$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: A6kiTO2ND/cgvliGpUrM1IL+hHxK3cEt2pgT6qiPp20= Subject key identifier: 71:54:0F:FE:57:46:10:11:04:DD:40:53:B1:2A:D9:EB:8C:C4:69:44 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 13564E6DBE0D451B2281AFB2CE4251F11586B638 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 0311 Signing time: Sun 01 Mar 2026 03:41:25 +0000 Manifest this update: Sun 01 Mar 2026 03:36:25 +0000 Manifest next update: Wed 04 Mar 2026 07:09:25 +0000 Files and hashes: 1: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) 2: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) 3: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) 4: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: XQwoQe2A4Zlxd1Ex+pD5y7Pl9EVyI9Lm5DQVd/B+uqw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 07:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:56:4e:6d:be:0d:45:1b:22:81:af:b2:ce:42:51:f1:15:86:b6:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Mar 1 03:36:25 2026 GMT Not After : Mar 4 07:09:25 2026 GMT Subject: CN=71540FFE5746101104DD4053B12AD9EB8CC46944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:bf:08:b3:f0:43:00:47:77:fe:b6:0b:b9: 11:f2:c9:e4:da:31:ba:00:0c:ad:82:a0:b7:cf:66: ae:88:88:d3:6a:69:fc:24:42:29:86:e2:55:ff:3b: 31:9f:22:99:e9:52:89:2c:92:b6:fe:a7:04:73:78: c0:93:42:2a:f8:15:19:de:a1:fd:22:a0:f2:8f:e9: 65:f3:2a:61:67:e1:8a:d9:3b:1a:47:68:c2:a8:54: 23:29:52:87:a1:7d:58:4b:64:19:44:b6:16:63:77: 92:bc:ac:1d:b8:0b:35:07:1d:1d:d6:cc:ef:1a:9c: 57:78:3e:53:e7:43:de:26:7a:f4:69:57:25:dd:28: 03:bb:7c:6e:a0:13:e6:07:28:ff:05:6e:c7:8d:dd: ac:64:cd:0b:05:b8:cb:b5:c1:d3:77:fc:85:c5:dc: 32:82:69:40:72:5d:74:65:ab:2e:09:13:14:5c:b5: e8:97:b4:70:db:4b:0a:36:af:c1:fe:67:fa:1d:42: 2a:2d:f2:18:ee:41:3d:f6:94:6b:1e:da:5c:cd:9e: 05:d7:86:28:8c:b4:9f:0c:14:33:30:57:e5:60:14: e2:90:f6:b7:c7:1f:2b:e7:83:d3:ef:cf:d1:57:3e: f2:10:0d:a9:c4:a7:5c:f0:3a:db:3c:0e:0d:98:e3: 34:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:54:0F:FE:57:46:10:11:04:DD:40:53:B1:2A:D9:EB:8C:C4:69:44 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:3d:df:7e:16:b3:6e:52:1d:94:ab:56:ba:49:e7:90:1b:20: 16:6d:c5:61:0c:2b:ac:ff:1d:87:70:dc:3f:f6:16:39:32:87: 8e:38:46:90:1e:43:3a:61:20:4e:f3:6c:75:d2:67:47:fc:17: d7:7b:34:56:b9:d8:58:2a:f6:a8:4d:3f:14:76:b9:4d:11:fc: d4:8f:f0:7a:ff:af:1f:d6:ec:ea:68:e4:90:75:76:84:47:97: e1:be:3d:1d:a8:98:b5:7c:ab:ec:f7:3e:fa:92:41:c0:3f:c3: a0:b9:3a:ad:9b:c1:aa:0e:7b:ba:1e:ed:56:36:e0:45:9b:21: 05:7d:80:5e:89:a0:c8:17:f6:43:5f:f9:ab:e7:ab:12:b4:8d: 7d:08:fd:f0:48:1f:f9:59:0e:16:83:bd:62:1e:b1:91:5b:3e: 02:16:16:c5:92:74:67:9d:40:41:bb:f2:ed:45:d3:47:2d:cd: 86:3f:80:47:3b:39:5a:1d:b0:18:d6:39:b3:a9:fc:d3:ca:e0: 6c:9f:98:02:68:bc:73:19:c1:f0:ee:8e:d0:6e:1d:a4:4d:09: f7:16:2f:2f:2c:75:e7:3e:c5:8c:cd:53:f8:fa:7e:d2:19:46: 9e:53:bc:03:68:13:21:ee:8d:22:31:02:18:54:8a:73:05:c4: d8:47:0a:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE1ZObb4NRRsiga+yzkJR8RWGtjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNjAzMDEwMzM2MjVaFw0yNjAzMDQwNzA5MjVaMDMxMTAvBgNV BAMTKDcxNTQwRkZFNTc0NjEwMTEwNERENDA1M0IxMkFEOUVCOENDNDY5NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrbr8Is/BDAEd3/rYLuRHyyeTa MboADK2CoLfPZq6IiNNqafwkQimG4lX/OzGfIpnpUokskrb+pwRzeMCTQir4FRne of0ioPKP6WXzKmFn4YrZOxpHaMKoVCMpUoehfVhLZBlEthZjd5K8rB24CzUHHR3W zO8anFd4PlPnQ94mevRpVyXdKAO7fG6gE+YHKP8FbseN3axkzQsFuMu1wdN3/IXF 3DKCaUByXXRlqy4JExRcteiXtHDbSwo2r8H+Z/odQiot8hjuQT32lGse2lzNngXX hiiMtJ8MFDMwV+VgFOKQ9rfHHyvng9Pvz9FXPvIQDanEp1zwOts8Dg2Y4zRlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcVQP/ldGEBEE3UBTsSrZ64zEaUQwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAY9334Ws25SHZSrVrpJ55AbIBZtxWEMK6z/ HYdw3D/2Fjkyh444RpAeQzphIE7zbHXSZ0f8F9d7NFa52Fgq9qhNPxR2uU0R/NSP 8Hr/rx/W7Opo5JB1doRHl+G+PR2omLV8q+z3PvqSQcA/w6C5Oq2bwaoOe7oe7VY2 4EWbIQV9gF6JoMgX9kNf+avnqxK0jX0I/fBIH/lZDhaDvWIesZFbPgIWFsWSdGed QEG78u1F00ctzYY/gEc7OVodsBjWObOp/NPK4GyfmAJovHMZwfDujtBuHaRNCfcW Ly8sdec+xYzNU/j6ftIZRp5TvANoEyHujSIxAhhUinMFxNhHCgA= -----END CERTIFICATE-----Generated at Mon Mar 2 14:28:50 2026 by rpki-client