$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: rra7DAx8Tc3sLabtKMoJrPjLcWReKfzrbgaeY79ubJw= Subject key identifier: 24:70:A8:74:1A:E1:29:F4:C6:99:99:2D:C3:AA:FB:78:F5:79:02:40 Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 68A4DF7E96864C7CF201F7EC4BE899D9E160CFC5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 028B Signing time: Mon 02 Mar 2026 10:01:18 +0000 Manifest this update: Mon 02 Mar 2026 09:56:18 +0000 Manifest next update: Thu 05 Mar 2026 15:31:18 +0000 Files and hashes: 1: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: 0gXOJT38WPRdvZH/mvcMIDFy0eFxFO3CspBZZzjXpXE=) 2: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: etYodgnJYh3trd5HBJwHsn5n2vL2wMwaYJQCzGIxOug=) 3: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: suzLvik2Q3ca/24f56TTWc127F/AOjr8J3ZRyra4Kpg=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: LJlBxq8ymyHGerS3R49fpjBElb4mwDz4wakEqWAnKM4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a4:df:7e:96:86:4c:7c:f2:01:f7:ec:4b:e8:99:d9:e1:60:cf:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Mar 2 09:56:18 2026 GMT Not After : Mar 5 15:31:18 2026 GMT Subject: CN=2470A8741AE129F4C699992DC3AAFB78F5790240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:cc:e6:ec:42:1f:d4:93:6b:89:91:b3:62:66: 38:db:ba:b7:c2:37:de:73:34:fc:c6:44:c2:4f:82: b0:89:b0:f8:12:16:d0:c8:85:b9:62:39:fc:50:19: 55:55:e5:68:7b:f4:14:48:3d:6b:06:5d:ce:6a:58: 61:b5:b0:37:77:6b:9e:dc:3c:d8:d7:04:d8:da:8a: 77:a3:d3:ca:67:35:48:5c:14:fd:46:da:a1:a5:a0: 61:d1:11:28:f5:3e:f1:d5:d5:24:48:48:25:ae:78: 88:b4:2e:48:58:7b:64:2e:20:c8:6f:6f:17:55:3c: 57:2b:40:a8:b9:96:49:12:9c:50:1f:8b:62:2d:6e: bc:d9:fb:8d:03:a0:24:a0:a5:cf:18:b6:b4:73:e5: 7f:3e:d8:1f:62:1b:9f:98:4b:ed:9a:2e:c6:c1:18: 69:78:25:42:fe:a1:f7:28:57:c2:da:28:96:52:33: 71:ad:0c:e2:78:c5:3e:cb:89:5d:8f:16:41:ee:9b: fd:78:4a:a2:87:8b:32:ff:e8:d6:2f:4f:ac:61:56: 9b:9c:63:99:f4:07:fe:2e:e6:87:75:0e:b5:cc:0d: 6b:e3:73:e9:d4:d0:0b:48:20:e7:1e:65:58:87:a3: 1b:5a:c3:62:61:c8:73:a6:e7:d9:53:b7:96:ca:95: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:70:A8:74:1A:E1:29:F4:C6:99:99:2D:C3:AA:FB:78:F5:79:02:40 X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e8:ec:52:49:f1:e0:6e:73:f4:6b:bb:eb:44:9b:d0:0c:04:40: 7d:43:8f:a8:20:c9:4f:c9:b6:b6:0b:1a:50:21:90:39:80:f4: 54:cc:33:27:62:52:59:62:f2:ca:7a:ad:4e:63:76:11:2f:01: 2d:e6:a7:62:4f:b5:82:f7:a4:14:e6:8c:fc:50:8a:09:b5:61: bc:19:ec:c5:70:8f:64:84:62:c9:84:15:99:3a:36:e9:f9:40: 28:0b:7a:59:49:1a:81:45:7c:5c:38:29:02:ff:a6:c0:c7:05: ce:1d:b0:cb:1b:5b:1e:5d:e4:3e:66:c0:d8:8f:e8:15:1e:7b: 5a:1e:f6:43:c3:1b:5c:2b:0b:1d:e4:85:ac:a8:54:11:cb:30: 57:1f:53:4f:06:60:3a:fe:08:82:c5:7f:ac:cb:e2:2a:ed:72: bf:b3:c8:8f:9c:95:21:53:21:18:15:a8:a2:6a:da:fd:41:88: a0:d6:04:92:57:ee:20:6b:c8:03:f3:77:b3:31:7c:29:b8:98: 17:fb:07:fa:0c:d3:ab:e1:f5:3c:d5:fe:6c:d8:68:1a:52:65: d7:88:c8:1d:f2:dd:12:dc:ff:ee:27:9f:c0:34:c4:28:f9:4d: 79:3c:9e:b6:d3:24:2e:d6:e6:d6:1a:f7:59:2d:47:ba:33:58: 6b:18:2b:ff -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaKTffpaGTHzyAffsS+iZ2eFgz8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNjAzMDIwOTU2MThaFw0yNjAzMDUxNTMxMThaMDMxMTAvBgNV BAMTKDI0NzBBODc0MUFFMTI5RjRDNjk5OTkyREMzQUFGQjc4RjU3OTAyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzzObsQh/Uk2uJkbNiZjjburfC N95zNPzGRMJPgrCJsPgSFtDIhbliOfxQGVVV5Wh79BRIPWsGXc5qWGG1sDd3a57c PNjXBNjainej08pnNUhcFP1G2qGloGHRESj1PvHV1SRISCWueIi0LkhYe2QuIMhv bxdVPFcrQKi5lkkSnFAfi2ItbrzZ+40DoCSgpc8YtrRz5X8+2B9iG5+YS+2aLsbB GGl4JUL+ofcoV8LaKJZSM3GtDOJ4xT7LiV2PFkHum/14SqKHizL/6NYvT6xhVpuc Y5n0B/4u5od1DrXMDWvjc+nU0AtIIOceZViHoxtaw2JhyHOm59lTt5bKlUIxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJHCodBrhKfTGmZktw6r7ePV5AkAwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOjsUknx4G5z9Gu760Sb0AwEQH1Dj6ggyU/J trYLGlAhkDmA9FTMMydiUlli8sp6rU5jdhEvAS3mp2JPtYL3pBTmjPxQigm1YbwZ 7MVwj2SEYsmEFZk6Nun5QCgLellJGoFFfFw4KQL/psDHBc4dsMsbWx5d5D5mwNiP 6BUee1oe9kPDG1wrCx3khayoVBHLMFcfU08GYDr+CILFf6zL4irtcr+zyI+clSFT IRgVqKJq2v1BiKDWBJJX7iBryAPzd7MxfCm4mBf7B/oM06vh9TzV/mzYaBpSZdeI yB3y3RLc/+4nn8A0xCj5TXk8nrbTJC7W5tYa91ktR7ozWGsYK/8= -----END CERTIFICATE-----Generated at Mon Mar 2 20:19:45 2026 by rpki-client