$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: O4Wm6DMHUZursJ6rai8m1eUbom/m2M9kQfAgZ4z145A= Subject key identifier: 50:91:36:3C:4C:96:ED:C6:EF:CE:41:C5:85:72:45:0D:A5:B6:25:43 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 38195C4F4E71443DA9C3F8B9905051FF195F37E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 01DB Signing time: Sat 28 Feb 2026 21:30:45 +0000 Manifest this update: Sat 28 Feb 2026 21:25:45 +0000 Manifest next update: Tue 03 Mar 2026 22:27:45 +0000 Files and hashes: 1: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: Er3SZg2wUj/P2Phj94Rs/pKQreK157hBoR/0FApk3DI=) 2: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: QiAc7WvhzOcFO0h+YfPDaIaM0NaA60Ok807D0FbaZEA=) 3: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: NgiCiwYgDeYQaPatps9fGhPQzocYHvig3vWSvQTITq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:19:5c:4f:4e:71:44:3d:a9:c3:f8:b9:90:50:51:ff:19:5f:37:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Feb 28 21:25:45 2026 GMT Not After : Mar 3 22:27:45 2026 GMT Subject: CN=5091363C4C96EDC6EFCE41C58572450DA5B62543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:83:5f:d9:82:62:d1:0b:00:59:6d:bd:f2: f8:64:34:6a:25:1a:9b:3d:02:0b:32:8d:dc:77:f3: 70:2b:df:04:2f:fe:97:0e:37:62:b3:63:58:42:b7: 95:cb:a5:de:4a:15:0f:30:fd:4b:e0:1d:fe:e2:47: cd:04:c4:da:99:eb:24:d1:95:9c:7b:20:41:ab:e6: da:ac:c8:d0:d8:fe:ce:07:2f:dc:ed:b4:e3:3a:8c: 9b:6f:39:78:5f:f8:c1:bf:93:2a:9e:07:2c:c2:97: e9:1c:22:b5:60:91:3e:23:0c:b8:95:d3:b8:98:eb: 24:5f:4e:c2:a1:31:34:61:b6:9e:2f:e6:6b:ce:3b: 62:10:be:1f:dd:4b:43:d9:d5:cc:b2:ef:b0:b2:27: 99:ce:82:f0:16:a0:31:33:80:b8:d0:83:f9:e5:6f: 45:fd:92:2a:1c:1c:bc:82:5e:b1:36:c5:15:1f:21: 2d:e2:13:3d:4a:10:40:b3:9c:c0:fc:58:82:e5:d1: 82:59:8f:4d:44:d4:82:99:45:f8:f4:15:b4:db:7d: 95:36:e7:7f:dc:4d:df:2f:0a:5e:1d:b9:17:26:0d: b0:a2:63:27:a8:3a:71:45:3a:4a:d8:6e:ef:eb:0a: 27:27:60:79:62:fd:a1:27:03:b8:f2:eb:fa:4d:ea: fc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:91:36:3C:4C:96:ED:C6:EF:CE:41:C5:85:72:45:0D:A5:B6:25:43 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:98:74:81:4b:d6:a0:71:f2:04:75:68:af:8a:dd:c7:ee:45: 6b:e4:68:b9:79:15:29:19:5b:61:dc:01:98:91:89:ea:e1:5b: b8:1e:97:97:09:f6:de:f6:3e:76:97:a4:73:a0:60:53:39:ec: ba:cc:d6:d9:05:3f:eb:05:6d:b1:80:d1:7d:af:40:d7:c8:1e: bb:38:c8:39:99:d5:d5:e5:30:f9:a3:37:0f:50:fd:a2:8b:12: b9:72:ab:b3:95:62:b9:1e:15:fd:f9:e9:3f:c3:fc:10:86:39: 5e:10:01:f9:5e:b8:03:6a:50:11:85:7c:ce:05:ef:6a:c4:ee: 2f:d5:f4:2f:8e:bf:a7:8e:3e:5f:d5:19:0c:42:7f:d6:e5:f0: f8:1c:4f:a1:c4:5b:8a:c4:94:47:e0:08:8b:d6:02:30:fa:28: 3c:a3:77:02:6b:87:36:81:69:d4:e5:c5:70:b7:92:d0:29:26: 20:34:41:f4:80:b6:a4:f8:c5:13:99:ca:d0:14:8e:e0:07:f8: f6:ad:b4:b9:b2:c1:ff:de:02:8e:69:bb:70:4a:22:51:9b:a9: 5f:0c:d2:cf:91:99:e6:4a:4b:23:cc:50:63:16:28:d3:2d:c3: 1c:88:68:ec:e1:45:28:41:6a:09:30:f8:70:08:4e:55:f5:e8: 81:6d:a6:da -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOBlcT05xRD2pw/i5kFBR/xlfN+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNjAyMjgyMTI1NDVaFw0yNjAzMDMyMjI3NDVaMDMxMTAvBgNV BAMTKDUwOTEzNjNDNEM5NkVEQzZFRkNFNDFDNTg1NzI0NTBEQTVCNjI1NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCr4Nf2YJi0QsAWW298vhkNGol Gps9Agsyjdx383Ar3wQv/pcON2KzY1hCt5XLpd5KFQ8w/UvgHf7iR80ExNqZ6yTR lZx7IEGr5tqsyNDY/s4HL9zttOM6jJtvOXhf+MG/kyqeByzCl+kcIrVgkT4jDLiV 07iY6yRfTsKhMTRhtp4v5mvOO2IQvh/dS0PZ1cyy77CyJ5nOgvAWoDEzgLjQg/nl b0X9kiocHLyCXrE2xRUfIS3iEz1KEECznMD8WILl0YJZj01E1IKZRfj0FbTbfZU2 53/cTd8vCl4duRcmDbCiYyeoOnFFOkrYbu/rCicnYHli/aEnA7jy6/pN6vxHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUJE2PEyW7cbvzkHFhXJFDaW2JUMwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAaYdIFL1qBx8gR1aK+K3cfuRWvkaLl5FSkZ W2HcAZiRierhW7gel5cJ9t72PnaXpHOgYFM57LrM1tkFP+sFbbGA0X2vQNfIHrs4 yDmZ1dXlMPmjNw9Q/aKLErlyq7OVYrkeFf356T/D/BCGOV4QAfleuANqUBGFfM4F 72rE7i/V9C+Ov6eOPl/VGQxCf9bl8PgcT6HEW4rElEfgCIvWAjD6KDyjdwJrhzaB adTlxXC3ktApJiA0QfSAtqT4xROZytAUjuAH+PattLmywf/eAo5pu3BKIlGbqV8M 0s+RmeZKSyPMUGMWKNMtwxyIaOzhRShBagkw+HAITlX16IFtpto= -----END CERTIFICATE-----Generated at Mon Mar 2 15:37:39 2026 by rpki-client