$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft File: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft (raw, json) Hash identifier: 8+Pc96pVYH3ECYOzs38HUSaU8wkZPkBK6a0genVOUr0= Subject key identifier: 86:43:6E:6D:6F:D4:61:2D:AE:9F:5F:39:15:E3:97:9B:03:E0:BB:AC Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 64AD2930A0974ED4599F999CE78AA2D976857D77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft Manifest number: 0263 Signing time: Sat 28 Feb 2026 08:31:14 +0000 Manifest this update: Sat 28 Feb 2026 08:26:14 +0000 Manifest next update: Tue 03 Mar 2026 17:36:14 +0000 Files and hashes: 1: 3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa (hash: /SzWYqZUMsg47vwYbafB1G0qt1wr0vCK02LHAWPClVk=) 2: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl (hash: uVlUPQDF67RDND0TtyGYXzPOJtCpDuGssfxnJgF9xHo=) 3: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (hash: SXu6y5hAHpLUxTpHQELosLw/ezbeelmjazY+x7480hw=) 4: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (hash: Dn1TWs8KInIikwDEUwL4D4avm/veFQbAcGAcTpLQx70=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:ad:29:30:a0:97:4e:d4:59:9f:99:9c:e7:8a:a2:d9:76:85:7d:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Feb 28 08:26:14 2026 GMT Not After : Mar 3 17:36:14 2026 GMT Subject: CN=86436E6D6FD4612DAE9F5F3915E3979B03E0BBAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:3e:2f:5f:57:be:95:2d:1e:22:9f:e2:2f: df:02:23:18:30:43:47:07:08:1b:d2:f6:64:7a:7d: a3:83:0e:4b:35:95:e0:85:23:da:28:f2:df:15:ef: 37:c9:76:6c:ea:1f:25:7a:3b:1b:b7:de:68:4f:50: d6:bf:81:6d:b6:37:5b:3b:91:8b:a9:4b:08:af:2f: 1d:26:57:96:37:9c:28:6a:ed:c0:2c:4a:3f:18:ea: cb:6f:2c:da:83:e9:31:e2:0e:f8:01:e7:67:8c:8b: 98:fb:70:9e:bf:86:3c:54:66:1c:f2:b2:92:2c:8c: 1f:96:b5:b5:dd:7b:4b:55:80:a9:4c:31:ba:f7:19: a0:84:89:d4:12:21:15:0c:cb:f6:5e:dc:3f:01:67: f4:58:94:04:23:93:c6:9b:f8:7f:9c:e2:ea:26:29: 9c:47:6b:0f:89:4d:be:da:dc:46:f8:65:6a:ef:3a: 97:3f:11:f5:0a:a9:09:9e:cc:23:9a:cc:6c:c3:88: 6a:ef:ff:f0:57:2e:d5:10:5f:8e:61:4a:3c:01:4f: 52:dc:1e:94:b4:b9:5a:dc:03:13:bd:c8:37:2d:c9: 4c:15:36:1f:d8:96:ae:5a:64:5e:b6:df:e6:e6:f5: 4e:50:35:fa:74:79:56:26:3a:69:34:55:e0:c7:b9: 74:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:43:6E:6D:6F:D4:61:2D:AE:9F:5F:39:15:E3:97:9B:03:E0:BB:AC X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:c4:d2:c1:56:c6:15:2b:e5:87:50:1d:51:d8:fa:a1:61:21: 65:7f:bf:07:a2:c4:b7:d2:c8:81:41:86:95:89:8e:97:36:57: 7d:48:87:40:7f:56:44:b2:d7:9b:d9:56:a2:cb:75:42:ae:ca: db:83:b7:b1:1a:9e:69:c0:da:44:d8:ac:d3:da:c6:72:15:c2: 2e:a7:8e:b6:0f:47:df:c5:08:7a:c2:a9:2f:8c:32:fd:ef:94: 66:a9:3b:62:ac:3b:d7:54:9c:0a:06:b4:2b:fc:3e:7a:ce:ca: 8b:7f:b9:d3:0e:29:68:4e:0e:3d:fb:6b:c2:bb:db:a3:c7:e3: 32:4d:4c:ec:df:15:a4:99:18:1a:14:a0:f6:26:c2:99:b7:95: 1e:11:e5:f7:ae:2d:0e:57:85:9c:35:9f:8b:a3:a7:d2:4a:92: 0b:d1:71:81:d7:f4:88:b9:40:7b:d9:94:f8:48:ab:21:02:cc: df:db:a4:d9:cb:57:7a:4f:06:bd:2e:0d:ad:40:99:d6:99:91: 28:c8:53:1b:28:fb:56:2c:17:23:84:e0:d5:0f:8a:70:2f:c3: 43:8e:d4:4b:7f:cf:90:02:56:82:82:5c:31:4b:f3:81:21:cf: f5:13:93:49:35:29:8c:27:af:83:ae:19:d8:5f:58:2e:b5:a2: c7:36:6c:d8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZK0pMKCXTtRZn5mc54qi2XaFfXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNjAyMjgwODI2MTRaFw0yNjAzMDMxNzM2MTRaMDMxMTAvBgNV BAMTKDg2NDM2RTZENkZENDYxMkRBRTlGNUYzOTE1RTM5NzlCMDNFMEJCQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaYj4vX1e+lS0eIp/iL98CIxgw Q0cHCBvS9mR6faODDks1leCFI9oo8t8V7zfJdmzqHyV6Oxu33mhPUNa/gW22N1s7 kYupSwivLx0mV5Y3nChq7cAsSj8Y6stvLNqD6THiDvgB52eMi5j7cJ6/hjxUZhzy spIsjB+WtbXde0tVgKlMMbr3GaCEidQSIRUMy/Ze3D8BZ/RYlAQjk8ab+H+c4uom KZxHaw+JTb7a3Eb4ZWrvOpc/EfUKqQmezCOazGzDiGrv//BXLtUQX45hSjwBT1Lc HpS0uVrcAxO9yDctyUwVNh/Ylq5aZF623+bm9U5QNfp0eVYmOmk0VeDHuXTVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhkNubW/UYS2un185FeOXmwPgu6wwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjI1YzdlMWQtODJlOC00MTAwLWI0 MzUtOTk1NDI3MmZiN2E4LzAvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFC QzgyNzdCOTlEMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL/E0sFWxhUr5YdQHVHY+qFhIWV/vweixLfS yIFBhpWJjpc2V31Ih0B/VkSy15vZVqLLdUKuytuDt7EanmnA2kTYrNPaxnIVwi6n jrYPR9/FCHrCqS+MMv3vlGapO2KsO9dUnAoGtCv8PnrOyot/udMOKWhODj37a8K7 26PH4zJNTOzfFaSZGBoUoPYmwpm3lR4R5feuLQ5XhZw1n4ujp9JKkgvRcYHX9Ii5 QHvZlPhIqyECzN/bpNnLV3pPBr0uDa1AmdaZkSjIUxso+1YsFyOE4NUPinAvw0OO 1Et/z5ACVoKCXDFL84Ehz/UTk0k1KYwnr4OuGdhfWC61osc2bNg= -----END CERTIFICATE-----Generated at Mon Mar 2 05:59:14 2026 by rpki-client