$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: 4D2SG1lfg/K7t/FIvFMHTMI2hJ4TZZt0WaOoHuJIutY= Subject key identifier: BF:E8:FA:27:73:C7:26:4B:49:EB:A8:F0:CF:B4:42:44:8D:3E:E3:E8 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 474F133BAAC7C6509060335236853C8163F062A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: 0102 Signing time: Sat 28 Feb 2026 13:12:19 +0000 Manifest this update: Sat 28 Feb 2026 13:07:19 +0000 Manifest next update: Tue 03 Mar 2026 21:29:19 +0000 Files and hashes: 1: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 2: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 3: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 4: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 5: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: 476j/QKUnCdAHZyjA1/Y8GcbBkPRsfpDwzdOHo3BWwA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 21:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:4f:13:3b:aa:c7:c6:50:90:60:33:52:36:85:3c:81:63:f0:62:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Feb 28 13:07:19 2026 GMT Not After : Mar 3 21:29:19 2026 GMT Subject: CN=BFE8FA2773C7264B49EBA8F0CFB442448D3EE3E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:19:19:80:56:de:5e:b4:90:91:d7:cb:dd: c6:35:dd:ba:f7:80:48:ec:51:dc:90:e2:dc:3a:07: d4:6d:45:31:51:3b:ad:ce:ab:ba:a7:4c:d5:e4:3c: 78:61:18:cc:4e:2b:95:f2:71:57:51:98:cf:ab:06: 9f:54:8e:0d:1a:44:e7:7e:65:a2:8f:0c:f7:9b:31: 8d:6a:24:c9:cd:3e:64:03:c4:41:3c:84:19:08:b5: 19:8a:73:0d:46:52:3e:c7:bc:69:22:f6:b2:98:22: 67:bf:05:40:0c:0e:1a:4e:c5:23:5b:05:63:df:2b: 9b:0f:6d:8b:10:56:4f:03:e9:3f:39:f6:1a:a7:13: ac:86:90:69:b9:d2:85:b3:6b:df:dc:88:22:17:3c: 24:ae:fe:3c:78:fa:47:a0:13:42:d4:b7:a3:9e:f4: 53:ea:50:1c:32:61:97:c6:24:09:96:b6:34:a4:44: 77:ee:ac:88:2b:ee:14:f8:7b:64:3a:2a:ab:a2:b2: b5:39:f9:80:74:11:2f:de:0d:16:a7:b2:c3:ff:cb: 81:0d:6a:86:c8:00:8a:69:8d:45:f9:74:6b:3f:e9: 15:35:70:d2:28:a9:de:dc:87:58:c8:c6:5c:64:9e: f1:66:f6:86:67:17:ab:ba:96:97:d6:e4:e5:3d:b7: f1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E8:FA:27:73:C7:26:4B:49:EB:A8:F0:CF:B4:42:44:8D:3E:E3:E8 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:e8:c3:e0:9e:6c:7d:70:c2:b5:9c:70:28:3d:1f:80:ba:32: 6e:35:4f:3c:c8:cb:a8:6d:86:2a:9a:c9:b0:92:8d:36:31:7d: f2:58:ef:6c:56:6b:77:59:ee:40:0b:34:6a:89:8b:72:e5:32: 89:b5:af:a4:4c:65:09:e8:ec:69:4b:7f:93:62:5e:86:da:9c: 59:5a:d8:f7:57:e0:8e:05:71:64:0d:72:f4:d7:07:c8:38:52: 49:88:09:d8:7d:4a:ee:87:d8:9f:ff:ec:99:a6:a8:cf:2f:b7: 5b:67:a6:9d:a8:61:d3:00:08:21:01:8c:50:89:7d:cc:8d:c6: 78:0f:a7:96:f8:31:e5:0a:63:49:75:c1:80:57:9c:d1:dc:80: 22:33:cc:b9:28:be:4f:3f:dc:57:93:5b:72:18:14:c2:41:30: 46:76:b7:0a:31:ae:48:13:a6:95:41:eb:dd:fb:ae:8a:fa:b6: 76:83:5e:b0:aa:23:57:d8:b4:fb:25:f7:6b:ec:b8:74:3e:06: 35:53:c5:03:34:a7:2a:bb:c3:d6:79:8c:e7:8f:15:eb:5c:60: 08:33:7e:c7:f2:fe:f5:66:76:b8:ee:8a:9a:0c:78:7a:e9:87: 1e:4b:ed:2b:6a:1e:9d:f0:40:65:95:a5:91:bf:4f:d2:f5:15: 07:28:d8:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR08TO6rHxlCQYDNSNoU8gWPwYqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNjAyMjgxMzA3MTlaFw0yNjAzMDMyMTI5MTlaMDMxMTAvBgNV BAMTKEJGRThGQTI3NzNDNzI2NEI0OUVCQThGMENGQjQ0MjQ0OEQzRUUzRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4QxkZgFbeXrSQkdfL3cY13br3 gEjsUdyQ4tw6B9RtRTFRO63Oq7qnTNXkPHhhGMxOK5XycVdRmM+rBp9Ujg0aROd+ ZaKPDPebMY1qJMnNPmQDxEE8hBkItRmKcw1GUj7HvGki9rKYIme/BUAMDhpOxSNb BWPfK5sPbYsQVk8D6T859hqnE6yGkGm50oWza9/ciCIXPCSu/jx4+kegE0LUt6Oe 9FPqUBwyYZfGJAmWtjSkRHfurIgr7hT4e2Q6KquisrU5+YB0ES/eDRanssP/y4EN aobIAIppjUX5dGs/6RU1cNIoqd7ch1jIxlxknvFm9oZnF6u6lpfW5OU9t/GXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUv+j6J3PHJktJ66jwz7RCRI0+4+gwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKvow+CebH1wwrWccCg9H4C6Mm41TzzIy6ht hiqaybCSjTYxffJY72xWa3dZ7kALNGqJi3LlMom1r6RMZQno7GlLf5NiXobanFla 2PdX4I4FcWQNcvTXB8g4UkmICdh9Su6H2J//7JmmqM8vt1tnpp2oYdMACCEBjFCJ fcyNxngPp5b4MeUKY0l1wYBXnNHcgCIzzLkovk8/3FeTW3IYFMJBMEZ2twoxrkgT ppVB6937ror6tnaDXrCqI1fYtPsl92vsuHQ+BjVTxQM0pyq7w9Z5jOePFetcYAgz fsfy/vVmdrjuipoMeHrphx5L7StqHp3wQGWVpZG/T9L1FQco2Oo= -----END CERTIFICATE-----Generated at Mon Mar 2 02:54:53 2026 by rpki-client