$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: tgne1Fg2vH/wMztdclicFMOB47yoVN5WRtFf+EPAJds= Subject key identifier: 73:28:57:3E:86:93:E4:D9:3B:B4:62:9C:E5:46:5A:8B:5D:6D:3D:C4 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 55ACFA5F5642C47857CC2A1B3244532CC226D8FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 051C Signing time: Mon 02 Mar 2026 04:10:58 +0000 Manifest this update: Mon 02 Mar 2026 04:05:58 +0000 Manifest next update: Thu 05 Mar 2026 07:34:58 +0000 Files and hashes: 1: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) 2: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) 3: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: YnVDZH0S/qrWXJxcG6lMvZpMfU48baiHUwqkQqW8g30=) 4: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ac:fa:5f:56:42:c4:78:57:cc:2a:1b:32:44:53:2c:c2:26:d8:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Mar 2 04:05:58 2026 GMT Not After : Mar 5 07:34:58 2026 GMT Subject: CN=7328573E8693E4D93BB4629CE5465A8B5D6D3DC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:98:47:d4:53:14:75:5b:c8:06:d9:79:2f:12: b8:48:03:c0:a2:78:b9:45:82:e3:2c:fb:f7:ee:7b: 71:fc:34:3d:e2:f0:51:f1:76:93:6d:14:a3:78:4c: 19:e6:2d:7d:8e:35:e0:78:ae:1e:fd:3a:a3:b0:07: 51:8c:42:3b:da:18:aa:7f:8b:95:14:9a:97:58:c3: bb:8c:e8:b1:1b:db:47:2a:76:f3:ce:1e:0e:32:50: 22:b9:eb:70:c0:2d:cf:b4:60:37:a6:1f:58:9f:8c: 6f:4f:8c:43:49:67:7e:bc:56:6a:02:87:4d:78:19: 57:65:c2:71:e1:ea:03:a4:2f:85:88:ae:b8:9b:5f: 37:b1:3b:ae:0f:aa:7f:92:a1:37:cd:94:23:e7:b4: 3c:42:fa:8d:41:c6:8b:5a:d4:39:25:ba:39:b6:0e: 48:88:44:c1:36:ac:67:2a:ce:af:52:58:d3:41:62: 6c:22:31:d7:ce:ad:bc:2f:86:07:1c:37:f8:f2:ab: aa:4b:69:6e:10:81:7e:20:f3:fb:c6:c2:88:36:1f: 5b:db:12:f5:07:54:e6:b1:c3:e3:e7:85:ac:04:fb: 28:18:ee:44:09:3b:3a:9d:bc:01:10:7b:c5:09:68: d0:db:43:d3:2a:56:26:46:7f:13:76:65:58:48:43: 43:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:28:57:3E:86:93:E4:D9:3B:B4:62:9C:E5:46:5A:8B:5D:6D:3D:C4 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:1c:46:35:fc:07:8c:4f:d4:1c:59:ca:c0:e6:4e:34:68:9d: e3:b8:78:b0:1f:83:34:d9:27:01:59:dd:e6:1c:95:63:87:5f: a4:4a:0a:d0:da:78:b7:72:72:cb:6f:90:f8:cf:33:dc:ff:9c: 54:0f:46:71:5f:74:35:68:82:10:aa:ab:f7:6e:14:e3:d1:1d: 61:39:15:df:be:d3:28:4f:73:b5:76:27:66:82:66:50:f8:d3: 92:03:6a:93:cc:89:3e:4f:93:7d:b7:c7:34:b0:ef:9d:9b:28: 6e:b8:db:94:c0:93:fd:8f:03:be:d5:3d:26:34:69:80:e0:2b: ea:ca:bd:0e:6e:16:ed:2e:7a:e5:12:39:03:ab:71:81:da:97: 60:77:96:85:f0:4e:87:b7:ec:ed:47:3d:e0:48:ee:13:7e:71: 19:cd:98:f0:6e:ac:de:72:00:69:e1:8c:7f:59:33:ba:fe:63: c7:93:61:f8:26:11:7b:76:95:6e:b4:e3:19:83:84:39:e0:79: 03:ba:e4:6d:3f:66:4f:6c:09:df:45:64:6c:e0:b1:4d:e9:16: cf:55:c9:de:ec:ac:c1:b7:41:ad:53:69:18:19:14:ce:ce:a1: 1e:80:96:db:c7:50:71:26:f1:b5:86:b2:b0:49:b0:5c:0e:c1: 87:68:7b:7e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVaz6X1ZCxHhXzCobMkRTLMIm2P8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNjAzMDIwNDA1NThaFw0yNjAzMDUwNzM0NThaMDMxMTAvBgNV BAMTKDczMjg1NzNFODY5M0U0RDkzQkI0NjI5Q0U1NDY1QThCNUQ2RDNEQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHmEfUUxR1W8gG2XkvErhIA8Ci eLlFguMs+/fue3H8ND3i8FHxdpNtFKN4TBnmLX2ONeB4rh79OqOwB1GMQjvaGKp/ i5UUmpdYw7uM6LEb20cqdvPOHg4yUCK563DALc+0YDemH1ifjG9PjENJZ368VmoC h014GVdlwnHh6gOkL4WIrribXzexO64Pqn+SoTfNlCPntDxC+o1Bxota1Dklujm2 DkiIRME2rGcqzq9SWNNBYmwiMdfOrbwvhgccN/jyq6pLaW4QgX4g8/vGwog2H1vb EvUHVOaxw+PnhawE+ygY7kQJOzqdvAEQe8UJaNDbQ9MqViZGfxN2ZVhIQ0NPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcyhXPoaT5Nk7tGKc5UZai11tPcQwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFccRjX8B4xP1BxZysDmTjRoneO4eLAfgzTZ JwFZ3eYclWOHX6RKCtDaeLdycstvkPjPM9z/nFQPRnFfdDVoghCqq/duFOPRHWE5 Fd++0yhPc7V2J2aCZlD405IDapPMiT5Pk323xzSw752bKG6425TAk/2PA77VPSY0 aYDgK+rKvQ5uFu0ueuUSOQOrcYHal2B3loXwToe37O1HPeBI7hN+cRnNmPBurN5y AGnhjH9ZM7r+Y8eTYfgmEXt2lW604xmDhDngeQO65G0/Zk9sCd9FZGzgsU3pFs9V yd7srMG3Qa1TaRgZFM7OoR6AltvHUHEm8bWGsrBJsFwOwYdoe34= -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:58 2026 by rpki-client