:50: 1d:82:82:1c:5d:28:93:e0:be:8d:3d:24:3a:0a:61:be:4b:6e: 79:c0:63:0d:c7:2e:35:30:bd:d9:69:d8:87:a0:fb:97:bf:0c: 89:df:fd:ec:57:9d:5b:d0:3b:2d:d8:0d:b6:48:59:5e:28:94: d0:1e:14:26:48:99:72:b5:92:1b:a3:15:b6:91:ee:28:2c:99: 0d:1b:d2:8e:31:a6:6b:d0:91:b3:4c:6c:e1:8c:ba:b4:fc:b3: 9e:91:dc:fc:48:c3:9d:44:56:24:96:e3:c2:f2:69:35:48:ac: b9:b0:5d:5f:62:0d:f7:ba:3e:5e:74:66:6a:66:50:2c:03:b5: da:6a:c5:8d:e2:a5:05:92:e7:ba:3a:10:47:c3:77:11:b9:29: 98:f3:51:89:ce:01:99:b9:f0:37:08:eb:f6:68:ee:de:95:37: 43:56:be:53:67:20:e5:d3:21:f3:01:54:ba:57:b0:db:9c:fc: b2:05:6d:0b:b5:35:4d:fd:3e:e4:b2:3e:24:30:48:5d:97:7f: 1a:2a:18:56:28:83:fd:9b:e1:34:57:3a:ac:1a:a7:6a:a5:dc: fd:4d:b2:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdAsspfAlONnA1bknfBy3s0dVU7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNjAzMDEwNjE1NTdaFw0yNjAzMDQxMTExNTdaMDMxMTAvBgNV BAMTKDAwODJGRTgyQ0IzQkUwRDU3NjEzNUQ4RkYxNkY0RkQ0NDhCRjVFREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh1XjKtAhnD/BZMFHPo9QKLHQj NmHQxxo7YwETwMGwLYYlPudrydXG4BojvBr4AS6tzn4jkC7OURhzur5qPPW4jpQe 8iyaDXUGtaq4ma6eytx/XPnPFZ2vxBHyb7m1RVkQy5hWloU5sPoslhjsKMpWW54+ EpvoDczlJU6wSMz0f0+6LCh/f1x++45QvdsJZEs7YODKWFQ874NoM4PwbdSry5fu eKTp6DpXlTXH2Wap31jl7FaRqoLywNdshNv61GMBR5cmh051UDia9DtMjmYmRSjm VrNehODUwk99jzCSY5rqT29GlEng2hG70u15KTPiWrPtvvlpzmMcxpVj9zTbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAIL+gss74NV2E12P8W9P1Ei/Xt8wHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK92oJDnBCct3R4zvotcAs3o524SkWx2vPzs V8s5bzrrtRFbUB2CghxdKJPgvo09JDoKYb5LbnnAYw3HLjUwvdlp2Ieg+5e/DInf /exXnVvQOy3YDbZIWV4olNAeFCZImXK1khujFbaR7igsmQ0b0o4xpmvQkbNMbOGM urT8s56R3PxIw51EViSW48LyaTVIrLmwXV9iDfe6Pl50ZmpmUCwDtdpqxY3ipQWS 57o6EEfDdxG5KZjzUYnOAZm58DcI6/Zo7t6VN0NWvlNnIOXTIfMBVLpXsNuc/LIF bQu1NU39PuSyPiQwSF2XfxoqGFYog/2b4TRXOqwap2ql3P1NslM= -----END CERTIFICATE-----Generated at Mon Mar 2 11:45:00 2026 by rpki-client