$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: meoxWy+AxOJTdOh9RSppz+zRoizcB5yMAFz8m0QY0Es= Subject key identifier: C5:8F:3F:1A:4C:0B:ED:69:ED:7E:13:E3:BF:74:8F:A3:ED:47:B2:A9 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 500A7C8C44388049CB27270754BF1FEFED64BF86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 055F Signing time: Sun 01 Mar 2026 04:52:22 +0000 Manifest this update: Sun 01 Mar 2026 04:47:22 +0000 Manifest next update: Wed 04 Mar 2026 15:18:22 +0000 Files and hashes: 1: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) 2: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: n92I2UXDC8LQTyoICa+k3ygQwBcU7mw4jQVyhZXgceY=) 3: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 4: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 5: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 15:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0a:7c:8c:44:38:80:49:cb:27:27:07:54:bf:1f:ef:ed:64:bf:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Mar 1 04:47:22 2026 GMT Not After : Mar 4 15:18:22 2026 GMT Subject: CN=C58F3F1A4C0BED69ED7E13E3BF748FA3ED47B2A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:73:b5:01:9a:dd:c9:f7:a4:61:af:e7:7a: f5:5a:2a:f1:bb:68:55:86:fc:ad:c1:bf:84:b6:bd: 3d:83:30:50:95:a5:92:06:85:fc:6a:35:fc:f5:ae: 7d:2e:dc:56:09:a9:8b:bb:7c:89:c6:a7:a7:3c:15: 6a:d5:87:c2:c1:39:3b:65:35:73:72:e5:e1:0b:2c: 40:47:61:68:ca:d7:46:9e:5a:8a:81:a3:97:f3:be: cd:a7:0f:0d:2d:7f:ec:71:17:e6:5f:1d:2a:c1:0f: b0:1f:cb:fc:30:fd:2c:b7:49:ca:2e:4f:a0:f0:a7: 0e:30:58:dd:23:7a:95:9c:45:e1:e8:ff:20:a5:a8: f0:03:99:07:25:1c:61:12:60:a2:cf:92:45:31:82: ac:14:69:49:03:b5:87:72:81:da:f3:e0:83:4d:db: 74:5b:0f:36:81:ba:ea:7b:03:1c:0a:06:85:13:47: 73:9e:0e:b7:78:5f:fc:3d:2b:a7:80:37:cc:24:cf: 40:c4:8f:01:00:8a:cd:1e:66:af:b6:fe:f7:6c:26: c3:6c:20:36:86:af:2e:75:18:7c:07:ed:2b:6e:20: 0b:fe:09:75:1d:36:81:6a:0a:52:fc:15:f3:b4:8f: 4b:a8:43:46:fd:f2:a0:30:71:4d:83:38:c8:a9:97: 9d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8F:3F:1A:4C:0B:ED:69:ED:7E:13:E3:BF:74:8F:A3:ED:47:B2:A9 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:69:72:06:63:07:ba:d7:1d:81:51:4c:f0:bd:50:c2:b1:2c: 7f:9f:e0:95:31:c5:66:3e:1b:58:82:c0:93:66:4a:5f:ad:20: 69:ea:b8:7a:5e:46:d4:f0:d9:f0:d4:e4:1c:5c:0f:e8:07:bb: a9:a9:7f:9f:d5:66:20:99:25:d0:5f:2e:82:22:06:3f:e0:c7: 1c:3f:bf:fb:bf:b8:8e:99:8b:82:9b:aa:74:0d:18:68:9b:09: 02:e2:ca:48:31:64:ff:f8:c1:98:6d:50:c5:70:32:e7:2f:5b: 0d:d2:b5:de:c4:e2:9a:c7:a1:9b:ab:63:66:09:96:4a:2e:17: f7:a1:ed:bb:44:e1:5f:89:4d:3e:bf:01:0f:fa:0f:1f:6b:26: cb:70:08:f6:10:77:32:42:60:f5:2f:96:6b:4f:b1:e3:9f:fe: 16:6b:d5:7c:22:ee:f9:1e:51:ec:13:b2:4e:f2:29:b3:c5:75: bb:cf:1c:54:fa:a0:32:9d:6a:0b:d8:48:80:dd:ac:21:a4:bd: b0:4b:af:b0:76:fc:35:ed:e0:74:4a:e2:92:e1:dc:95:e2:0c: 40:84:a1:9a:e0:fb:82:a8:3c:ac:3d:8a:86:36:c7:5d:19:6c: b1:71:38:33:43:20:96:2d:f0:28:35:e6:f7:4c:7a:c4:b4:43: 1d:3a:51:f5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUAp8jEQ4gEnLJycHVL8f7+1kv4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNjAzMDEwNDQ3MjJaFw0yNjAzMDQxNTE4MjJaMDMxMTAvBgNV BAMTKEM1OEYzRjFBNEMwQkVENjlFRDdFMTNFM0JGNzQ4RkEzRUQ0N0IyQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL1nO1AZrdyfekYa/nevVaKvG7 aFWG/K3Bv4S2vT2DMFCVpZIGhfxqNfz1rn0u3FYJqYu7fInGp6c8FWrVh8LBOTtl NXNy5eELLEBHYWjK10aeWoqBo5fzvs2nDw0tf+xxF+ZfHSrBD7Afy/ww/Sy3Scou T6Dwpw4wWN0jepWcReHo/yClqPADmQclHGESYKLPkkUxgqwUaUkDtYdygdrz4INN 23RbDzaBuup7AxwKBoUTR3OeDrd4X/w9K6eAN8wkz0DEjwEAis0eZq+2/vdsJsNs IDaGry51GHwH7StuIAv+CXUdNoFqClL8FfO0j0uoQ0b98qAwcU2DOMipl52nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxY8/GkwL7WntfhPjv3SPo+1HsqkwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB1pcgZjB7rXHYFRTPC9UMKxLH+f4JUxxWY+ G1iCwJNmSl+tIGnquHpeRtTw2fDU5BxcD+gHu6mpf5/VZiCZJdBfLoIiBj/gxxw/ v/u/uI6Zi4KbqnQNGGibCQLiykgxZP/4wZhtUMVwMucvWw3Std7E4prHoZurY2YJ lkouF/eh7btE4V+JTT6/AQ/6Dx9rJstwCPYQdzJCYPUvlmtPseOf/hZr1Xwi7vke UewTsk7yKbPFdbvPHFT6oDKdagvYSIDdrCGkvbBLr7B2/DXt4HRK4pLh3JXiDECE oZrg+4KoPKw9ioY2x10ZbLFxODNDIJYt8Cg15vdMesS0Qx06UfU= -----END CERTIFICATE-----Generated at Mon Mar 2 00:53:26 2026 by rpki-client