$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft File: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft (raw, json) Hash identifier: Ag9CW0n+ObL7E1t00t48FFOGej5XYy5VLedlMLP8YKE= Subject key identifier: 73:F2:3C:6D:7F:C2:B8:B6:DA:01:37:CB:89:B7:A3:DA:DC:3D:EE:9C Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 4CB4A7CBB13C8CA39C453E32F218EF6600BD213D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft Manifest number: 0556 Signing time: Sun 01 Mar 2026 20:31:14 +0000 Manifest this update: Sun 01 Mar 2026 20:26:14 +0000 Manifest next update: Wed 04 Mar 2026 21:45:14 +0000 Files and hashes: 1: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (hash: 92iPAvFoV8ZIni26oBvQBCMwojDuPtSnBMptGXhyF7g=) 2: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (hash: Co7QnH1utLTo+OaXOBXDzn1d7u1X3FX72sJ2/V1LcRI=) 3: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (hash: q884sNHCW5gx53DgOjtLJ9QZQAoxktWTxQd/7H0Tgro=) 4: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl (hash: wEG8fZ14kLo/MDVgI9RCFHqM8ii5TL5OuhQt/TAq124=) 5: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (hash: NJ/fZulIyr1e7dyoj8v3tiz901wVBYZYjvKtkVFLK3I=) 6: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (hash: jH+vIlrKU7PfFq1iZrO7cUj2zjNXd2QDgqmIURJ9hHo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:b4:a7:cb:b1:3c:8c:a3:9c:45:3e:32:f2:18:ef:66:00:bd:21:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Mar 1 20:26:14 2026 GMT Not After : Mar 4 21:45:14 2026 GMT Subject: CN=73F23C6D7FC2B8B6DA0137CB89B7A3DADC3DEE9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:52:f1:7c:cb:e1:c7:74:c9:57:e9:ac:9b: 98:c3:71:70:44:61:f1:66:50:d9:3e:21:60:a1:f2: 29:63:d4:a5:5c:7b:66:d7:b0:4e:f0:fd:1b:49:7e: 87:97:45:95:f2:c3:d9:d6:ac:f1:c5:cf:d4:e7:fb: a1:89:74:19:44:d1:31:89:91:8a:e7:84:ae:f6:e5: e4:15:2c:83:2f:35:d7:50:8e:82:72:ee:95:19:36: 58:df:f1:65:19:81:6e:77:cc:fc:43:3a:40:ea:a0: a1:ad:67:c4:c7:66:29:b2:66:ea:bb:da:ad:8c:6d: 41:3d:40:fa:b1:4f:dd:f3:2b:0a:a5:a5:dc:ff:36: b2:16:99:d4:10:d7:50:69:0d:31:f8:ca:5f:c3:20: 5b:22:75:c0:1f:8c:8f:c9:49:70:bb:c0:dd:0e:32: eb:ee:f6:30:67:27:b7:e5:e8:01:8e:76:bf:4f:34: b3:f9:eb:b9:cf:6d:b9:1b:92:64:fb:84:4e:19:b0: bd:f0:3b:c3:3b:e7:d3:f3:10:2b:4c:c2:b8:79:52: e3:3f:12:52:d2:ee:8a:9e:0e:57:90:dd:e8:da:80: 67:6b:96:6d:19:2a:b7:0d:00:5b:0f:e7:09:e5:6e: ce:e9:88:47:ec:9b:48:4e:40:1c:ae:84:a0:ec:b5: 84:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F2:3C:6D:7F:C2:B8:B6:DA:01:37:CB:89:B7:A3:DA:DC:3D:EE:9C X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:94:a9:64:de:29:2d:41:02:3b:3d:60:a4:34:88:13:a0:0f: 5e:37:22:6d:83:a7:90:bc:c1:6f:47:d3:e7:cc:84:54:e1:dd: 2c:71:79:dc:ca:6b:ec:41:32:1e:d0:6d:18:c7:69:c4:5c:bb: 90:f0:53:ab:d4:e6:c8:16:0a:3c:ba:0e:b3:9e:f3:d7:64:de: 68:62:c1:dd:c2:cd:3e:f0:d4:d3:51:10:f8:1e:bf:2d:e6:d8: 66:b7:41:3d:6e:b4:a0:85:76:d1:11:5a:82:a2:dd:59:4d:3f: 7b:73:43:44:da:f6:97:eb:56:0d:2e:3e:e5:da:23:09:5b:8f: e1:6c:76:e1:1e:bd:73:aa:3d:97:96:57:cc:b6:82:99:73:ef: fb:f2:fa:93:94:b1:0a:bb:2a:8c:41:94:07:54:31:61:e7:0b: 02:18:dd:f5:52:a5:7b:41:79:cf:fc:83:db:3d:54:44:53:9e: a8:e1:5e:f1:ca:0a:ce:60:eb:0e:6a:59:e3:80:db:ed:a5:58: c2:b3:cc:24:c2:11:62:64:5a:ff:33:7c:2f:9b:b8:01:81:cd: 84:b3:b3:b4:76:da:12:6a:5b:41:2e:99:a5:60:ce:2d:f6:50: d1:c4:0e:43:98:da:db:55:13:95:4a:3d:0c:ab:43:25:59:fe: 02:a3:ff:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTLSny7E8jKOcRT4y8hjvZgC9IT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNjAzMDEyMDI2MTRaFw0yNjAzMDQyMTQ1MTRaMDMxMTAvBgNV BAMTKDczRjIzQzZEN0ZDMkI4QjZEQTAxMzdDQjg5QjdBM0RBREMzREVFOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/+1LxfMvhx3TJV+msm5jDcXBE YfFmUNk+IWCh8ilj1KVce2bXsE7w/RtJfoeXRZXyw9nWrPHFz9Tn+6GJdBlE0TGJ kYrnhK725eQVLIMvNddQjoJy7pUZNljf8WUZgW53zPxDOkDqoKGtZ8THZimyZuq7 2q2MbUE9QPqxT93zKwqlpdz/NrIWmdQQ11BpDTH4yl/DIFsidcAfjI/JSXC7wN0O Muvu9jBnJ7fl6AGOdr9PNLP567nPbbkbkmT7hE4ZsL3wO8M759PzECtMwrh5UuM/ ElLS7oqeDleQ3ejagGdrlm0ZKrcNAFsP5wnlbs7piEfsm0hOQByuhKDstYSfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUc/I8bX/CuLbaATfLibej2tw97pwwHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTJhYzBjYTUtNWNlNy00ZTZlLTlm ZmYtNzIxM2VmMWVmMzY0LzAvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJE QTIxMDZBNTk0Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEOUqWTeKS1BAjs9YKQ0iBOgD143Im2Dp5C8 wW9H0+fMhFTh3SxxedzKa+xBMh7QbRjHacRcu5DwU6vU5sgWCjy6DrOe89dk3mhi wd3CzT7w1NNREPgevy3m2Ga3QT1utKCFdtERWoKi3VlNP3tzQ0Ta9pfrVg0uPuXa Iwlbj+FsduEevXOqPZeWV8y2gplz7/vy+pOUsQq7KoxBlAdUMWHnCwIY3fVSpXtB ec/8g9s9VERTnqjhXvHKCs5g6w5qWeOA2+2lWMKzzCTCEWJkWv8zfC+buAGBzYSz s7R22hJqW0EumaVgzi32UNHEDkOY2ttVE5VKPQyrQyVZ/gKj/3s= -----END CERTIFICATE-----Generated at Mon Mar 2 17:31:10 2026 by rpki-client