$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: 88YN4LZgM5CEK91drUzEyK1Z1l7lhUR/+7bGJcx7AOQ= Subject key identifier: 0F:2E:27:79:B0:05:E8:C2:13:52:A5:4D:EF:3B:02:BC:B1:52:28:01 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 7A1B18D77241DF62D311CC10880B067FFCA37609 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 0563 Signing time: Sun 01 Mar 2026 03:01:12 +0000 Manifest this update: Sun 01 Mar 2026 02:56:11 +0000 Manifest next update: Wed 04 Mar 2026 07:37:11 +0000 Files and hashes: 1: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: tHhLDdHHbsCkG+UHT3p88TUY2+W5e4f+3agioxt0A6g=) 2: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: 1h7fo52sVm4cJACJ1QTb5QR43dKEDAqoDnfictr7I+U=) 3: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: VcugztXSvyMcn9mVUavjZkMSdNoNOEUQu+CJSBHDXb4=) 4: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: ArGX3GK83LFApxV4uLSs4kfPXNu12xplyTp4FBzO9Nw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 07:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1b:18:d7:72:41:df:62:d3:11:cc:10:88:0b:06:7f:fc:a3:76:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Mar 1 02:56:11 2026 GMT Not After : Mar 4 07:37:11 2026 GMT Subject: CN=0F2E2779B005E8C21352A54DEF3B02BCB1522801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:28:9a:14:a5:d6:df:86:4d:fd:30:ea:6f:8f: 0f:8c:68:b0:40:f9:27:12:a6:19:f5:0d:1d:04:b9: c4:6b:fd:ad:85:c7:68:6e:b7:29:dd:d8:17:e0:67: 4e:f6:74:46:2b:2b:2a:e8:2e:33:14:90:30:6a:4f: ea:6e:9b:1b:46:db:26:9e:e9:19:93:eb:68:6a:31: 55:60:bc:bf:e8:44:cd:67:84:d7:bd:69:42:c6:7f: 25:ff:bc:05:b8:a7:30:90:3d:2e:5a:dd:9f:1b:19: 15:97:f4:3b:48:a4:1f:c6:e4:2a:ba:2a:1b:bd:9b: 49:a1:1f:2d:61:6c:8e:ed:f8:cc:5f:9e:55:87:aa: d0:d7:62:48:ea:54:56:b3:3c:ca:f7:be:07:6f:21: 22:30:dd:ae:e3:7e:8f:fa:0f:f9:0e:a7:4c:03:c2: 86:42:bd:51:bc:0e:33:7c:4d:23:b0:30:61:32:3f: 99:a6:94:61:47:9a:4a:98:0f:4b:99:c5:d6:b8:ee: af:1a:a2:de:14:cf:de:78:62:0a:e5:f1:de:59:a1: a8:61:44:cc:8c:71:9f:8f:60:fd:83:4b:a2:1c:28: be:c2:31:9d:18:b1:b1:68:bb:d5:c7:7c:79:c0:ca: 6a:04:3d:9d:40:bb:40:bb:fc:45:5c:ec:63:39:c1: 32:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:2E:27:79:B0:05:E8:C2:13:52:A5:4D:EF:3B:02:BC:B1:52:28:01 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:3c:0a:fa:f6:7a:fa:1c:5c:10:79:f7:67:81:23:cb:aa:58: 5f:71:d4:da:88:dd:bb:9f:e7:85:1d:26:53:1f:6f:34:a3:c0: f1:83:a4:b1:43:7b:51:f0:94:77:e0:c6:7d:8a:d9:4e:df:92: 3a:f2:9c:9b:a3:4e:cb:5e:d5:b2:bd:dd:23:d5:81:80:52:95: f4:39:bb:98:f1:d0:b9:70:f9:c1:f4:6e:e8:24:d6:7a:14:b0: 16:c6:5b:ab:9a:c3:bf:ef:c7:d1:7d:e0:0b:b1:52:17:8c:5c: 0f:b6:9f:c2:f6:82:dd:35:72:63:c7:81:74:22:69:a8:fd:84: 36:2b:04:97:66:47:ff:03:f8:38:89:35:e1:a1:4b:82:d3:93: f0:69:81:0c:88:91:d5:6c:44:01:7c:73:d1:14:f1:f6:be:32: f9:f8:66:2f:6c:b1:c2:45:9a:6f:c2:a8:67:85:85:38:8b:23: 9a:05:c5:b2:b4:5e:ac:7c:e8:2f:c3:84:a1:ca:3c:5b:18:2b: 3f:24:ed:88:c4:e2:07:be:c9:ca:0e:3c:d2:2e:85:d0:4e:91: 1c:e1:67:fd:5e:c6:52:3e:34:72:c8:7b:d6:00:8f:0e:23:59: 56:46:57:3c:5a:36:35:79:4b:e9:90:b0:63:06:41:53:d0:19: 6a:11:ac:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUehsY13JB32LTEcwQiAsGf/yjdgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNjAzMDEwMjU2MTFaFw0yNjAzMDQwNzM3MTFaMDMxMTAvBgNV BAMTKDBGMkUyNzc5QjAwNUU4QzIxMzUyQTU0REVGM0IwMkJDQjE1MjI4MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFKJoUpdbfhk39MOpvjw+MaLBA +ScSphn1DR0EucRr/a2Fx2hutynd2BfgZ072dEYrKyroLjMUkDBqT+pumxtG2yae 6RmT62hqMVVgvL/oRM1nhNe9aULGfyX/vAW4pzCQPS5a3Z8bGRWX9DtIpB/G5Cq6 Khu9m0mhHy1hbI7t+MxfnlWHqtDXYkjqVFazPMr3vgdvISIw3a7jfo/6D/kOp0wD woZCvVG8DjN8TSOwMGEyP5mmlGFHmkqYD0uZxda47q8aot4Uz954Ygrl8d5Zoahh RMyMcZ+PYP2DS6IcKL7CMZ0YsbFou9XHfHnAymoEPZ1Au0C7/EVc7GM5wTL7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDy4nebAF6MITUqVN7zsCvLFSKAEwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKI8Cvr2evocXBB592eBI8uqWF9x1NqI3buf 54UdJlMfbzSjwPGDpLFDe1HwlHfgxn2K2U7fkjrynJujTste1bK93SPVgYBSlfQ5 u5jx0Llw+cH0bugk1noUsBbGW6uaw7/vx9F94AuxUheMXA+2n8L2gt01cmPHgXQi aaj9hDYrBJdmR/8D+DiJNeGhS4LTk/BpgQyIkdVsRAF8c9EU8fa+Mvn4Zi9sscJF mm/CqGeFhTiLI5oFxbK0Xqx86C/DhKHKPFsYKz8k7YjE4ge+ycoOPNIuhdBOkRzh Z/1exlI+NHLIe9YAjw4jWVZGVzxaNjV5S+mQsGMGQVPQGWoRrH8= -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:11 2026 by rpki-client