$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: 6tt1D+yXBNqdmuXLvEyNJaLk48lK2nXKHkXcyRFp4Sw= Subject key identifier: 7F:FF:9E:7F:C9:12:4B:33:55:EC:84:6F:C4:14:CD:39:AE:3B:7E:4E Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 1398BD8F3AD72ADDC89A226932BB798596C3920E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 03A9 Signing time: Sat 28 Feb 2026 12:01:41 +0000 Manifest this update: Sat 28 Feb 2026 11:56:41 +0000 Manifest next update: Tue 03 Mar 2026 21:33:41 +0000 Files and hashes: 1: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 2: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) 3: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: EXolAFTvleLrqrldBF+N+Zx22hgxqgDLM9GV412R+7g=) 4: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 21:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:98:bd:8f:3a:d7:2a:dd:c8:9a:22:69:32:bb:79:85:96:c3:92:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Feb 28 11:56:41 2026 GMT Not After : Mar 3 21:33:41 2026 GMT Subject: CN=7FFF9E7FC9124B3355EC846FC414CD39AE3B7E4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3d:61:b8:6b:2d:75:eb:ec:99:92:74:8f:c5: e5:64:95:4b:94:52:f1:bf:13:4f:16:99:8b:41:61: a5:48:04:9d:37:62:61:2a:ba:c4:8d:e2:42:5d:69: 4a:0d:df:6d:bf:ae:25:25:3a:52:84:76:2c:b2:06: db:61:8d:f7:ca:b3:ca:dd:a9:8c:9e:43:36:49:cc: 0b:6f:7a:c7:b5:30:15:de:b3:57:88:71:97:c8:61: c8:45:5b:06:c6:06:76:de:5b:67:9a:63:a5:9d:a7: 40:ed:aa:35:ad:00:7c:4c:0e:5a:e6:b6:93:cf:ce: 96:6b:c5:6a:5d:56:84:7f:48:a2:d6:45:77:1f:6d: a0:d1:28:9e:e2:bf:b1:3e:72:c6:e6:60:93:47:bf: 9b:1f:6f:d5:61:65:58:f2:4e:e2:ff:13:fd:24:b6: ce:6e:ba:a6:9f:e2:1c:b0:8a:94:49:75:b1:0e:43: 49:19:2a:08:16:fd:29:85:11:d6:d0:17:48:fb:36: 34:af:60:d3:2d:49:b7:37:c4:d9:00:ea:ef:6d:e2: 5a:d3:47:d0:16:e7:05:b6:a1:e6:a9:ef:6c:9c:63: be:c5:93:fd:27:5b:79:52:a6:0f:63:81:65:01:a1: 79:96:ec:0a:58:15:e9:9f:2b:f6:d1:8d:04:8b:ad: d2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FF:9E:7F:C9:12:4B:33:55:EC:84:6F:C4:14:CD:39:AE:3B:7E:4E X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:b5:21:38:cc:b8:82:7d:9a:92:69:7a:fe:d7:5f:de:96:3a: 58:5a:d5:8b:95:15:6b:b4:eb:04:9c:99:e4:a0:07:c6:94:b9: 7d:4f:0f:20:e0:22:02:0e:3b:a2:41:ed:87:f4:1e:1c:5b:d9: 36:3b:a7:20:a6:40:57:3f:46:dc:45:8d:f5:7a:7e:91:86:44: fc:a5:72:c5:e2:7f:76:ce:f4:f5:70:b0:9f:29:76:07:8e:43: 79:af:03:b6:ca:58:99:5d:15:45:1b:13:1b:06:4d:0e:83:22: 94:4e:08:df:a6:b0:56:20:c5:16:f3:b8:9e:7e:d4:db:a9:a0: 1a:e9:20:c9:c4:a6:9e:ab:6c:5e:9d:d4:05:f5:89:11:cf:87: b4:e2:8c:19:1b:87:55:98:9d:9e:15:27:94:75:a8:4c:6c:86: 1b:16:8b:24:e8:44:4a:40:2d:88:95:f9:7d:45:f8:a2:33:f6: 59:d1:b9:65:9b:e8:c5:99:ba:53:82:f5:5c:5c:88:cf:9e:41: 6c:08:09:eb:7f:83:36:6e:7a:e4:2b:75:72:ee:1f:7c:4e:2e: 5e:ad:e5:9f:8a:c2:a2:f4:dc:0c:10:f5:37:0c:fb:e0:08:7b: 91:4e:5c:cd:72:95:a0:34:4c:b9:8d:15:c4:7d:b0:bd:b5:33: 6a:19:22:84 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE5i9jzrXKt3ImiJpMrt5hZbDkg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNjAyMjgxMTU2NDFaFw0yNjAzMDMyMTMzNDFaMDMxMTAvBgNV BAMTKDdGRkY5RTdGQzkxMjRCMzM1NUVDODQ2RkM0MTRDRDM5QUUzQjdFNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlPWG4ay116+yZknSPxeVklUuU UvG/E08WmYtBYaVIBJ03YmEqusSN4kJdaUoN322/riUlOlKEdiyyBtthjffKs8rd qYyeQzZJzAtvese1MBXes1eIcZfIYchFWwbGBnbeW2eaY6Wdp0DtqjWtAHxMDlrm tpPPzpZrxWpdVoR/SKLWRXcfbaDRKJ7iv7E+csbmYJNHv5sfb9VhZVjyTuL/E/0k ts5uuqaf4hywipRJdbEOQ0kZKggW/SmFEdbQF0j7NjSvYNMtSbc3xNkA6u9t4lrT R9AW5wW2oeap72ycY77Fk/0nW3lSpg9jgWUBoXmW7ApYFemfK/bRjQSLrdLdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf/+ef8kSSzNV7IRvxBTNOa47fk4wHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABa1ITjMuIJ9mpJpev7XX96WOlha1YuVFWu0 6wScmeSgB8aUuX1PDyDgIgIOO6JB7Yf0Hhxb2TY7pyCmQFc/RtxFjfV6fpGGRPyl csXif3bO9PVwsJ8pdgeOQ3mvA7bKWJldFUUbExsGTQ6DIpROCN+msFYgxRbzuJ5+ 1NupoBrpIMnEpp6rbF6d1AX1iRHPh7TijBkbh1WYnZ4VJ5R1qExshhsWiyToREpA LYiV+X1F+KIz9lnRuWWb6MWZulOC9VxciM+eQWwICet/gzZueuQrdXLuH3xOLl6t 5Z+KwqL03AwQ9TcM++AIe5FOXM1ylaA0TLmNFcR9sL21M2oZIoQ= -----END CERTIFICATE-----Generated at Mon Mar 2 11:47:05 2026 by rpki-client