$ rpki-client -vvf repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft File: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft (raw, json) Hash identifier: W9vwB0twfWS1hbIWhNT+yYk2YACbUAOann+HW+bAV4Y= Subject key identifier: 2A:F3:42:49:D9:92:B2:00:1B:39:1C:2E:C5:5D:6B:3C:59:27:3A:DF Authority key identifier: 2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 Certificate issuer: /CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Certificate serial: 771186527E43D0A8A753FCEE28DFFFB4B9E90F27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft Manifest number: 0384 Signing time: Sun 01 Mar 2026 18:02:13 +0000 Manifest this update: Sun 01 Mar 2026 17:57:13 +0000 Manifest next update: Thu 05 Mar 2026 04:26:13 +0000 Files and hashes: 1: 3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa (hash: 2TjUbAwclmvFhuQfA5b8APF/xfL7qfTm8NzkksHu4ng=) 2: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl (hash: BYSGcbbWzSB39B4PDeu3qHdSmwk6Gbp4CtlNnBqj6UU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:11:86:52:7e:43:d0:a8:a7:53:fc:ee:28:df:ff:b4:b9:e9:0f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Validity Not Before: Mar 1 17:57:13 2026 GMT Not After : Mar 5 04:26:13 2026 GMT Subject: CN=2AF34249D992B2001B391C2EC55D6B3C59273ADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:12:74:48:12:da:54:27:a3:ea:54:4e:3e:49: 47:d7:00:43:6b:22:53:59:09:d9:be:d8:8a:4c:04: 6f:a6:54:e3:e9:47:5b:42:59:06:28:d6:d4:46:8c: dd:76:84:5b:4c:fc:3d:3d:db:22:10:15:16:47:62: 37:de:e3:2e:68:93:02:25:be:28:03:65:fe:4c:c4: 03:3a:48:53:d6:e6:d0:4b:cd:2a:bf:8f:18:e4:b4: fe:38:f1:3e:7e:71:c4:0d:a7:91:9a:9d:97:a0:6e: 92:10:84:6f:a8:2f:12:6c:c4:9a:97:7f:35:9e:9f: 3d:07:d2:f7:bb:33:30:32:02:c7:47:8c:6c:b1:28: 06:5c:a1:49:b6:1e:5f:f6:ad:4e:00:68:02:02:60: d0:a3:0c:0f:df:c7:f4:7a:05:5e:1c:c1:b7:b1:24: 6e:66:9d:09:98:27:ca:5f:50:00:1c:35:f2:64:ab: ef:55:10:d7:f9:44:7f:e8:cd:02:ec:12:7e:b5:c8: 7d:5d:d1:e3:30:58:57:2c:95:da:d0:93:83:db:79: b0:41:cf:ad:7e:88:f9:51:47:82:7f:4e:8b:8e:30: a9:c4:96:16:b8:18:59:eb:0e:4a:89:88:b5:39:ac: 10:2d:52:71:29:68:a0:2b:d3:de:46:0f:78:d5:e0: f5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F3:42:49:D9:92:B2:00:1B:39:1C:2E:C5:5D:6B:3C:59:27:3A:DF X509v3 Authority Key Identifier: keyid:2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c6:ee:08:66:29:a7:87:76:04:30:49:eb:08:fb:e2:ed:e8: 1e:46:c8:d6:43:a9:f4:48:60:0a:cf:41:5c:0d:70:47:cc:3f: 7b:39:3e:d6:ad:bc:51:f0:77:48:fd:93:68:34:03:b5:4d:dc: eb:87:88:96:0d:5f:05:d3:02:14:5b:b8:fc:0e:91:ab:49:81: ea:81:74:a0:cd:63:15:31:d1:b5:50:87:64:f7:5f:24:d7:48: 4f:e1:d2:fc:36:b5:5a:62:f3:83:f9:e5:bc:dd:17:00:08:f6: 9c:f4:41:02:c5:6c:40:fa:39:51:8c:21:99:d5:6b:2c:4d:e4: ed:8a:95:2a:56:55:f5:d9:a7:0b:85:a1:88:4e:30:99:b9:d8: 8d:ff:00:a3:96:de:cd:0a:64:f6:df:c5:2d:33:29:cc:2f:a6: 70:7e:80:69:68:e0:16:1f:e4:9d:ce:52:1d:f8:a7:a5:70:1f: 4e:82:22:2c:63:d8:4d:57:9d:0c:e3:3a:bb:0e:fa:c2:46:9d: 60:21:7b:8e:6c:c6:86:29:e9:44:5d:50:09:fd:61:c4:25:67: 1b:00:64:ad:7d:e1:d5:cf:2c:95:a6:29:4f:50:fd:30:8b:23: 42:ba:6e:a8:ad:7f:d2:0d:09:94:cf:4f:57:8a:e5:1a:64:73: 67:df:34:47 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdxGGUn5D0KinU/zuKN//tLnpDycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4 Q0I4RkQ1MjAeFw0yNjAzMDExNzU3MTNaFw0yNjAzMDUwNDI2MTNaMDMxMTAvBgNV BAMTKDJBRjM0MjQ5RDk5MkIyMDAxQjM5MUMyRUM1NUQ2QjNDNTkyNzNBREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYEnRIEtpUJ6PqVE4+SUfXAENr IlNZCdm+2IpMBG+mVOPpR1tCWQYo1tRGjN12hFtM/D092yIQFRZHYjfe4y5okwIl vigDZf5MxAM6SFPW5tBLzSq/jxjktP448T5+ccQNp5GanZegbpIQhG+oLxJsxJqX fzWenz0H0ve7MzAyAsdHjGyxKAZcoUm2Hl/2rU4AaAICYNCjDA/fx/R6BV4cwbex JG5mnQmYJ8pfUAAcNfJkq+9VENf5RH/ozQLsEn61yH1d0eMwWFcsldrQk4PbebBB z61+iPlRR4J/TouOMKnElha4GFnrDkqJiLU5rBAtUnEpaKAr095GD3jV4PV1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKvNCSdmSsgAbORwuxV1rPFknOt8wHwYDVR0j BBgwFoAULLIe8za2q0ZA5GGWAeD2SIy4/VIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGM2Zjc3MC02ODZhLTQ1ZWYtOGRmYi0wYzNhODdkM2Q4ZGEvMC8yQ0IyMUVGMzM2 QjZBQjQ2NDBFNDYxOTYwMUUwRjY0ODhDQjhGRDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4Q0I4 RkQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRjNmY3NzAtNjg2YS00NWVmLThk ZmItMGMzYTg3ZDNkOGRhLzAvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2 NDg4Q0I4RkQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFvG7ghmKaeHdgQwSesI++Lt6B5GyNZDqfRI YArPQVwNcEfMP3s5PtatvFHwd0j9k2g0A7VN3OuHiJYNXwXTAhRbuPwOkatJgeqB dKDNYxUx0bVQh2T3XyTXSE/h0vw2tVpi84P55bzdFwAI9pz0QQLFbED6OVGMIZnV ayxN5O2KlSpWVfXZpwuFoYhOMJm52I3/AKOW3s0KZPbfxS0zKcwvpnB+gGlo4BYf 5J3OUh34p6VwH06CIixj2E1XnQzjOrsO+sJGnWAhe45sxoYp6URdUAn9YcQlZxsA ZK194dXPLJWmKU9Q/TCLI0K6bqitf9INCZTPT1eK5Rpkc2ffNEc= -----END CERTIFICATE-----Generated at Mon Mar 2 04:35:32 2026 by rpki-client