$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: KEHaWK8bguYgKPta/Cy4uwIlG6nsYzwtZzTFWexgT2Y= Subject key identifier: EA:39:67:4D:9B:DD:86:50:AF:D3:08:93:2C:29:7B:DF:A0:B2:6B:AA Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 38F58C8B2B1F24829993E65D18088FAB811DB707 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 01B0 Signing time: Sun 01 Mar 2026 12:30:53 +0000 Manifest this update: Sun 01 Mar 2026 12:25:53 +0000 Manifest next update: Wed 04 Mar 2026 15:26:53 +0000 Files and hashes: 1: 3130332e32392e31312e302f32342d3234203d3e20313431303634.roa (hash: 7ZuQrAyTpSXLw2zTTFdrCC17EZNzNmUBwi/56OEgq84=) 2: 3130332e32392e31302e302f32342d3234203d3e20313431303634.roa (hash: g42xSqBdbww2iHC490qUVGv715w1+ed6Uwshy2/cUBk=) 3: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: 4QJiJtJLPgmmYew7HVi0zMhr7VkC+dRxN3rTu0K8IoM=) 4: 3130332e32392e31302e302f32332d3233203d3e20313431303634.roa (hash: ox/jPDjPCSM2yBDuW5lKFEBzvZUEEtg9kdQcbRM/Nsc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f5:8c:8b:2b:1f:24:82:99:93:e6:5d:18:08:8f:ab:81:1d:b7:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Mar 1 12:25:53 2026 GMT Not After : Mar 4 15:26:53 2026 GMT Subject: CN=EA39674D9BDD8650AFD308932C297BDFA0B26BAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c2:ac:ee:3d:70:a4:13:7e:a6:13:99:20:80: 46:23:0b:24:1d:9c:7c:d6:d9:f9:a0:c6:04:fc:ad: 55:30:53:eb:ab:e4:da:63:d8:ea:b1:a7:76:f8:f5: a4:3a:08:a2:51:b6:60:3e:80:49:77:83:07:04:9a: 8d:ec:9d:b6:90:39:0b:92:d8:a1:93:ad:f6:93:79: 05:53:bc:e6:44:2d:74:32:4e:cc:d1:3f:46:5d:be: 00:be:d8:79:c2:4f:c7:74:df:cf:e0:fb:4f:89:4f: 29:4c:35:aa:a1:97:d3:cb:7d:a6:e1:17:e0:61:a1: 7a:40:47:8c:df:69:fe:db:37:44:d8:be:60:86:e6: ef:e7:49:d1:ab:87:de:f5:5a:f3:8a:29:2c:47:b3: e6:51:3c:66:df:73:b0:f5:b4:8e:c6:02:ac:a9:58: 80:de:a2:f7:3a:62:90:2c:70:e4:83:0b:bc:da:97: a1:e6:6b:af:38:2c:00:2c:a8:ab:3d:43:89:ce:66: 9b:0f:82:54:0f:65:24:57:64:31:74:b9:78:ec:fe: 75:eb:bb:75:e4:50:7d:b5:19:9a:57:aa:a1:91:8a: ca:e8:c9:dd:a7:5e:ca:2a:8c:a5:82:8e:3d:2d:c8: 31:22:88:e9:2b:37:89:91:a1:a9:2d:21:c6:a5:01: 8f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:39:67:4D:9B:DD:86:50:AF:D3:08:93:2C:29:7B:DF:A0:B2:6B:AA X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:1c:73:4b:ea:ea:b2:8c:33:7f:a6:dd:ec:ea:9d:fb:02:e0: 79:64:21:53:90:e1:ed:58:56:34:0a:0b:9a:51:82:a5:0f:bb: 06:c5:ff:d0:ab:9d:4b:ee:cd:f2:83:ba:fd:4e:f3:77:ac:4d: fa:dd:18:e9:12:96:db:1a:1f:1f:e7:2d:2c:63:08:d2:db:19: 9e:19:26:1c:95:f5:40:23:78:3d:f8:0b:6a:ea:4e:2f:ad:a7: b8:23:d2:6e:a1:e1:d6:f0:92:ab:80:e2:55:98:e4:56:d4:98: 11:72:68:a2:43:f5:44:28:09:da:d8:8f:13:7b:cd:8c:a0:2f: 40:d8:2c:da:99:15:49:bc:ce:80:06:fe:d6:21:b4:b7:7a:99: 42:1c:3f:77:5c:94:a4:41:ee:19:f6:97:67:43:0a:4b:0b:43: eb:94:d6:60:1a:54:6e:b6:fe:f0:75:53:87:20:26:6b:a9:7b: 26:ce:58:5f:ec:5b:80:d6:fb:db:db:7a:04:88:a3:f1:9c:52: 8b:05:7b:00:df:eb:2c:cc:d9:fe:6b:23:51:4c:52:bc:f0:8e: f2:71:c9:aa:00:ea:e8:55:45:b7:64:fb:21:de:1b:dd:20:47: 30:0a:dc:06:bd:07:00:ee:a6:42:9d:bd:68:77:36:ae:d7:8a: 93:83:65:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOPWMiysfJIKZk+ZdGAiPq4EdtwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNjAzMDExMjI1NTNaFw0yNjAzMDQxNTI2NTNaMDMxMTAvBgNV BAMTKEVBMzk2NzREOUJERDg2NTBBRkQzMDg5MzJDMjk3QkRGQTBCMjZCQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnwqzuPXCkE36mE5kggEYjCyQd nHzW2fmgxgT8rVUwU+ur5Npj2Oqxp3b49aQ6CKJRtmA+gEl3gwcEmo3snbaQOQuS 2KGTrfaTeQVTvOZELXQyTszRP0ZdvgC+2HnCT8d038/g+0+JTylMNaqhl9PLfabh F+BhoXpAR4zfaf7bN0TYvmCG5u/nSdGrh971WvOKKSxHs+ZRPGbfc7D1tI7GAqyp WIDeovc6YpAscOSDC7zal6Hma684LAAsqKs9Q4nOZpsPglQPZSRXZDF0uXjs/nXr u3XkUH21GZpXqqGRisroyd2nXsoqjKWCjj0tyDEiiOkrN4mRoaktIcalAY9nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6jlnTZvdhlCv0wiTLCl736Cya6owHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIYcc0vq6rKMM3+m3ezqnfsC4HlkIVOQ4e1Y VjQKC5pRgqUPuwbF/9CrnUvuzfKDuv1O83esTfrdGOkSltsaHx/nLSxjCNLbGZ4Z JhyV9UAjeD34C2rqTi+tp7gj0m6h4dbwkquA4lWY5FbUmBFyaKJD9UQoCdrYjxN7 zYygL0DYLNqZFUm8zoAG/tYhtLd6mUIcP3dclKRB7hn2l2dDCksLQ+uU1mAaVG62 /vB1U4cgJmupeybOWF/sW4DW+9vbegSIo/GcUosFewDf6yzM2f5rI1FMUrzwjvJx yaoA6uhVRbdk+yHeG90gRzAK3Aa9BwDupkKdvWh3Nq7XipODZVw= -----END CERTIFICATE-----Generated at Mon Mar 2 19:09:47 2026 by rpki-client