$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft File: 8CFA88063D5C0A51C1D737A5170338865A245358.mft (raw, json) Hash identifier: bhy1D9KvDGrzwZ+5O5TvKBa4QODgAaSPHjzfY7V1Inw= Subject key identifier: A6:08:4B:85:92:D8:B8:C1:F2:7B:78:D1:45:E9:B7:E6:94:FA:13:0C Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358 Certificate serial: 53866092F611C4BC6274158407C5681ABA9F17CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft Manifest number: 0554 Signing time: Mon 02 Mar 2026 00:51:55 +0000 Manifest this update: Mon 02 Mar 2026 00:46:55 +0000 Manifest next update: Thu 05 Mar 2026 08:33:55 +0000 Files and hashes: 1: 3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa (hash: iKqR4sdrDvQYzAbaXB9On/A/Jy5fdaFvtV4f3tabdnk=) 2: 8CFA88063D5C0A51C1D737A5170338865A245358.crl (hash: l9XZ+PhmZiW1GVXVpWKymc3F9oX5sEih/8YqsEXpTpA=) 3: 3130332e3132362e3230302e302f32332d3233203d3e20313338313133.roa (hash: OX5qJy0ELn8OIpv9cwcHP0OwwrzKVk8H6b2UKzBtyEg=) 4: 3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa (hash: x7tsLph+/FB0QeKJjGm8RZPvo26S0bN0rsI7VAab3d8=) 5: 323430343a313034303a3a2f33322d3332203d3e20313338313133.roa (hash: IwOy6L011wgRp4Z43jUYFVOd/TCfuz6IilpFz+BTytc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:86:60:92:f6:11:c4:bc:62:74:15:84:07:c5:68:1a:ba:9f:17:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358 Validity Not Before: Mar 2 00:46:55 2026 GMT Not After : Mar 5 08:33:55 2026 GMT Subject: CN=A6084B8592D8B8C1F27B78D145E9B7E694FA130C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:aa:75:73:98:16:bb:75:5a:e0:01:d1:ee: 5c:a9:ae:a9:96:1f:d6:5d:cb:bb:27:a0:b5:fe:69: fc:2d:af:92:48:24:35:95:f3:4c:31:37:07:fd:95: 08:bd:5a:56:99:4a:51:87:21:15:16:47:7a:d0:0c: 2c:ee:d4:41:4c:ef:65:80:9a:85:8d:99:b7:66:81: 3f:30:cc:b9:2f:92:59:50:ae:e0:bd:14:dd:18:6c: c4:df:16:97:87:35:98:2a:67:c2:a5:a4:5c:4e:bd: a3:02:89:5a:d9:39:19:ae:cc:df:02:94:0c:93:1c: bd:f7:8f:52:db:ac:e0:a5:9c:cb:bd:d1:a2:82:f0: ab:38:22:1b:ab:d2:7e:dc:be:36:e8:88:49:d0:a2: 02:fd:5e:88:b1:95:ce:77:cf:0b:d4:97:e0:79:12: 43:4f:f4:5a:05:f5:f1:c4:b9:ab:88:94:4c:d6:64: 99:de:74:ce:70:ab:d1:fe:4f:c5:a0:3c:52:21:a6: 42:d7:f5:0e:22:68:39:c9:ea:c1:6b:1b:ad:90:40: 74:20:36:f4:b8:50:f5:3e:74:83:98:70:3a:d8:c8: 50:ad:6f:89:38:85:c7:08:53:fa:96:89:42:93:5c: 73:37:32:a3:6c:59:05:30:8a:d1:dd:9a:df:31:b2: f4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:08:4B:85:92:D8:B8:C1:F2:7B:78:D1:45:E9:B7:E6:94:FA:13:0C X509v3 Authority Key Identifier: keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:53:63:f6:ad:af:51:e9:b8:98:39:50:37:f0:81:4a:ec:65: da:4e:5f:0a:a6:81:9c:2f:2a:1a:c4:b8:6a:ac:22:85:bd:ce: 4c:99:56:25:d1:c6:2f:e8:e4:0c:9c:1b:76:a8:6d:b0:90:31: 5d:42:8e:fe:f6:0e:db:d4:14:b6:59:b0:6f:fb:c6:99:b3:d2: aa:98:77:cc:57:9d:af:a1:07:73:8f:bd:7e:f8:41:52:5d:ca: 2a:62:b6:82:71:aa:4c:e9:9e:50:f4:bd:aa:09:00:ff:2f:c7: 73:b6:31:91:8c:e7:1f:ff:06:d9:76:66:61:83:7f:82:27:ad: ed:66:95:52:12:21:2b:d6:42:8b:f9:58:d8:44:df:a7:de:40: 73:4b:63:6c:57:3a:cc:24:2c:3b:2e:ac:ce:3e:ec:76:6d:88: 2f:28:dc:eb:d5:93:6d:12:0f:70:62:73:51:59:af:b1:2e:97: 69:9d:f6:89:0a:27:3a:01:3b:15:54:13:27:3d:82:79:2b:3f: 31:e8:ae:d1:4d:74:de:06:a7:82:88:09:aa:08:a4:8e:1b:52: 58:be:21:19:b7:c4:68:2f:d5:2f:75:16:09:03:81:6e:f7:2e: 00:bc:61:e7:35:b7:6b:c4:39:cf:9c:2c:1d:45:65:a5:ce:d2: 95:43:a2:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU4ZgkvYRxLxidBWEB8VoGrqfF88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1 QTI0NTM1ODAeFw0yNjAzMDIwMDQ2NTVaFw0yNjAzMDUwODMzNTVaMDMxMTAvBgNV BAMTKEE2MDg0Qjg1OTJEOEI4QzFGMjdCNzhEMTQ1RTlCN0U2OTRGQTEzMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9pKp1c5gWu3Va4AHR7lyprqmW H9Zdy7snoLX+afwtr5JIJDWV80wxNwf9lQi9WlaZSlGHIRUWR3rQDCzu1EFM72WA moWNmbdmgT8wzLkvkllQruC9FN0YbMTfFpeHNZgqZ8KlpFxOvaMCiVrZORmuzN8C lAyTHL33j1LbrOClnMu90aKC8Ks4Ihur0n7cvjboiEnQogL9Xoixlc53zwvUl+B5 EkNP9FoF9fHEuauIlEzWZJnedM5wq9H+T8WgPFIhpkLX9Q4iaDnJ6sFrG62QQHQg NvS4UPU+dIOYcDrYyFCtb4k4hccIU/qWiUKTXHM3MqNsWQUwitHdmt8xsvSRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpghLhZLYuMHye3jRRem35pT6EwwwHwYDVR0j BBgwFoAUjPqIBj1cClHB1zelFwM4hlokU1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTJlNWI2OS1hZGJkLTRlMmQtODQ3ZC0zNzQ4MTU1ODFkODYvMC84Q0ZBODgwNjNE NUMwQTUxQzFENzM3QTUxNzAzMzg4NjVBMjQ1MzU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1QTI0 NTM1OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGEyZTViNjktYWRiZC00ZTJkLTg0 N2QtMzc0ODE1NTgxZDg2LzAvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4 ODY1QTI0NTM1OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKNTY/atr1HpuJg5UDfwgUrsZdpOXwqmgZwv KhrEuGqsIoW9zkyZViXRxi/o5AycG3aobbCQMV1Cjv72DtvUFLZZsG/7xpmz0qqY d8xXna+hB3OPvX74QVJdyipitoJxqkzpnlD0vaoJAP8vx3O2MZGM5x//Btl2ZmGD f4Inre1mlVISISvWQov5WNhE36feQHNLY2xXOswkLDsurM4+7HZtiC8o3OvVk20S D3Bic1FZr7Eul2md9okKJzoBOxVUEyc9gnkrPzHortFNdN4Gp4KICaoIpI4bUli+ IRm3xGgv1S91FgkDgW73LgC8Yec1t2vEOc+cLB1FZaXO0pVDoos= -----END CERTIFICATE-----Generated at Mon Mar 2 22:19:18 2026 by rpki-client