$ rpki-client -vvf repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft File: 4A688B72A804A426A9096ECA60105A4D831C5FA8.mft (raw, json) Hash identifier: xMqqbGw6wLWLpsTLMvJgQGTRfWXi6ukI7x+jMN9e2Ms= Subject key identifier: 24:79:2F:45:15:E9:3D:31:9B:D6:E2:5C:88:64:40:8E:33:8A:0E:97 Authority key identifier: 4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 Certificate issuer: /CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Certificate serial: 1EA24035952A45768228AB29DC260D9BCB535C44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft Manifest number: 0332 Signing time: Sun 01 Mar 2026 02:21:58 +0000 Manifest this update: Sun 01 Mar 2026 02:16:58 +0000 Manifest next update: Wed 04 Mar 2026 07:53:58 +0000 Files and hashes: 1: 3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa (hash: eQ2W59Sl25b9+tbhRBYK+eiWkdxaKDr4YfWFXlk9jXI=) 2: 4A688B72A804A426A9096ECA60105A4D831C5FA8.crl (hash: GVvE/aR7gXJchXh8io6H72gUlx/9+I03csjcNQZfi/4=) 3: 3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa (hash: aQ3bZ8U/53lOgq6IbJ4jaeEks7cypqeVb0bEi+y+Pus=) 4: 3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa (hash: eGEsrGBto/hQncn3YcGePX27GH/UT48OX+sETIcZ17o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 07:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a2:40:35:95:2a:45:76:82:28:ab:29:dc:26:0d:9b:cb:53:5c:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Validity Not Before: Mar 1 02:16:58 2026 GMT Not After : Mar 4 07:53:58 2026 GMT Subject: CN=24792F4515E93D319BD6E25C8864408E338A0E97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9a:95:83:33:e4:06:11:ba:79:77:19:fd:39: ca:7a:81:49:28:ba:e6:87:fd:dd:c0:db:42:bd:97: 2c:2f:a5:d3:4b:06:88:04:59:c2:2f:ba:f1:ba:ee: 07:f7:a1:26:73:6b:5a:9e:b1:39:8f:27:fc:bc:48: b3:bb:09:90:e5:f2:4e:d1:61:d4:24:54:d3:52:d5: 46:17:f8:8b:52:9d:da:1f:c0:c2:8e:e1:13:0a:f6: 27:01:cc:5a:07:c0:d3:08:6c:a9:4e:27:0a:63:09: 6e:88:0c:39:a3:cc:17:e2:fa:9a:c1:f4:7b:93:ac: 80:ae:ef:69:ae:93:fe:38:c7:75:db:9b:58:61:11: c1:5b:79:5d:a9:ad:d8:e2:ae:9a:ef:95:59:8b:df: 2e:05:bc:8f:24:b7:d0:c7:28:a0:c7:6d:26:33:9e: 02:21:fd:d6:f4:85:7f:25:8a:ee:13:2b:cb:a5:15: f5:7f:e5:32:02:12:fa:25:44:ca:61:d9:3e:58:f9: 95:ea:22:79:03:90:99:6d:41:eb:c6:d7:00:9a:b5: 64:ee:d3:fa:33:30:f0:1a:e3:26:97:55:aa:2a:9e: c6:70:7e:7d:f7:86:1d:57:c5:74:c0:70:c4:34:17: 9d:2c:1c:ca:08:2e:33:8b:07:62:11:7f:9e:9c:74: 7d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:79:2F:45:15:E9:3D:31:9B:D6:E2:5C:88:64:40:8E:33:8A:0E:97 X509v3 Authority Key Identifier: keyid:4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:b5:8b:9d:c2:e8:b4:7a:4e:ee:eb:7d:ef:46:c6:20:70:8b: 26:48:b9:46:ee:b0:8d:d8:4d:26:19:37:4a:92:6a:c9:12:0d: 6f:c5:4b:00:f7:c8:80:92:a7:a7:c3:9f:df:21:e5:65:82:ff: 9c:bc:38:10:f4:5d:ff:22:fa:4a:1b:c7:cf:03:c4:1c:1f:d8: e2:61:a3:f8:2a:eb:95:a1:2a:b2:2b:1c:dc:f4:60:90:2c:e9: 50:36:e7:58:e9:dd:81:b8:19:49:37:a9:9d:c7:c8:06:c9:8d: 42:04:b7:83:46:45:3e:93:14:c2:44:c4:b2:6a:9c:a3:b9:fe: 13:44:de:a0:53:b6:0b:52:cc:0d:10:6a:b9:81:41:85:c6:15: d6:5c:64:95:ec:64:3e:d9:8c:79:2d:2e:38:d9:c6:22:e1:0c: 96:fb:66:23:d5:80:2a:0a:ed:a8:8d:d4:e3:47:bb:1b:f7:a2: 63:43:3b:29:e8:99:b6:2f:ce:24:c3:a0:56:63:29:f4:dd:3d: e6:57:af:e6:bb:86:97:54:3b:0c:f2:6a:ef:0d:24:3e:a5:fa: 74:74:5e:95:0c:e3:9c:02:20:ff:cd:5d:75:f9:f2:f7:64:cb: eb:a0:87:32:21:7d:c3:a5:e7:15:53:62:34:0d:3d:1b:85:22: c3:49:88:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHqJANZUqRXaCKKsp3CYNm8tTXEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4 MzFDNUZBODAeFw0yNjAzMDEwMjE2NThaFw0yNjAzMDQwNzUzNThaMDMxMTAvBgNV BAMTKDI0NzkyRjQ1MTVFOTNEMzE5QkQ2RTI1Qzg4NjQ0MDhFMzM4QTBFOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtmpWDM+QGEbp5dxn9Ocp6gUko uuaH/d3A20K9lywvpdNLBogEWcIvuvG67gf3oSZza1qesTmPJ/y8SLO7CZDl8k7R YdQkVNNS1UYX+ItSndofwMKO4RMK9icBzFoHwNMIbKlOJwpjCW6IDDmjzBfi+prB 9HuTrICu72muk/44x3Xbm1hhEcFbeV2prdjirprvlVmL3y4FvI8kt9DHKKDHbSYz ngIh/db0hX8liu4TK8ulFfV/5TICEvolRMph2T5Y+ZXqInkDkJltQevG1wCatWTu 0/ozMPAa4yaXVaoqnsZwfn33hh1XxXTAcMQ0F50sHMoILjOLB2IRf56cdH3TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJHkvRRXpPTGb1uJciGRAjjOKDpcwHwYDVR0j BBgwFoAUSmiLcqgEpCapCW7KYBBaTYMcX6gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWE2YTY3ZC1jYmEzLTQyN2ItOTA1NS01ZjUyOGYyZDIzMmYvMC80QTY4OEI3MkE4 MDRBNDI2QTkwOTZFQ0E2MDEwNUE0RDgzMUM1RkE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4MzFD NUZBOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFhNmE2N2QtY2JhMy00MjdiLTkw NTUtNWY1MjhmMmQyMzJmLzAvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVB NEQ4MzFDNUZBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADO1i53C6LR6Tu7rfe9GxiBwiyZIuUbusI3Y TSYZN0qSaskSDW/FSwD3yICSp6fDn98h5WWC/5y8OBD0Xf8i+kobx88DxBwf2OJh o/gq65WhKrIrHNz0YJAs6VA251jp3YG4GUk3qZ3HyAbJjUIEt4NGRT6TFMJExLJq nKO5/hNE3qBTtgtSzA0QarmBQYXGFdZcZJXsZD7ZjHktLjjZxiLhDJb7ZiPVgCoK 7aiN1ONHuxv3omNDOynombYvziTDoFZjKfTdPeZXr+a7hpdUOwzyau8NJD6l+nR0 XpUM45wCIP/NXXX58vdky+ughzIhfcOl5xVTYjQNPRuFIsNJiK0= -----END CERTIFICATE-----Generated at Mon Mar 2 15:14:14 2026 by rpki-client