$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: eo6C42LOWfYJI3SMgpTO4loX3Ug9KczVa312Nh5vEBQ= Subject key identifier: 1A:B9:DB:F6:89:A6:58:02:4A:4B:20:79:E9:FC:15:DC:65:85:B6:32 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 1F0CE01F7C8E05EB4D8B8587FD489D780BF57F33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0223 Signing time: Sat 28 Feb 2026 17:11:56 +0000 Manifest this update: Sat 28 Feb 2026 17:06:56 +0000 Manifest next update: Wed 04 Mar 2026 01:12:56 +0000 Files and hashes: 1: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 2: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 3: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 4: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: Kyu3+mqo0cObyB6Vi6xEnwRIwq5UXLD+/RO4kZQutr8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:0c:e0:1f:7c:8e:05:eb:4d:8b:85:87:fd:48:9d:78:0b:f5:7f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Feb 28 17:06:56 2026 GMT Not After : Mar 4 01:12:56 2026 GMT Subject: CN=1AB9DBF689A658024A4B2079E9FC15DC6585B632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ed:09:09:40:13:09:94:7f:5a:f5:d1:17:ff: ee:45:45:87:76:bc:f0:40:44:18:b9:e3:07:b4:ae: b6:06:78:f3:b5:db:b1:f5:f7:eb:de:65:69:db:12: 1b:dd:3f:61:fe:bb:5d:cb:33:b8:18:8e:58:d7:17: d4:e1:7b:0a:f6:f0:16:ee:83:60:bd:08:4a:4b:89: e5:ea:3f:5a:4f:cc:9a:e5:05:3c:44:4b:17:15:62: b2:08:2b:6a:f0:71:41:e6:4b:dd:7b:97:ea:03:63: e0:9f:85:cb:e6:58:62:70:3f:23:38:57:60:77:70: 8f:d7:b8:05:14:08:fe:17:e7:67:35:b2:c1:2d:37: 57:4d:4b:60:07:75:f1:29:48:78:83:ec:8a:39:fa: 5a:7f:83:f0:52:52:31:56:22:84:a4:22:ee:8c:53: 82:fe:78:c7:49:5e:7d:88:08:e3:bc:f0:46:da:bb: 5a:41:69:ad:cd:84:c1:16:72:ea:33:c9:5d:c5:0d: b5:be:0b:71:80:76:9f:7d:5c:c3:40:31:b1:c7:04: b6:8d:b9:17:3f:9c:7b:78:3c:9f:f5:87:7a:b9:5f: bc:77:53:2d:2d:b4:dd:05:6c:50:2e:25:23:52:5a: 9e:f6:16:12:5a:70:5b:bf:34:b8:bd:71:1d:73:a7: a1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B9:DB:F6:89:A6:58:02:4A:4B:20:79:E9:FC:15:DC:65:85:B6:32 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:0b:4f:c7:28:ef:33:91:75:bf:df:d5:cb:4e:ec:4a:7f:f2: 63:8a:4f:6a:e4:66:11:e4:a0:73:a6:e7:2d:65:0d:4c:73:b4: 5e:fe:24:09:dc:62:6e:43:ca:88:12:39:d2:65:f1:5b:cf:52: b1:78:d4:93:c1:70:34:55:09:5c:c0:f7:93:3a:78:ed:f6:be: 8e:1c:57:38:7f:da:2c:9b:60:a4:86:50:c8:e8:9f:87:7c:21: f6:24:c7:e8:22:54:6a:49:84:78:1a:1a:d9:b7:61:bc:fb:68: 7e:dc:aa:3f:d6:95:44:43:4e:ba:9a:5d:02:5d:17:9e:71:7b: 0b:b8:63:e5:57:89:8b:64:16:8b:46:02:46:ce:67:12:57:36: 75:b0:03:8c:a8:9e:76:3b:63:be:1c:b9:78:93:b2:81:b4:06: 6c:c7:74:f0:14:d9:db:22:63:ff:85:32:a2:70:a2:b9:97:00: 70:d5:22:12:f7:03:64:d2:e2:03:6a:c5:82:fb:9d:ab:0d:70: c5:48:13:4d:df:43:84:c5:a7:56:38:b0:cd:64:a8:7e:e6:63: 8f:04:99:5e:b1:24:7a:00:8f:4a:ce:9f:fa:e6:e7:27:f6:24: df:6e:69:4e:cf:1d:6a:38:4d:6f:d6:a9:6d:2c:e6:7d:c1:2f: 05:74:1b:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHwzgH3yOBetNi4WH/UideAv1fzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNjAyMjgxNzA2NTZaFw0yNjAzMDQwMTEyNTZaMDMxMTAvBgNV BAMTKDFBQjlEQkY2ODlBNjU4MDI0QTRCMjA3OUU5RkMxNURDNjU4NUI2MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf7QkJQBMJlH9a9dEX/+5FRYd2 vPBARBi54we0rrYGePO127H19+veZWnbEhvdP2H+u13LM7gYjljXF9Thewr28Bbu g2C9CEpLieXqP1pPzJrlBTxESxcVYrIIK2rwcUHmS917l+oDY+CfhcvmWGJwPyM4 V2B3cI/XuAUUCP4X52c1ssEtN1dNS2AHdfEpSHiD7Io5+lp/g/BSUjFWIoSkIu6M U4L+eMdJXn2ICOO88Ebau1pBaa3NhMEWcuozyV3FDbW+C3GAdp99XMNAMbHHBLaN uRc/nHt4PJ/1h3q5X7x3Uy0ttN0FbFAuJSNSWp72FhJacFu/NLi9cR1zp6FpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGrnb9ommWAJKSyB56fwV3GWFtjIwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACYLT8co7zORdb/f1ctO7Ep/8mOKT2rkZhHk oHOm5y1lDUxztF7+JAncYm5DyogSOdJl8VvPUrF41JPBcDRVCVzA95M6eO32vo4c Vzh/2iybYKSGUMjon4d8IfYkx+giVGpJhHgaGtm3Ybz7aH7cqj/WlURDTrqaXQJd F55xewu4Y+VXiYtkFotGAkbOZxJXNnWwA4yonnY7Y74cuXiTsoG0BmzHdPAU2dsi Y/+FMqJwormXAHDVIhL3A2TS4gNqxYL7nasNcMVIE03fQ4TFp1Y4sM1kqH7mY48E mV6xJHoAj0rOn/rm5yf2JN9uaU7PHWo4TW/WqW0s5n3BLwV0GzA= -----END CERTIFICATE-----Generated at Mon Mar 2 04:42:00 2026 by rpki-client