$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: bvSShOCNriYhX/o7deoqgiaHEH45DoUXcWv/1tckOxw= Subject key identifier: 01:D6:40:92:D0:A0:A7:AA:E9:10:9B:FC:D3:A2:92:75:D1:52:11:A0 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 0973D81063E2457FD84A69071F984D2AE46D6930 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 03C9 Signing time: Sat 28 Feb 2026 01:22:26 +0000 Manifest this update: Sat 28 Feb 2026 01:17:26 +0000 Manifest next update: Tue 03 Mar 2026 01:54:26 +0000 Files and hashes: 1: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: fYk1A/6JlSofdoRQTxZ35IGs4jax1F7uqVxTxU6HBk4=) 2: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: ylDWnunXe+P0sSpHe2ems7WUQ+PsguFxQzvub0cWxiw=) 3: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: Vb0QpDZr+rgYPoYUsvMcoZVyyz2BeOqxgpUonRStVUo=) 4: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: rNa2on5+DMAnzayjr8XpEII8JqHWgOprf/5TlZrlTb0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 01:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:73:d8:10:63:e2:45:7f:d8:4a:69:07:1f:98:4d:2a:e4:6d:69:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Feb 28 01:17:26 2026 GMT Not After : Mar 3 01:54:26 2026 GMT Subject: CN=01D64092D0A0A7AAE9109BFCD3A29275D15211A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:fb:91:61:8f:6a:a4:f0:50:d8:ab:f0:80: 00:e3:9e:92:33:cf:b9:a1:02:a7:37:d9:cb:8d:e4: 5d:13:4a:32:30:f7:7e:13:40:bb:e1:d4:84:20:6e: 63:fc:31:ba:99:7f:fb:e9:c7:3e:3d:96:b5:fc:ad: fa:88:69:59:66:bf:26:d6:e4:c8:d6:2d:69:68:9e: 83:39:df:14:20:71:da:3d:17:7c:7b:de:ae:3e:86: 4b:78:c3:72:ba:e1:30:a8:c1:b2:39:e5:bb:c4:3a: 61:5a:3c:24:c4:af:6d:96:9d:d1:cd:f0:20:cf:9a: f0:2e:95:e3:b8:bb:85:25:57:e1:aa:ad:8f:34:e6: 23:57:0a:4e:0d:19:f5:b6:08:e8:15:17:08:a7:07: f4:93:e5:93:13:f7:78:87:7e:cf:91:81:dc:df:6a: 2b:12:f1:b1:07:12:f4:7b:27:7e:f6:ac:e0:fc:54: 85:43:67:2c:67:1c:fc:f7:5d:08:9a:94:ef:32:92: ba:36:f7:77:82:06:27:e3:3d:1b:a1:4d:68:da:19: 14:c7:a6:49:9d:09:35:93:a9:1e:68:9e:97:91:db: 4d:aa:c1:67:70:57:c8:4b:d0:e5:e1:b9:8e:12:00: 49:47:15:02:c9:54:5d:28:7f:2c:e6:27:42:83:4a: 47:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D6:40:92:D0:A0:A7:AA:E9:10:9B:FC:D3:A2:92:75:D1:52:11:A0 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:70:54:1d:41:c8:bb:cf:6a:e1:bf:db:0d:eb:9b:0d:18:fa: ec:f9:e2:64:95:04:81:eb:43:46:72:65:36:d8:13:89:0d:28: 8d:fa:16:cf:d9:b6:ab:3f:99:75:c1:ea:a5:b4:a7:ad:15:57: c7:da:48:62:9c:0a:5c:33:86:4d:7f:a6:ea:f6:01:3f:c0:98: f1:af:62:e7:29:58:36:9d:40:e0:03:35:cc:ed:f6:68:2d:ea: 57:b3:4d:34:ea:80:9c:d1:10:16:a0:30:98:ba:6f:07:5d:e0: f0:1c:74:ab:d2:6c:cc:3b:6d:b0:39:48:85:33:64:5d:c1:a9: c7:91:6d:11:5d:e6:38:fd:b8:3f:be:f6:10:fa:fb:16:34:91: 53:d3:bf:af:94:82:d6:89:a5:e9:5b:06:4e:52:16:5c:76:2d: 28:a5:dd:ba:54:e7:1c:a5:af:9f:5f:4e:d8:3b:50:f1:d3:cc: 63:41:30:cd:07:c0:08:8a:62:55:a1:92:77:af:a3:b9:ee:c3: 09:ad:58:24:4f:37:d1:aa:23:b8:6b:c1:d8:84:b0:4a:28:c8: 87:7f:63:49:7b:e1:ab:7c:35:22:0a:82:ac:55:c9:cd:ce:d1: 96:43:56:4f:a5:7f:42:49:8f:52:e0:a2:7d:e0:1e:3d:6a:c4: a4:86:11:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCXPYEGPiRX/YSmkHH5hNKuRtaTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNjAyMjgwMTE3MjZaFw0yNjAzMDMwMTU0MjZaMDMxMTAvBgNV BAMTKDAxRDY0MDkyRDBBMEE3QUFFOTEwOUJGQ0QzQTI5Mjc1RDE1MjExQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9SfuRYY9qpPBQ2KvwgADjnpIz z7mhAqc32cuN5F0TSjIw934TQLvh1IQgbmP8MbqZf/vpxz49lrX8rfqIaVlmvybW 5MjWLWlonoM53xQgcdo9F3x73q4+hkt4w3K64TCowbI55bvEOmFaPCTEr22WndHN 8CDPmvAuleO4u4UlV+GqrY805iNXCk4NGfW2COgVFwinB/ST5ZMT93iHfs+Rgdzf aisS8bEHEvR7J372rOD8VIVDZyxnHPz3XQialO8ykro293eCBifjPRuhTWjaGRTH pkmdCTWTqR5onpeR202qwWdwV8hL0OXhuY4SAElHFQLJVF0ofyzmJ0KDSkdvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAdZAktCgp6rpEJv806KSddFSEaAwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANwVB1ByLvPauG/2w3rmw0Y+uz54mSVBIHr Q0ZyZTbYE4kNKI36Fs/Ztqs/mXXB6qW0p60VV8faSGKcClwzhk1/pur2AT/AmPGv YucpWDadQOADNczt9mgt6lezTTTqgJzREBagMJi6bwdd4PAcdKvSbMw7bbA5SIUz ZF3BqceRbRFd5jj9uD++9hD6+xY0kVPTv6+UgtaJpelbBk5SFlx2LSil3bpU5xyl r59fTtg7UPHTzGNBMM0HwAiKYlWhknevo7nuwwmtWCRPN9GqI7hrwdiEsEooyId/ Y0l74at8NSIKgqxVyc3O0ZZDVk+lf0JJj1Lgon3gHj1qxKSGETU= -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:16 2026 by rpki-client