$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: s0l3Bbntzuba8hlYitadGstJWStZGzo8bTdC6H1qcAY= Subject key identifier: 33:08:0E:A5:94:40:87:BE:50:BB:0C:65:07:2B:4E:16:21:49:FB:4C Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 11E3649F101D49F465DE162438BF638E40576502 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 0218 Signing time: Sat 28 Feb 2026 17:01:24 +0000 Manifest this update: Sat 28 Feb 2026 16:56:24 +0000 Manifest next update: Wed 04 Mar 2026 00:08:24 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: Ju8XuZQ1uGPuFvy3Dl+FInufXponLTvurfXuVj7gk1U=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 00:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e3:64:9f:10:1d:49:f4:65:de:16:24:38:bf:63:8e:40:57:65:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Feb 28 16:56:24 2026 GMT Not After : Mar 4 00:08:24 2026 GMT Subject: CN=33080EA5944087BE50BB0C65072B4E162149FB4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c5:96:c6:5b:67:57:04:df:af:bc:fd:76:80: de:69:50:1f:82:05:5d:59:55:1a:ba:6b:94:2d:82: c5:2f:37:0d:cf:f2:fb:8d:28:25:51:69:31:44:4c: 0d:41:87:55:15:7f:7c:e7:cd:30:af:b6:30:2e:52: 82:f6:1c:8c:ac:ad:af:6e:04:f7:e4:a2:a1:7f:e8: da:78:39:3c:ef:8f:f7:1f:21:94:93:1f:60:cc:ca: 59:34:c1:e5:0b:06:74:51:06:cf:20:6b:d7:d3:da: 39:4d:9b:65:79:c2:c6:f9:1b:0c:ed:96:e0:d9:10: 01:00:8b:9c:57:16:98:8c:0f:d5:d3:52:3d:48:9a: 00:39:a0:3d:4f:d7:9e:f4:43:a0:c8:8d:23:16:19: 71:82:d0:a8:01:cb:e8:57:a9:17:5d:1d:e0:6a:a9: 5f:c1:d2:f4:bb:df:b6:b8:b2:ee:19:13:59:39:f2: 24:c7:3e:a0:66:59:76:28:c3:b6:f3:5f:1b:64:50: b7:6c:32:26:f9:75:13:5d:d9:21:47:19:95:33:c1: af:bb:be:59:90:90:22:77:43:ac:50:36:99:ec:46: 3a:ac:aa:08:fa:c1:d6:90:cb:ad:b3:10:4e:e8:49: 39:18:f1:44:ea:20:f0:d9:87:c0:9a:d9:9f:2f:6a: 80:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:08:0E:A5:94:40:87:BE:50:BB:0C:65:07:2B:4E:16:21:49:FB:4C X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:2d:01:50:a7:10:05:2f:af:05:90:bc:40:72:cf:4e:6d:b2: 3e:5f:e3:35:5a:e2:d1:1d:5f:97:76:4a:d5:97:d9:23:db:99: 41:36:8a:cc:a0:b2:d4:ae:ac:5e:23:f4:90:a6:19:7d:bb:08: 73:5e:b6:30:53:0c:56:d3:32:ac:73:fc:72:dd:a6:6a:45:72: 03:91:3a:73:61:9f:56:45:ae:f4:5a:37:60:92:75:91:a5:47: 4f:24:df:d0:4f:5c:30:91:f8:5a:53:ae:81:80:33:1c:d1:82: 75:22:e0:99:a1:85:8e:93:1e:6e:4e:ba:05:4b:c9:8e:2a:8a: 86:45:26:3b:6d:10:db:96:14:e9:d4:5a:34:92:c8:d5:97:cc: 3e:e1:84:05:69:80:f8:44:19:0e:4d:2b:ce:2a:f4:72:f0:91: f6:cc:a9:9d:e7:af:02:0d:31:e7:00:81:e2:fb:b8:75:78:2c: 16:af:89:f1:4f:03:cf:17:7e:78:a8:88:53:ee:db:e6:66:11: f2:c2:37:52:17:79:ea:1c:24:c0:22:6f:88:90:5e:d2:77:f8: 74:a5:56:f0:8a:3b:62:33:fa:b0:c8:5d:17:3f:2b:f0:dd:e5: 11:2c:b4:3a:48:58:59:f7:dd:ed:cc:dc:a5:5e:85:52:fa:ca: 4b:ce:b8:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEeNknxAdSfRl3hYkOL9jjkBXZQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNjAyMjgxNjU2MjRaFw0yNjAzMDQwMDA4MjRaMDMxMTAvBgNV BAMTKDMzMDgwRUE1OTQ0MDg3QkU1MEJCMEM2NTA3MkI0RTE2MjE0OUZCNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrxZbGW2dXBN+vvP12gN5pUB+C BV1ZVRq6a5QtgsUvNw3P8vuNKCVRaTFETA1Bh1UVf3znzTCvtjAuUoL2HIysra9u BPfkoqF/6Np4OTzvj/cfIZSTH2DMylk0weULBnRRBs8ga9fT2jlNm2V5wsb5Gwzt luDZEAEAi5xXFpiMD9XTUj1ImgA5oD1P1570Q6DIjSMWGXGC0KgBy+hXqRddHeBq qV/B0vS737a4su4ZE1k58iTHPqBmWXYow7bzXxtkULdsMib5dRNd2SFHGZUzwa+7 vlmQkCJ3Q6xQNpnsRjqsqgj6wdaQy62zEE7oSTkY8UTqIPDZh8Ca2Z8vaoBHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMwgOpZRAh75QuwxlBytOFiFJ+0wwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABAtAVCnEAUvrwWQvEByz05tsj5f4zVa4tEd X5d2StWX2SPbmUE2isygstSurF4j9JCmGX27CHNetjBTDFbTMqxz/HLdpmpFcgOR OnNhn1ZFrvRaN2CSdZGlR08k39BPXDCR+FpTroGAMxzRgnUi4JmhhY6THm5OugVL yY4qioZFJjttENuWFOnUWjSSyNWXzD7hhAVpgPhEGQ5NK84q9HLwkfbMqZ3nrwIN MecAgeL7uHV4LBavifFPA88XfnioiFPu2+ZmEfLCN1IXeeocJMAib4iQXtJ3+HSl VvCKO2Iz+rDIXRc/K/Dd5REstDpIWFn33e3M3KVehVL6ykvOuAU= -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:35 2026 by rpki-client