$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft File: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft (raw, json) Hash identifier: sIEvQLvnlv4gGxhCv84WPmbyGjrBU/tLUWuzLT9GHzc= Subject key identifier: B6:61:A5:FE:2C:90:4E:F3:83:66:B1:B5:56:D9:9B:96:E7:0C:53:B2 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 698EA301EB308580DC3508DD89DDE64C311A8FF6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft Manifest number: 0523 Signing time: Mon 02 Mar 2026 06:02:33 +0000 Manifest this update: Mon 02 Mar 2026 05:57:33 +0000 Manifest next update: Thu 05 Mar 2026 07:18:33 +0000 Files and hashes: 1: 3130332e33302e3134372e302f32342d3234203d3e203436303530.roa (hash: sZ7Y9HidNwNbLqaWtw5ljbRqMh/n0NpDyP/tNJF266g=) 2: 3130332e33302e3134342e302f32322d3234203d3e203436303530.roa (hash: AqVeGkcCeQqSSxTzFMHfgh7oeb2WJE9ZcEpymir7iqI=) 3: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (hash: fr5BMGMZ4/JWAtuc82Bwpon8VOaBOapImuPEr/qDXGY=) 4: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl (hash: rbDDMYnXn89PhrnKzRMCovQ4hQPuiwualB2O+Lj+V74=) 5: 3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa (hash: QmUK5t+kPBhbRYikNscX9LWrBhBp5pP7CeGdlMn53Do=) 6: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (hash: rdX2P/62Fs2A7bSHrzzBOblACv/dlOvxDsyqbDOTmes=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:8e:a3:01:eb:30:85:80:dc:35:08:dd:89:dd:e6:4c:31:1a:8f:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Mar 2 05:57:33 2026 GMT Not After : Mar 5 07:18:33 2026 GMT Subject: CN=B661A5FE2C904EF38366B1B556D99B96E70C53B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:26:63:00:e1:a5:0f:35:54:2f:97:f5:fb:fd: 7a:84:63:1b:4b:e0:9b:40:ab:4a:34:67:f3:3c:31: 3b:fc:ed:57:32:af:f3:2e:8a:9c:7f:b5:a2:ae:6a: 9e:03:95:be:de:20:ee:5b:20:96:f3:26:ad:b7:07: d4:0b:34:70:71:fc:b2:5d:ad:e8:e4:c5:8d:9f:eb: 8a:ac:20:41:e9:e3:1a:a1:57:dc:89:af:a1:65:8f: ff:f8:13:45:48:5d:1c:6d:d6:8c:f5:7f:91:b4:29: 40:8d:a6:da:da:a2:9f:2f:c0:16:b2:39:38:13:8c: 01:73:11:89:98:e3:f7:09:c0:2b:92:8f:2a:c0:28: 9b:83:20:1f:0b:76:f5:92:11:38:57:0c:d1:a8:d9: 62:85:2c:a2:dc:8b:f3:10:bf:a4:8c:1b:03:54:b6: 63:96:9f:7a:bc:10:38:f2:82:8f:85:7d:07:43:9a: cb:e6:5c:0e:9d:3e:58:5c:8d:0a:6d:17:11:47:e6: 6b:33:65:db:be:67:42:eb:0f:79:58:6e:dd:79:dc: 4e:76:3b:10:db:0f:24:d5:13:85:21:df:1f:a3:8d: 94:a8:86:4c:fb:4e:f1:6a:9d:e3:d0:17:05:4b:d3: 26:16:3a:43:23:6e:db:f2:75:c2:cc:77:fa:ad:40: ea:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:61:A5:FE:2C:90:4E:F3:83:66:B1:B5:56:D9:9B:96:E7:0C:53:B2 X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:bf:a3:85:05:65:13:78:4d:9b:0d:5a:99:30:b9:0e:0a:41: 41:34:bb:d9:89:6a:09:0b:a5:5d:f4:f7:dd:b1:9b:60:53:0f: c4:7e:c3:88:05:b6:7a:ff:c7:f8:3c:c2:81:a9:28:00:69:19: c7:b7:70:42:81:fb:bd:53:53:17:16:49:68:16:06:aa:22:63: 9e:f9:60:87:f1:6d:70:1b:3c:3c:51:28:7c:34:d5:2b:79:d0: ab:44:5c:91:ba:d1:5b:1e:6e:ad:b3:63:47:c6:51:23:8a:45: 95:0b:e9:0e:85:71:37:d9:82:f7:12:d8:15:70:9e:1e:a7:b6: a5:76:59:93:2d:7c:a2:22:61:bc:f5:3d:9a:f6:5d:0b:cc:b9: fa:ca:47:64:bb:f4:0d:3a:18:8a:b6:61:da:ef:fc:c5:70:6e: dc:5f:6b:a7:1b:5d:45:2b:bc:c1:0b:e3:eb:ec:46:ca:1e:99: 2f:e2:39:ea:90:f3:22:32:ea:e1:05:73:dc:e6:dd:10:25:2b: 0a:69:67:e9:05:38:15:48:0d:db:20:29:e7:eb:e7:90:dd:c5: 81:df:1a:31:73:72:7a:45:2a:c6:ef:fe:3b:08:28:06:8c:ff: 83:24:de:84:d3:49:f9:34:3a:bf:29:0b:d2:a2:e5:e0:1b:a7: 37:52:fa:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaY6jAeswhYDcNQjdid3mTDEaj/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNjAzMDIwNTU3MzNaFw0yNjAzMDUwNzE4MzNaMDMxMTAvBgNV BAMTKEI2NjFBNUZFMkM5MDRFRjM4MzY2QjFCNTU2RDk5Qjk2RTcwQzUzQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIJmMA4aUPNVQvl/X7/XqEYxtL 4JtAq0o0Z/M8MTv87Vcyr/Muipx/taKuap4Dlb7eIO5bIJbzJq23B9QLNHBx/LJd rejkxY2f64qsIEHp4xqhV9yJr6Flj//4E0VIXRxt1oz1f5G0KUCNptraop8vwBay OTgTjAFzEYmY4/cJwCuSjyrAKJuDIB8LdvWSEThXDNGo2WKFLKLci/MQv6SMGwNU tmOWn3q8EDjygo+FfQdDmsvmXA6dPlhcjQptFxFH5mszZdu+Z0LrD3lYbt153E52 OxDbDyTVE4Uh3x+jjZSohkz7TvFqnePQFwVL0yYWOkMjbtvydcLMd/qtQOoVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtmGl/iyQTvODZrG1VtmblucMU7IwHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDBkMmQzZTMtNGMyMC00YTkwLTgz M2UtZWFkNDNjMzM5OTFlLzAvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5 MDBERTE4MUUwNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGi/o4UFZRN4TZsNWpkwuQ4KQUE0u9mJagkL pV30992xm2BTD8R+w4gFtnr/x/g8woGpKABpGce3cEKB+71TUxcWSWgWBqoiY575 YIfxbXAbPDxRKHw01St50KtEXJG60Vsebq2zY0fGUSOKRZUL6Q6FcTfZgvcS2BVw nh6ntqV2WZMtfKIiYbz1PZr2XQvMufrKR2S79A06GIq2Ydrv/MVwbtxfa6cbXUUr vMEL4+vsRsoemS/iOeqQ8yIy6uEFc9zm3RAlKwppZ+kFOBVIDdsgKefr55DdxYHf GjFzcnpFKsbv/jsIKAaM/4Mk3oTTSfk0Or8pC9Ki5eAbpzdS+lA= -----END CERTIFICATE-----Generated at Mon Mar 2 11:47:04 2026 by rpki-client