$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: 3GHIughd4Mwbyg+Rqi40CEn9t6Z62v2pPSZEZHeFnkI= Subject key identifier: 5B:20:2F:5B:8A:05:D1:FA:5B:60:9F:32:74:56:FC:C0:28:1D:B9:51 Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 42C0B1CC73C1E7DD6DE76DB1C60FA88168EE2FD4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: FD Signing time: Sat 28 Feb 2026 03:21:50 +0000 Manifest this update: Sat 28 Feb 2026 03:16:50 +0000 Manifest next update: Tue 03 Mar 2026 12:52:50 +0000 Files and hashes: 1: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: ZdmnQgalFjI0Akr0VSAVm8ZDHhIMBy50EwOuzsK3E2Q=) 2: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: okMulqCwmQrHdU+kO0nYzAvF/vvi8wTCEKi+VdDT9lQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 12:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c0:b1:cc:73:c1:e7:dd:6d:e7:6d:b1:c6:0f:a8:81:68:ee:2f:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Feb 28 03:16:50 2026 GMT Not After : Mar 3 12:52:50 2026 GMT Subject: CN=5B202F5B8A05D1FA5B609F327456FCC0281DB951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4a:e6:45:dd:7c:0c:ba:1a:45:59:8e:9e:a4: 7c:2e:42:0f:b9:8c:21:15:db:47:50:04:95:29:a4: 64:ed:41:64:05:ed:8c:32:48:7b:d9:6b:80:de:4d: 44:b4:2a:6f:40:d5:27:1e:76:2f:97:96:1a:23:4b: 84:6d:fc:36:c9:b5:42:bd:fe:b8:ca:c9:17:15:35: df:18:86:e1:3c:39:e0:b8:c9:cf:58:e2:13:9b:60: ae:04:78:c8:7a:a0:02:16:c8:29:25:b7:e2:3c:e3: 9b:d6:99:d9:30:91:c1:7e:1d:de:46:8b:e3:83:f1: 78:14:e2:7e:ab:21:60:cc:6b:f3:34:ac:31:68:76: c3:ec:82:f5:83:23:28:f6:18:b6:11:43:6a:a4:0f: 98:28:f6:1a:51:d0:0c:63:61:ef:8a:95:d8:84:c4: 96:17:7f:ec:2d:57:fe:90:00:19:5c:90:c8:f7:29: e5:02:5a:95:5f:83:df:0c:7f:98:92:7d:bd:f7:7a: 32:64:a9:d1:52:02:24:61:20:4d:23:fd:78:1e:55: 49:b4:a3:9f:20:8c:9d:eb:6f:9e:a8:70:5a:1b:49: 83:5a:83:7d:6f:ad:46:16:09:b2:ec:33:66:4f:b4: ee:ef:94:cd:07:07:11:6b:c6:6e:48:90:76:ab:93: d0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:20:2F:5B:8A:05:D1:FA:5B:60:9F:32:74:56:FC:C0:28:1D:B9:51 X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:71:d5:47:a5:cb:48:b2:f3:a6:f8:e2:32:73:e5:e0:bb:46: a3:52:13:33:e6:1c:70:c3:a7:55:cc:fe:6b:39:2a:26:97:1e: 73:c0:5b:bf:82:e9:be:a9:c3:d3:75:ac:20:7d:d2:f2:46:1a: 0d:d2:37:e0:ad:07:3a:90:5f:75:2e:e4:69:43:8b:0d:a2:c8: d2:a0:48:b3:29:25:32:57:64:f6:e3:cf:a0:07:36:90:49:52: 2c:31:46:9c:1f:0f:92:41:26:f4:63:e9:2d:a5:a5:bf:86:04: 2c:5b:fb:97:6b:1d:9b:35:5c:1f:ae:ff:cf:58:f4:38:1e:b9: 84:a5:0c:52:25:f1:d3:e0:3a:2d:c9:29:f5:39:b5:de:83:6f: f0:88:36:55:ab:89:4f:f9:44:49:70:aa:7c:b8:c6:b9:c5:98: b0:fb:31:c7:e3:94:02:4f:6d:2c:a2:16:69:f6:20:e5:6a:18: 90:94:ed:74:94:87:68:1f:b7:d6:da:96:08:ba:2b:d9:04:c2: 2c:3e:70:82:0f:45:60:51:a2:45:fc:c0:52:2c:e2:fe:a2:c3: 73:be:a7:99:29:e4:42:f0:cc:9e:d7:59:6b:59:e2:c9:9c:1e: 95:b7:47:16:b8:0a:b2:48:0b:43:f2:cb:cb:18:8d:fc:0b:16: 5c:53:39:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQsCxzHPB591t522xxg+ogWjuL9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNjAyMjgwMzE2NTBaFw0yNjAzMDMxMjUyNTBaMDMxMTAvBgNV BAMTKDVCMjAyRjVCOEEwNUQxRkE1QjYwOUYzMjc0NTZGQ0MwMjgxREI5NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsSuZF3XwMuhpFWY6epHwuQg+5 jCEV20dQBJUppGTtQWQF7YwySHvZa4DeTUS0Km9A1Scedi+XlhojS4Rt/DbJtUK9 /rjKyRcVNd8YhuE8OeC4yc9Y4hObYK4EeMh6oAIWyCklt+I845vWmdkwkcF+Hd5G i+OD8XgU4n6rIWDMa/M0rDFodsPsgvWDIyj2GLYRQ2qkD5go9hpR0AxjYe+KldiE xJYXf+wtV/6QABlckMj3KeUCWpVfg98Mf5iSfb33ejJkqdFSAiRhIE0j/XgeVUm0 o58gjJ3rb56ocFobSYNag31vrUYWCbLsM2ZPtO7vlM0HBxFrxm5IkHark9AbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWyAvW4oF0fpbYJ8ydFb8wCgduVEwHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEhx1Uely0iy86b44jJz5eC7RqNSEzPmHHDD p1XM/ms5KiaXHnPAW7+C6b6pw9N1rCB90vJGGg3SN+CtBzqQX3Uu5GlDiw2iyNKg SLMpJTJXZPbjz6AHNpBJUiwxRpwfD5JBJvRj6S2lpb+GBCxb+5drHZs1XB+u/89Y 9DgeuYSlDFIl8dPgOi3JKfU5td6Db/CINlWriU/5RElwqny4xrnFmLD7McfjlAJP bSyiFmn2IOVqGJCU7XSUh2gft9balgi6K9kEwiw+cIIPRWBRokX8wFIs4v6iw3O+ p5kp5ELwzJ7XWWtZ4smcHpW3Rxa4CrJIC0Pyy8sYjfwLFlxTOZc= -----END CERTIFICATE-----Generated at Mon Mar 2 09:39:43 2026 by rpki-client