$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: QmGwC7qIEHGeJEduUG0+yYeiMdWhJJ96TOMydMfjbIQ= Subject key identifier: D8:C8:32:10:32:C1:C0:FA:62:EF:38:C9:C8:B2:8E:56:B1:05:AC:27 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 333F491EF3906A67BDB7FD4EE6D1F0C9D0C4625C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0558 Signing time: Sun 01 Mar 2026 22:00:45 +0000 Manifest this update: Sun 01 Mar 2026 21:55:45 +0000 Manifest next update: Thu 05 Mar 2026 04:12:45 +0000 Files and hashes: 1: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 2: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 3: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 4: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 5: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 6: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 7: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 8: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 9: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 10: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: Of7eq+JkrT7HxTqsxGicCQu4vm2Z5FTS7w1zdEU/qzc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3f:49:1e:f3:90:6a:67:bd:b7:fd:4e:e6:d1:f0:c9:d0:c4:62:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Mar 1 21:55:45 2026 GMT Not After : Mar 5 04:12:45 2026 GMT Subject: CN=D8C8321032C1C0FA62EF38C9C8B28E56B105AC27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:63:54:22:40:59:bc:4b:79:4e:c9:b4:ae: 8d:55:4c:68:31:37:10:8d:c0:b4:45:3f:bc:87:61: 0f:18:ef:f5:1b:de:af:56:10:08:f0:ad:e4:7d:69: e1:5c:96:46:da:80:33:4c:7a:e3:b4:26:1f:ab:c9: 24:d0:23:ac:cb:f7:b3:d7:9d:66:cb:88:97:31:19: 20:be:06:70:80:43:8b:fe:63:88:c4:81:da:86:ba: 8a:61:a8:bc:ae:0b:1e:4c:9b:90:4e:91:51:c9:a7: 5a:64:76:53:32:21:f1:76:30:6f:77:aa:c7:05:38: d8:c6:29:29:77:6a:78:ee:98:eb:0f:c0:dc:01:ea: 9c:3c:0f:a0:d9:3c:04:37:2d:2a:6a:2b:5c:00:e6: ca:8d:05:5c:26:82:df:51:8a:8f:0d:52:8f:18:cf: ce:07:13:9b:dc:aa:e3:30:b0:fa:d0:df:3c:a8:ef: b1:7c:02:82:69:90:45:53:86:8b:cd:b9:66:58:7c: 3a:f5:25:26:50:fa:82:bd:e1:cc:83:45:24:73:ef: 47:d7:43:29:b4:bf:18:a2:5e:0b:33:bf:5a:f9:ef: d9:f1:61:d1:f1:c1:b2:70:39:4c:e8:ae:36:d6:cb: e3:f6:fc:f9:e3:48:46:83:a6:cd:33:93:a1:bc:6b: 03:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C8:32:10:32:C1:C0:FA:62:EF:38:C9:C8:B2:8E:56:B1:05:AC:27 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:08:30:74:06:9b:51:98:fb:4b:01:8f:dc:31:89:bd:d0:a7: 98:d1:b4:c9:21:7b:5f:97:11:a4:fd:91:f9:c9:c1:3e:78:08: 41:94:c3:13:4a:9e:d5:b8:00:2b:64:fa:f5:98:a2:30:68:d8: dd:28:36:01:87:7c:2f:9d:01:6e:1f:04:f3:3b:55:4e:da:fc: 5a:26:20:89:82:9c:15:9e:4e:4e:0f:fe:75:0d:63:e6:57:9c: ae:ea:96:65:4b:02:1a:8a:83:c5:71:a8:0d:ea:c8:a0:47:39: 72:c4:93:f5:90:b4:85:bc:c9:8d:23:0a:2e:71:2e:26:35:cf: bc:44:15:61:8e:cd:3f:cc:1b:97:b5:d3:52:17:61:f8:d5:42: 00:32:12:ac:05:ef:e7:99:58:dc:a1:c9:c6:c7:53:f6:80:95: 8a:a3:a1:15:5f:77:0a:d1:3f:ff:6f:d6:0c:81:a8:cf:57:b7: 8b:68:60:65:4e:63:af:6f:58:db:f2:d5:47:5f:9e:d8:af:29: 26:c0:a4:fb:ef:c7:86:d2:90:0e:cd:e4:e5:14:36:a1:f1:e8: 3e:cf:85:24:78:52:0a:7b:3b:06:a3:d9:f5:2c:7d:6b:d3:42: 1a:c4:1c:53:7d:ee:f8:03:5c:3d:c6:51:da:b8:77:8b:bc:9a: a1:12:a4:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMz9JHvOQame9t/1O5tHwydDEYlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNjAzMDEyMTU1NDVaFw0yNjAzMDUwNDEyNDVaMDMxMTAvBgNV BAMTKEQ4QzgzMjEwMzJDMUMwRkE2MkVGMzhDOUM4QjI4RTU2QjEwNUFDMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErWNUIkBZvEt5Tsm0ro1VTGgx NxCNwLRFP7yHYQ8Y7/Ub3q9WEAjwreR9aeFclkbagDNMeuO0Jh+rySTQI6zL97PX nWbLiJcxGSC+BnCAQ4v+Y4jEgdqGuophqLyuCx5Mm5BOkVHJp1pkdlMyIfF2MG93 qscFONjGKSl3anjumOsPwNwB6pw8D6DZPAQ3LSpqK1wA5sqNBVwmgt9Rio8NUo8Y z84HE5vcquMwsPrQ3zyo77F8AoJpkEVThovNuWZYfDr1JSZQ+oK94cyDRSRz70fX Qym0vxiiXgszv1r579nxYdHxwbJwOUzorjbWy+P2/PnjSEaDps0zk6G8awONAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2MgyEDLBwPpi7zjJyLKOVrEFrCcwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJUIMHQGm1GY+0sBj9wxib3Qp5jRtMkhe1+X EaT9kfnJwT54CEGUwxNKntW4ACtk+vWYojBo2N0oNgGHfC+dAW4fBPM7VU7a/Fom IImCnBWeTk4P/nUNY+ZXnK7qlmVLAhqKg8VxqA3qyKBHOXLEk/WQtIW8yY0jCi5x LiY1z7xEFWGOzT/MG5e101IXYfjVQgAyEqwF7+eZWNyhycbHU/aAlYqjoRVfdwrR P/9v1gyBqM9Xt4toYGVOY69vWNvy1UdfntivKSbApPvvx4bSkA7N5OUUNqHx6D7P hSR4Ugp7Owaj2fUsfWvTQhrEHFN97vgDXD3GUdq4d4u8mqESpCE= -----END CERTIFICATE-----Generated at Mon Mar 2 04:40:38 2026 by rpki-client