$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: FB7kYeGY46f6IiI1oHXLMsJaURZjsvMvDM35ML/E1fs= Subject key identifier: 15:96:6C:0C:12:6E:D9:B6:A3:A8:BD:17:53:90:2E:EC:41:E4:21:96 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 066531C78AD4E44E0942A192D9D11DCB26B5212B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 015F Signing time: Sun 01 Mar 2026 13:52:04 +0000 Manifest this update: Sun 01 Mar 2026 13:47:04 +0000 Manifest next update: Wed 04 Mar 2026 22:18:04 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xTPoIlaNmn7dCA4oz4xbGajx7u9U25QUsQJawDHmNA8=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: UIUO9MFPsjjN5+bcvkePd7INg/95yFHAVuSqJuwhPIM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 22:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:65:31:c7:8a:d4:e4:4e:09:42:a1:92:d9:d1:1d:cb:26:b5:21:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Mar 1 13:47:04 2026 GMT Not After : Mar 4 22:18:04 2026 GMT Subject: CN=15966C0C126ED9B6A3A8BD1753902EEC41E42196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3e:33:6f:3d:a7:c0:d4:24:1c:67:5a:9d:6d: 86:3e:9d:69:4f:e6:c8:ce:0a:3f:40:42:88:55:12: e2:42:ed:04:bc:b5:0d:69:bf:b7:99:b6:b5:25:10: 77:b9:a2:9f:cf:7d:3c:b0:4a:96:be:ff:75:97:40: c1:ba:70:89:e1:88:c9:c0:11:5c:91:4d:b8:e5:c0: 0a:31:aa:51:41:e2:39:1a:5d:d9:5f:d4:7f:fa:27: 1b:d9:fe:56:01:d8:f9:b0:d7:f7:58:33:0a:ea:ef: 84:22:f3:0e:60:a3:34:54:23:8b:b5:64:a7:be:c5: ca:cb:1d:49:8a:88:ea:31:b2:bd:43:00:19:82:1b: a4:cd:3b:87:9a:47:29:b8:55:de:17:54:47:12:20: e2:39:12:1b:30:7b:1f:fe:59:4f:66:c9:41:21:7e: 45:df:32:67:26:2e:a0:61:45:95:d2:3e:50:44:75: bb:fc:47:cf:2b:62:27:26:06:40:89:fb:43:95:3d: be:5c:40:0f:58:21:d2:b5:7a:e8:3c:24:b0:8b:8d: cb:fc:c3:52:00:4e:0b:2a:67:87:56:17:33:e4:f8: f5:04:c9:eb:ce:8c:b7:df:0d:9e:df:c1:02:56:a8: f7:21:bb:38:bc:2c:f8:3f:36:7c:4d:21:22:63:5d: 7b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:96:6C:0C:12:6E:D9:B6:A3:A8:BD:17:53:90:2E:EC:41:E4:21:96 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:14:59:e7:76:05:6e:85:e7:f0:b7:e0:7e:bf:95:08:b5:2b: 0c:3e:4f:7e:df:0f:98:13:82:aa:9d:1e:0b:a9:1b:41:44:92: c9:9a:5b:e3:4c:43:fd:aa:ad:77:48:19:ca:bd:8c:09:69:a6: 35:2b:d4:ed:47:88:4f:b9:07:ee:2d:37:7a:b3:31:e7:35:03: b8:65:31:73:e7:60:54:e2:4f:6e:06:dc:a1:27:1e:dc:75:14: 28:1d:db:8d:28:4f:df:61:1a:93:c3:bc:21:d6:12:a7:dc:cc: ec:9e:8f:1e:13:a8:7b:4e:4d:99:78:5c:08:47:da:dd:c7:25: 8c:cb:36:74:45:33:cd:26:08:e9:8e:59:6e:06:1c:88:bd:63: 6e:ea:1a:0f:5f:10:70:8c:fd:15:8c:da:e9:ef:60:7c:41:28: 4f:e2:66:1c:e6:ee:86:b9:46:8e:3e:42:0c:37:fa:03:65:07: a5:a4:f8:4e:7d:f5:58:b8:50:aa:4c:a5:a8:6e:b7:8d:b4:25: 3a:b1:38:db:3e:89:c0:ab:78:09:c8:0e:62:8c:73:54:ca:af: 4f:af:84:46:98:ed:08:0d:95:d2:a5:1b:90:f9:85:d6:8e:e0: cb:c5:26:c7:e8:d2:25:ab:2d:b9:4b:db:1a:89:52:9a:75:68: 3f:aa:43:06 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBmUxx4rU5E4JQqGS2dEdyya1ISswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNjAzMDExMzQ3MDRaFw0yNjAzMDQyMjE4MDRaMDMxMTAvBgNV BAMTKDE1OTY2QzBDMTI2RUQ5QjZBM0E4QkQxNzUzOTAyRUVDNDFFNDIxOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtPjNvPafA1CQcZ1qdbYY+nWlP 5sjOCj9AQohVEuJC7QS8tQ1pv7eZtrUlEHe5op/PfTywSpa+/3WXQMG6cInhiMnA EVyRTbjlwAoxqlFB4jkaXdlf1H/6JxvZ/lYB2Pmw1/dYMwrq74Qi8w5gozRUI4u1 ZKe+xcrLHUmKiOoxsr1DABmCG6TNO4eaRym4Vd4XVEcSIOI5Ehswex/+WU9myUEh fkXfMmcmLqBhRZXSPlBEdbv8R88rYicmBkCJ+0OVPb5cQA9YIdK1eug8JLCLjcv8 w1IATgsqZ4dWFzPk+PUEyevOjLffDZ7fwQJWqPchuzi8LPg/NnxNISJjXXsJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFZZsDBJu2bajqL0XU5Au7EHkIZYwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALsUWed2BW6F5/C34H6/lQi1Kww+T37fD5gT gqqdHgupG0FEksmaW+NMQ/2qrXdIGcq9jAlppjUr1O1HiE+5B+4tN3qzMec1A7hl MXPnYFTiT24G3KEnHtx1FCgd240oT99hGpPDvCHWEqfczOyejx4TqHtOTZl4XAhH 2t3HJYzLNnRFM80mCOmOWW4GHIi9Y27qGg9fEHCM/RWM2unvYHxBKE/iZhzm7oa5 Ro4+Qgw3+gNlB6Wk+E599Vi4UKpMpahut420JTqxONs+icCreAnIDmKMc1TKr0+v hEaY7QgNldKlG5D5hdaO4MvFJsfo0iWrLblL2xqJUpp1aD+qQwY= -----END CERTIFICATE-----Generated at Mon Mar 2 12:18:21 2026 by rpki-client