$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: YKN0OGyf4sLD32Fsl+RPDjYXi7XJI8bkWGrNdrUugr4= Subject key identifier: 29:9E:A4:6E:B6:DD:07:7D:A2:C1:14:5D:14:9C:62:51:21:73:D4:D1 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 076A00248D0C7ECB3C540C7B111AB3FD78B9DD35 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 0565 Signing time: Sat 28 Feb 2026 19:31:29 +0000 Manifest this update: Sat 28 Feb 2026 19:26:29 +0000 Manifest next update: Tue 03 Mar 2026 22:40:29 +0000 Files and hashes: 1: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: tIJ3NQGMZ+sMc/kU7x8rLle3F+r0E+SYjwutw6O8eAo=) 2: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: ZZmhtd+kvnB+qiIIirmPZ+PBFZw13KvG2RKerxPSCqA=) 3: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 4: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: rMaF7Q5MH66fB43sjFU7KFf+jSsxMN2DLHihs4pTcNE=) 5: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) 6: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 7: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: FAtVlldec4RoFv3q2j7FVnmrtGRtRRfXUz6I4U8sRwI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:6a:00:24:8d:0c:7e:cb:3c:54:0c:7b:11:1a:b3:fd:78:b9:dd:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Feb 28 19:26:29 2026 GMT Not After : Mar 3 22:40:29 2026 GMT Subject: CN=299EA46EB6DD077DA2C1145D149C62512173D4D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bc:6f:a1:1d:d3:4b:0b:36:2c:b6:dc:a0:fd: 09:8f:db:7f:51:c0:58:b7:b3:c2:29:6e:af:2b:b0: 14:ed:b0:c6:6a:b2:70:24:39:1d:71:17:fa:95:03: e4:e9:eb:75:7a:2c:00:ab:7b:89:8a:45:a2:ce:fd: a8:dc:62:56:7f:05:cf:31:65:32:7a:94:5e:33:70: 0c:47:77:49:b2:90:2f:ed:72:6f:30:19:90:a4:b7: f6:17:86:2c:88:95:96:50:0d:cf:e4:04:54:27:34: 5b:7c:c7:9e:71:d4:71:3c:4b:25:9e:86:3f:47:ad: 2e:c7:ed:51:48:c6:d5:54:b2:7f:d7:8e:ee:e4:ce: bd:be:6b:51:cf:0b:c0:19:b0:96:5d:f2:37:bf:11: 0c:92:56:ff:72:8e:4a:3f:c3:c7:17:57:12:bc:c5: 4c:b0:59:d6:f0:65:6a:20:58:b8:35:34:4b:90:87: 80:a9:35:4c:33:d5:5c:8c:24:88:c7:69:d1:40:aa: a2:ae:63:94:b6:83:c1:16:22:35:8d:70:76:1e:b1: 89:a2:fb:64:8b:10:16:a1:59:bb:63:3d:49:b8:d6: 91:15:4f:3e:8f:54:dd:55:60:5c:ce:f5:79:9b:b2: 05:be:de:0f:84:86:51:13:59:48:9d:99:4d:0d:63: 43:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:9E:A4:6E:B6:DD:07:7D:A2:C1:14:5D:14:9C:62:51:21:73:D4:D1 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:ba:09:c7:9c:e6:c0:76:fa:89:0b:15:d4:a4:21:5e:b4:89: bd:06:d4:b0:0d:f4:79:22:86:1c:f1:43:19:bc:13:f4:d8:2c: 41:f2:f5:a9:51:88:4e:53:14:6a:03:e8:0c:e3:51:c4:00:04: cc:81:66:66:6a:fe:2d:0a:47:31:23:3d:b5:0a:dd:b6:fe:1b: 8d:bc:8c:72:d4:b9:e8:96:a1:fe:6d:90:86:e9:93:81:04:db: 5e:85:fe:9e:38:2c:e5:df:46:1c:97:40:95:06:06:e6:69:2f: a1:2b:65:c9:65:2d:38:7a:51:80:b8:e4:50:44:09:4c:4f:4d: 54:5c:2c:56:c5:8e:3c:67:06:8f:d7:17:63:7b:d8:8a:76:85: d4:80:15:82:ff:ff:30:5c:91:30:0e:d3:dc:bd:4a:6e:ee:74: bc:98:f1:23:13:12:dd:85:2b:68:65:96:f6:bf:d6:df:61:7c: 47:c2:fe:d8:39:c2:29:44:c2:69:cb:67:ab:88:9b:94:b2:ee: 21:82:62:36:a1:c0:0f:c0:0f:1e:a4:88:a4:0f:0e:0d:ab:33: 9f:7f:3a:27:0b:bf:5f:8d:34:2e:41:6e:9b:71:97:6a:dd:72: f9:7d:b5:6c:13:fb:ba:8d:06:69:6e:f4:25:32:2f:b2:a5:48: 67:cc:04:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB2oAJI0Mfss8VAx7ERqz/Xi53TUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNjAyMjgxOTI2MjlaFw0yNjAzMDMyMjQwMjlaMDMxMTAvBgNV BAMTKDI5OUVBNDZFQjZERDA3N0RBMkMxMTQ1RDE0OUM2MjUxMjE3M0Q0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTvG+hHdNLCzYsttyg/QmP239R wFi3s8Ipbq8rsBTtsMZqsnAkOR1xF/qVA+Tp63V6LACre4mKRaLO/ajcYlZ/Bc8x ZTJ6lF4zcAxHd0mykC/tcm8wGZCkt/YXhiyIlZZQDc/kBFQnNFt8x55x1HE8SyWe hj9HrS7H7VFIxtVUsn/Xju7kzr2+a1HPC8AZsJZd8je/EQySVv9yjko/w8cXVxK8 xUywWdbwZWogWLg1NEuQh4CpNUwz1VyMJIjHadFAqqKuY5S2g8EWIjWNcHYesYmi +2SLEBahWbtjPUm41pEVTz6PVN1VYFzO9XmbsgW+3g+EhlETWUidmU0NY0PFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKZ6kbrbdB32iwRRdFJxiUSFz1NEwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFO6Ccec5sB2+okLFdSkIV60ib0G1LAN9Hki hhzxQxm8E/TYLEHy9alRiE5TFGoD6AzjUcQABMyBZmZq/i0KRzEjPbUK3bb+G428 jHLUueiWof5tkIbpk4EE216F/p44LOXfRhyXQJUGBuZpL6ErZcllLTh6UYC45FBE CUxPTVRcLFbFjjxnBo/XF2N72Ip2hdSAFYL//zBckTAO09y9Sm7udLyY8SMTEt2F K2hllva/1t9hfEfC/tg5wilEwmnLZ6uIm5Sy7iGCYjahwA/ADx6kiKQPDg2rM59/ OicLv1+NNC5Bbptxl2rdcvl9tWwT+7qNBmlu9CUyL7KlSGfMBOg= -----END CERTIFICATE-----Generated at Mon Mar 2 02:21:05 2026 by rpki-client