$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft File: D2EF21DBD545255BED30EEC34623F204A3E12D23.mft (raw, json) Hash identifier: n3hnQAClIXnMBOvpFcp3xaJOW2JVYlosZ1w3Ak4tJhU= Subject key identifier: 28:95:10:77:F3:45:71:F8:06:C4:F5:10:72:5B:5A:EF:10:0B:C3:73 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 3A1AEB44E280F0AD185A7F76E3EA1B88C0B429DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft Manifest number: 054F Signing time: Sat 28 Feb 2026 06:31:18 +0000 Manifest this update: Sat 28 Feb 2026 06:26:18 +0000 Manifest next update: Tue 03 Mar 2026 09:54:18 +0000 Files and hashes: 1: D2EF21DBD545255BED30EEC34623F204A3E12D23.crl (hash: Jad4mChw20b3NXmo5MZq5p1EfbXOX7/Pyt9+oS+nIec=) 2: 3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa (hash: w7Chi4gZxBYt1ZeGb/YO7tH8OTI2H/0aS5PoiZEPc/Y=) 3: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (hash: iReeweCReiVdyDxdcHaFTjeSzHc3cSR3SFaF6DPJP8s=) 4: 3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa (hash: 2COjLCJ4YEuRoqvYvSrj9dQC5huF+G+dAbpMe2HpJLo=) 5: 3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa (hash: W2IYXy+JkbGpp85/sS2UKLUazxQpNz2N8iZifbHeJpI=) 6: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (hash: HI0hJJXTQDhzD7pTczCRmyIdw4yYJFsaIwjzSTbxsrY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 09:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:1a:eb:44:e2:80:f0:ad:18:5a:7f:76:e3:ea:1b:88:c0:b4:29:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Feb 28 06:26:18 2026 GMT Not After : Mar 3 09:54:18 2026 GMT Subject: CN=28951077F34571F806C4F510725B5AEF100BC373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:79:33:77:4d:8f:ee:43:be:3c:a6:b5:f2:d8: 2b:83:bf:6f:a6:11:bc:b1:fd:38:81:39:60:f0:10: d7:30:f2:44:51:c0:7f:9e:13:ae:88:8d:77:53:e5: 61:de:98:18:10:4b:a8:d3:6c:b1:fb:41:cc:88:f7: a8:39:35:98:4b:5b:b5:aa:b3:3f:c4:5f:29:4e:3a: 29:9d:8f:a0:9a:6a:62:66:d1:08:d3:40:8c:eb:0b: 3c:7d:9e:80:86:d9:14:4a:52:d5:ee:86:ec:fa:cc: 0c:44:ec:6e:61:20:24:69:97:26:45:30:5a:cb:1b: e1:9c:56:d2:e0:56:65:57:52:f7:3c:91:da:21:7b: a4:15:ec:b7:c2:fc:34:ed:6f:5c:54:d8:1e:0a:e4: 6d:14:f6:a1:8b:2b:22:d2:e5:31:b6:f7:37:00:08: 7f:e8:b3:77:e5:20:87:9a:b1:4f:ca:1f:fd:35:e5: 33:6d:ee:9b:18:cf:2d:3c:73:ac:4d:ea:b0:39:0e: 46:d5:aa:66:9a:9d:ba:b0:5f:37:fe:12:e4:f1:d9: af:67:22:00:1d:2d:de:a4:c5:92:c3:e4:1b:fb:23: fa:9b:97:dc:0f:51:d7:ce:da:58:2f:b7:97:b7:7a: c8:0f:81:f7:04:e4:91:93:98:04:89:94:1f:fc:11: 77:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:95:10:77:F3:45:71:F8:06:C4:F5:10:72:5B:5A:EF:10:0B:C3:73 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:0b:ef:19:1d:b2:1b:11:75:fa:82:13:68:8a:69:3c:3d:23: fd:67:5d:59:f3:8f:40:a4:ec:05:4c:1d:9d:9f:4c:e6:45:cd: 82:0d:a3:24:0a:69:df:e7:d1:e4:43:96:c1:28:ae:be:d5:42: 80:4f:19:a1:dd:ff:a2:65:ae:15:f1:98:d4:91:0c:92:89:46: cc:3b:e3:07:e0:95:79:2c:fc:9a:31:2a:9c:eb:69:0c:56:0d: ad:71:e0:bd:df:46:b8:87:86:e8:85:ce:e4:b7:ce:88:e9:e5: 6e:e1:26:2f:48:db:30:32:d2:4f:99:1a:7c:c2:68:f0:4f:ca: 28:4e:ed:5f:01:b2:c2:78:df:7f:84:83:ff:e7:55:8f:f7:33: d9:b9:b1:85:6e:6e:8f:b4:eb:b3:59:e8:cc:69:bc:8b:01:f9: fa:d2:71:de:b9:7f:43:44:4d:e4:2b:4d:cf:f2:36:55:2f:fd: 69:9b:f7:4b:00:28:b9:a3:98:89:0f:f9:d9:36:83:13:04:6c: 2c:82:86:14:f5:8c:e8:50:c0:6c:f9:da:28:1e:3f:9d:97:9a: e3:87:90:c6:53:d2:08:61:7f:f1:e8:fe:01:78:ac:05:97:c1: 71:d6:03:6b:1d:a3:2c:54:fd:01:f8:36:e9:26:c0:1b:69:12: f9:53:46:09 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOhrrROKA8K0YWn924+obiMC0Kd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNjAyMjgwNjI2MThaFw0yNjAzMDMwOTU0MThaMDMxMTAvBgNV BAMTKDI4OTUxMDc3RjM0NTcxRjgwNkM0RjUxMDcyNUI1QUVGMTAwQkMzNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDteTN3TY/uQ748prXy2CuDv2+m Ebyx/TiBOWDwENcw8kRRwH+eE66IjXdT5WHemBgQS6jTbLH7QcyI96g5NZhLW7Wq sz/EXylOOimdj6CaamJm0QjTQIzrCzx9noCG2RRKUtXuhuz6zAxE7G5hICRplyZF MFrLG+GcVtLgVmVXUvc8kdohe6QV7LfC/DTtb1xU2B4K5G0U9qGLKyLS5TG29zcA CH/os3flIIeasU/KH/015TNt7psYzy08c6xN6rA5DkbVqmaanbqwXzf+EuTx2a9n IgAdLd6kxZLD5Bv7I/qbl9wPUdfO2lgvt5e3esgPgfcE5JGTmASJlB/8EXerAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKJUQd/NFcfgGxPUQclta7xALw3MwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDIzMWU2YjEtMTg0MS00NzZkLWI0 NmItYjQ0YjljYjk2OGIwLzAvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0Yy MDRBM0UxMkQyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACUL7xkdshsRdfqCE2iKaTw9I/1nXVnzj0Ck 7AVMHZ2fTOZFzYINoyQKad/n0eRDlsEorr7VQoBPGaHd/6JlrhXxmNSRDJKJRsw7 4wfglXks/JoxKpzraQxWDa1x4L3fRriHhuiFzuS3zojp5W7hJi9I2zAy0k+ZGnzC aPBPyihO7V8BssJ433+Eg//nVY/3M9m5sYVubo+067NZ6MxpvIsB+frScd65f0NE TeQrTc/yNlUv/Wmb90sAKLmjmIkP+dk2gxMEbCyChhT1jOhQwGz52igeP52XmuOH kMZT0ghhf/Ho/gF4rAWXwXHWA2sdoyxU/QH4NukmwBtpEvlTRgk= -----END CERTIFICATE-----Generated at Mon Mar 2 05:57:07 2026 by rpki-client