$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: YIh/uPKKvM/C4nHTv/y++wyLWJHU87eyroV9pctW93I= Subject key identifier: 36:69:8A:F5:D0:37:13:77:CB:0E:14:EF:B6:B2:AD:D9:25:C5:C9:D2 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 012D537FE2B5F3DC019083CEC67668AD9B96D137 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 02A5 Signing time: Sun 01 Mar 2026 22:51:04 +0000 Manifest this update: Sun 01 Mar 2026 22:46:04 +0000 Manifest next update: Thu 05 Mar 2026 08:22:04 +0000 Files and hashes: 1: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4=) 2: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) 3: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E=) 4: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: vJ0JThPWN5z9ya3yGVitmhJSsuKICvURyRQCb1oSUaA=) 5: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: kCRK0GyIw4s+yjq2zgnMIkM6QPSp8t0LSVhektuvpuQ=) 6: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:2d:53:7f:e2:b5:f3:dc:01:90:83:ce:c6:76:68:ad:9b:96:d1:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Mar 1 22:46:04 2026 GMT Not After : Mar 5 08:22:04 2026 GMT Subject: CN=36698AF5D0371377CB0E14EFB6B2ADD925C5C9D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:53:ab:a9:48:d8:0a:f6:2d:99:be:14:4b: a2:12:30:78:9f:70:f5:22:9e:00:30:42:4a:7a:6e: 67:74:2d:93:c9:be:08:20:98:a5:68:7e:ea:f7:6f: 28:15:6e:c9:41:3a:85:a3:03:0b:17:98:0a:79:63: 59:65:bc:66:21:f4:85:7b:74:97:29:6a:a4:31:b2: 1d:75:78:2a:da:2f:f9:d9:ae:45:62:f9:df:f8:56: c2:4d:70:a0:c9:97:9c:67:40:b7:d4:3f:de:c4:d8: c9:a5:c4:75:51:fe:75:e1:ff:b1:72:06:72:fa:d9: 1a:40:81:a3:66:dd:39:81:bf:bb:89:af:85:8c:72: 55:7f:ea:51:28:1f:5f:96:bd:21:ab:1d:60:59:7b: bb:bd:25:a9:e5:76:6b:e4:68:d9:12:11:ed:c1:c9: 5a:03:02:cd:11:e5:ec:46:f4:42:0d:61:e0:64:c8: 45:bc:68:a4:2e:44:2c:1d:37:0b:69:fc:ec:7f:ce: 76:24:7b:54:2b:b0:85:03:36:a0:f8:0d:d7:86:30: 79:58:28:c4:26:45:1f:d2:6c:13:78:4d:9f:c4:56: 03:ca:60:5c:f1:db:35:5f:31:5d:93:34:48:78:29: 00:b4:e5:b1:d2:47:db:42:78:45:dd:93:87:f1:f6: a0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:69:8A:F5:D0:37:13:77:CB:0E:14:EF:B6:B2:AD:D9:25:C5:C9:D2 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:7d:84:5c:ac:5e:88:fd:43:9d:1b:5a:8c:e8:cb:45:b8:c3: 88:2b:bb:f4:28:c1:fe:cc:f0:1a:8f:dd:a7:9e:b4:99:dc:c1: ef:fb:80:97:52:21:5f:ac:d9:89:13:e5:71:fb:c5:80:01:2d: f4:8f:12:47:25:7b:dc:0e:c5:9e:90:95:ae:a2:7f:da:b2:e8: 49:0d:cd:8c:99:1e:bd:70:de:14:8d:b8:13:74:4a:fc:8c:68: f0:c6:70:97:68:04:ba:84:92:28:c6:bc:8d:22:6d:52:2c:b5: cc:85:b7:a0:f0:ce:e8:b2:4f:b8:9c:c9:89:9b:2d:c7:ea:e6: 0e:8d:4d:7e:41:4d:40:8a:8f:82:1a:71:f2:aa:48:3b:71:e6: 84:0f:fc:a6:06:2d:c1:1f:16:b7:02:6f:b4:9a:6b:e5:22:eb: c3:6f:2a:b6:00:44:b3:cb:85:7a:10:0c:55:06:b4:f0:73:84: c1:92:4c:00:91:1b:99:ad:7b:52:1d:4a:5c:b6:e5:86:db:00: b6:7b:43:db:0f:9e:03:2b:20:30:f0:48:c1:75:d5:6e:2f:9d: 9d:50:65:13:15:15:98:71:c1:a6:65:db:a8:2f:15:8e:c5:c8: 07:65:9d:1d:70:1a:29:44:e3:5a:7e:93:f9:16:b6:2f:2a:f9: 04:d6:b0:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAS1Tf+K189wBkIPOxnZorZuW0TcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNjAzMDEyMjQ2MDRaFw0yNjAzMDUwODIyMDRaMDMxMTAvBgNV BAMTKDM2Njk4QUY1RDAzNzEzNzdDQjBFMTRFRkI2QjJBREQ5MjVDNUM5RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3n1OrqUjYCvYtmb4US6ISMHif cPUingAwQkp6bmd0LZPJvgggmKVofur3bygVbslBOoWjAwsXmAp5Y1llvGYh9IV7 dJcpaqQxsh11eCraL/nZrkVi+d/4VsJNcKDJl5xnQLfUP97E2MmlxHVR/nXh/7Fy BnL62RpAgaNm3TmBv7uJr4WMclV/6lEoH1+WvSGrHWBZe7u9JanldmvkaNkSEe3B yVoDAs0R5exG9EINYeBkyEW8aKQuRCwdNwtp/Ox/znYke1QrsIUDNqD4DdeGMHlY KMQmRR/SbBN4TZ/EVgPKYFzx2zVfMV2TNEh4KQC05bHSR9tCeEXdk4fx9qDdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNmmK9dA3E3fLDhTvtrKt2SXFydIwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF59hFysXoj9Q50bWozoy0W4w4gru/Qowf7M 8BqP3aeetJncwe/7gJdSIV+s2YkT5XH7xYABLfSPEkcle9wOxZ6Qla6if9qy6EkN zYyZHr1w3hSNuBN0SvyMaPDGcJdoBLqEkijGvI0ibVIstcyFt6DwzuiyT7icyYmb Lcfq5g6NTX5BTUCKj4IacfKqSDtx5oQP/KYGLcEfFrcCb7Saa+Ui68NvKrYARLPL hXoQDFUGtPBzhMGSTACRG5mte1IdSly25YbbALZ7Q9sPngMrIDDwSMF11W4vnZ1Q ZRMVFZhxwaZl26gvFY7FyAdlnR1wGilE41p+k/kWti8q+QTWsI4= -----END CERTIFICATE-----Generated at Mon Mar 2 06:23:14 2026 by rpki-client