$ rpki-client -vvf repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft File: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft (raw, json) Hash identifier: e5ZtQGNzwfZ98i+UmjmW2PkNEssUgLJ4UeTXDzH9D5o= Subject key identifier: 7D:B0:F3:0F:CF:4A:B3:94:80:F6:3B:09:68:FB:4E:D4:C2:80:85:36 Authority key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Certificate issuer: /CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Certificate serial: 53651908FEE44893DEEBD4E0BD0D0BB8B70620E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft Manifest number: 01CD Signing time: Sun 01 Mar 2026 20:32:25 +0000 Manifest this update: Sun 01 Mar 2026 20:27:25 +0000 Manifest next update: Thu 05 Mar 2026 06:31:25 +0000 Files and hashes: 1: 3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa (hash: 3hFFQihiUWQ6IklFjwNs/rvoW0wAPy/hcaMMMxF76HU=) 2: 323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa (hash: LoN9n04DTytZ0C9xVez/xcCtenBfVSkHJQnf+LTbYY0=) 3: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl (hash: uNorzQwUsNkhhfcwYcIgiMRTujD9Chj0zbg2O9JoWDE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:65:19:08:fe:e4:48:93:de:eb:d4:e0:bd:0d:0b:b8:b7:06:20:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Validity Not Before: Mar 1 20:27:25 2026 GMT Not After : Mar 5 06:31:25 2026 GMT Subject: CN=7DB0F30FCF4AB39480F63B0968FB4ED4C2808536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:98:28:ae:41:3a:67:d1:46:d0:8a:6d:c2:83: 92:98:3a:c7:5a:d3:79:74:aa:68:a3:ff:60:6e:a1: 8d:13:c4:e9:da:d3:9b:ee:c9:da:d6:54:4d:db:83: 19:4d:1d:84:35:dd:2a:98:b7:c2:f9:99:b5:9f:9b: ed:82:51:18:11:66:2b:08:47:12:ba:d2:23:1d:07: 16:2e:b3:20:22:c4:49:95:f0:3f:8e:d6:4b:e2:92: c5:78:15:28:f7:9f:df:ff:77:01:b2:79:07:08:71: dd:8a:1b:1a:45:5b:74:7c:10:9a:16:f7:a7:27:64: 57:24:6c:df:c7:10:53:ae:c9:89:4b:5d:1b:55:1f: d4:1b:a1:11:a1:33:b8:8f:d7:75:3a:78:fd:21:dd: 31:7c:a3:67:63:16:f4:92:df:79:73:23:ce:49:2e: 9d:03:06:ab:d2:f9:48:36:fa:9b:52:d5:7b:7a:c3: 89:29:f3:fd:fa:a5:0b:99:7e:8f:9d:9e:94:cb:ef: 35:0e:e7:43:95:9f:bb:55:6f:f2:0d:83:a5:61:e0: f7:dd:2d:19:c4:e8:66:b5:35:52:73:cb:5c:ff:55: e3:0d:32:ee:ae:68:ad:27:7a:0b:5c:17:84:61:fa: 2e:1c:be:83:d5:f1:81:9f:16:f7:01:97:ac:6e:64: ee:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B0:F3:0F:CF:4A:B3:94:80:F6:3B:09:68:FB:4E:D4:C2:80:85:36 X509v3 Authority Key Identifier: keyid:82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:f3:8e:b5:e7:78:76:4c:a5:9a:05:c6:4a:dc:59:88:7e:28: b2:07:86:f7:80:2f:d3:44:cb:07:e5:92:ce:b7:b6:cc:0e:55: bc:44:88:06:ab:16:a0:6a:59:ce:4c:8a:06:e9:97:ea:88:a7: eb:96:1c:86:30:1e:c2:f0:88:cf:57:3e:54:e6:02:42:f9:cd: d3:a5:01:19:11:4f:91:e4:e6:56:dc:ad:0e:fc:0f:d4:56:a5: 62:62:77:9a:ca:68:7e:f6:ac:eb:fb:5f:44:a0:5d:e4:31:80: 3d:18:a4:5a:89:34:3c:07:36:01:eb:52:ef:40:cf:63:7b:0c: 69:4b:ca:f2:cb:28:db:c6:ed:88:7a:73:cd:9e:1b:ed:c1:4e: f7:8f:ba:ae:e3:7d:b7:7f:39:24:99:16:3d:a1:04:a1:6a:5d: 7c:f4:d9:13:7a:82:f2:8d:53:f2:4c:89:f0:a6:23:b5:50:dc: 94:b1:91:69:ba:65:6a:19:37:ce:01:68:c9:14:f1:e0:af:62: 0f:d3:3d:ce:58:04:ec:b5:4f:38:cc:9b:b1:ca:be:10:77:55: 85:18:e3:e7:b3:46:5b:5f:ff:5c:13:65:61:6f:90:2e:7e:00: dd:a7:34:00:8c:05:eb:de:87:be:3a:6b:ca:5c:5a:c4:06:1d: 51:89:e6:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU2UZCP7kSJPe69TgvQ0LuLcGIOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJC NTNDQzY4MTAeFw0yNjAzMDEyMDI3MjVaFw0yNjAzMDUwNjMxMjVaMDMxMTAvBgNV BAMTKDdEQjBGMzBGQ0Y0QUIzOTQ4MEY2M0IwOTY4RkI0RUQ0QzI4MDg1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDimCiuQTpn0UbQim3Cg5KYOsda 03l0qmij/2BuoY0TxOna05vuydrWVE3bgxlNHYQ13SqYt8L5mbWfm+2CURgRZisI RxK60iMdBxYusyAixEmV8D+O1kviksV4FSj3n9//dwGyeQcIcd2KGxpFW3R8EJoW 96cnZFckbN/HEFOuyYlLXRtVH9QboRGhM7iP13U6eP0h3TF8o2djFvSS33lzI85J Lp0DBqvS+Ug2+ptS1Xt6w4kp8/36pQuZfo+dnpTL7zUO50OVn7tVb/INg6Vh4Pfd LRnE6Ga1NVJzy1z/VeMNMu6uaK0negtcF4Rh+i4cvoPV8YGfFvcBl6xuZO5zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfbDzD89Ks5SA9jsJaPtO1MKAhTYwHwYDVR0j BBgwFoAUgggxeiSrTNgozYhV+B8+8rU8xoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMC84MjA4MzE3QTI0 QUI0Q0Q4MjhDRDg4NTVGODFGM0VGMkI1M0NDNjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJCNTND QzY4MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODg3ODhhOGItNTQxYi00Y2JmLWJh YjktOGRjMzc3YmMxMjg0LzAvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNF RjJCNTNDQzY4MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAADzjrXneHZMpZoFxkrcWYh+KLIHhveAL9NE ywflks63tswOVbxEiAarFqBqWc5Migbpl+qIp+uWHIYwHsLwiM9XPlTmAkL5zdOl ARkRT5Hk5lbcrQ78D9RWpWJid5rKaH72rOv7X0SgXeQxgD0YpFqJNDwHNgHrUu9A z2N7DGlLyvLLKNvG7Yh6c82eG+3BTvePuq7jfbd/OSSZFj2hBKFqXXz02RN6gvKN U/JMifCmI7VQ3JSxkWm6ZWoZN84BaMkU8eCvYg/TPc5YBOy1TzjMm7HKvhB3VYUY 4+ezRltf/1wTZWFvkC5+AN2nNACMBeveh746a8pcWsQGHVGJ5kY= -----END CERTIFICATE-----Generated at Mon Mar 2 02:07:40 2026 by rpki-client