$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: gBVyrmrzDPrAb3yIQ99YQCWEnwRHGDuyWhqsBTmMC0I= Subject key identifier: D2:AF:6D:09:5D:7C:8D:A9:01:F3:B5:B7:62:A7:F6:5A:F9:FB:FA:52 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 409A835E9F563C62BBBF1A98542C286FEE71515F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 01EE Signing time: Mon 02 Mar 2026 01:21:35 +0000 Manifest this update: Mon 02 Mar 2026 01:16:35 +0000 Manifest next update: Thu 05 Mar 2026 09:49:35 +0000 Files and hashes: 1: 3130332e39362e35322e302f32332d3233203d3e20323135373237.roa (hash: 1aKuOLZIAFfW1+Cqdr1xm8xWMdWqMvn5lk2N7M8OzCk=) 2: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: gP7psFKFA2RfBnHhdOuG7ZGFzw3Cq/MLVUDPQT38lCM=) 3: 3130332e39362e35322e302f32342d3234203d3e20313534343130.roa (hash: G0ILmU3zG9dk4y3Amsp/ANA86e6j9AhzItyGctPkHC0=) 4: 3130332e39362e35332e302f32342d3234203d3e20323135373237.roa (hash: I1eMGkofitxFBUkKIJAAEKHOmSas6t5BDo8K12fS+ps=) 5: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: 2ugfUbs5cJ20pMlsi1Lpn48hHyXGtkrzKxCtrqkovSE=) 6: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: Gq1aEe6gBJhgnS5ZSKolf13TeBsbhFSdTeP+/RmyUJ4=) 7: 3130332e39362e35322e302f32332d3233203d3e20313534343130.roa (hash: I1xGBGbMoTpFLIbjNVesHP5LRYPwXtpfc+9MFkqpZXg=) 8: 3130332e39362e35322e302f32342d3234203d3e20323135373237.roa (hash: 0krbsaRXLF7hhh/0+kJdsVsdN97iwgE+irNWTCAqAI8=) 9: 3130332e39362e35332e302f32342d3234203d3e20313534343130.roa (hash: q5hea4w5eW+1JC2efAtWBTto0TQU50ClmJGUcfUe31c=) 10: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: C3HGpl1ThenH4EorAZEJtVKi4KUYV7opK2C6bqklYfw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9a:83:5e:9f:56:3c:62:bb:bf:1a:98:54:2c:28:6f:ee:71:51:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Mar 2 01:16:35 2026 GMT Not After : Mar 5 09:49:35 2026 GMT Subject: CN=D2AF6D095D7C8DA901F3B5B762A7F65AF9FBFA52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:62:60:40:9e:bf:b7:53:27:94:9f:78:9d: b3:77:79:89:33:3b:f2:e8:54:63:b7:b6:97:40:9f: 08:04:ef:46:4e:a2:36:88:ee:9d:ef:8c:62:56:fc: 91:fd:12:19:f2:10:1b:b7:f1:bd:99:c2:59:f3:59: 58:3c:24:30:b2:de:3f:3e:c3:dc:6a:97:31:ac:94: f7:51:a8:a8:92:35:08:d5:b4:37:e7:78:f0:34:63: fb:e6:49:50:36:b7:19:9f:a7:38:1d:6d:1c:85:bf: 3b:02:c3:4e:6c:3e:bf:a0:3b:3b:a6:f5:b2:9f:41: f2:78:6e:ed:7b:07:16:67:00:e1:7f:56:7f:f7:40: fa:f2:85:fa:2f:1e:90:69:d8:eb:b0:0a:bf:ba:26: 0f:00:be:35:fa:07:47:6c:b2:c2:1f:b1:f2:9f:7c: b6:23:b6:90:c1:88:f5:ec:35:ee:10:23:ee:53:be: ed:d0:12:61:58:6a:fa:c0:62:7c:01:f1:33:a2:3f: c5:58:8a:c6:c9:8b:7f:0c:12:82:bc:95:b7:ce:98: 3b:fa:5e:7a:5f:62:21:0b:79:d2:15:51:2a:94:a3: 31:92:ef:66:36:b2:c2:76:ee:32:4c:fb:a5:3b:8c: 1f:15:50:9e:8e:5f:93:ab:04:63:ad:3f:a2:e7:36: ef:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AF:6D:09:5D:7C:8D:A9:01:F3:B5:B7:62:A7:F6:5A:F9:FB:FA:52 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:5d:44:7c:68:d0:b3:b0:a2:93:56:2d:49:4a:0d:25:22:13: 6a:c5:a5:09:31:e1:99:c9:24:b2:d0:89:98:26:96:95:8f:6a: 62:a2:6b:5c:5a:ed:9a:a5:0d:e3:b4:f1:a3:07:44:f2:ea:e2: c8:dd:01:53:70:f8:54:12:9a:7b:29:88:6f:95:32:9a:ef:27: ad:aa:49:f9:17:06:3d:c3:95:18:a3:fd:f6:31:30:39:37:29: fc:50:f6:59:bd:0f:47:b0:81:4c:db:8e:58:b7:17:d3:13:de: b5:2c:1d:5e:51:21:9a:92:af:17:45:b4:3a:30:78:77:cb:69: aa:7a:0b:83:63:67:de:ee:34:bf:b5:93:4d:a3:cd:3b:7f:b0: ef:8f:d0:33:18:0f:6d:a7:c0:7d:04:7b:ba:23:f9:a2:67:f9: 6c:15:e9:25:83:37:9a:75:5c:4f:f2:d3:e1:c1:90:3d:eb:0d: ad:7a:f0:6a:d0:d0:70:6c:e9:d8:83:cf:a1:82:b3:ae:52:a5: 94:02:1d:29:eb:c3:b6:31:95:90:dd:15:1d:71:39:b9:a6:60: 34:d7:b4:ac:19:8d:60:fd:b2:d2:29:f8:27:74:23:ec:19:fe: d4:00:22:62:f6:1e:5d:fd:37:4a:7b:7f:05:d1:41:25:f1:00: e8:c3:01:0a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQJqDXp9WPGK7vxqYVCwob+5xUV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNjAzMDIwMTE2MzVaFw0yNjAzMDUwOTQ5MzVaMDMxMTAvBgNV BAMTKEQyQUY2RDA5NUQ3QzhEQTkwMUYzQjVCNzYyQTdGNjVBRjlGQkZBNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+4WJgQJ6/t1MnlJ94nbN3eYkz O/LoVGO3tpdAnwgE70ZOojaI7p3vjGJW/JH9EhnyEBu38b2ZwlnzWVg8JDCy3j8+ w9xqlzGslPdRqKiSNQjVtDfnePA0Y/vmSVA2txmfpzgdbRyFvzsCw05sPr+gOzum 9bKfQfJ4bu17BxZnAOF/Vn/3QPryhfovHpBp2OuwCr+6Jg8AvjX6B0dsssIfsfKf fLYjtpDBiPXsNe4QI+5Tvu3QEmFYavrAYnwB8TOiP8VYisbJi38MEoK8lbfOmDv6 XnpfYiELedIVUSqUozGS72Y2ssJ27jJM+6U7jB8VUJ6OX5OrBGOtP6LnNu9vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0q9tCV18jakB87W3Yqf2Wvn7+lIwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACZdRHxo0LOwopNWLUlKDSUiE2rFpQkx4ZnJ JLLQiZgmlpWPamKia1xa7ZqlDeO08aMHRPLq4sjdAVNw+FQSmnspiG+VMprvJ62q SfkXBj3DlRij/fYxMDk3KfxQ9lm9D0ewgUzbjli3F9MT3rUsHV5RIZqSrxdFtDow eHfLaap6C4NjZ97uNL+1k02jzTt/sO+P0DMYD22nwH0Ee7oj+aJn+WwV6SWDN5p1 XE/y0+HBkD3rDa168GrQ0HBs6diDz6GCs65SpZQCHSnrw7YxlZDdFR1xObmmYDTX tKwZjWD9stIp+Cd0I+wZ/tQAImL2Hl39N0p7fwXRQSXxAOjDAQo= -----END CERTIFICATE-----Generated at Mon Mar 2 13:05:38 2026 by rpki-client