$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft File: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft (raw, json) Hash identifier: MSVNZ/KwHWuCtqNH6gx3pX9YO4Oa6cqJusg9czOGGl0= Subject key identifier: CB:FC:6F:59:B9:50:1A:FB:FE:32:84:A8:0B:AC:E7:3D:C6:55:FC:12 Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 4ED8F3A5ED60D3E56AD6C58ED49CD016842C481D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft Manifest number: 0184 Signing time: Sun 01 Mar 2026 10:21:11 +0000 Manifest this update: Sun 01 Mar 2026 10:16:11 +0000 Manifest next update: Wed 04 Mar 2026 18:07:11 +0000 Files and hashes: 1: 3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa (hash: gY0MYBLnrNGMInBtjBk2fVW/5Y8HTuVN7KMpfZNbvwM=) 2: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl (hash: +vD7yWhC69tB0WEgUA6WGFF3dnU+PTBfa7Mm/7CGBK4=) 3: 3130332e3138322e37382e302f32342d3234203d3e20313439363635.roa (hash: LAATNsnHcnoJWKciQROoRwDYWcBiokYiUiwzyLuS2UY=) 4: 3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa (hash: dJaS59sTNR5P0zfWxcM9Q8SeRwLPq4ilnHYQElEDNMo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 18:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d8:f3:a5:ed:60:d3:e5:6a:d6:c5:8e:d4:9c:d0:16:84:2c:48:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Mar 1 10:16:11 2026 GMT Not After : Mar 4 18:07:11 2026 GMT Subject: CN=CBFC6F59B9501AFBFE3284A80BACE73DC655FC12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:60:2a:23:5a:63:de:6c:53:76:b8:f5:a1:42: 5b:b1:f0:4a:22:92:28:3c:78:e8:77:ce:92:87:c4: 8a:69:dd:a5:a9:7e:36:77:da:0f:1b:db:82:ba:06: da:5d:7f:41:04:51:10:46:e8:e9:c7:67:dd:d5:ae: b9:6d:5c:1a:75:f3:fa:de:d6:44:18:ff:38:28:20: 17:8d:40:d4:66:a4:45:ec:d9:58:b9:ea:86:47:ab: 01:58:78:29:ab:5a:16:60:62:f0:ef:92:aa:8d:1c: b8:f0:2f:94:c2:ac:f6:b4:5e:d4:16:57:d1:14:21: e0:ce:29:07:68:82:6e:b6:ef:b8:7e:fa:dc:95:9e: 58:ad:0b:bc:44:50:e8:aa:08:92:9e:d0:62:05:85: 4c:4e:78:de:cc:f6:24:6f:e7:b7:e4:b2:f8:ef:1c: 20:c3:4a:60:57:7d:a5:9d:97:17:96:54:be:69:f1: 21:4f:5e:2f:e0:68:84:b1:01:16:e8:fa:b8:34:6a: 36:b1:d3:a5:75:1e:1e:67:06:52:35:f6:fc:ad:62: 56:f6:6b:d6:0a:1e:fa:29:55:60:40:6d:eb:cf:8d: 04:f3:4b:1a:80:b7:09:d8:1f:ba:74:d8:79:0d:8c: 04:f9:b3:48:93:de:aa:64:1e:d8:8b:0b:f7:ad:2b: d1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FC:6F:59:B9:50:1A:FB:FE:32:84:A8:0B:AC:E7:3D:C6:55:FC:12 X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:77:7d:f5:7d:6a:0d:2d:24:57:b9:10:28:47:9e:f7:3b:af: d0:69:11:27:7f:cb:cb:62:ff:ea:7d:93:e0:19:6a:a2:94:d1: 5e:12:16:49:82:c8:17:a6:6d:e8:29:07:36:dc:90:94:be:92: dc:16:d9:64:86:9c:a5:ff:a1:df:02:5f:fa:cb:84:ed:ca:bc: f2:c1:ff:c6:c0:3e:a5:3a:65:46:84:50:62:0d:10:4b:9b:72: 2f:ff:0a:5d:b7:a7:c9:50:83:e2:e3:b8:77:59:46:30:44:b4: df:46:96:15:29:b1:60:a6:a6:68:2e:1e:af:58:42:57:1f:db: d7:1a:09:35:f3:59:4d:72:6d:fe:87:14:d0:3b:c2:7c:97:59: dd:67:d7:94:1f:29:4d:98:cd:e2:4f:fc:4e:4a:e7:36:dc:3d: 78:63:ee:f4:eb:68:af:67:12:02:55:19:20:d6:07:e7:24:dd: 58:ce:04:40:a3:16:eb:fa:42:54:f3:dc:c2:76:b6:c6:d5:34: 1e:7b:96:2d:f6:3f:b3:60:a4:21:d8:8b:ba:24:85:66:2c:5d: a8:9a:44:23:ad:b0:b7:53:32:f4:af:08:2b:b7:17:55:d4:f0: 44:42:05:fe:77:7a:75:23:64:bb:cc:be:19:e9:46:40:93:1b: 2a:bc:f6:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTtjzpe1g0+Vq1sWO1JzQFoQsSB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNjAzMDExMDE2MTFaFw0yNjAzMDQxODA3MTFaMDMxMTAvBgNV BAMTKENCRkM2RjU5Qjk1MDFBRkJGRTMyODRBODBCQUNFNzNEQzY1NUZDMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYCojWmPebFN2uPWhQlux8Eoi kig8eOh3zpKHxIpp3aWpfjZ32g8b24K6Btpdf0EEURBG6OnHZ93VrrltXBp18/re 1kQY/zgoIBeNQNRmpEXs2Vi56oZHqwFYeCmrWhZgYvDvkqqNHLjwL5TCrPa0XtQW V9EUIeDOKQdogm6277h++tyVnlitC7xEUOiqCJKe0GIFhUxOeN7M9iRv57fksvjv HCDDSmBXfaWdlxeWVL5p8SFPXi/gaISxARbo+rg0ajax06V1Hh5nBlI19vytYlb2 a9YKHvopVWBAbevPjQTzSxqAtwnYH7p02HkNjAT5s0iT3qpkHtiLC/etK9G5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUy/xvWblQGvv+MoSoC6znPcZV/BIwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0YzMzYjgtOWQ0Mi00MjA4LThh YzQtZjE3MmExNDRkODY4LzAvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkz QUU5M0QxOTZENi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHp3ffV9ag0tJFe5EChHnvc7r9BpESd/y8ti /+p9k+AZaqKU0V4SFkmCyBembegpBzbckJS+ktwW2WSGnKX/od8CX/rLhO3KvPLB /8bAPqU6ZUaEUGINEEubci//Cl23p8lQg+LjuHdZRjBEtN9GlhUpsWCmpmguHq9Y Qlcf29caCTXzWU1ybf6HFNA7wnyXWd1n15QfKU2YzeJP/E5K5zbcPXhj7vTraK9n EgJVGSDWB+ck3VjOBECjFuv6QlTz3MJ2tsbVNB57li32P7NgpCHYi7okhWYsXaia RCOtsLdTMvSvCCu3F1XU8ERCBf53enUjZLvMvhnpRkCTGyq89hk= -----END CERTIFICATE-----Generated at Mon Mar 2 19:30:16 2026 by rpki-client