$ rpki-client -vvf repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft File: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft (raw, json) Hash identifier: G/RFpKiKtlAq3qyrAVIWH6qTl0Ls7T0005vdIIjvmbs= Subject key identifier: 14:41:01:28:59:75:FE:6C:F9:55:10:5F:1B:E1:78:52:32:A7:D1:48 Authority key identifier: D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 Certificate issuer: /CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Certificate serial: 353D9DDDABFC9FAF8549BD1BD07B72010B1EBC1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft Manifest number: 024D Signing time: Sat 28 Feb 2026 15:52:03 +0000 Manifest this update: Sat 28 Feb 2026 15:47:03 +0000 Manifest next update: Tue 03 Mar 2026 20:50:03 +0000 Files and hashes: 1: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (hash: BdsS4s7jPHig7lZYR1kjJB8vTutisx05tJ8qnuC/vHI=) 2: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl (hash: 4AufOgQtiMsvIZjR447aIykYRUx7ZP1TyIYCnCElUB8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 20:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:3d:9d:dd:ab:fc:9f:af:85:49:bd:1b:d0:7b:72:01:0b:1e:bc:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Validity Not Before: Feb 28 15:47:03 2026 GMT Not After : Mar 3 20:50:03 2026 GMT Subject: CN=144101285975FE6CF955105F1BE1785232A7D148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ef:f4:c2:e8:ac:7d:2c:ef:cf:6f:c6:f0:be: 4c:e5:61:a1:cd:73:88:ae:ff:cd:c7:3d:95:ff:d2: dc:f6:eb:33:e6:2c:26:8a:63:27:0b:95:03:df:c5: 8c:98:fa:1b:71:dc:fb:3b:5d:fd:b8:8e:a9:f9:a3: a3:12:11:41:f5:a6:4a:f1:1d:4e:c2:ea:1b:6f:ba: 57:eb:38:c1:4b:ca:a7:77:8f:d4:08:e4:e2:0d:c1: d3:3b:47:64:10:b4:10:bb:84:c5:05:f5:78:35:0f: e6:0e:10:18:99:1f:89:99:f5:8b:b3:67:90:b5:c6: 2d:f7:99:7d:8c:30:4c:d4:ce:2f:d6:89:21:06:57: 7a:b4:ab:fd:90:aa:84:da:21:90:b8:a5:b3:17:d3: 05:22:50:7a:f3:60:06:b3:37:08:01:12:63:89:3b: af:4e:2e:4e:51:80:12:55:e0:7e:76:b5:78:dc:90: 4e:cb:f0:cb:7a:16:e8:d7:18:7a:6b:ed:37:e0:52: f1:b4:e2:9e:b3:6a:7e:55:2d:b4:08:ff:74:48:0c: 85:bc:5e:48:7a:df:82:c1:d2:88:b8:c9:93:0f:37: a0:82:4e:96:b1:ea:86:66:91:bb:1b:29:e5:5f:e5: c0:76:48:52:96:81:97:a4:a0:56:1b:c5:79:e6:bf: b1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:41:01:28:59:75:FE:6C:F9:55:10:5F:1B:E1:78:52:32:A7:D1:48 X509v3 Authority Key Identifier: keyid:D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a1:ff:b3:2e:eb:f2:d1:81:77:73:be:f8:4c:6b:8e:7a:46: 0a:9b:e1:01:bc:9c:72:ee:52:ae:a4:63:06:1c:53:90:26:2f: 18:d8:9b:fa:11:b5:48:10:8c:e0:fc:bf:fa:26:ba:33:7d:33: 59:5c:f2:bc:80:bb:ab:ec:b5:16:be:c3:fb:9f:85:89:32:63: 22:da:eb:2d:f9:57:6f:8c:af:13:2f:90:9b:17:30:81:ad:58: 12:a9:d2:f2:f5:ad:5d:9b:af:c3:bc:d0:1b:65:ed:1a:53:f4: cf:5d:2b:b7:ae:f5:c3:d1:5d:0a:bd:7e:4b:6e:55:79:0c:31: 7f:18:c5:04:f2:bf:9c:1c:37:82:b4:da:08:cf:d8:f3:1c:e2: c4:ba:3e:93:3c:c9:c7:db:28:73:62:d5:f9:64:9c:16:0b:cb: 46:67:62:b4:b3:f0:37:f8:b3:60:13:79:16:a5:b4:f0:f8:c7: b2:9f:99:e3:e2:d0:15:e8:ff:2f:8b:d4:85:34:82:c4:04:80: e8:17:f4:66:8e:fc:d5:62:c3:d2:11:ed:df:aa:44:65:eb:f7: 86:fa:22:61:1d:1f:9e:3b:fa:93:d8:0b:78:04:3c:93:85:2f: a2:bc:a3:9c:d3:63:b0:9f:bb:8e:52:41:70:a4:bf:31:8a:c8: 51:50:30:0c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNT2d3av8n6+FSb0b0HtyAQsevB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlD OTAzRUFDMDAeFw0yNjAyMjgxNTQ3MDNaFw0yNjAzMDMyMDUwMDNaMDMxMTAvBgNV BAMTKDE0NDEwMTI4NTk3NUZFNkNGOTU1MTA1RjFCRTE3ODUyMzJBN0QxNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh7/TC6Kx9LO/Pb8bwvkzlYaHN c4iu/83HPZX/0tz26zPmLCaKYycLlQPfxYyY+htx3Ps7Xf24jqn5o6MSEUH1pkrx HU7C6htvulfrOMFLyqd3j9QI5OINwdM7R2QQtBC7hMUF9Xg1D+YOEBiZH4mZ9Yuz Z5C1xi33mX2MMEzUzi/WiSEGV3q0q/2QqoTaIZC4pbMX0wUiUHrzYAazNwgBEmOJ O69OLk5RgBJV4H52tXjckE7L8Mt6FujXGHpr7TfgUvG04p6zan5VLbQI/3RIDIW8 Xkh634LB0oi4yZMPN6CCTpax6oZmkbsbKeVf5cB2SFKWgZekoFYbxXnmv7EtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFEEBKFl1/mz5VRBfG+F4UjKn0UgwHwYDVR0j BBgwFoAU0P9vCT0N6vtctCqTQz+iOckD6sAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2Y5ZjU2Mi03MjkyLTQ0ZjEtOGUyYy00NDBhMDUzMWMzOTYvMC9EMEZGNkYwOTNE MERFQUZCNUNCNDJBOTM0MzNGQTIzOUM5MDNFQUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlDOTAz RUFDMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdmOWY1NjItNzI5Mi00NGYxLThl MmMtNDQwYTA1MzFjMzk2LzAvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEy MzlDOTAzRUFDMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACuh/7Mu6/LRgXdzvvhMa456Rgqb4QG8nHLu Uq6kYwYcU5AmLxjYm/oRtUgQjOD8v/omujN9M1lc8ryAu6vstRa+w/ufhYkyYyLa 6y35V2+MrxMvkJsXMIGtWBKp0vL1rV2br8O80Btl7RpT9M9dK7eu9cPRXQq9fktu VXkMMX8YxQTyv5wcN4K02gjP2PMc4sS6PpM8ycfbKHNi1flknBYLy0ZnYrSz8Df4 s2ATeRaltPD4x7KfmePi0BXo/y+L1IU0gsQEgOgX9GaO/NViw9IR7d+qRGXr94b6 ImEdH547+pPYC3gEPJOFL6K8o5zTY7Cfu45SQXCkvzGKyFFQMAw= -----END CERTIFICATE-----Generated at Mon Mar 2 14:13:01 2026 by rpki-client