$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft File: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft (raw, json) Hash identifier: nJav1thQSag1PVbyezuEZWogdE9TiPNaARbBla5wHhA= Subject key identifier: 3A:FB:E0:CC:B4:3C:21:0B:69:59:C7:8E:D5:FC:B3:D3:4A:38:B4:DE Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 66225638654ED44A738529FABFE27866E865A10E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft Manifest number: 0248 Signing time: Sun 01 Mar 2026 17:50:51 +0000 Manifest this update: Sun 01 Mar 2026 17:45:51 +0000 Manifest next update: Wed 04 Mar 2026 19:49:51 +0000 Files and hashes: 1: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl (hash: aIZbFNC3P8A+W2TB8jq7YrIiOaqiZFRtEk9ki/7rhMU=) 2: 3130332e3135362e3134372e302f32342d3234203d3e20313338383130.roa (hash: OxuN/KCMHtMTDCyaI0bgtvQy256j5b/74mmzW3WQvFc=) 3: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (hash: m4Ck3HJw6h63iOESyQS/p69JGf3Gj+AMerXfQa9rjpw=) 4: 3130332e3135362e3134362e302f32342d3234203d3e20313431303933.roa (hash: Cy07xYSyUWFjvR0x0kDQ3HZDqKe9RyYBEeT67hsabqg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 19:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:22:56:38:65:4e:d4:4a:73:85:29:fa:bf:e2:78:66:e8:65:a1:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Mar 1 17:45:51 2026 GMT Not After : Mar 4 19:49:51 2026 GMT Subject: CN=3AFBE0CCB43C210B6959C78ED5FCB3D34A38B4DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d7:5d:20:64:32:2c:0b:dc:1e:c5:a9:1c:3b: 68:95:07:02:70:d3:3b:7f:44:20:bd:93:4c:5d:21: 53:95:91:65:81:64:78:e7:5d:19:60:3f:bb:e2:e9: 2b:de:e7:90:df:28:a0:97:93:da:c1:2a:c7:ad:81: a0:9d:95:b3:22:6d:11:78:be:26:25:59:e3:ac:fc: 56:6a:3f:b6:99:bb:6a:b1:bb:87:e7:79:39:c2:93: 7c:3f:f5:ca:69:13:01:1a:46:8a:bd:ec:a8:f2:ac: 80:c5:38:96:82:5e:32:30:42:49:5c:3b:da:c5:70: 3f:20:ad:09:30:80:58:51:5b:31:1f:bd:5f:46:fb: 04:98:49:1f:52:57:6c:db:79:2c:32:56:2a:00:4d: 24:2c:31:cc:a9:17:c8:b5:fe:33:bd:2e:86:02:2f: 27:8e:6c:a2:57:02:23:40:f4:f0:64:00:8a:eb:70: ee:cc:ef:0b:4d:a1:81:cc:79:22:b7:c9:e7:db:76: 42:e8:6a:1f:ac:6f:b8:48:e3:50:9d:ba:59:c8:51: 83:f8:b9:c5:89:93:e6:30:ca:f2:1f:f3:15:50:50: c3:8a:77:85:35:18:98:97:8a:a9:90:fe:91:ce:7a: 25:0e:ef:5b:70:63:7a:9a:36:4b:4a:f8:6c:b7:b0: 42:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FB:E0:CC:B4:3C:21:0B:69:59:C7:8E:D5:FC:B3:D3:4A:38:B4:DE X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ea:4f:30:91:3f:87:13:06:b8:89:bf:3f:1f:d1:ce:40:8c: a0:e2:4d:77:61:12:89:d8:b1:7d:7d:00:29:1a:f1:e8:17:a4: ad:1b:de:75:ea:84:4d:f2:ac:67:fd:d2:d7:13:e9:72:af:89: cf:70:45:7e:78:cc:e3:70:8d:82:7e:a3:70:a5:14:c8:65:44: a4:1c:c7:73:b3:c9:88:ca:8d:87:5f:10:43:3d:42:9f:b8:46: 8f:a9:17:c5:7c:f1:54:11:9e:57:14:7b:54:7b:5f:aa:54:9f: 68:10:28:fa:93:dc:fc:81:34:f8:af:f6:04:52:74:b7:19:1c: 20:cc:d3:d5:30:01:56:28:7a:c7:25:d1:33:d5:c3:0b:46:5a: 4f:30:39:90:a1:c0:4e:58:39:ae:be:cd:85:0d:fd:e4:63:c6: be:ff:99:44:44:a9:e1:a9:53:35:02:39:89:ae:91:19:ef:91: f6:91:11:ed:4b:69:a2:2b:c5:68:58:9f:e2:a5:6f:bf:39:ee: de:c6:d7:ad:75:98:09:c1:32:1d:2d:b0:c9:7c:ca:dc:9d:18: 5c:ba:5b:9a:ae:59:80:f7:1e:73:9e:8c:78:ea:0c:8d:76:27: e3:21:40:90:73:2d:c2:1c:3d:f2:a8:2d:a9:08:83:d3:bd:a0: 4f:2a:f7:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZiJWOGVO1EpzhSn6v+J4ZuhloQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNjAzMDExNzQ1NTFaFw0yNjAzMDQxOTQ5NTFaMDMxMTAvBgNV BAMTKDNBRkJFMENDQjQzQzIxMEI2OTU5Qzc4RUQ1RkNCM0QzNEEzOEI0REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ110gZDIsC9wexakcO2iVBwJw 0zt/RCC9k0xdIVOVkWWBZHjnXRlgP7vi6Sve55DfKKCXk9rBKsetgaCdlbMibRF4 viYlWeOs/FZqP7aZu2qxu4fneTnCk3w/9cppEwEaRoq97KjyrIDFOJaCXjIwQklc O9rFcD8grQkwgFhRWzEfvV9G+wSYSR9SV2zbeSwyVioATSQsMcypF8i1/jO9LoYC LyeObKJXAiNA9PBkAIrrcO7M7wtNoYHMeSK3yefbdkLoah+sb7hI41CdulnIUYP4 ucWJk+YwyvIf8xVQUMOKd4U1GJiXiqmQ/pHOeiUO71twY3qaNktK+Gy3sEIhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOvvgzLQ8IQtpWceO1fyz00o4tN4wHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjg5OWExNWItZDVhZS00NWVjLTgw MTItYTZjYWFiM2RkODhiLzAvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQy MDNDNUQ5QUJFRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHrqTzCRP4cTBriJvz8f0c5AjKDiTXdhEonY sX19ACka8egXpK0b3nXqhE3yrGf90tcT6XKvic9wRX54zONwjYJ+o3ClFMhlRKQc x3OzyYjKjYdfEEM9Qp+4Ro+pF8V88VQRnlcUe1R7X6pUn2gQKPqT3PyBNPiv9gRS dLcZHCDM09UwAVYoescl0TPVwwtGWk8wOZChwE5YOa6+zYUN/eRjxr7/mUREqeGp UzUCOYmukRnvkfaREe1LaaIrxWhYn+Klb7857t7G1611mAnBMh0tsMl8ytydGFy6 W5quWYD3HnOejHjqDI12J+MhQJBzLcIcPfKoLakIg9O9oE8q97A= -----END CERTIFICATE-----Generated at Mon Mar 2 00:48:21 2026 by rpki-client