$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: yEvKTyXP1BEcVJdb1UN2MthuJPt3lhRaGv3lv5+e4xk= Subject key identifier: C1:A9:65:51:A1:9F:DA:31:19:0D:15:3D:45:F8:7A:FC:7A:FE:92:9B Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 228979347B73E86C856F6C81C3024D84432E95C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 0510 Signing time: Sat 28 Feb 2026 09:41:07 +0000 Manifest this update: Sat 28 Feb 2026 09:36:07 +0000 Manifest next update: Tue 03 Mar 2026 14:52:07 +0000 Files and hashes: 1: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: sbwEir9x+ZO6Ot9Fxm8F+m6uF7bURwWfo5mYfVEcnn0=) 2: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: IywsBHZCpESzPvpzBYMa3aM5xr+uzQrgr/hs4zyGEfk=) 3: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA=) 4: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: p7znIjGrzIeqiJgSyw1Go9JzIhUPDTiZx2kzEBcMX+M=) 5: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: FqumLAE5ExkmaatbD11ff744L2iTMEhUHWhZUQWOtLU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 14:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:89:79:34:7b:73:e8:6c:85:6f:6c:81:c3:02:4d:84:43:2e:95:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Feb 28 09:36:07 2026 GMT Not After : Mar 3 14:52:07 2026 GMT Subject: CN=C1A96551A19FDA31190D153D45F87AFC7AFE929B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:98:51:bc:1d:7d:32:40:78:4b:f4:8b:ea: 79:bf:2c:72:37:40:ef:45:c3:af:45:9a:a8:fe:cf: a7:14:d8:58:38:d2:49:5a:50:d6:e5:c4:8e:0d:3d: 2c:33:f4:c9:bc:83:84:3b:42:f9:36:c0:2d:39:9f: 0b:35:7e:54:aa:53:07:35:a1:be:8c:2b:4a:9c:22: 1c:f0:11:35:55:78:f4:ad:61:93:da:4e:5a:fc:4b: 14:24:22:e8:f2:bf:49:31:91:6b:37:65:f4:99:44: 3b:8f:00:2b:2f:29:50:a1:77:b4:51:82:63:0f:f1: 04:91:bf:04:ec:0e:3a:93:e7:22:83:d4:ca:aa:9c: ca:ee:a0:86:f7:e2:5f:23:ff:d3:04:fa:50:80:bb: ad:0a:3d:00:a5:65:c9:22:56:a9:88:65:d9:b7:e3: 3a:f7:05:77:b1:61:50:b0:07:18:b8:d9:3b:b6:99: a6:8b:cf:21:d9:93:da:05:05:56:5a:81:a2:2e:c8: 08:e5:81:98:b2:5f:fe:09:a2:ce:20:d7:16:3c:ba: 49:9b:f5:80:a5:1c:21:97:79:f7:e0:b0:f0:ef:58: 3a:2b:b4:81:22:4f:c8:9d:10:11:cb:15:62:73:dc: 73:e5:38:91:0d:84:8b:dc:87:0a:e8:95:52:d3:8c: bd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A9:65:51:A1:9F:DA:31:19:0D:15:3D:45:F8:7A:FC:7A:FE:92:9B X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:0b:60:99:0d:29:d6:24:66:41:2f:58:b5:ed:96:5e:46:ff: cf:49:3a:05:45:a2:56:24:1a:66:2b:3c:b5:eb:7d:15:81:a5: 9f:62:14:87:da:ce:66:26:5d:2a:a5:b3:ca:5f:cf:4d:31:61: ff:99:5b:ba:77:e9:65:10:ee:56:6c:8f:22:cc:51:4b:e7:af: 78:6c:d4:2c:79:ec:4f:1b:b5:30:e0:4d:b3:00:26:7c:01:6b: 94:b5:b0:43:7d:af:11:1c:39:f4:fd:1c:d0:14:c7:f4:02:c8: bf:07:e2:64:00:2d:71:b4:e0:4f:f5:17:c4:6a:ef:93:e7:e3: ce:d4:51:0a:36:34:a5:1a:52:43:1d:d1:bb:a9:23:b0:b6:af: cc:d0:68:42:5e:0f:e2:36:cd:d8:01:81:2c:4c:97:cd:eb:15: 0c:51:09:90:d1:10:d7:95:05:a8:8d:23:e3:98:bb:4e:10:f1: 7d:7e:9c:4a:ee:5d:4e:f4:90:9e:17:8e:7f:3b:3d:d0:42:45: ee:98:f5:79:9e:1e:9d:81:59:97:a8:4a:45:89:c6:e4:8f:a7: 7a:91:9b:f7:2b:6c:5d:a0:4f:58:69:12:ce:ab:50:25:43:45: 28:f4:de:5f:25:32:56:e4:48:39:be:48:f2:7c:b5:ba:a2:2a: 9c:cb:27:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIol5NHtz6GyFb2yBwwJNhEMulcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNjAyMjgwOTM2MDdaFw0yNjAzMDMxNDUyMDdaMDMxMTAvBgNV BAMTKEMxQTk2NTUxQTE5RkRBMzExOTBEMTUzRDQ1Rjg3QUZDN0FGRTkyOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ZZhRvB19MkB4S/SL6nm/LHI3 QO9Fw69Fmqj+z6cU2Fg40klaUNblxI4NPSwz9Mm8g4Q7Qvk2wC05nws1flSqUwc1 ob6MK0qcIhzwETVVePStYZPaTlr8SxQkIujyv0kxkWs3ZfSZRDuPACsvKVChd7RR gmMP8QSRvwTsDjqT5yKD1MqqnMruoIb34l8j/9ME+lCAu60KPQClZckiVqmIZdm3 4zr3BXexYVCwBxi42Tu2maaLzyHZk9oFBVZagaIuyAjlgZiyX/4Jos4g1xY8ukmb 9YClHCGXeffgsPDvWDortIEiT8idEBHLFWJz3HPlOJENhIvchwrolVLTjL2hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwallUaGf2jEZDRU9Rfh6/Hr+kpswHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEQLYJkNKdYkZkEvWLXtll5G/89JOgVFolYk GmYrPLXrfRWBpZ9iFIfazmYmXSqls8pfz00xYf+ZW7p36WUQ7lZsjyLMUUvnr3hs 1Cx57E8btTDgTbMAJnwBa5S1sEN9rxEcOfT9HNAUx/QCyL8H4mQALXG04E/1F8Rq 75Pn487UUQo2NKUaUkMd0bupI7C2r8zQaEJeD+I2zdgBgSxMl83rFQxRCZDRENeV BaiNI+OYu04Q8X1+nEruXU70kJ4Xjn87PdBCRe6Y9XmeHp2BWZeoSkWJxuSPp3qR m/crbF2gT1hpEs6rUCVDRSj03l8lMlbkSDm+SPJ8tbqiKpzLJwA= -----END CERTIFICATE-----Generated at Mon Mar 2 15:45:09 2026 by rpki-client