$ rpki-client -vvf repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft File: D2EA420344F486935839E03DF1B3C237F295C2DE.mft (raw, json) Hash identifier: UMfiNFhsN2NRdioqW+EqfG9j0PdBkLycN6R2h7qb2ho= Subject key identifier: CA:87:52:5E:20:2A:D0:E9:9A:46:C8:70:75:F3:BF:64:C8:77:8D:66 Authority key identifier: D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE Certificate issuer: /CN=D2EA420344F486935839E03DF1B3C237F295C2DE Certificate serial: 0A227591EADD1898AE8274AEEC2A0CCB052FE785 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft Manifest number: 0523 Signing time: Sun 01 Mar 2026 11:12:54 +0000 Manifest this update: Sun 01 Mar 2026 11:07:54 +0000 Manifest next update: Wed 04 Mar 2026 17:00:54 +0000 Files and hashes: 1: D2EA420344F486935839E03DF1B3C237F295C2DE.crl (hash: cdKg4eIfOWzwonUKE7mfUjpP0ffKHZ7k4tx8xNN6h8g=) 2: 3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa (hash: Z1/0hxtcuucuwACdWQq+JfghAHLR9fBRu9+nQ76ie1Y=) 3: 323430323a386163303a3a2f33322d3438203d3e20313337333230.roa (hash: oHAd0vkxRqWyozAmCufOZ+4unG6aZz/EmEBi8K1zkKg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 17:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:22:75:91:ea:dd:18:98:ae:82:74:ae:ec:2a:0c:cb:05:2f:e7:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EA420344F486935839E03DF1B3C237F295C2DE Validity Not Before: Mar 1 11:07:54 2026 GMT Not After : Mar 4 17:00:54 2026 GMT Subject: CN=CA87525E202AD0E99A46C87075F3BF64C8778D66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e4:c2:b9:37:87:a7:a4:9a:c4:4a:d4:fd:ed: 2e:f1:75:9b:3b:8e:08:43:38:c7:23:67:95:a4:ea: ec:df:d4:3c:c7:d4:1a:02:9d:7f:ed:ec:f2:7f:ae: eb:69:1b:e9:44:87:f6:27:30:83:25:a6:91:ef:2b: b7:a4:4b:23:df:ba:55:eb:59:18:bd:9a:c1:06:a4: 84:7d:c9:55:7f:c1:93:6a:31:bd:8f:2c:14:ad:7d: ea:52:ef:c2:ac:16:f6:75:6b:02:61:4d:65:d9:8f: 07:1f:76:ae:d4:47:c3:ed:21:bb:ff:10:8c:18:b1: e3:25:c3:b4:d5:28:0a:95:99:e1:9e:9d:7c:c5:21: d0:84:1d:87:bf:09:d9:28:c6:c7:59:6e:65:84:da: 31:1d:91:1a:0b:86:5d:69:94:ec:b5:84:54:f6:cd: d9:6b:70:98:1d:6d:e8:6f:aa:cf:15:47:a8:8a:12: 13:af:43:26:4a:38:3e:eb:38:4c:c4:81:d6:45:af: d8:d9:f3:52:d1:34:0e:08:35:a1:47:a4:dd:03:8c: 9d:fc:31:ea:9c:fc:c9:a3:e1:82:96:e5:aa:29:04: c9:e5:f9:a5:10:9c:5c:0c:ac:b2:6b:13:09:6e:f7: 0a:28:6d:55:03:2d:2f:79:37:d4:c7:1a:1e:4d:bb: 69:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:87:52:5E:20:2A:D0:E9:9A:46:C8:70:75:F3:BF:64:C8:77:8D:66 X509v3 Authority Key Identifier: keyid:D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d6:5a:cd:c9:ba:f4:7b:bb:a2:40:ce:50:a7:e5:e2:e7:4e: ae:0d:62:be:51:24:86:46:ff:83:87:e4:2b:92:62:b9:cd:cf: a5:6c:13:2b:5c:a3:bf:96:9f:52:e2:43:fa:79:d4:70:93:e4: 71:0f:47:84:2b:30:4b:7f:27:5f:84:39:a5:cc:76:26:4c:44: 2c:37:39:e6:b3:b2:5f:75:1a:73:d2:e9:a5:fe:40:8b:f7:8f: f1:68:e6:70:48:24:99:d6:dd:b8:5e:b1:2e:2f:91:05:32:e1: 9c:aa:26:c8:e2:2d:ca:f2:6b:65:55:ad:29:0b:f6:18:1d:32: 8f:a3:d6:3b:3e:bf:d8:76:a4:38:87:d3:56:61:3a:d6:02:1f: f7:5c:6e:61:b5:c1:03:89:60:21:3f:a4:b7:f0:ba:06:10:41: 59:a6:fb:2f:1b:76:ca:85:74:df:3b:d0:05:c0:32:24:34:1b: 15:f5:31:52:ba:70:a0:60:43:bb:cb:f8:46:9d:a2:c0:84:ce: a5:7a:ee:53:4c:a7:4a:df:f2:e3:01:c0:af:28:80:ea:94:e5: 91:57:0d:45:be:3d:d7:35:ce:8f:51:75:d6:72:e3:34:ef:eb: e5:63:c5:d5:f5:c7:a7:52:50:6b:e4:06:59:36:88:2a:08:c9: 63:06:d8:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCiJ1kerdGJiugnSu7CoMywUv54UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdG Mjk1QzJERTAeFw0yNjAzMDExMTA3NTRaFw0yNjAzMDQxNzAwNTRaMDMxMTAvBgNV BAMTKENBODc1MjVFMjAyQUQwRTk5QTQ2Qzg3MDc1RjNCRjY0Qzg3NzhENjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ5MK5N4enpJrEStT97S7xdZs7 jghDOMcjZ5Wk6uzf1DzH1BoCnX/t7PJ/rutpG+lEh/YnMIMlppHvK7ekSyPfulXr WRi9msEGpIR9yVV/wZNqMb2PLBStfepS78KsFvZ1awJhTWXZjwcfdq7UR8PtIbv/ EIwYseMlw7TVKAqVmeGenXzFIdCEHYe/CdkoxsdZbmWE2jEdkRoLhl1plOy1hFT2 zdlrcJgdbehvqs8VR6iKEhOvQyZKOD7rOEzEgdZFr9jZ81LRNA4INaFHpN0DjJ38 Meqc/Mmj4YKW5aopBMnl+aUQnFwMrLJrEwlu9woobVUDLS95N9THGh5Nu2lnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyodSXiAq0OmaRshwdfO/ZMh3jWYwHwYDVR0j BBgwFoAU0upCA0T0hpNYOeA98bPCN/KVwt4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDA4ODNmMy00NTdhLTRjMTQtOTU3Ny02N2UxNTBhMmIxMmEvMC9EMkVBNDIwMzQ0 RjQ4NjkzNTgzOUUwM0RGMUIzQzIzN0YyOTVDMkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdGMjk1 QzJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzQwODgzZjMtNDU3YS00YzE0LTk1 NzctNjdlMTUwYTJiMTJhLzAvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0My MzdGMjk1QzJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFrWWs3JuvR7u6JAzlCn5eLnTq4NYr5RJIZG /4OH5CuSYrnNz6VsEytco7+Wn1LiQ/p51HCT5HEPR4QrMEt/J1+EOaXMdiZMRCw3 Oeazsl91GnPS6aX+QIv3j/Fo5nBIJJnW3bhesS4vkQUy4ZyqJsjiLcrya2VVrSkL 9hgdMo+j1js+v9h2pDiH01ZhOtYCH/dcbmG1wQOJYCE/pLfwugYQQVmm+y8bdsqF dN870AXAMiQ0GxX1MVK6cKBgQ7vL+EadosCEzqV67lNMp0rf8uMBwK8ogOqU5ZFX DUW+Pdc1zo9RddZy4zTv6+VjxdX1x6dSUGvkBlk2iCoIyWMG2I4= -----END CERTIFICATE-----Generated at Mon Mar 2 06:40:21 2026 by rpki-client