$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: AX41GjnwX1v/p67/pn3zkJHt6ZwBj++TfdDbXayEZds= Subject key identifier: 8F:06:06:F9:E6:28:EF:34:33:6E:FE:1F:5C:1D:44:C2:56:9F:E2:ED Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 329ADFFD1C20D6E14CF946FD474AC0902BB455A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 0525 Signing time: Sun 01 Mar 2026 07:32:01 +0000 Manifest this update: Sun 01 Mar 2026 07:27:01 +0000 Manifest next update: Wed 04 Mar 2026 11:19:01 +0000 Files and hashes: 1: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: 01o8IIdEBMNVP2rARnAtQNMxpIRvEPCoH/cFEbdvFjA=) 2: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: lbqLm4gtIn2PpfyD5NIDm37sX2MwPhaC2Wn66mlRkRA=) 3: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: QyI6Y7ndSzRnIS8J6sDPqfujvSArYFlbDbIUkkMYg90=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 11:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9a:df:fd:1c:20:d6:e1:4c:f9:46:fd:47:4a:c0:90:2b:b4:55:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Mar 1 07:27:01 2026 GMT Not After : Mar 4 11:19:01 2026 GMT Subject: CN=8F0606F9E628EF34336EFE1F5C1D44C2569FE2ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9d:39:a5:9c:2e:06:bf:8d:43:f6:c0:48:ac: 94:e5:bc:2c:cb:8f:61:7f:f6:c5:32:e6:0f:51:42: 33:23:ed:c5:0e:06:a0:ef:60:7c:77:43:0c:ac:cc: 9d:9d:3a:de:70:4d:2c:84:0d:1f:df:a1:15:42:48: 15:46:a7:ce:6f:00:fb:88:6c:7b:dc:4a:f8:5c:3d: 7c:95:86:65:5b:4c:b8:d3:ed:9f:86:6f:ad:bd:84: 73:1f:4f:90:3d:26:2f:a8:55:2a:49:9a:a2:e5:34: 51:d2:de:59:6a:0b:8a:71:04:bc:e5:66:7b:ce:28: e7:c7:f1:78:23:be:d0:5c:a9:67:70:86:54:08:c7: f4:ee:43:71:7b:e7:b9:8e:42:d4:8c:b0:bd:d3:61: 27:88:1b:c3:3b:02:c8:4b:6d:07:86:67:b0:cc:67: 8f:86:bd:44:29:ec:e1:ab:81:b3:0a:fd:3a:85:fc: c0:f8:6d:b3:22:ba:95:3f:bb:71:3e:4c:8b:e5:41: 32:dd:b9:2b:b8:98:b7:89:af:36:17:d4:b5:18:e8: 1d:28:6d:c0:b3:40:23:39:31:74:00:ba:b8:37:c2: 8f:4f:a8:00:2c:49:7f:4d:6e:5a:8f:93:de:df:47: 26:b3:ec:48:fd:20:f2:68:48:be:cf:7b:10:65:80: de:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:06:06:F9:E6:28:EF:34:33:6E:FE:1F:5C:1D:44:C2:56:9F:E2:ED X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:98:7c:7e:c1:53:42:6d:df:bd:39:65:db:b1:a6:c5:82:1f: b9:37:80:b0:ea:0e:ef:29:20:1e:61:a1:17:9a:ff:34:1d:5d: 10:68:37:23:df:d2:12:ab:16:06:44:7a:2d:1b:55:50:dc:1d: 1c:ab:3d:d5:cd:94:71:14:26:0c:ae:57:38:30:0e:9e:11:4f: 72:3e:77:4d:24:4b:5d:30:54:9b:15:5a:c5:0d:47:37:43:b5: 32:a2:f4:e8:e5:4d:41:0b:ad:1d:b5:ba:b6:da:08:22:b0:11: 43:ce:ab:ad:70:09:93:a4:74:09:0d:c0:3c:a5:ca:66:34:ef: 1c:82:c6:0c:05:8e:a0:7d:e8:6e:29:89:32:cb:fa:97:3a:1a: 4c:61:d7:97:38:09:6c:2e:d8:b7:57:29:9d:c0:e3:ef:46:07: 56:be:5d:5c:d6:72:af:d1:a7:d2:7c:91:ed:0e:22:50:f8:3a: 36:87:0a:19:92:4c:5a:3d:0c:59:02:81:e0:ed:5d:d1:b2:44: e7:95:d3:4d:f7:7f:8d:e5:7b:ec:a7:20:99:13:5c:e1:68:b6: 8e:d5:77:4d:42:5b:43:2c:20:37:6f:5f:f8:53:f4:26:99:0a: 66:96:46:63:3d:2e:c4:07:b4:b0:2b:1a:3d:2a:95:3f:96:9f: cd:c3:e6:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMprf/Rwg1uFM+Ub9R0rAkCu0VaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNjAzMDEwNzI3MDFaFw0yNjAzMDQxMTE5MDFaMDMxMTAvBgNV BAMTKDhGMDYwNkY5RTYyOEVGMzQzMzZFRkUxRjVDMUQ0NEMyNTY5RkUyRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsnTmlnC4Gv41D9sBIrJTlvCzL j2F/9sUy5g9RQjMj7cUOBqDvYHx3QwyszJ2dOt5wTSyEDR/foRVCSBVGp85vAPuI bHvcSvhcPXyVhmVbTLjT7Z+Gb629hHMfT5A9Ji+oVSpJmqLlNFHS3llqC4pxBLzl ZnvOKOfH8XgjvtBcqWdwhlQIx/TuQ3F757mOQtSMsL3TYSeIG8M7AshLbQeGZ7DM Z4+GvUQp7OGrgbMK/TqF/MD4bbMiupU/u3E+TIvlQTLduSu4mLeJrzYX1LUY6B0o bcCzQCM5MXQAurg3wo9PqAAsSX9NblqPk97fRyaz7Ej9IPJoSL7PexBlgN6jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjwYG+eYo7zQzbv4fXB1Ewlaf4u0wHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFuYfH7BU0Jt3705ZduxpsWCH7k3gLDqDu8p IB5hoRea/zQdXRBoNyPf0hKrFgZEei0bVVDcHRyrPdXNlHEUJgyuVzgwDp4RT3I+ d00kS10wVJsVWsUNRzdDtTKi9OjlTUELrR21urbaCCKwEUPOq61wCZOkdAkNwDyl ymY07xyCxgwFjqB96G4piTLL+pc6Gkxh15c4CWwu2LdXKZ3A4+9GB1a+XVzWcq/R p9J8ke0OIlD4OjaHChmSTFo9DFkCgeDtXdGyROeV0033f43le+ynIJkTXOFoto7V d01CW0MsIDdvX/hT9CaZCmaWRmM9LsQHtLArGj0qlT+Wn83D5sY= -----END CERTIFICATE-----Generated at Mon Mar 2 09:21:06 2026 by rpki-client