$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft File: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft (raw, json) Hash identifier: eod6BFfcchjrzLp2pK6i430AQBluf1OMnHDM3R4MvoE= Subject key identifier: 18:5D:AA:73:B7:14:77:31:22:F3:9F:48:EF:7F:F2:DE:0A:AA:42:DE Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 4A54F9F460E205813E3E86A26874577000FA3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft Manifest number: 0253 Signing time: Sun 01 Mar 2026 23:22:07 +0000 Manifest this update: Sun 01 Mar 2026 23:17:07 +0000 Manifest next update: Thu 05 Mar 2026 03:00:07 +0000 Files and hashes: 1: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (hash: q3nnfuFQ9fllwu5vaDMWKT58tFIU7r2iWutM+FFs7uM=) 2: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (hash: VaGZ2rtQiVhlvvEqhey8VuIsjUW/H1CymqkYlv2nCyM=) 3: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (hash: D6ZQ1Nszopc+tjvvlk9LxeInARJoQa1nF2ZqxR2uBQM=) 4: 3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa (hash: u/HGXTKlzUVzN3BHvIbNac6O5D491LLOLOhh0HKRChM=) 5: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl (hash: ag+Yc2mI65xj085iy+PCF1y7LUE6VRZnXDEvmv6Svoo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 03:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:54:f9:f4:60:e2:05:81:3e:3e:86:a2:68:74:57:70:00:fa:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Mar 1 23:17:07 2026 GMT Not After : Mar 5 03:00:07 2026 GMT Subject: CN=185DAA73B714773122F39F48EF7FF2DE0AAA42DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:8c:98:fb:3e:64:a1:37:39:a0:87:6c:e1: c8:9b:50:21:76:e0:9a:c2:9c:1a:ae:3e:1a:c6:ab: cb:a9:a9:07:fa:19:34:5e:1b:35:71:6c:22:d6:d8: 7f:cf:72:c7:14:24:28:a3:3b:a8:f3:52:3e:7e:11: 3c:21:cb:4a:eb:3d:3a:30:8a:1e:6d:3e:2f:52:de: 1c:29:4e:84:05:e2:fd:d0:b5:09:7e:19:61:58:f9: 1a:77:13:d0:c6:ad:69:be:7b:d7:2f:67:8b:55:ae: 57:4a:49:29:96:11:13:3c:17:28:a4:79:b6:06:41: 90:7c:3d:32:5e:bb:69:76:42:23:e3:bc:bf:01:77: 50:b8:ba:1d:48:42:4f:25:a9:6b:41:4a:87:ae:df: 41:30:6f:1d:4c:08:41:f0:38:52:2c:82:ec:73:16: ce:01:f9:d8:66:c6:ae:8e:c2:e4:a0:3a:7e:bc:4b: f7:24:d3:1e:bc:58:25:79:ba:69:0e:74:c2:b9:89: 60:17:dd:0a:9b:c7:de:30:c0:db:55:66:c0:1c:07: d9:35:57:b4:f5:dd:2b:a0:d0:c4:36:5f:b0:36:8f: 69:7e:40:23:e4:e9:1e:6c:a0:f9:65:0a:fa:4c:90: d2:e8:d5:85:9f:d4:4a:7c:5d:ce:bd:50:33:bb:6a: 09:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5D:AA:73:B7:14:77:31:22:F3:9F:48:EF:7F:F2:DE:0A:AA:42:DE X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:aa:bb:d0:80:56:c9:b8:73:66:bb:cc:65:6c:a5:09:3f:f3: 25:10:e0:9a:41:c0:89:b1:e0:33:b0:32:a6:65:3b:28:dd:39: 3c:82:96:2b:6c:9a:07:61:1f:76:55:b1:a8:9d:9a:9c:d3:f6: 54:52:87:2a:f3:6d:41:f7:94:d1:ea:53:71:1d:1e:46:80:ae: 16:57:87:1c:cf:fa:ea:de:59:d1:f0:24:14:e5:e1:71:55:cc: 0e:52:20:d2:de:1b:c3:96:f9:87:71:1d:76:3f:eb:76:47:8e: 21:13:68:b3:87:d3:4a:f4:81:93:53:13:2e:8b:54:59:b0:ce: ec:73:cd:ef:c2:9f:f8:52:42:2e:ff:84:77:11:80:29:3d:65: c2:63:0e:f6:71:7b:09:78:97:00:41:0d:07:18:21:92:6d:dd: b9:1e:71:d3:be:4f:d9:f1:c1:d4:6d:d0:c8:80:44:77:88:d4: 46:be:12:1d:1a:c6:25:ce:64:1a:63:5f:44:ec:d0:98:d9:22: 9d:ce:7c:04:09:69:9c:6a:b1:7a:2a:c9:05:30:be:47:91:98: 12:be:67:72:50:58:95:51:43:94:d2:79:38:88:6b:25:d3:b6: c1:78:38:10:42:50:17:8d:b3:e1:cd:2e:d3:2e:98:11:be:0d: 10:61:da:a0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITSlT59GDiBYE+PoaiaHRXcAD6PTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg3NDlFOEY2QzVGMjJEMThBNzBCNjgyRjg2QzY1RUNEM0VB Mjc2MzVDMB4XDTI2MDMwMTIzMTcwN1oXDTI2MDMwNTAzMDAwN1owMzExMC8GA1UE AxMoMTg1REFBNzNCNzE0NzczMTIyRjM5RjQ4RUY3RkYyREUwQUFBNDJERTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALKyjJj7PmShNzmgh2zhyJtQIXbg msKcGq4+Gsary6mpB/oZNF4bNXFsItbYf89yxxQkKKM7qPNSPn4RPCHLSus9OjCK Hm0+L1LeHClOhAXi/dC1CX4ZYVj5GncT0Matab571y9ni1WuV0pJKZYREzwXKKR5 tgZBkHw9Ml67aXZCI+O8vwF3ULi6HUhCTyWpa0FKh67fQTBvHUwIQfA4UiyC7HMW zgH52GbGro7C5KA6frxL9yTTHrxYJXm6aQ50wrmJYBfdCpvH3jDA21VmwBwH2TVX tPXdK6DQxDZfsDaPaX5AI+TpHmyg+WUK+kyQ0ujVhZ/USnxdzr1QM7tqCfUCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBQYXapztxR3MSLzn0jvf/LeCqpC3jAfBgNVHSME GDAWgBR0no9sXyLRinC2gvhsZezT6idjXDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhh ZThkYjM4LTYzYTgtNDEzYy1hOWY2LWNjMjIzYWZhNGE3NS8wLzc0OUU4RjZDNUYy MkQxOEE3MEI2ODJGODZDNjVFQ0QzRUEyNzYzNUMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi83NDlFOEY2QzVGMjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2 MzVDLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84YWU4ZGIzOC02M2E4LTQxM2MtYTlm Ni1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVGMjJEMThBNzBCNjgyRjg2QzY1RUNE M0VBMjc2MzVDLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAtKq70IBWybhzZrvMZWylCT/zJRDgmkHAibHg M7AypmU7KN05PIKWK2yaB2EfdlWxqJ2anNP2VFKHKvNtQfeU0epTcR0eRoCuFleH HM/66t5Z0fAkFOXhcVXMDlIg0t4bw5b5h3Eddj/rdkeOIRNos4fTSvSBk1MTLotU WbDO7HPN78Kf+FJCLv+EdxGAKT1lwmMO9nF7CXiXAEENBxghkm3duR5x075P2fHB 1G3QyIBEd4jURr4SHRrGJc5kGmNfROzQmNkinc58BAlpnGqxeirJBTC+R5GYEr5n clBYlVFDlNJ5OIhrJdO2wXg4EEJQF42z4c0u0y6YEb4NEGHaoA== -----END CERTIFICATE-----Generated at Mon Mar 2 06:05:40 2026 by rpki-client