$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft File: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft (raw, json) Hash identifier: Vew1nhnhI+8VPxKN0gWEuP9khK6pGC0uFxL7z+yQQO4= Subject key identifier: F1:8D:2A:6D:D9:7A:1E:4A:A6:BF:14:C0:D4:4B:D3:C7:D6:B3:06:0D Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 1B82DA753253F72504C0B02D6E2FC62894B5F47C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft Manifest number: 0309 Signing time: Sat 28 Feb 2026 17:41:04 +0000 Manifest this update: Sat 28 Feb 2026 17:36:04 +0000 Manifest next update: Tue 03 Mar 2026 17:54:04 +0000 Files and hashes: 1: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (hash: r9QPk/LpoJs29sx2oR7f3Ru6EP7Ni5LmyXyyS4T2T/Q=) 2: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (hash: jlDnq/pTWKcqQPtJ6VRZIg3zm8PHprvuxU+BKt4Gk08=) 3: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (hash: eKQ/v97Slfm6pdQvkBAo8Onj1CnRgWhKWbT8e4WqBcc=) 4: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (hash: +R3i1yikLZX3N7J8PecP2cVBYYEEV31MZ2NuNFEDBz0=) 5: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (hash: T5UFtTORiPkpyQMb1pkITrlGjn812lML7gJ4GIu0cac=) 6: 3130332e362e3230372e302f32342d3234203d3e203538353033.roa (hash: vyhZOBYCU2sLXrzusVlJ/gl2TYFXG6e7dBbtLFYwhDU=) 7: 3130332e362e3230362e302f32342d3234203d3e203538353033.roa (hash: uAtBSIDdapxegHcixT/adxYVRwIH8zS1jvQsYGI4FKs=) 8: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl (hash: Ys5TedkKFygXctfurHs0vjD1VBxqkWj+KfNu3uAb23Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:82:da:75:32:53:f7:25:04:c0:b0:2d:6e:2f:c6:28:94:b5:f4:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Feb 28 17:36:04 2026 GMT Not After : Mar 3 17:54:04 2026 GMT Subject: CN=F18D2A6DD97A1E4AA6BF14C0D44BD3C7D6B3060D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a0:4c:9f:3d:54:db:5c:56:bd:65:bf:39:09: 03:ba:ba:36:a2:e5:9e:56:63:79:a4:be:8b:8f:3f: 9e:97:d8:0e:91:db:f9:4c:8d:c1:e4:88:fd:04:37: 82:e1:49:3e:8f:47:ca:4a:1e:11:12:ab:6d:b3:ae: 29:32:bd:2c:86:5e:13:ee:62:d5:e6:76:18:cb:e8: df:fb:dc:4e:1f:54:10:6b:08:d9:12:71:f7:bd:a2: ae:9a:5d:0d:a7:a6:47:10:74:e4:a0:d2:02:50:69: fc:32:9c:dc:8b:d7:76:73:35:ca:e9:98:a6:06:fe: 91:6e:25:e2:b2:40:d1:41:12:3a:40:ca:5b:b8:11: 74:42:7c:c0:0a:4e:d0:7d:24:bd:ac:16:4d:2f:66: 0e:13:84:01:67:46:15:f1:38:f7:3d:cc:a1:36:41: af:34:9d:12:7d:7d:df:7b:2a:82:7e:45:23:77:a9: d6:a4:51:3c:f8:9e:4b:c3:5d:c1:c2:63:e2:f4:39: 7d:e0:aa:e2:f9:ef:8a:26:d4:42:f5:f8:8c:63:f7: 5e:ad:40:24:8b:a9:c3:74:65:16:fc:c8:3d:ea:28: a6:0a:b7:9d:49:66:32:85:31:e1:5b:8a:1b:ae:d1: 03:69:d1:4b:50:df:52:02:0f:23:d4:03:ca:29:ec: 9a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8D:2A:6D:D9:7A:1E:4A:A6:BF:14:C0:D4:4B:D3:C7:D6:B3:06:0D X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:b7:28:8e:65:72:a8:6f:a0:fe:80:4b:6f:4a:41:73:82:e9: 79:84:85:08:41:da:2c:95:85:1f:7a:0e:3c:27:9a:e2:8a:aa: 2b:69:34:17:36:53:64:47:77:a2:21:9b:61:90:26:00:99:25: a6:51:60:8e:00:47:54:96:bf:7e:78:53:e4:ad:63:e5:32:58: 39:e6:33:30:af:a0:da:d1:86:94:37:62:ec:19:99:4b:51:d1: c8:87:46:16:35:a9:34:72:0c:2f:43:df:79:5f:6b:e2:65:ff: 18:8e:da:e7:a7:73:70:d0:5e:d5:25:82:82:a1:f7:36:da:10: bd:e1:16:2d:ce:c5:1a:a1:a7:b0:b4:9c:8b:9a:3a:18:8a:bd: 46:75:28:5f:2b:fd:a1:00:bc:aa:14:08:9c:d0:6e:a6:7e:3b: 13:38:c5:99:2a:32:0c:96:bb:25:5d:ae:c4:13:59:1f:2c:70: f9:15:c9:c3:ab:cd:3c:9f:12:45:ae:f7:af:4c:16:ad:a1:ad: 76:0d:32:1e:f9:f1:67:17:18:4a:1b:c2:41:77:a3:14:c0:2b: 6d:28:d8:ae:d3:2c:f9:5d:9c:64:29:26:28:b0:dc:da:76:d2: 84:79:6a:6c:86:5a:e5:d5:cf:74:bb:82:2f:32:38:84:0d:38: f9:fe:80:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG4LadTJT9yUEwLAtbi/GKJS19HwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNjAyMjgxNzM2MDRaFw0yNjAzMDMxNzU0MDRaMDMxMTAvBgNV BAMTKEYxOEQyQTZERDk3QTFFNEFBNkJGMTRDMEQ0NEJEM0M3RDZCMzA2MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSoEyfPVTbXFa9Zb85CQO6ujai 5Z5WY3mkvouPP56X2A6R2/lMjcHkiP0EN4LhST6PR8pKHhESq22zrikyvSyGXhPu YtXmdhjL6N/73E4fVBBrCNkScfe9oq6aXQ2npkcQdOSg0gJQafwynNyL13ZzNcrp mKYG/pFuJeKyQNFBEjpAylu4EXRCfMAKTtB9JL2sFk0vZg4ThAFnRhXxOPc9zKE2 Qa80nRJ9fd97KoJ+RSN3qdakUTz4nkvDXcHCY+L0OX3gquL574om1EL1+Ixj916t QCSLqcN0ZRb8yD3qKKYKt51JZjKFMeFbihuu0QNp0UtQ31ICDyPUA8op7JpLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8Y0qbdl6HkqmvxTA1EvTx9azBg0wHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTgyZjJiMzgtYWRkZi00YmQzLTky NDktZTViYTU2Y2QwNTJlLzAvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3 N0IyMzRDQTQ0Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEe3KI5lcqhvoP6AS29KQXOC6XmEhQhB2iyV hR96DjwnmuKKqitpNBc2U2RHd6Ihm2GQJgCZJaZRYI4AR1SWv354U+StY+UyWDnm MzCvoNrRhpQ3YuwZmUtR0ciHRhY1qTRyDC9D33lfa+Jl/xiO2uenc3DQXtUlgoKh 9zbaEL3hFi3OxRqhp7C0nIuaOhiKvUZ1KF8r/aEAvKoUCJzQbqZ+OxM4xZkqMgyW uyVdrsQTWR8scPkVycOrzTyfEkWu969MFq2hrXYNMh758WcXGEobwkF3oxTAK20o 2K7TLPldnGQpJiiw3Np20oR5amyGWuXVz3S7gi8yOIQNOPn+gFE= -----END CERTIFICATE-----Generated at Mon Mar 2 00:15:46 2026 by rpki-client