$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft File: 95966A8DB250307CF9852483F96922EE520F6E2A.mft (raw, json) Hash identifier: EYMHCZSJjuJENxeHW/xDbCeakD3HrtRnEE56Tv3OGCo= Subject key identifier: 63:AB:5D:08:56:E1:F9:D0:86:0B:EB:E9:0A:DD:4E:4A:1E:E8:09:1A Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 1EABC3FE0F00ED64972EDF55558FBA9EA7381A91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft Manifest number: 0340 Signing time: Sat 28 Feb 2026 05:20:00 +0000 Manifest this update: Sat 28 Feb 2026 05:15:00 +0000 Manifest next update: Tue 03 Mar 2026 12:48:00 +0000 Files and hashes: 1: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (hash: lJA11B888lTAIORO0k9rdft4p7t0vrr4FyWBG++arwA=) 2: 3130332e31392e3233302e302f32342d3234203d3e20313332363638.roa (hash: QAndsMLECtqgWCCHyuYe9oOyMMkwnZ8QhtRk2OHf9FQ=) 3: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (hash: MitWmX3yxsYyPd+sKi7YcLOVm2fefPu2Qs/7NDCXxb8=) 4: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (hash: xt2DiIsS1Hm+P8ldmkaqq+Mf+LiIX+U17UKLw/Y34Uk=) 5: 95966A8DB250307CF9852483F96922EE520F6E2A.crl (hash: koU5DL7WsrtFljhUBjHWVtbcrW43EbZKohfbCJlgLEM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 12:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ab:c3:fe:0f:00:ed:64:97:2e:df:55:55:8f:ba:9e:a7:38:1a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Feb 28 05:15:00 2026 GMT Not After : Mar 3 12:48:00 2026 GMT Subject: CN=63AB5D0856E1F9D0860BEBE90ADD4E4A1EE8091A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:34:07:80:6e:59:01:e4:14:8f:f2:ff:65:0e: fe:7b:38:24:47:44:28:88:6a:be:00:79:29:e6:d2: 00:b5:81:d8:be:74:a7:4a:ad:5f:5f:45:e0:6b:bf: 62:1f:9a:2f:bf:c6:7a:1e:bd:92:79:89:9f:09:59: 04:80:47:71:fc:1b:6c:f4:c3:bc:4b:59:28:bd:0d: 98:54:6c:18:49:b1:7a:3b:1e:23:09:1c:d5:28:87: ea:0f:53:c7:c7:7b:37:cf:2e:7e:2e:a9:3f:7d:40: 53:31:de:fc:1b:40:f2:5b:1e:45:77:33:e4:70:1b: 51:76:02:d2:6e:1a:72:53:be:0b:50:52:2e:b5:9f: b5:05:62:b7:2c:04:68:ff:b2:ff:78:e3:0d:03:37: 23:96:41:ab:82:42:ca:83:86:5a:f5:be:99:29:81: e9:23:9e:36:9a:b2:e7:6f:fd:03:30:f4:57:79:25: ce:dc:83:40:31:a9:89:d9:8d:ab:9a:8f:e8:aa:5c: 70:c7:23:a9:2e:f3:6e:8d:c3:f9:ff:86:fb:41:a4: a0:98:7d:80:fa:78:d1:a8:59:1d:0c:f3:af:da:ab: f1:2a:26:28:61:8b:2e:c4:cc:83:9b:7b:e8:90:ca: 47:f7:c4:62:80:12:28:ac:d8:b1:d6:3c:6c:67:a7: 87:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:AB:5D:08:56:E1:F9:D0:86:0B:EB:E9:0A:DD:4E:4A:1E:E8:09:1A X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:cb:da:32:5a:9c:8f:de:b7:21:d8:e7:49:10:51:96:14:39: 6a:be:8f:01:a2:76:b2:1a:8d:e0:90:89:23:7b:9c:18:00:a6: 17:d0:3f:0a:42:eb:bf:ea:e4:10:c2:ba:3c:87:81:7b:10:84: 0b:a8:f4:16:dc:da:df:2b:d9:3a:13:14:41:6b:67:8a:a7:09: f3:69:d3:55:22:ee:2a:30:cc:95:4e:c2:27:f3:6b:b2:3b:9e: cf:e8:15:2d:db:0b:01:3b:ae:25:84:4a:06:5b:44:23:71:98: a3:13:7e:4c:49:18:63:2f:44:ad:bd:d9:e6:1f:3d:8c:f6:f2: de:6a:ed:c5:01:3d:36:fd:38:cb:2c:1a:93:7e:a6:ea:6d:b2: ef:b7:f6:43:53:9d:34:d4:04:99:d6:51:c9:09:e2:33:aa:f4: a8:04:c4:35:60:29:ea:ca:8f:89:99:73:c4:11:18:83:f1:9f: 39:90:64:87:8d:30:1c:82:5a:a1:7f:f6:2e:c9:00:c3:4d:03: fc:7e:35:9e:45:08:c8:bc:2b:06:02:38:36:50:04:94:00:1e: 0a:77:33:0d:16:ed:87:1b:6f:7b:06:f1:24:ef:f4:68:a0:20: c6:61:3e:a9:b6:b5:91:3b:3c:96:c2:90:26:b8:be:a1:03:e4: 8b:5a:87:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHqvD/g8A7WSXLt9VVY+6nqc4GpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNjAyMjgwNTE1MDBaFw0yNjAzMDMxMjQ4MDBaMDMxMTAvBgNV BAMTKDYzQUI1RDA4NTZFMUY5RDA4NjBCRUJFOTBBREQ0RTRBMUVFODA5MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTNAeAblkB5BSP8v9lDv57OCRH RCiIar4AeSnm0gC1gdi+dKdKrV9fReBrv2Ifmi+/xnoevZJ5iZ8JWQSAR3H8G2z0 w7xLWSi9DZhUbBhJsXo7HiMJHNUoh+oPU8fHezfPLn4uqT99QFMx3vwbQPJbHkV3 M+RwG1F2AtJuGnJTvgtQUi61n7UFYrcsBGj/sv944w0DNyOWQauCQsqDhlr1vpkp gekjnjaasudv/QMw9Fd5Jc7cg0AxqYnZjauaj+iqXHDHI6ku826Nw/n/hvtBpKCY fYD6eNGoWR0M86/aq/EqJihhiy7EzIObe+iQykf3xGKAEiis2LHWPGxnp4c5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUY6tdCFbh+dCGC+vpCt1OSh7oCRowHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDJmMTQxN2EtNTcxOC00MDcxLTlm MzUtYzEyMjU1NWRhYzdhLzAvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIy RUU1MjBGNkUyQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANnL2jJanI/etyHY50kQUZYUOWq+jwGidrIa jeCQiSN7nBgAphfQPwpC67/q5BDCujyHgXsQhAuo9Bbc2t8r2ToTFEFrZ4qnCfNp 01Ui7iowzJVOwifza7I7ns/oFS3bCwE7riWESgZbRCNxmKMTfkxJGGMvRK292eYf PYz28t5q7cUBPTb9OMssGpN+puptsu+39kNTnTTUBJnWUckJ4jOq9KgExDVgKerK j4mZc8QRGIPxnzmQZIeNMByCWqF/9i7JAMNNA/x+NZ5FCMi8KwYCODZQBJQAHgp3 Mw0W7Ycbb3sG8STv9GigIMZhPqm2tZE7PJbCkCa4vqED5Itah10= -----END CERTIFICATE-----Generated at Mon Mar 2 11:47:31 2026 by rpki-client