$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft File: 651790FFFC1688AFA384D136FC4792AD18879019.mft (raw, json) Hash identifier: rKISe1pIbz/eCwxO2wIGzqpYEH2kb6q3MdY1uhyOWoU= Subject key identifier: 87:63:8A:C7:42:AA:86:BF:4C:64:C7:48:20:D3:1C:99:8E:33:EA:8A Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 2BDCEC35106F7FF77063CC98461FF56C3A4EE416 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft Manifest number: 0552 Signing time: Sat 28 Feb 2026 16:22:25 +0000 Manifest this update: Sat 28 Feb 2026 16:17:25 +0000 Manifest next update: Wed 04 Mar 2026 02:15:25 +0000 Files and hashes: 1: 323430323a353538303a3a2f33322d3438203d3e20313333383137.roa (hash: dttoTx4BQRFnMAvnuJnvYcnCQ5YOgtytig0qE7CIy64=) 2: 651790FFFC1688AFA384D136FC4792AD18879019.crl (hash: xIjYtaVdxP8OVlEzLzH5z1KHcZMWuXblOArWKUQbJAc=) 3: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (hash: +2/fO8INW6MBjsIr2MpsMr5pDS/07SU3AZAKJ801ins=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:dc:ec:35:10:6f:7f:f7:70:63:cc:98:46:1f:f5:6c:3a:4e:e4:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Feb 28 16:17:25 2026 GMT Not After : Mar 4 02:15:25 2026 GMT Subject: CN=87638AC742AA86BF4C64C74820D31C998E33EA8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3a:76:2b:64:05:3b:bd:a1:ff:df:8f:42:e4: ca:ff:a8:b4:39:14:96:6d:de:20:0c:03:30:14:c6: eb:9c:d7:e5:9d:9e:18:a5:7c:42:c6:aa:eb:4f:84: 91:a1:50:71:ad:27:b2:0f:36:3b:87:ac:5e:5e:e8: f7:2d:08:d0:c8:17:e9:3a:c6:6b:47:bb:76:09:c2: c5:fb:3d:fe:1c:e7:46:d8:cb:5f:04:0f:da:a9:cb: cd:5c:87:58:f4:27:bb:0e:3c:36:37:23:c3:06:ac: 95:13:b4:72:04:64:4a:16:1e:b3:16:fe:f2:61:c6: 73:5f:37:67:05:7c:15:87:b5:ea:5c:86:3b:3d:a1: e5:32:ec:48:2d:06:21:bf:3f:9d:66:3c:d6:40:4a: a2:e5:bc:70:30:b4:f3:fd:e5:eb:c5:e1:4d:3b:32: 63:40:2a:ef:69:b2:19:e3:50:7d:90:ee:f3:43:f6: b4:7f:4a:a3:eb:f1:77:d2:c1:27:a4:a3:4d:4d:70: 81:7a:03:55:91:34:27:04:ba:5b:d6:d3:17:bf:a7: 3f:63:81:29:5f:ef:8b:a6:a0:51:50:cf:38:7a:b0: 7a:55:fa:22:ea:b2:bb:4a:da:15:a2:27:c1:4d:f5: 94:4f:23:da:8f:ee:c9:9b:b6:70:8a:53:32:cf:02: 8c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:63:8A:C7:42:AA:86:BF:4C:64:C7:48:20:D3:1C:99:8E:33:EA:8A X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:d4:47:27:0f:42:0b:3f:9d:4b:81:9a:7b:11:c9:6a:1c:e8: 58:71:0d:ec:3d:e2:32:f0:2f:8b:9a:d0:37:54:a2:88:47:82: 88:74:ff:f9:3f:7a:55:bc:68:c5:eb:48:22:ae:05:19:c8:69: 21:a7:ba:d7:17:9c:1b:4b:a5:e3:a3:34:22:cc:82:03:86:1f: 62:b0:a6:38:07:c2:d6:49:de:dd:18:5e:e7:59:fd:fd:bf:d0: 48:b3:c8:3f:d6:e2:75:7c:d2:64:f5:2d:61:b9:c8:9b:a8:39: f3:85:04:e9:ef:d1:6c:d9:00:88:e6:c7:54:8f:19:e8:0e:f9: 85:aa:d8:64:91:42:ae:ed:db:14:ad:17:7f:9f:bf:27:c4:fd: 8c:a3:b8:de:db:1b:f7:e7:dd:f4:a6:a2:12:b3:1e:b8:85:bb: 71:f3:0d:b1:ca:ba:52:97:cb:45:4c:ec:af:49:da:06:83:cc: 1a:75:07:63:0b:25:77:e7:cc:75:ac:b5:d7:07:01:fa:94:fb: 3b:d5:1d:f9:5f:74:08:4c:cc:19:77:3a:48:49:90:16:3d:9e: d3:22:eb:7f:1c:73:30:f2:3d:ea:b9:76:2e:64:71:4a:8b:4d: 3c:c8:91:4c:92:ba:80:c7:26:ea:2a:b6:3f:6d:f7:e8:9a:30: 0b:72:37:45 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK9zsNRBvf/dwY8yYRh/1bDpO5BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNjAyMjgxNjE3MjVaFw0yNjAzMDQwMjE1MjVaMDMxMTAvBgNV BAMTKDg3NjM4QUM3NDJBQTg2QkY0QzY0Qzc0ODIwRDMxQzk5OEUzM0VBOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOnYrZAU7vaH/349C5Mr/qLQ5 FJZt3iAMAzAUxuuc1+WdnhilfELGqutPhJGhUHGtJ7IPNjuHrF5e6PctCNDIF+k6 xmtHu3YJwsX7Pf4c50bYy18ED9qpy81ch1j0J7sOPDY3I8MGrJUTtHIEZEoWHrMW /vJhxnNfN2cFfBWHtepchjs9oeUy7EgtBiG/P51mPNZASqLlvHAwtPP95evF4U07 MmNAKu9pshnjUH2Q7vND9rR/SqPr8XfSwSeko01NcIF6A1WRNCcEulvW0xe/pz9j gSlf74umoFFQzzh6sHpV+iLqsrtK2hWiJ8FN9ZRPI9qP7smbtnCKUzLPAoyPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh2OKx0Kqhr9MZMdIINMcmY4z6oowHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZmN2VmMzQtNDk5MS00YmIxLTk2 YjQtYmU0M2YxZWNhYmI0LzAvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0Nzky QUQxODg3OTAxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGTURycPQgs/nUuBmnsRyWoc6FhxDew94jLw L4ua0DdUoohHgoh0//k/elW8aMXrSCKuBRnIaSGnutcXnBtLpeOjNCLMggOGH2Kw pjgHwtZJ3t0YXudZ/f2/0EizyD/W4nV80mT1LWG5yJuoOfOFBOnv0WzZAIjmx1SP GegO+YWq2GSRQq7t2xStF3+fvyfE/YyjuN7bG/fn3fSmohKzHriFu3HzDbHKulKX y0VM7K9J2gaDzBp1B2MLJXfnzHWstdcHAfqU+zvVHflfdAhMzBl3OkhJkBY9ntMi 638cczDyPeq5di5kcUqLTTzIkUySuoDHJuoqtj9t9+iaMAtyN0U= -----END CERTIFICATE-----Generated at Mon Mar 2 14:26:33 2026 by rpki-client