$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft File: 65E29AACDF8556B440C4D7180F51C447FFE5238F.mft (raw, json) Hash identifier: XDU8t2ZJf7sCS2OuCKIju/4hl33bQ6cG785iJBy3P2c= Subject key identifier: 1E:D7:E3:C1:92:98:8F:D4:95:95:DB:9D:D4:EF:7D:F3:F2:EC:EB:D3 Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 61B7800DA08C1924CB3EF2BD473F52EB043513EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft Manifest number: 0205 Signing time: Sat 28 Feb 2026 15:11:31 +0000 Manifest this update: Sat 28 Feb 2026 15:06:31 +0000 Manifest next update: Tue 03 Mar 2026 17:31:31 +0000 Files and hashes: 1: 3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa (hash: iDhsHzDkVNr/vSSmI9ZIctObh09TpaY2vp55/txIX4E=) 2: 3130332e35382e3139392e302f32342d3234203d3e20313531353237.roa (hash: dHvA0l4MoAsHbnDeUczCGz/tbqjQXH0AlY+9WKNokS8=) 3: 65E29AACDF8556B440C4D7180F51C447FFE5238F.crl (hash: BI1Ns/eJvhuY3qb9WSXe9TN7XRl1rJAMvLULK1sdA20=) 4: 3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa (hash: jJN+a1uyK5er9vytVlfqMqFHVNtiQSwDgGPE7xDkxVU=) 5: 3130332e35382e3139382e302f32342d3234203d3e20313530343937.roa (hash: 7IHy7S58PrSgI+9s9OhKwDaIOEZSZJD9pKdINBx6ktw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 17:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b7:80:0d:a0:8c:19:24:cb:3e:f2:bd:47:3f:52:eb:04:35:13:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Feb 28 15:06:31 2026 GMT Not After : Mar 3 17:31:31 2026 GMT Subject: CN=1ED7E3C192988FD49595DB9DD4EF7DF3F2ECEBD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:22:9d:97:73:3c:10:7e:4d:2d:9f:14:cf:de: 9b:be:d3:f4:5b:dd:fb:3a:f9:72:73:c6:89:e5:51: 69:09:22:05:b5:07:45:9d:51:5a:ea:36:02:2f:99: ac:4b:c9:db:ed:70:2f:fb:21:5d:33:2f:42:47:52: 6b:2e:63:33:fe:6f:46:dd:8b:16:15:bb:1c:de:8d: d8:13:5b:e6:44:20:1c:29:c7:10:e1:99:1a:a4:7f: e6:42:b1:49:96:8c:59:f6:14:80:02:e5:60:f9:a0: 81:4f:e1:7c:97:5f:1b:03:fa:c7:54:e8:3d:fc:65: de:15:4b:21:29:7a:43:03:25:18:f6:85:a4:ae:9c: 5e:49:91:16:04:1b:60:e7:70:16:9e:4f:89:ee:e0: 74:a5:7d:62:53:60:e1:3a:a9:f1:fd:18:f2:e4:20: 9d:76:09:26:e1:7d:39:1f:43:37:02:9a:b2:ca:3e: 17:9d:e8:7f:d9:f4:4e:fa:f5:3c:16:74:99:8a:4b: fd:f4:79:24:2e:3d:fb:45:7d:d8:2a:bd:a3:22:f0: cc:98:42:a4:2c:87:52:6f:54:9d:6c:2a:02:8f:71: 10:91:78:26:ca:10:cd:64:b5:1a:04:a0:d1:40:e9: f8:f4:29:9f:00:46:67:08:a1:2a:5d:d8:f9:c2:f0: 9d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D7:E3:C1:92:98:8F:D4:95:95:DB:9D:D4:EF:7D:F3:F2:EC:EB:D3 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:8d:e4:50:c6:eb:28:5c:e3:51:e8:f3:c4:9f:b4:a5:7c:92: c5:3a:61:0c:ef:3e:7c:94:52:d0:51:8a:64:54:13:d1:2a:d3: 01:1c:bc:f1:c3:9d:a4:1f:87:7c:30:c3:74:36:08:2b:ea:69: 58:6b:bb:c0:5c:48:bd:43:50:66:2e:ae:85:43:d1:f2:91:20: 2e:a3:c3:b6:7a:d7:1f:59:21:7a:30:b2:45:76:ca:79:81:45: d9:23:ac:87:a5:fa:f1:57:71:20:e4:52:58:b5:35:06:9d:5f: ed:e8:88:ca:09:1c:8a:2c:21:22:ac:59:ce:00:32:69:89:fa: c8:bc:9f:e1:a1:5e:3d:bf:37:eb:21:31:cd:a1:ff:1b:6f:e3: 96:8a:d1:bd:6e:ba:0e:da:09:79:d1:67:dc:1b:f2:a7:10:cc: 56:9b:fc:1f:c0:34:cb:5d:07:0b:8d:7a:31:07:d9:a6:f6:5f: ed:e5:43:2b:d8:84:eb:27:85:ae:37:40:e2:86:a7:1f:6b:6a: fb:a0:10:f9:fa:34:82:fa:4d:9e:bb:24:88:bc:9f:19:47:df: b7:13:3a:33:38:cc:b2:6b:fd:81:0f:74:83:59:a5:b2:92:ef: 1d:c2:99:e2:6a:1b:ed:f9:00:d8:56:60:99:3c:64:f3:f3:5e: a6:59:90:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYbeADaCMGSTLPvK9Rz9S6wQ1E+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNjAyMjgxNTA2MzFaFw0yNjAzMDMxNzMxMzFaMDMxMTAvBgNV BAMTKDFFRDdFM0MxOTI5ODhGRDQ5NTk1REI5REQ0RUY3REYzRjJFQ0VCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuIp2XczwQfk0tnxTP3pu+0/Rb 3fs6+XJzxonlUWkJIgW1B0WdUVrqNgIvmaxLydvtcC/7IV0zL0JHUmsuYzP+b0bd ixYVuxzejdgTW+ZEIBwpxxDhmRqkf+ZCsUmWjFn2FIAC5WD5oIFP4XyXXxsD+sdU 6D38Zd4VSyEpekMDJRj2haSunF5JkRYEG2DncBaeT4nu4HSlfWJTYOE6qfH9GPLk IJ12CSbhfTkfQzcCmrLKPhed6H/Z9E769TwWdJmKS/30eSQuPftFfdgqvaMi8MyY QqQsh1JvVJ1sKgKPcRCReCbKEM1ktRoEoNFA6fj0KZ8ARmcIoSpd2PnC8J39AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHtfjwZKYj9SVldud1O998/Ls69MwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDhjZTIwMDgtODRiNy00YmVmLTk0 YjktYmIzZmRiMTdiMjM4LzAvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0 NDdGRkU1MjM4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALKN5FDG6yhc41Ho88SftKV8ksU6YQzvPnyU UtBRimRUE9Eq0wEcvPHDnaQfh3www3Q2CCvqaVhru8BcSL1DUGYuroVD0fKRIC6j w7Z61x9ZIXowskV2ynmBRdkjrIel+vFXcSDkUli1NQadX+3oiMoJHIosISKsWc4A MmmJ+si8n+GhXj2/N+shMc2h/xtv45aK0b1uug7aCXnRZ9wb8qcQzFab/B/ANMtd BwuNejEH2ab2X+3lQyvYhOsnha43QOKGpx9ravugEPn6NIL6TZ67JIi8nxlH37cT OjM4zLJr/YEPdINZpbKS7x3CmeJqG+35ANhWYJk8ZPPzXqZZkHY= -----END CERTIFICATE-----Generated at Mon Mar 2 07:33:27 2026 by rpki-client