$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: xOzE6rkZNr/M2dWq9J7eyRi8Rbpij4e6y/Ewkp4iYD4= Subject key identifier: 89:77:3D:8F:80:F1:8A:41:E9:26:33:51:36:50:6A:58:65:20:CD:47 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 678CA1D56047CA597912827DA1874241C4AC9D05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 02AF Signing time: Sun 01 Mar 2026 13:02:13 +0000 Manifest this update: Sun 01 Mar 2026 12:57:13 +0000 Manifest next update: Wed 04 Mar 2026 21:49:13 +0000 Files and hashes: 1: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: WT+IaRYO/trP9CfL5c4GtVlWlemjDEFL1hJhVEo8Abg=) 2: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: g6JykGSCyvPJN6suwP4pksfv3CU4McJpDF6g+WQNj7o=) 3: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: G0y3tssGsefR1ItOMtc1BYHuZ0hgATuC18s9snklT+E=) 4: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: FyCE3LyMNMrGnPbdrpK5+sH4y62xX8bxVpZUT6w7BJU=) 5: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 6: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: mkYIFZYx4d0/cIAZy1+c0yjUX/D1gvzA3zbfyHKddvs=) 7: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: btn366wZk5X/LbhkknHgrSEj+dlkWgK4+w6HiC3XS9g=) 8: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: kzF5yTng2nsAricqtS3yvK+w9DfNlAwfQFzAL4v5DWA=) 9: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: 2PpG67/Hif4l3pFwRCwEQ7HNcb5HgHsPLTC3ZJMlI9c=) 10: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: t1OWN6gm90SvImzwws28CQ53gTfOaLXKxfqrgXh94Y4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:8c:a1:d5:60:47:ca:59:79:12:82:7d:a1:87:42:41:c4:ac:9d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Mar 1 12:57:13 2026 GMT Not After : Mar 4 21:49:13 2026 GMT Subject: CN=89773D8F80F18A41E926335136506A586520CD47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:29:14:a9:3a:ed:18:c2:67:c2:00:83:84:d5: 5b:9a:19:9c:42:7b:e8:23:de:2c:40:6b:0a:ec:91: ce:17:f7:a2:0b:f4:e5:15:ef:47:2e:ac:f1:51:dc: a9:63:3c:4d:f6:cb:7a:54:3a:9b:a8:48:5a:4a:eb: 58:94:88:d2:9c:52:50:f2:7c:13:75:30:e4:aa:f9: 82:40:5f:80:c1:58:9f:bc:29:4c:74:24:08:ab:71: 80:a2:24:99:4e:f0:45:e9:40:d5:77:e1:0d:b7:1e: f9:7b:02:95:3a:c3:5b:f4:70:97:25:86:a4:54:8f: d1:bb:ec:b0:17:c2:80:72:da:fb:29:8c:48:8b:94: 9b:9a:ee:00:06:d4:46:d5:d3:15:2c:99:95:ea:1e: 61:e6:83:57:dc:f8:ed:3d:d6:01:68:b4:c0:95:74: be:9a:4f:e1:92:9a:34:01:b1:4e:13:f8:0f:ba:20: f6:c8:1a:2b:95:2a:e4:4c:18:95:50:4a:1f:19:0c: 0d:53:38:29:dc:cd:91:68:00:d2:c1:45:a6:2e:b8: 6c:c8:91:3e:c4:85:de:dc:79:49:1c:d0:26:26:de: a0:36:bc:12:7f:f5:de:05:36:e4:65:37:58:ad:d2: 43:ab:98:c0:e8:ad:e1:54:3c:fd:4a:b2:c1:b1:fa: b4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:77:3D:8F:80:F1:8A:41:E9:26:33:51:36:50:6A:58:65:20:CD:47 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:92:a9:55:90:65:a7:18:09:a3:cd:b7:30:4f:88:bc:4d:39: 70:b7:44:03:9c:7f:a2:b5:93:5b:19:e2:d2:7e:a5:c1:b0:56: c4:4a:d8:4b:1c:d4:0a:7a:38:95:b1:cf:5d:f0:8f:5b:bd:0e: 82:7b:44:14:05:48:eb:2f:13:a4:20:8f:ff:37:f6:b0:82:2c: fe:2b:11:b9:da:32:0a:45:03:2a:34:7b:a4:d1:12:fd:ff:23: 73:01:a2:55:2a:27:42:bb:2f:b5:e9:ec:eb:d8:c9:1a:5a:e9: 04:71:a2:7c:7e:5a:87:a2:d2:4d:39:b5:42:78:b9:c4:f3:88: 24:24:3e:0c:36:f5:49:51:2c:3c:73:74:b1:d3:e7:3f:8c:38: df:f3:e9:70:7b:0d:41:a4:fa:91:8b:7e:9f:7e:5b:19:c5:1d: 4e:61:1e:47:49:04:b0:43:7a:ef:ca:e2:4a:fe:2d:15:f3:44: b1:72:86:4f:12:a1:c2:05:3e:0a:73:99:d4:be:c5:a0:d6:8b: 4a:95:19:9d:98:0b:93:de:b9:f8:48:f7:b7:6c:b2:6a:cc:e6: 31:9b:6e:05:b2:21:47:2a:29:ed:b3:cd:70:78:52:c9:a5:e7: 5f:4c:c3:c7:4a:54:e1:9a:d3:a8:7b:9c:e6:f3:99:06:6a:c8: 9e:a4:13:e2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ4yh1WBHyll5EoJ9oYdCQcSsnQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNjAzMDExMjU3MTNaFw0yNjAzMDQyMTQ5MTNaMDMxMTAvBgNV BAMTKDg5NzczRDhGODBGMThBNDFFOTI2MzM1MTM2NTA2QTU4NjUyMENENDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVKRSpOu0YwmfCAIOE1VuaGZxC e+gj3ixAawrskc4X96IL9OUV70curPFR3KljPE32y3pUOpuoSFpK61iUiNKcUlDy fBN1MOSq+YJAX4DBWJ+8KUx0JAircYCiJJlO8EXpQNV34Q23Hvl7ApU6w1v0cJcl hqRUj9G77LAXwoBy2vspjEiLlJua7gAG1EbV0xUsmZXqHmHmg1fc+O091gFotMCV dL6aT+GSmjQBsU4T+A+6IPbIGiuVKuRMGJVQSh8ZDA1TOCnczZFoANLBRaYuuGzI kT7Ehd7ceUkc0CYm3qA2vBJ/9d4FNuRlN1it0kOrmMDoreFUPP1KssGx+rSFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiXc9j4DxikHpJjNRNlBqWGUgzUcwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGeSqVWQZacYCaPNtzBPiLxNOXC3RAOcf6K1 k1sZ4tJ+pcGwVsRK2Esc1Ap6OJWxz13wj1u9DoJ7RBQFSOsvE6Qgj/839rCCLP4r EbnaMgpFAyo0e6TREv3/I3MBolUqJ0K7L7Xp7OvYyRpa6QRxonx+Woei0k05tUJ4 ucTziCQkPgw29UlRLDxzdLHT5z+MON/z6XB7DUGk+pGLfp9+WxnFHU5hHkdJBLBD eu/K4kr+LRXzRLFyhk8SocIFPgpzmdS+xaDWi0qVGZ2YC5PeufhI97dssmrM5jGb bgWyIUcqKe2zzXB4Usml519Mw8dKVOGa06h7nObzmQZqyJ6kE+I= -----END CERTIFICATE-----Generated at Mon Mar 2 04:44:14 2026 by rpki-client