$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: 5PzIEbvg425YOjLqc/Cy1Ki8eg1DW1JTzTsHfrBsibw= Subject key identifier: 71:CD:1E:1D:D2:42:CE:45:88:BC:1F:0B:B2:B3:0F:7D:E2:7A:A6:B8 Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 289BFD1DA1A1BA7482958A1D51AE1E7EFF7D486C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 024D Signing time: Sat 28 Feb 2026 13:11:00 +0000 Manifest this update: Sat 28 Feb 2026 13:06:00 +0000 Manifest next update: Tue 03 Mar 2026 20:18:00 +0000 Files and hashes: 1: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: uOm9vJzspXuiiDBu7m+dLldgmyTbcnD/uL6V/NkL2u4=) 2: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: NcRBqt1Wn/tuGvM1xfS0JFewwd6sRo22gfKxjNahc88=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 20:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:9b:fd:1d:a1:a1:ba:74:82:95:8a:1d:51:ae:1e:7e:ff:7d:48:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Feb 28 13:06:00 2026 GMT Not After : Mar 3 20:18:00 2026 GMT Subject: CN=71CD1E1DD242CE4588BC1F0BB2B30F7DE27AA6B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c6:19:07:b6:7e:6e:2a:d0:76:26:22:f2:fd: fe:35:c9:b7:90:1e:c3:64:64:d4:cc:fe:04:f5:4d: a9:81:e7:60:c2:f7:44:f3:98:35:43:b2:73:53:c7: 53:81:70:5e:35:93:ef:54:05:5a:91:43:ce:f5:c2: 6c:80:5b:f1:81:4d:c2:04:0f:0f:88:7f:17:54:fc: 14:7b:81:fe:9d:46:df:88:82:8e:8c:f6:5f:75:d6: 53:5a:6d:90:c6:37:d9:4c:b4:c7:2b:3b:28:d3:38: f9:02:d8:67:ff:aa:05:68:97:df:27:b5:a5:2f:6c: b5:78:e9:30:5a:cc:ab:b9:1d:f4:07:2e:1e:8f:15: e6:20:70:c3:e7:a9:30:88:6a:df:4c:fd:2a:19:07: 19:60:08:11:76:31:9d:ed:4d:15:97:ab:67:de:4d: c5:69:10:ca:14:32:e0:e0:47:60:af:4a:fe:44:a7: 2c:3a:51:5d:f5:83:ee:55:35:b7:09:bd:e1:06:b8: 6c:a9:f0:fd:79:73:5c:59:f2:97:41:fe:76:64:d7: 84:77:fc:b8:f0:09:46:9d:b6:6c:83:72:87:84:dd: 0f:14:f7:c3:6d:d8:ab:20:72:d2:3f:1b:d2:e0:e2: 40:44:53:c7:d4:77:7d:ab:5c:98:e1:7a:c0:2e:45: ad:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:CD:1E:1D:D2:42:CE:45:88:BC:1F:0B:B2:B3:0F:7D:E2:7A:A6:B8 X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:a3:79:f1:7a:80:dd:98:cd:fe:2a:1b:be:fe:3f:20:40:e6: e7:15:3f:b5:8a:38:1f:73:47:6b:06:88:e3:e5:5d:81:f4:6b: f7:6a:38:4a:50:0e:18:19:24:27:39:3a:37:3f:14:1b:b2:ba: 55:6d:54:85:71:74:96:fc:1f:fc:fb:5d:02:39:a2:49:ac:3d: 6d:e4:37:80:0e:46:03:58:bc:ab:9f:c4:47:c0:86:df:79:a4: e7:35:49:7b:28:b7:08:49:fa:43:69:e8:8d:7b:cd:6f:84:63: 9a:66:f7:de:3d:70:6e:09:c2:ec:ad:70:cb:85:10:6c:47:26: b4:bb:0c:43:e6:bc:aa:97:4b:98:ab:a5:07:5c:87:d4:70:fe: a3:61:79:cd:53:a6:25:17:b4:d9:30:46:c3:b3:1c:73:98:bd: 2d:5c:ef:ea:99:51:3b:f7:85:19:18:4f:03:44:5d:2c:b9:37: 62:64:ff:c9:f8:96:bb:25:9d:10:85:39:e0:95:4a:80:02:40: be:1f:05:76:08:0c:1f:e1:8b:b6:22:b4:57:6d:ac:37:14:ea: b9:57:da:9e:ed:66:8d:ae:df:7f:a3:3b:0d:1b:7f:c8:de:6f: 98:27:f6:68:31:e5:10:a4:8a:2b:b7:b0:0f:95:3f:78:6d:bb: f2:1d:ef:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKJv9HaGhunSClYodUa4efv99SGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNjAyMjgxMzA2MDBaFw0yNjAzMDMyMDE4MDBaMDMxMTAvBgNV BAMTKDcxQ0QxRTFERDI0MkNFNDU4OEJDMUYwQkIyQjMwRjdERTI3QUE2QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xhkHtn5uKtB2JiLy/f41ybeQ HsNkZNTM/gT1TamB52DC90TzmDVDsnNTx1OBcF41k+9UBVqRQ871wmyAW/GBTcIE Dw+IfxdU/BR7gf6dRt+Igo6M9l911lNabZDGN9lMtMcrOyjTOPkC2Gf/qgVol98n taUvbLV46TBazKu5HfQHLh6PFeYgcMPnqTCIat9M/SoZBxlgCBF2MZ3tTRWXq2fe TcVpEMoUMuDgR2CvSv5Epyw6UV31g+5VNbcJveEGuGyp8P15c1xZ8pdB/nZk14R3 /LjwCUadtmyDcoeE3Q8U98Nt2KsgctI/G9Lg4kBEU8fUd32rXJjhesAuRa05AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcc0eHdJCzkWIvB8LsrMPfeJ6prgwHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEWjefF6gN2Yzf4qG77+PyBA5ucVP7WKOB9z R2sGiOPlXYH0a/dqOEpQDhgZJCc5Ojc/FBuyulVtVIVxdJb8H/z7XQI5okmsPW3k N4AORgNYvKufxEfAht95pOc1SXsotwhJ+kNp6I17zW+EY5pm9949cG4JwuytcMuF EGxHJrS7DEPmvKqXS5irpQdch9Rw/qNhec1TpiUXtNkwRsOzHHOYvS1c7+qZUTv3 hRkYTwNEXSy5N2Jk/8n4lrslnRCFOeCVSoACQL4fBXYIDB/hi7YitFdtrDcU6rlX 2p7tZo2u33+jOw0bf8jeb5gn9mgx5RCkiiu3sA+VP3htu/Id7wM= -----END CERTIFICATE-----Generated at Mon Mar 2 15:58:32 2026 by rpki-client