$ rpki-client -vvf repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft File: 2CCC85BF6CCD365701EFA75EE416D234F861385B.mft (raw, json) Hash identifier: 7l8n3pphhP/0wwcGRcDLw7mOLl5kajWumDylG+h/e+g= Subject key identifier: AD:AA:2E:AF:74:7A:39:78:16:9F:2A:E4:67:03:41:A0:12:8A:62:CD Authority key identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B Certificate issuer: /CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Certificate serial: 408DDD0CE8571342D0A9097ABFE46A16CAA5DF8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft Manifest number: 0106 Signing time: Sat 28 Feb 2026 14:02:29 +0000 Manifest this update: Sat 28 Feb 2026 13:57:29 +0000 Manifest next update: Tue 03 Mar 2026 22:29:29 +0000 Files and hashes: 1: 2CCC85BF6CCD365701EFA75EE416D234F861385B.crl (hash: /CCw+udQ/FVl3YwqVxUItIHVkcMW3Vy8jm5YDKLmSus=) 2: 3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa (hash: uxK7UAyx9SPI/sYZC+vqWCKSgnZeXgqAqFmQ+2Jnazc=) 3: 3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa (hash: 8n7ggoSZj8jJnFz6/yug05Kf9QPxel8FaCv3JxdKJhk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:8d:dd:0c:e8:57:13:42:d0:a9:09:7a:bf:e4:6a:16:ca:a5:df:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Validity Not Before: Feb 28 13:57:29 2026 GMT Not After : Mar 3 22:29:29 2026 GMT Subject: CN=ADAA2EAF747A3978169F2AE4670341A0128A62CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a1:e2:32:f3:e8:7c:6a:b3:c0:ce:46:52:2d: 27:44:8e:aa:ec:92:ce:26:73:14:d8:70:0f:1e:04: 7b:12:96:47:f7:43:cf:1b:fb:6e:27:6c:0e:4f:6b: 59:18:da:83:a5:82:a9:ee:bd:ad:f4:b0:32:2b:82: 9d:58:ee:eb:f3:09:8a:1b:f3:5f:b0:f6:56:8b:00: 49:da:a7:da:16:ea:0f:1d:f5:0b:bd:54:b8:3f:a7: 3f:68:53:28:c6:bd:c7:66:0e:c0:07:8f:2a:f1:f5: b9:9a:8f:e1:28:42:83:d9:a4:c2:74:8d:32:80:04: da:46:58:02:14:38:a8:4b:51:e5:3f:a0:46:ed:75: dd:2c:8e:af:a2:8c:f7:dc:e4:22:ae:94:75:7e:37: 65:c5:14:c1:0b:a7:50:c4:85:9d:33:1a:07:44:22: 23:e9:84:4b:7c:a1:67:e7:9e:63:ea:92:60:43:55: 85:1c:4f:9b:2c:68:9d:fe:07:85:a7:4f:47:b5:67: 6b:92:68:4b:49:0c:d5:ae:5d:c1:c9:c9:fb:74:32: c2:93:4d:03:4d:d2:80:3c:e4:7e:5c:f5:62:ec:60: fc:7c:1e:40:39:d2:ea:41:fb:7e:b8:d0:9c:a2:d3: 00:b5:6b:cc:90:03:dc:2c:a9:85:03:56:c8:ff:42: ad:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:AA:2E:AF:74:7A:39:78:16:9F:2A:E4:67:03:41:A0:12:8A:62:CD X509v3 Authority Key Identifier: keyid:2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:0b:5e:0d:7c:ea:70:df:d3:9a:e2:64:a1:9b:5d:38:13:b6: e5:e7:3f:79:87:3e:54:27:19:f8:d5:00:dd:ea:66:9c:e2:e7: 5d:6f:33:46:3b:40:06:87:e8:f2:39:cf:48:52:a9:bf:38:07: 68:d7:34:2e:74:e4:c7:53:6a:96:60:bc:2c:98:f8:53:2b:17: e1:d8:94:8b:18:f2:18:75:30:77:35:fd:e0:74:9c:ec:54:20: db:15:52:e8:e6:1c:85:6b:6c:6e:bd:98:2b:47:eb:fe:a6:37: df:8e:ec:61:89:85:24:29:d6:12:77:a7:fc:a2:bd:ca:3c:3b: fa:b8:44:15:f1:3f:35:1d:9c:4e:6d:5b:41:38:87:04:14:dc: f4:ba:d5:19:9c:57:fa:9c:3b:e4:89:00:a9:99:44:f4:52:74: 32:50:6f:14:be:a3:cf:78:5c:0e:a4:e0:ab:23:e8:e5:73:68: 18:a6:11:3d:6c:3b:e7:48:7e:43:c5:85:6d:e2:97:39:11:46: 37:0b:66:58:24:84:a9:e2:50:6a:d9:01:35:61:56:dd:73:4c: c1:61:7d:80:dd:b9:db:3c:e5:f1:1d:72:96:48:d3:98:ba:97: c8:8e:96:90:da:85:9c:cd:d8:16:05:5e:0b:cc:23:14:15:6c: bb:c5:bb:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQI3dDOhXE0LQqQl6v+RqFsql34wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRG ODYxMzg1QjAeFw0yNjAyMjgxMzU3MjlaFw0yNjAzMDMyMjI5MjlaMDMxMTAvBgNV BAMTKEFEQUEyRUFGNzQ3QTM5NzgxNjlGMkFFNDY3MDM0MUEwMTI4QTYyQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgoeIy8+h8arPAzkZSLSdEjqrs ks4mcxTYcA8eBHsSlkf3Q88b+24nbA5Pa1kY2oOlgqnuva30sDIrgp1Y7uvzCYob 81+w9laLAEnap9oW6g8d9Qu9VLg/pz9oUyjGvcdmDsAHjyrx9bmaj+EoQoPZpMJ0 jTKABNpGWAIUOKhLUeU/oEbtdd0sjq+ijPfc5CKulHV+N2XFFMELp1DEhZ0zGgdE IiPphEt8oWfnnmPqkmBDVYUcT5ssaJ3+B4WnT0e1Z2uSaEtJDNWuXcHJyft0MsKT TQNN0oA85H5c9WLsYPx8HkA50upB+3640Jyi0wC1a8yQA9wsqYUDVsj/Qq2hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUraour3R6OXgWnyrkZwNBoBKKYs0wHwYDVR0j BBgwFoAULMyFv2zNNlcB76de5BbSNPhhOFswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWYwN2YxOC01YzQ5LTQxMjktYWE1My03MDg1Y2NkNTdiNjMvMC8yQ0NDODVCRjZD Q0QzNjU3MDFFRkE3NUVFNDE2RDIzNEY4NjEzODVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRGODYx Mzg1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FmMDdmMTgtNWM0OS00MTI5LWFh NTMtNzA4NWNjZDU3YjYzLzAvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQy MzRGODYxMzg1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEoLXg186nDf05riZKGbXTgTtuXnP3mHPlQn GfjVAN3qZpzi511vM0Y7QAaH6PI5z0hSqb84B2jXNC505MdTapZgvCyY+FMrF+HY lIsY8hh1MHc1/eB0nOxUINsVUujmHIVrbG69mCtH6/6mN9+O7GGJhSQp1hJ3p/yi vco8O/q4RBXxPzUdnE5tW0E4hwQU3PS61RmcV/qcO+SJAKmZRPRSdDJQbxS+o894 XA6k4Ksj6OVzaBimET1sO+dIfkPFhW3ilzkRRjcLZlgkhKniUGrZATVhVt1zTMFh fYDduds85fEdcpZI05i6l8iOlpDahZzN2BYFXgvMIxQVbLvFuyc= -----END CERTIFICATE-----Generated at Mon Mar 2 11:37:56 2026 by rpki-client