$ rpki-client -vvf repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft File: BA3C6E8206951343A970BD80B8DC3351252A9719.mft (raw, json) Hash identifier: v1veTFp4RHQ1j++2Tb3KbVAucR2+ZHJCOIwFubMw7XI= Subject key identifier: 00:32:DE:62:31:B8:8B:CB:60:76:97:DF:E3:AB:12:96:3A:56:9E:EC Authority key identifier: BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 Certificate issuer: /CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Certificate serial: 754316449B9FEBB918DC8FDBE8C0E086FE55DFFF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft Manifest number: EE Signing time: Sat 28 Feb 2026 01:41:29 +0000 Manifest this update: Sat 28 Feb 2026 01:36:29 +0000 Manifest next update: Tue 03 Mar 2026 09:08:29 +0000 Files and hashes: 1: 3136302e32352e3135362e302f32342d3234203d3e20313533303838.roa (hash: mhfAph5jHpIIQpADW/6z0VmmK6WaOWV9si8/hgfO+jQ=) 2: BA3C6E8206951343A970BD80B8DC3351252A9719.crl (hash: gRFm+XwmVVNkZhJtBKe/ALo8pAX76HvSa+Lni8iF1N4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 09:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:43:16:44:9b:9f:eb:b9:18:dc:8f:db:e8:c0:e0:86:fe:55:df:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Validity Not Before: Feb 28 01:36:29 2026 GMT Not After : Mar 3 09:08:29 2026 GMT Subject: CN=0032DE6231B88BCB607697DFE3AB12963A569EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:84:1f:42:dc:65:15:f8:ad:11:18:4f:d7: f6:07:81:d9:ea:c2:c0:cc:71:b1:43:f5:79:66:c0: c5:44:8f:e8:ed:da:f3:3e:42:92:c1:e7:1d:86:21: c0:2b:1e:2d:6f:93:77:45:86:89:5f:f5:eb:32:6f: 74:71:4b:23:72:59:c6:ab:b8:5b:f0:20:c9:51:44: cb:f0:c6:e1:9f:76:74:6e:6e:53:0b:36:5b:59:59: b1:e2:63:40:f6:e1:52:0b:04:26:c5:23:bd:f7:85: 76:09:1b:e3:f4:95:3b:7a:ce:f0:41:a6:40:43:96: a3:45:d7:08:fd:4f:7f:0c:df:6e:fa:cf:28:ac:7b: 2a:9c:ae:6f:90:bd:e7:3b:fb:a7:e3:8f:bd:88:46: f1:58:d7:c5:19:75:ac:d4:0e:6e:18:e2:24:4a:00: cf:fa:55:a8:2d:c8:a5:ba:e2:51:e3:ee:6c:d3:4f: f7:11:63:ed:ea:86:66:b8:29:8c:02:44:83:ff:98: 8e:d6:7d:bf:73:1c:da:28:75:77:22:6a:35:00:36: 18:70:a9:78:0c:7b:5a:2a:61:60:d7:1d:7f:c2:04: 59:c2:56:98:62:8e:09:cc:15:35:a7:0e:b0:63:54: c1:f7:dc:63:3c:54:ed:7c:52:72:18:72:65:af:49: d2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:32:DE:62:31:B8:8B:CB:60:76:97:DF:E3:AB:12:96:3A:56:9E:EC X509v3 Authority Key Identifier: keyid:BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:ec:56:75:b1:f5:4e:e6:e5:73:79:f2:cb:3b:4b:3e:bf:bd: 06:e9:17:c2:0f:35:82:05:e6:66:4f:d7:99:c7:42:c9:4a:f0: c1:e7:e0:1f:8b:e5:ed:fd:3c:94:27:c5:1b:ec:39:98:87:3a: 1a:f7:f1:ce:3a:e9:5e:e6:ca:c1:98:10:df:07:3b:14:ee:9c: bd:37:2a:f0:95:d5:fd:42:ca:13:3d:39:d8:b5:83:e0:7e:18: 39:b7:a9:64:b1:7b:d0:6f:f0:c7:ff:3a:50:6b:1f:02:87:5d: b5:d8:08:3c:91:41:ae:b8:0c:a5:52:6c:8e:82:d4:6f:73:9d: 1d:0a:74:e1:8f:22:30:23:dc:a3:f5:1a:f8:9b:81:a5:3b:4d: f2:16:52:09:67:a6:ca:36:56:af:7d:aa:64:6c:f7:b3:8b:d4: e8:21:cb:d7:1d:c6:83:c5:fd:63:69:0e:de:4a:6b:4e:a2:61: 53:a5:66:db:3b:02:1f:40:b7:95:d6:b0:62:bb:24:7f:f6:13: 42:69:59:fc:26:97:9f:6c:3b:bb:3d:35:ff:60:84:72:21:3d: 7b:92:4e:53:a4:2c:f1:52:c1:fd:e2:47:06:e1:13:f7:57:28: 51:93:b7:b6:b4:b8:5b:a2:ec:4b:52:63:2e:fc:e9:80:54:4a: 8e:12:e1:95 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdUMWRJuf67kY3I/b6MDghv5V3/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEy NTJBOTcxOTAeFw0yNjAyMjgwMTM2MjlaFw0yNjAzMDMwOTA4MjlaMDMxMTAvBgNV BAMTKDAwMzJERTYyMzFCODhCQ0I2MDc2OTdERkUzQUIxMjk2M0E1NjlFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ToQfQtxlFfitERhP1/YHgdnq wsDMcbFD9XlmwMVEj+jt2vM+QpLB5x2GIcArHi1vk3dFholf9esyb3RxSyNyWcar uFvwIMlRRMvwxuGfdnRublMLNltZWbHiY0D24VILBCbFI733hXYJG+P0lTt6zvBB pkBDlqNF1wj9T38M3276zyiseyqcrm+Qvec7+6fjj72IRvFY18UZdazUDm4Y4iRK AM/6VagtyKW64lHj7mzTT/cRY+3qhma4KYwCRIP/mI7Wfb9zHNoodXciajUANhhw qXgMe1oqYWDXHX/CBFnCVphijgnMFTWnDrBjVMH33GM8VO18UnIYcmWvSdJTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUADLeYjG4i8tgdpff46sSljpWnuwwHwYDVR0j BBgwFoAUujxuggaVE0OpcL2AuNwzUSUqlxkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWZkZDZmOS1iNzk5LTRhOTYtOWUyYS0xZmVmNjliZmE1OTcvMC9CQTNDNkU4MjA2 OTUxMzQzQTk3MEJEODBCOERDMzM1MTI1MkE5NzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEyNTJB OTcxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFmZGQ2ZjktYjc5OS00YTk2LTll MmEtMWZlZjY5YmZhNTk3LzAvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMz NTEyNTJBOTcxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACDsVnWx9U7m5XN58ss7Sz6/vQbpF8IPNYIF 5mZP15nHQslK8MHn4B+L5e39PJQnxRvsOZiHOhr38c466V7mysGYEN8HOxTunL03 KvCV1f1CyhM9Odi1g+B+GDm3qWSxe9Bv8Mf/OlBrHwKHXbXYCDyRQa64DKVSbI6C 1G9znR0KdOGPIjAj3KP1GvibgaU7TfIWUglnpso2Vq99qmRs97OL1Oghy9cdxoPF /WNpDt5Ka06iYVOlZts7Ah9At5XWsGK7JH/2E0JpWfwml59sO7s9Nf9ghHIhPXuS TlOkLPFSwf3iRwbhE/dXKFGTt7a0uFui7EtSYy786YBUSo4S4ZU= -----END CERTIFICATE-----Generated at Mon Mar 2 11:37:35 2026 by rpki-client