$ rpki-client -vvf repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft File: 20EF9BB996F984E995F9FF0658F0B90CB903B897.mft (raw, json) Hash identifier: wVC7Aw+4eA2u6yzxfvzeTopvF1Fsrc4XPKFHLMmlcpc= Subject key identifier: 7D:98:7D:BD:13:84:42:61:FA:5D:F1:C3:D1:2B:A5:87:52:A1:79:CC Authority key identifier: 20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 Certificate issuer: /CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Certificate serial: 5C6398F0614C2907825099878BC795EE51D70577 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft Manifest number: 025E Signing time: Sat 28 Feb 2026 13:52:11 +0000 Manifest this update: Sat 28 Feb 2026 13:47:11 +0000 Manifest next update: Tue 03 Mar 2026 17:55:11 +0000 Files and hashes: 1: 20EF9BB996F984E995F9FF0658F0B90CB903B897.crl (hash: M8TQCa4UItKv+mUQ837pPIMAlCoBNqdGDbjfOKOtUdQ=) 2: 3130332e3138392e3131302e302f32332d3233203d3e20313439373439.roa (hash: iDioe3jjxT7o8WJUfZMX4dcAtJo9aoi+lZoEhp66IbU=) 3: 3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa (hash: vEIWSBdkXeXYMMZ1JkgEqdYq9VUkjPtTYb4B2b9jIwo=) 4: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (hash: gtfNgouP3xqwRZMc2rLq5YYKkcJUcC8NmXsS5NHSV5Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:63:98:f0:61:4c:29:07:82:50:99:87:8b:c7:95:ee:51:d7:05:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Validity Not Before: Feb 28 13:47:11 2026 GMT Not After : Mar 3 17:55:11 2026 GMT Subject: CN=7D987DBD13844261FA5DF1C3D12BA58752A179CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:4e:f5:7f:e8:09:91:ea:84:ea:96:a7:cb: f2:ab:53:2e:72:94:e0:8e:2d:c8:8e:fd:56:ee:e1: ec:44:4f:c6:63:ed:d5:56:82:22:31:45:33:01:35: df:a1:be:dd:b5:91:1b:24:e8:5f:d7:5b:08:0b:46: 12:b1:fb:72:e3:c5:27:5f:b6:2f:ca:26:bd:60:87: d6:0c:46:b9:da:c3:a1:ed:0a:f8:d4:4f:80:83:7c: ec:dc:fb:ef:dd:6d:7a:88:26:3b:6d:71:54:f2:27: 3e:42:59:95:ab:97:76:b2:23:1f:72:f6:31:d4:2e: c3:7f:e9:50:e6:43:25:d3:5c:2f:26:36:60:79:c2: 1c:bb:cf:a0:29:cc:bf:3b:35:2f:7f:4b:a1:52:46: 46:9d:39:e4:5b:a3:b5:30:6c:b5:23:c1:5a:07:f1: 4b:c2:cf:19:87:87:15:21:cc:70:9e:8c:57:a8:b4: 7c:a5:c9:c8:2b:64:b6:42:7a:55:ee:48:85:51:c7: de:22:f1:fe:2b:a5:6d:1b:ed:cb:3d:94:28:a8:45: 35:7b:73:52:b7:76:80:26:5c:ba:a0:7d:7a:2f:44: 88:88:0e:82:af:3e:38:a3:79:0a:94:60:0f:5a:bb: 94:fa:82:db:24:4a:49:51:8d:ae:e7:21:c3:3c:6f: 0a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:98:7D:BD:13:84:42:61:FA:5D:F1:C3:D1:2B:A5:87:52:A1:79:CC X509v3 Authority Key Identifier: keyid:20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0b:0f:46:8e:a4:e4:13:12:2b:e7:e0:f6:77:85:8b:5e:6f: 01:b4:dd:a0:33:63:08:68:5f:6d:42:8f:e5:9b:9b:40:eb:b6: 6a:af:24:68:f0:03:cf:02:6c:1c:97:a6:31:1a:70:8d:e2:29: 9c:48:b1:0e:d5:96:7f:02:a6:aa:66:04:f9:df:dd:dc:14:30: d9:cf:95:8a:2a:48:4a:7a:60:99:c7:35:8c:01:22:03:04:27: 7d:a7:3e:ea:74:e5:90:8e:de:58:68:06:f7:e8:5c:db:8e:d2: 50:94:93:94:6c:24:7f:c0:cb:bd:f6:13:88:0a:d7:a7:05:eb: b4:a2:a7:36:be:92:1f:ca:f5:9c:9a:8c:66:d5:bc:06:24:19: 54:61:49:ca:3d:0e:16:cb:fb:95:91:25:7c:c1:d4:76:79:f0: d8:5f:91:63:9b:04:62:50:01:7f:fa:24:e4:c3:75:40:c6:ec: f1:97:4a:7e:c3:d6:2c:d9:03:2d:e4:9c:e1:12:7c:56:3b:5a: ea:78:21:dd:49:fa:85:90:ad:81:9e:07:e7:11:5c:bb:95:1c: 96:16:72:9f:fa:5a:5d:2f:60:14:a0:7e:d8:26:a4:c2:05:18: 5d:ab:2c:6e:a8:74:bf:d0:1e:a4:b8:61:b0:9a:a5:3d:22:82: 5a:eb:3c:c4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXGOY8GFMKQeCUJmHi8eV7lHXBXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENC OTAzQjg5NzAeFw0yNjAyMjgxMzQ3MTFaFw0yNjAzMDMxNzU1MTFaMDMxMTAvBgNV BAMTKDdEOTg3REJEMTM4NDQyNjFGQTVERjFDM0QxMkJBNTg3NTJBMTc5Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1E71f+gJkeqE6pany/KrUy5y lOCOLciO/Vbu4exET8Zj7dVWgiIxRTMBNd+hvt21kRsk6F/XWwgLRhKx+3LjxSdf ti/KJr1gh9YMRrnaw6HtCvjUT4CDfOzc++/dbXqIJjttcVTyJz5CWZWrl3ayIx9y 9jHULsN/6VDmQyXTXC8mNmB5why7z6ApzL87NS9/S6FSRkadOeRbo7UwbLUjwVoH 8UvCzxmHhxUhzHCejFeotHylycgrZLZCelXuSIVRx94i8f4rpW0b7cs9lCioRTV7 c1K3doAmXLqgfXovRIiIDoKvPjijeQqUYA9au5T6gtskSklRja7nIcM8bwp9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfZh9vROEQmH6XfHD0Sulh1KhecwwHwYDVR0j BBgwFoAUIO+buZb5hOmV+f8GWPC5DLkDuJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDVlNWEzMC0wODAyLTRjNWMtOTQ3ZS05OGVmMjg1ZjRmNmIvMC8yMEVGOUJCOTk2 Rjk4NEU5OTVGOUZGMDY1OEYwQjkwQ0I5MDNCODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENCOTAz Qjg5Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA1ZTVhMzAtMDgwMi00YzVjLTk0 N2UtOThlZjI4NWY0ZjZiLzAvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5 MENCOTAzQjg5Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAoLD0aOpOQTEivn4PZ3hYtebwG03aAzYwho X21Cj+Wbm0DrtmqvJGjwA88CbByXpjEacI3iKZxIsQ7Vln8CpqpmBPnf3dwUMNnP lYoqSEp6YJnHNYwBIgMEJ32nPup05ZCO3lhoBvfoXNuO0lCUk5RsJH/Ay732E4gK 16cF67Sipza+kh/K9ZyajGbVvAYkGVRhSco9DhbL+5WRJXzB1HZ58NhfkWObBGJQ AX/6JOTDdUDG7PGXSn7D1izZAy3knOESfFY7Wup4Id1J+oWQrYGeB+cRXLuVHJYW cp/6Wl0vYBSgftgmpMIFGF2rLG6odL/QHqS4YbCapT0iglrrPMQ= -----END CERTIFICATE-----Generated at Mon Mar 2 20:07:03 2026 by rpki-client