$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft File: BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft (raw, json) Hash identifier: GCZYOF84tTxy2r1SRhlFWLCo0SJi0zZ1+oMcoir9eLA= Subject key identifier: 5D:56:6C:99:D3:6C:D5:CC:DE:BD:3D:02:52:A7:12:FF:B6:5F:C8:F6 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 021FC572F98A6950C805923AD80A3C41DE133EA6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft Manifest number: 0551 Signing time: Fri 27 Feb 2026 22:51:28 +0000 Manifest this update: Fri 27 Feb 2026 22:46:28 +0000 Manifest next update: Tue 03 Mar 2026 09:23:28 +0000 Files and hashes: 1: 323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa (hash: 6j5m2VjCwkXGfQzXHijMICktkY7XqIoC3rD1yeh02OI=) 2: 3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa (hash: 8V1al14v0fXTXIGlVH1c93VdIS9Ve5+tbHSMrRhqr58=) 3: BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl (hash: bQORHgoKd+mZ27sJ/aNiF8lhnAbnbZEv8KnzGnLeakk=) 4: 3130332e3134312e36312e302f32342d3234203d3e20313333383032.roa (hash: sgxUrcQvRnNHbIUuVwSUcdBBcs11g4RjDxY5LVoPdt0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 09:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:1f:c5:72:f9:8a:69:50:c8:05:92:3a:d8:0a:3c:41:de:13:3e:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Feb 27 22:46:28 2026 GMT Not After : Mar 3 09:23:28 2026 GMT Subject: CN=5D566C99D36CD5CCDEBD3D0252A712FFB65FC8F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:74:0d:f1:ed:70:3d:e2:df:eb:8e:a4:01:8f: e2:78:e7:25:f4:eb:18:72:13:94:5e:01:99:26:ed: ee:64:d1:cb:87:36:2c:57:88:52:14:c2:78:f0:20: f6:3f:8b:3f:7f:9b:0b:75:d9:fd:b5:7e:7a:50:cf: bd:5e:da:56:39:00:b1:ca:24:0c:2d:81:6c:0c:56: 83:fd:02:2a:ef:52:89:40:3b:47:38:f3:18:42:b6: 51:e8:cb:bb:9c:c1:e9:e7:51:fa:45:d8:05:19:47: 65:ef:37:9d:69:7a:a2:73:41:40:cd:88:23:48:68: 5f:63:ff:64:b8:ff:6f:17:b6:f7:36:09:2b:cf:b1: 68:28:c0:26:6c:35:ba:5b:56:f6:2e:c1:f4:6d:51: 95:17:52:be:67:06:e0:34:10:cc:00:4e:35:0d:c3: 63:72:9b:e6:b0:5d:fc:c2:99:71:c2:64:25:c5:a9: 18:61:29:54:9d:cc:46:9d:2b:b6:97:06:71:3f:1b: 13:27:f9:23:ab:24:6f:ab:c3:e0:e0:4e:7f:a3:f6: 75:64:f9:8e:60:1c:6f:c5:0e:20:2e:3f:09:ed:89: 36:1b:17:d9:35:4d:1b:7c:bc:6f:7e:94:78:9c:3b: 43:bb:36:5a:c4:73:ce:da:55:63:6e:cd:04:1b:7a: 46:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:56:6C:99:D3:6C:D5:CC:DE:BD:3D:02:52:A7:12:FF:B6:5F:C8:F6 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a9:49:90:fb:7e:4f:54:79:29:78:8c:e8:f7:f4:f6:99:c2: 2a:4a:b5:a4:c8:98:1d:b2:c8:f7:a5:80:b2:f5:60:07:1d:55: 93:5f:75:85:6b:3f:4f:a5:a9:24:56:69:17:1b:3c:80:78:be: 62:3e:8e:86:1c:2a:eb:3f:5e:4a:52:da:30:2f:72:a6:9d:fd: 25:58:12:f6:97:46:f0:c5:2c:0f:34:6a:d0:c0:e6:f3:80:de: 82:81:f1:0d:92:5f:54:17:cf:1a:a2:99:56:76:cf:72:5c:d1: 28:81:06:0d:86:39:af:70:72:da:cf:f6:10:17:bb:97:bc:4f: 48:a1:07:2d:fb:d8:b5:3b:6d:09:a3:83:23:cd:05:67:83:54: 36:24:05:16:d9:f8:40:36:19:cf:24:f4:5e:5d:73:cd:01:2f: f5:7f:2e:13:84:f1:0f:ca:d7:91:a8:46:28:bc:45:6e:ef:bf: c1:84:b3:06:b4:82:5d:b8:41:d8:2f:ac:32:4e:6c:24:b1:3e: 98:90:c0:e7:00:ad:b9:0e:e3:85:50:b5:7b:47:a6:16:1d:d6: e2:34:6d:9f:d7:5f:5a:3f:d5:ef:aa:33:eb:08:15:57:4b:8e: b2:53:fe:0b:6e:21:55:01:d7:5b:47:5a:11:9a:c7:98:ce:0b: 60:22:fc:a2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAh/FcvmKaVDIBZI62Ao8Qd4TPqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNjAyMjcyMjQ2MjhaFw0yNjAzMDMwOTIzMjhaMDMxMTAvBgNV BAMTKDVENTY2Qzk5RDM2Q0Q1Q0NERUJEM0QwMjUyQTcxMkZGQjY1RkM4RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVdA3x7XA94t/rjqQBj+J45yX0 6xhyE5ReAZkm7e5k0cuHNixXiFIUwnjwIPY/iz9/mwt12f21fnpQz71e2lY5ALHK JAwtgWwMVoP9AirvUolAO0c48xhCtlHoy7ucwennUfpF2AUZR2XvN51peqJzQUDN iCNIaF9j/2S4/28Xtvc2CSvPsWgowCZsNbpbVvYuwfRtUZUXUr5nBuA0EMwATjUN w2Nym+awXfzCmXHCZCXFqRhhKVSdzEadK7aXBnE/GxMn+SOrJG+rw+DgTn+j9nVk +Y5gHG/FDiAuPwntiTYbF9k1TRt8vG9+lHicO0O7NlrEc87aVWNuzQQbekZ/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXVZsmdNs1czevT0CUqcS/7ZfyPYwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjU5Y2ZkMDQtNjlkMC00ZDRjLThk MDktMmQyMjEzODQyYzJjLzAvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdF RjYwNDc4OTkwRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADqpSZD7fk9UeSl4jOj39PaZwipKtaTImB2y yPelgLL1YAcdVZNfdYVrP0+lqSRWaRcbPIB4vmI+joYcKus/XkpS2jAvcqad/SVY EvaXRvDFLA80atDA5vOA3oKB8Q2SX1QXzxqimVZ2z3Jc0SiBBg2GOa9wctrP9hAX u5e8T0ihBy372LU7bQmjgyPNBWeDVDYkBRbZ+EA2Gc8k9F5dc80BL/V/LhOE8Q/K 15GoRii8RW7vv8GEswa0gl24QdgvrDJObCSxPpiQwOcArbkO44VQtXtHphYd1uI0 bZ/XX1o/1e+qM+sIFVdLjrJT/gtuIVUB11tHWhGax5jOC2Ai/KI= -----END CERTIFICATE-----Generated at Mon Mar 2 02:39:29 2026 by rpki-client