$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft File: 2858C74CC23A557C73F59051B7FE8638AA491C94.mft (raw, json) Hash identifier: A6V+7QihpcnRAspp4o+oJu4UFt/4SmDt5KpS/vlxTic= Subject key identifier: D5:0A:AB:E4:CE:28:62:C3:4E:BC:F7:9C:B8:4D:FA:F5:C1:D4:8C:BE Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 65572977AD0AD1E359625A4688A164BE6204F5D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft Manifest number: 65 Signing time: Sat 28 Feb 2026 07:31:32 +0000 Manifest this update: Sat 28 Feb 2026 07:26:32 +0000 Manifest next update: Tue 03 Mar 2026 16:12:32 +0000 Files and hashes: 1: 2858C74CC23A557C73F59051B7FE8638AA491C94.crl (hash: DED3mW140h/LXdZK/RC/c5owH+J31GtY3uD4+ho3MBM=) 2: 3130332e35302e3132382e302f32322d3234203d3e20313333383039.roa (hash: IB02l7aeS1Ctr7m+n8ymFsmUvTLgjo3obFTTz15X/C8=) 3: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (hash: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg=) 4: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (hash: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 16:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:57:29:77:ad:0a:d1:e3:59:62:5a:46:88:a1:64:be:62:04:f5:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Feb 28 07:26:32 2026 GMT Not After : Mar 3 16:12:32 2026 GMT Subject: CN=D50AABE4CE2862C34EBCF79CB84DFAF5C1D48CBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:64:fb:8c:9f:21:d0:af:0a:59:1c:22:8e:f6: 28:37:b8:dc:dd:7f:11:40:78:b4:1b:aa:a2:44:32: 2b:21:12:f7:71:53:0f:59:59:5c:50:a0:aa:15:44: 9f:c2:c2:96:97:5a:44:75:24:1a:69:62:da:0f:3f: ad:ec:41:b8:16:e8:20:dd:8c:e1:62:88:36:f4:a0: 7c:5d:ba:df:c8:2e:21:cd:6f:63:fb:75:ed:82:ac: 24:6c:fa:34:1f:97:d7:15:51:aa:f9:50:4e:f4:cd: 55:3d:90:3f:ac:e6:d2:f1:28:d3:bf:83:27:c5:3a: e6:27:57:b0:50:ac:87:c8:71:c3:92:6c:ce:ad:3d: e7:8a:a5:20:42:f7:bb:df:b7:47:6d:d0:d6:84:a4: 9d:1f:ee:50:f8:8e:1b:29:f5:17:7f:a1:22:05:06: 97:84:83:d9:10:4c:7e:9c:e4:35:5d:51:7d:10:79: 09:9d:a1:83:e5:8a:c8:9d:24:86:97:a5:49:6c:b8: 6b:d3:62:fd:ac:92:7f:81:38:b1:23:12:51:02:24: 76:38:33:07:24:b1:f7:1d:04:a6:b7:9e:51:6b:76: a7:13:26:19:aa:84:b9:04:e4:62:f1:44:94:04:8f: 21:ee:8c:b1:2b:1b:11:bf:5e:48:11:fb:1b:49:41: 4f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0A:AB:E4:CE:28:62:C3:4E:BC:F7:9C:B8:4D:FA:F5:C1:D4:8C:BE X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:dc:25:f1:bc:22:da:46:98:c3:91:e4:77:82:4c:c3:c6:87: 4c:33:89:ca:7d:28:33:0e:72:42:7e:f5:7d:18:82:a8:c6:3b: 6c:1d:db:ca:0f:07:3b:42:c7:e8:40:43:15:02:c8:32:2e:64: df:dd:5d:49:ea:58:20:86:35:3c:38:91:a3:67:ac:60:87:85: ed:b2:87:a9:e7:d5:42:18:a8:d4:eb:6e:8f:7d:1f:ea:f7:62: fb:cb:9c:03:99:73:e3:d8:4f:6b:f3:ad:29:c8:12:f9:86:39: 55:de:6e:31:7e:2b:e0:f5:c6:87:c8:fe:2a:7d:80:d6:00:c2: 52:8d:7b:22:cc:e8:64:87:dc:1a:bc:ac:b1:3e:3e:71:2b:09: 92:74:17:5a:b4:b0:d3:d3:fd:0e:03:af:e0:c7:99:7a:45:6c: 5f:58:00:41:5f:30:7e:d3:8f:ed:02:35:5b:d2:15:b7:fe:24: 6b:9c:3e:d5:5d:75:95:6f:60:46:cc:d2:17:4c:e2:48:00:77: fd:25:2f:a4:9d:1c:f3:ed:14:d9:63:86:9a:58:69:d0:bf:ae: 1d:b5:72:02:f8:6d:04:de:c7:67:4e:1c:62:4c:5f:26:17:2d: 65:22:97:85:64:2c:b7:18:8a:d8:b5:da:9c:a5:53:1b:1a:9b: ef:1e:ee:c1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZVcpd60K0eNZYlpGiKFkvmIE9dEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNjAyMjgwNzI2MzJaFw0yNjAzMDMxNjEyMzJaMDMxMTAvBgNV BAMTKEQ1MEFBQkU0Q0UyODYyQzM0RUJDRjc5Q0I4NERGQUY1QzFENDhDQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ZPuMnyHQrwpZHCKO9ig3uNzd fxFAeLQbqqJEMishEvdxUw9ZWVxQoKoVRJ/CwpaXWkR1JBppYtoPP63sQbgW6CDd jOFiiDb0oHxdut/ILiHNb2P7de2CrCRs+jQfl9cVUar5UE70zVU9kD+s5tLxKNO/ gyfFOuYnV7BQrIfIccOSbM6tPeeKpSBC97vft0dt0NaEpJ0f7lD4jhsp9Rd/oSIF BpeEg9kQTH6c5DVdUX0QeQmdoYPlisidJIaXpUlsuGvTYv2skn+BOLEjElECJHY4 MwcksfcdBKa3nlFrdqcTJhmqhLkE5GLxRJQEjyHujLErGxG/XkgR+xtJQU+lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1Qqr5M4oYsNOvPecuE369cHUjL4wHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTljZWY4YjAtYmE2NC00YzBjLThk ZTgtMWY1MGE4NWQ1ZmRlLzAvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2 MzhBQTQ5MUM5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIPcJfG8ItpGmMOR5HeCTMPGh0wzicp9KDMO ckJ+9X0YgqjGO2wd28oPBztCx+hAQxUCyDIuZN/dXUnqWCCGNTw4kaNnrGCHhe2y h6nn1UIYqNTrbo99H+r3YvvLnAOZc+PYT2vzrSnIEvmGOVXebjF+K+D1xofI/ip9 gNYAwlKNeyLM6GSH3Bq8rLE+PnErCZJ0F1q0sNPT/Q4Dr+DHmXpFbF9YAEFfMH7T j+0CNVvSFbf+JGucPtVddZVvYEbM0hdM4kgAd/0lL6SdHPPtFNljhppYadC/rh21 cgL4bQTex2dOHGJMXyYXLWUil4VkLLcYiti12pylUxsam+8e7sE= -----END CERTIFICATE-----Generated at Mon Mar 2 01:16:23 2026 by rpki-client