$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft File: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft (raw, json) Hash identifier: HNMibwRIYkAmQRXU9U4m0Ui3UFZlLT9HcNdZvqKHHZo= Subject key identifier: 3A:00:9B:26:F2:D4:82:D5:71:BB:AA:CC:DF:CC:D0:26:4F:DC:EF:FB Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 405874B4E29F43A43EA358EA34E530DEF62BEDE4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft Manifest number: 055F Signing time: Sun 01 Mar 2026 21:40:02 +0000 Manifest this update: Sun 01 Mar 2026 21:35:02 +0000 Manifest next update: Thu 05 Mar 2026 09:04:02 +0000 Files and hashes: 1: 3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa (hash: Rijq6K1g57KijomhL6W8vMskGlfJbmrteuOacH80VQM=) 2: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (hash: ap/TAn2i+zkksu9/CGCNCkYifXPZgmxnJOJkOH4ZWr8=) 3: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (hash: DvXqXB3KDxEUrIvLC7HCxRYW39FKt6kOul7sjWDdzKs=) 4: 3130332e3132352e3131382e302f32342d3234203d3e20313338313032.roa (hash: hxX9wVbrBCOouQsOFqq88JkVfKelw0pXrTTftPM/8Pg=) 5: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl (hash: NU4wSWajvX7Hs6PFpdkfEP0kPIs35PWRUyRVIiSWZFY=) 6: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (hash: yF5QYDSmZl11Br5OhVCNQy6ELbgnz0I3Y8PMUZejcuI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:58:74:b4:e2:9f:43:a4:3e:a3:58:ea:34:e5:30:de:f6:2b:ed:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Mar 1 21:35:02 2026 GMT Not After : Mar 5 09:04:02 2026 GMT Subject: CN=3A009B26F2D482D571BBAACCDFCCD0264FDCEFFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b8:59:5b:b4:72:f6:51:51:b1:39:bb:83:99: 58:9e:b7:d9:9f:7e:25:cc:0f:96:59:1c:d0:00:30: 02:29:34:01:b5:da:32:16:c5:bb:62:89:8b:b2:c2: fe:b6:dd:ab:62:4a:fa:4a:9f:9b:76:a9:3a:87:5e: 9b:50:8a:d7:35:b2:60:5b:2a:11:2b:01:3b:d5:fd: 19:62:94:63:e0:2b:e8:50:e4:54:c3:78:66:db:8b: 90:1f:15:f8:37:f9:a2:f7:3f:89:d1:84:37:24:52: 5a:d7:7b:80:22:5b:80:09:24:7a:8b:34:9e:2e:50: 7c:52:84:f4:ce:41:8f:c1:ea:34:41:85:d9:7e:77: 96:02:fc:25:ef:dd:bd:35:0d:b9:82:df:a6:f4:4a: c0:b0:b1:41:64:0c:c8:e5:a2:39:01:4b:e4:b2:2b: 16:93:96:8f:eb:9a:ed:82:2b:84:20:38:ea:ff:f6: 00:4e:e1:4f:df:c6:30:9e:d6:ee:b2:bf:88:98:60: 1a:e3:3a:cb:e5:ac:80:bf:93:d7:52:4c:17:e1:5b: be:a2:39:38:8c:fc:30:2d:11:ec:eb:5e:10:f3:69: 40:e1:8f:f0:31:3a:97:87:b1:6e:f1:42:bc:b1:97: 31:e4:ba:1d:2a:23:38:1d:0d:be:9e:e9:87:d3:47: c3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:00:9B:26:F2:D4:82:D5:71:BB:AA:CC:DF:CC:D0:26:4F:DC:EF:FB X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c9:2e:21:e2:98:5f:06:79:5a:35:08:bb:15:99:9b:f8:bf: a5:49:f0:78:55:53:ad:f8:ee:a4:86:d9:d2:13:a4:35:70:5d: fb:8a:56:d3:28:dd:96:74:65:89:c5:91:7b:54:b7:0f:3b:1a: f0:3e:61:55:d4:e4:81:80:9b:54:dc:c3:b7:2b:8a:e9:f6:7f: 14:32:78:bd:1c:26:b3:f6:76:9e:7d:85:fd:24:9c:a9:98:37: 21:3a:0c:9e:93:cb:6f:b3:20:e1:76:ea:98:21:a1:28:6e:3d: e9:0c:2a:bb:56:de:ab:08:76:31:10:e9:48:2d:2d:69:b7:78: d0:e9:ad:ef:03:d9:15:ab:e9:90:bb:55:a8:47:22:7a:aa:ff: f1:cd:d1:c0:f4:25:c5:4b:44:c1:66:e9:8d:4a:ea:b4:6e:67: b1:00:e7:3c:49:e2:47:e9:c6:d6:7e:4d:1f:0f:a6:fc:0c:9a: ef:7b:73:51:a8:4e:5c:ec:91:83:82:02:28:b4:51:8b:54:1a: cc:04:a1:73:bf:d9:d6:30:59:66:c9:c9:32:72:95:1b:cd:00: 14:ea:97:b3:94:b8:08:0f:59:37:01:9a:b8:f8:50:c0:1c:3b: 30:43:c5:9a:3a:48:fe:16:de:c5:eb:03:b0:1e:2d:76:3b:dc: 83:94:32:ae -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQFh0tOKfQ6Q+o1jqNOUw3vYr7eQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNjAzMDEyMTM1MDJaFw0yNjAzMDUwOTA0MDJaMDMxMTAvBgNV BAMTKDNBMDA5QjI2RjJENDgyRDU3MUJCQUFDQ0RGQ0NEMDI2NEZEQ0VGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiuFlbtHL2UVGxObuDmViet9mf fiXMD5ZZHNAAMAIpNAG12jIWxbtiiYuywv623atiSvpKn5t2qTqHXptQitc1smBb KhErATvV/RlilGPgK+hQ5FTDeGbbi5AfFfg3+aL3P4nRhDckUlrXe4AiW4AJJHqL NJ4uUHxShPTOQY/B6jRBhdl+d5YC/CXv3b01DbmC36b0SsCwsUFkDMjlojkBS+Sy KxaTlo/rmu2CK4QgOOr/9gBO4U/fxjCe1u6yv4iYYBrjOsvlrIC/k9dSTBfhW76i OTiM/DAtEezrXhDzaUDhj/AxOpeHsW7xQryxlzHkuh0qIzgdDb6e6YfTR8NtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOgCbJvLUgtVxu6rM38zQJk/c7/swHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTBkZTIzMWYtZmI4YS00MjdhLWFh MzYtMGEzZmM5NzIzMjhkLzAvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAy QzNFRTZBRDFGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACrJLiHimF8GeVo1CLsVmZv4v6VJ8HhVU634 7qSG2dITpDVwXfuKVtMo3ZZ0ZYnFkXtUtw87GvA+YVXU5IGAm1Tcw7criun2fxQy eL0cJrP2dp59hf0knKmYNyE6DJ6Ty2+zIOF26pghoShuPekMKrtW3qsIdjEQ6Ugt LWm3eNDpre8D2RWr6ZC7VahHInqq//HN0cD0JcVLRMFm6Y1K6rRuZ7EA5zxJ4kfp xtZ+TR8PpvwMmu97c1GoTlzskYOCAii0UYtUGswEoXO/2dYwWWbJyTJylRvNABTq l7OUuAgPWTcBmrj4UMAcOzBDxZo6SP4W3sXrA7AeLXY73IOUMq4= -----END CERTIFICATE-----Generated at Mon Mar 2 14:26:09 2026 by rpki-client