$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft File: 8659BE8500DEBB314448F1412FA1E264025A4148.mft (raw, json) Hash identifier: HGoilM21ebGpqpODXvT7V6D/UdrTOl0s6mQzEApm9jo= Subject key identifier: 6D:F8:49:47:EF:DC:4C:72:25:56:CE:DE:20:02:F9:DC:26:B3:58:F1 Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 16E82199E8B6C435C516548AE184B36C3D52F4F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft Manifest number: 0220 Signing time: Sun 01 Mar 2026 18:41:08 +0000 Manifest this update: Sun 01 Mar 2026 18:36:08 +0000 Manifest next update: Thu 05 Mar 2026 02:10:08 +0000 Files and hashes: 1: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (hash: E8NUcaKWe3ABHFVxNWSSIkp1m8C7YtMxKMRA2hg1NmI=) 2: 3130332e3136342e3139322e302f32342d3234203d3e20313431393339.roa (hash: V8FXW6i5FhDhWnneEy9JcwyRx6grWMlQZ/xTqZlJefU=) 3: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (hash: DGmbIbAAoCUymOY6DDh+0S4rcPuhCP+BlaH232+y3TY=) 4: 8659BE8500DEBB314448F1412FA1E264025A4148.crl (hash: xnr/vhz70rBLgq/fS2dtVdMwTLKRifyb8VPRpHnzoCc=) 5: 3130332e3136342e3139332e302f32342d3234203d3e20313431393339.roa (hash: o1EC2V3xudD67YQ4ezVJUlO4R22GwhC3UT5xp118BUc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e8:21:99:e8:b6:c4:35:c5:16:54:8a:e1:84:b3:6c:3d:52:f4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Mar 1 18:36:08 2026 GMT Not After : Mar 5 02:10:08 2026 GMT Subject: CN=6DF84947EFDC4C722556CEDE2002F9DC26B358F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3a:ad:cb:ec:aa:81:7a:cd:89:be:95:7c:a3: 14:4c:75:95:9d:ce:68:27:58:dc:27:2c:66:2b:9a: fc:61:4b:48:61:7b:c1:04:c2:65:ab:f4:aa:c6:56: 33:c0:ee:65:48:5d:bf:2e:8d:8f:2c:8a:c3:53:58: 02:f3:82:f3:09:92:c5:d8:50:47:47:3f:23:10:37: f4:41:53:1d:23:b8:d6:b3:27:d2:c5:32:a5:73:c4: 72:22:40:9b:12:ef:c8:38:a3:bd:2d:08:ce:e9:52: 28:3f:84:1b:fa:6a:69:7e:70:e8:3f:06:cf:87:01: b1:88:ac:9c:4b:de:ac:b0:16:b9:66:9b:67:8b:00: 75:c4:a0:21:96:95:de:2c:11:79:d2:fa:bf:29:48: c1:f0:c7:11:56:79:14:aa:27:a8:d5:c7:d4:01:4e: b8:cd:60:2f:b9:8c:52:4f:53:65:59:bf:e8:a2:f9: 3a:91:f1:4b:47:92:c4:ba:89:60:d7:db:d2:8f:b3: 56:ab:11:d9:04:e6:58:63:8d:6d:2e:39:da:fb:f3: e6:6f:cb:e3:c4:e2:0c:6f:eb:92:82:d0:ec:95:f1: 19:19:7f:57:68:19:91:33:dd:95:aa:55:07:47:da: ad:b3:10:1c:63:ac:7a:5a:d6:b1:f0:dd:5d:99:17: 12:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F8:49:47:EF:DC:4C:72:25:56:CE:DE:20:02:F9:DC:26:B3:58:F1 X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:29:6f:af:f6:7e:46:d3:dd:4f:3f:0c:aa:a7:7f:04:09:dd: bb:b9:4f:5f:d2:65:49:ee:8d:ac:3d:14:99:45:b9:76:bc:38: e0:34:74:ea:e2:52:e3:ba:54:c5:c1:fe:11:5a:46:8a:f6:4f: 58:2a:6e:e5:12:f0:31:b1:52:73:ad:8f:f7:a8:80:e3:60:22: 79:2c:3f:e3:d4:f1:75:b8:e2:39:e6:d7:ac:88:66:2e:fa:3b: 13:9f:c3:3e:0e:3f:30:c1:82:47:52:57:e9:ba:e8:1d:6a:0a: d1:13:0d:b8:89:cb:30:74:2d:a9:9c:b5:9a:04:66:c1:55:af: 73:d7:5e:35:a9:b8:3b:e5:a8:03:ac:36:4f:bf:7b:03:48:d4: d6:2d:d5:c1:53:96:92:03:10:5d:5c:ed:de:00:ca:a5:66:5f: de:05:17:99:fd:83:0f:60:ad:ed:84:83:a4:1f:3b:8c:85:b0: ac:79:a4:2c:48:2a:ad:25:9a:78:e2:6c:f3:15:10:86:62:60: 2b:4d:7a:62:83:34:51:03:f7:98:ac:fa:11:ec:b2:43:3b:0e: 68:a1:61:d7:de:0a:98:36:4f:e8:f1:f9:88:48:e7:e7:58:ce: 45:5e:3e:17:96:a1:9f:80:38:f3:bc:a7:15:6d:5b:15:0a:79: 4c:7e:10:78 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFughmei2xDXFFlSK4YSzbD1S9PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNjAzMDExODM2MDhaFw0yNjAzMDUwMjEwMDhaMDMxMTAvBgNV BAMTKDZERjg0OTQ3RUZEQzRDNzIyNTU2Q0VERTIwMDJGOURDMjZCMzU4RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTOq3L7KqBes2JvpV8oxRMdZWd zmgnWNwnLGYrmvxhS0hhe8EEwmWr9KrGVjPA7mVIXb8ujY8sisNTWALzgvMJksXY UEdHPyMQN/RBUx0juNazJ9LFMqVzxHIiQJsS78g4o70tCM7pUig/hBv6aml+cOg/ Bs+HAbGIrJxL3qywFrlmm2eLAHXEoCGWld4sEXnS+r8pSMHwxxFWeRSqJ6jVx9QB TrjNYC+5jFJPU2VZv+ii+TqR8UtHksS6iWDX29KPs1arEdkE5lhjjW0uOdr78+Zv y+PE4gxv65KC0OyV8RkZf1doGZEz3ZWqVQdH2q2zEBxjrHpa1rHw3V2ZFxKvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbfhJR+/cTHIlVs7eIAL53CazWPEwHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJhNDhlNGUtZmM5NS00YWNmLWJl YWMtZDkzYTBmNjk0NDIxLzAvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUy NjQwMjVBNDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHwpb6/2fkbT3U8/DKqnfwQJ3bu5T1/SZUnu jaw9FJlFuXa8OOA0dOriUuO6VMXB/hFaRor2T1gqbuUS8DGxUnOtj/eogONgInks P+PU8XW44jnm16yIZi76OxOfwz4OPzDBgkdSV+m66B1qCtETDbiJyzB0LamctZoE ZsFVr3PXXjWpuDvlqAOsNk+/ewNI1NYt1cFTlpIDEF1c7d4AyqVmX94FF5n9gw9g re2Eg6QfO4yFsKx5pCxIKq0lmnjibPMVEIZiYCtNemKDNFED95is+hHsskM7Dmih YdfeCpg2T+jx+YhI5+dYzkVePheWoZ+AOPO8pxVtWxUKeUx+EHg= -----END CERTIFICATE-----Generated at Mon Mar 2 19:32:08 2026 by rpki-client