$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: DKp/dqjSa3ImhBhq2ivyICIPcMvq+/b0iFrdn/hTTYU= Subject key identifier: 25:26:4F:52:93:8D:28:E0:60:6F:E2:55:CC:FA:1E:52:70:58:BC:56 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 0EC1F87D09E8AAFF430D0380374F3276A851E5FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 0556 Signing time: Sun 01 Mar 2026 00:12:21 +0000 Manifest this update: Sun 01 Mar 2026 00:07:21 +0000 Manifest next update: Wed 04 Mar 2026 05:30:21 +0000 Files and hashes: 1: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) 2: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 3: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) 4: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 5: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 6: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: E6oSwKyWxejOo/v5HHitngqUwJ84vi0WR9s9o+kQ4qc=) 7: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: PlqmL7H4UBxOoJJCTPXFXlToNB3rdJqDhGoTMJMyOjI=) 8: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) 9: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 05:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:c1:f8:7d:09:e8:aa:ff:43:0d:03:80:37:4f:32:76:a8:51:e5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Mar 1 00:07:21 2026 GMT Not After : Mar 4 05:30:21 2026 GMT Subject: CN=25264F52938D28E0606FE255CCFA1E527058BC56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c3:45:1b:cd:54:bd:49:95:61:ab:86:53:d0: 26:98:82:97:5b:d5:55:51:d8:99:f8:77:a6:09:93: 43:52:54:75:f8:62:93:ba:62:58:86:af:b0:80:14: 39:22:14:4e:cf:93:96:2f:30:02:40:cb:2b:3e:fd: 63:80:c9:58:26:44:b1:83:b4:77:29:8d:79:81:92: 68:77:a5:bd:1c:78:c5:b8:22:c7:84:8e:bb:d5:5b: 96:2a:df:48:34:bd:c5:7e:a3:16:1d:c1:fc:db:26: 49:69:b6:08:c0:e0:e3:34:66:29:b0:59:76:3a:fb: 68:99:60:e7:0a:0e:40:d4:53:be:5f:f4:47:ae:a5: 47:d9:9c:d2:d3:08:01:28:9e:65:00:f0:ae:5a:2f: bc:c2:42:82:e8:25:3d:54:e2:d0:60:89:71:2c:cf: 9d:cd:60:58:83:9c:b9:0c:e6:52:3d:ea:69:62:0d: ac:85:77:bf:e6:bb:4f:ff:c5:68:ac:26:90:22:15: c3:e7:d8:fd:1a:b6:a7:7d:c2:18:80:ce:8a:80:52: c4:40:7b:31:7d:a2:6b:63:43:a4:d5:43:f0:1a:19: 97:ae:31:26:4e:21:7d:f3:28:23:92:72:fd:a5:a3: 3d:e6:ab:19:ec:d4:81:35:bb:a2:61:84:79:90:1c: f5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:26:4F:52:93:8D:28:E0:60:6F:E2:55:CC:FA:1E:52:70:58:BC:56 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:9b:8d:cd:cb:a3:0b:d9:b8:d9:f1:ed:18:20:71:25:89:0b: 2b:51:84:a0:a4:19:cc:06:a2:73:92:2e:54:9f:9f:04:df:75: 85:99:00:08:f3:fb:8c:5a:37:d6:83:7f:90:6c:83:91:2c:ca: 53:af:3f:25:ab:50:cf:ff:00:8b:78:fa:47:04:f8:ab:36:88: 78:46:c2:9a:8b:2f:06:ae:3c:db:4d:ed:1b:05:b4:51:5a:41: 80:ec:b4:83:36:8a:1d:e3:61:c5:03:6a:2e:e0:7f:18:e8:94: 4d:7b:81:c3:8d:61:b9:e1:6d:e5:92:75:e3:b0:13:85:1b:1f: 2b:81:1f:14:8e:3b:cc:bc:01:96:d2:69:c6:4f:b7:19:12:23: 0e:04:1a:77:ae:6e:eb:20:70:fc:4b:cb:8c:9e:6a:24:a5:5b: e4:90:e9:10:9b:6b:47:d3:d1:e5:e6:00:36:97:1d:e7:b8:50: 66:51:87:f9:07:6e:7f:b1:e0:ff:50:00:22:20:2a:3e:1c:eb: cc:3e:df:e6:ef:b5:7b:81:d9:38:97:b1:29:c6:17:5e:6d:9c: 5b:38:88:f7:cb:cc:14:b8:2a:c7:37:06:4b:e5:1b:19:ff:4f: 93:7e:18:aa:b0:c2:d5:b4:f7:d5:fa:ec:db:58:1b:4f:52:9f: 43:5a:ed:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDsH4fQnoqv9DDQOAN08ydqhR5f8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNjAzMDEwMDA3MjFaFw0yNjAzMDQwNTMwMjFaMDMxMTAvBgNV BAMTKDI1MjY0RjUyOTM4RDI4RTA2MDZGRTI1NUNDRkExRTUyNzA1OEJDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpw0UbzVS9SZVhq4ZT0CaYgpdb 1VVR2Jn4d6YJk0NSVHX4YpO6YliGr7CAFDkiFE7Pk5YvMAJAyys+/WOAyVgmRLGD tHcpjXmBkmh3pb0ceMW4IseEjrvVW5Yq30g0vcV+oxYdwfzbJklptgjA4OM0Zimw WXY6+2iZYOcKDkDUU75f9EeupUfZnNLTCAEonmUA8K5aL7zCQoLoJT1U4tBgiXEs z53NYFiDnLkM5lI96mliDayFd7/mu0//xWisJpAiFcPn2P0atqd9whiAzoqAUsRA ezF9omtjQ6TVQ/AaGZeuMSZOIX3zKCOScv2loz3mqxns1IE1u6JhhHmQHPUxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJSZPUpONKOBgb+JVzPoeUnBYvFYwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIabjc3LowvZuNnx7RggcSWJCytRhKCkGcwG onOSLlSfnwTfdYWZAAjz+4xaN9aDf5Bsg5EsylOvPyWrUM//AIt4+kcE+Ks2iHhG wpqLLwauPNtN7RsFtFFaQYDstIM2ih3jYcUDai7gfxjolE17gcONYbnhbeWSdeOw E4UbHyuBHxSOO8y8AZbSacZPtxkSIw4EGneubusgcPxLy4yeaiSlW+SQ6RCba0fT 0eXmADaXHee4UGZRh/kHbn+x4P9QACIgKj4c68w+3+bvtXuB2TiXsSnGF15tnFs4 iPfLzBS4Ksc3BkvlGxn/T5N+GKqwwtW099X67NtYG09Sn0Na7Wo= -----END CERTIFICATE-----Generated at Mon Mar 2 05:01:54 2026 by rpki-client