$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: 4tBZR+1HC1kWh8EbbBakg9z/8QD6uBB4nPU8FVejLyg= Subject key identifier: C1:57:A9:47:D7:25:D3:24:14:47:3A:D0:AF:AB:A6:33:39:FB:47:4F Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 351CEB486F6AA9D637367FD558163B3BDD7D5F74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 010F Signing time: Sun 01 Mar 2026 17:31:15 +0000 Manifest this update: Sun 01 Mar 2026 17:26:15 +0000 Manifest next update: Wed 04 Mar 2026 21:45:15 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) 2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) 3: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: vrlHZj1YwKEwoUgV8R70V+wBKxNMfE3zldNV6b9424U=) 4: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:1c:eb:48:6f:6a:a9:d6:37:36:7f:d5:58:16:3b:3b:dd:7d:5f:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Mar 1 17:26:15 2026 GMT Not After : Mar 4 21:45:15 2026 GMT Subject: CN=C157A947D725D32414473AD0AFABA63339FB474F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b4:4f:78:a7:28:8b:50:f7:25:c9:7a:47:c1: c9:14:d0:8c:97:d7:73:95:95:5c:a4:c7:f4:a2:ff: 5a:8d:02:8e:a7:72:8f:ea:b0:2a:b8:d0:64:9a:cb: 20:8a:6d:7b:b7:4b:35:ae:40:ff:eb:37:95:cd:0d: b9:f2:9d:a9:f2:8b:13:00:e8:ce:59:a9:3b:80:14: db:f2:9e:e9:95:77:73:01:59:03:eb:25:82:33:38: f9:8f:1f:ef:4e:b6:61:47:1b:cf:7c:66:ee:cf:35: 03:7f:cc:24:97:7a:98:fa:24:ba:c1:33:84:ac:05: a9:3b:ff:32:fc:41:ec:c7:1b:72:c9:2d:21:d3:dd: 57:6c:ed:bc:e9:93:6e:dd:03:05:27:e1:98:aa:eb: 8f:98:68:a5:6b:65:90:34:10:94:b2:b5:de:4d:df: d5:69:5f:29:ea:f7:a7:d3:2a:98:99:85:e1:00:3a: 06:e8:79:c0:2f:77:8c:b5:83:b0:b2:c1:03:fc:ce: 30:11:f7:62:3f:c3:c7:81:87:ad:08:5d:97:c2:14: 16:66:dd:57:87:8a:62:3f:78:76:b1:c5:a8:80:50: dc:54:b9:35:c7:41:ec:a1:e4:b1:02:e9:3b:5e:73: 1a:98:f2:72:17:1f:1d:ef:ef:bf:eb:99:8d:bc:41: 31:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:57:A9:47:D7:25:D3:24:14:47:3A:D0:AF:AB:A6:33:39:FB:47:4F X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:5f:84:1f:70:29:0f:ec:f5:22:18:a2:5f:3f:e7:bb:ea:c6: a3:8b:8e:2b:94:3e:6a:b7:aa:09:e3:10:d1:b9:01:b0:b0:ac: 6f:71:e3:02:06:fe:c8:78:0f:c2:63:35:00:77:b1:2c:75:29: 92:eb:f1:e7:43:a0:69:e1:f8:40:5d:89:92:60:7b:55:38:5b: 68:0a:5a:5a:c0:1a:f2:22:bb:26:0a:f8:dd:56:66:7d:b3:91: a1:3c:5c:0f:e2:ec:96:0a:b4:0a:00:be:57:39:d3:d4:69:88: 5b:8a:1d:24:f0:13:0e:4b:06:b0:b4:ab:cc:99:13:26:f7:31: 0a:ae:e8:85:b1:f1:5a:0b:11:c0:49:12:f8:bf:e8:d0:7e:65: 41:54:33:c1:8f:5d:f9:51:28:bc:c3:03:97:05:57:bb:a3:1d: ba:eb:72:04:ca:1d:1f:d2:a0:0e:fc:21:65:13:04:98:94:b7: a9:a2:3f:74:c1:c8:5f:ae:d8:1a:e0:97:7d:f2:cf:41:7c:1f: 02:28:0c:48:3d:8b:8a:55:4b:ab:50:35:d1:a8:78:1f:d4:d1: d2:df:ac:32:f7:33:e6:8b:00:f8:56:8c:4b:e9:a9:36:05:79: 8e:4e:44:e7:68:bc:9f:4a:ab:c8:ac:db:4b:a1:3e:c5:3d:8f: c8:d3:60:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNRzrSG9qqdY3Nn/VWBY7O919X3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNjAzMDExNzI2MTVaFw0yNjAzMDQyMTQ1MTVaMDMxMTAvBgNV BAMTKEMxNTdBOTQ3RDcyNUQzMjQxNDQ3M0FEMEFGQUJBNjMzMzlGQjQ3NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqtE94pyiLUPclyXpHwckU0IyX 13OVlVykx/Si/1qNAo6nco/qsCq40GSayyCKbXu3SzWuQP/rN5XNDbnynanyixMA 6M5ZqTuAFNvynumVd3MBWQPrJYIzOPmPH+9OtmFHG898Zu7PNQN/zCSXepj6JLrB M4SsBak7/zL8QezHG3LJLSHT3Vds7bzpk27dAwUn4Ziq64+YaKVrZZA0EJSytd5N 39VpXynq96fTKpiZheEAOgboecAvd4y1g7CywQP8zjAR92I/w8eBh60IXZfCFBZm 3VeHimI/eHaxxaiAUNxUuTXHQeyh5LEC6TtecxqY8nIXHx3v77/rmY28QTE/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwVepR9cl0yQURzrQr6umMzn7R08wHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABVfhB9wKQ/s9SIYol8/57vqxqOLjiuUPmq3 qgnjENG5AbCwrG9x4wIG/sh4D8JjNQB3sSx1KZLr8edDoGnh+EBdiZJge1U4W2gK WlrAGvIiuyYK+N1WZn2zkaE8XA/i7JYKtAoAvlc509RpiFuKHSTwEw5LBrC0q8yZ Eyb3MQqu6IWx8VoLEcBJEvi/6NB+ZUFUM8GPXflRKLzDA5cFV7ujHbrrcgTKHR/S oA78IWUTBJiUt6miP3TByF+u2Brgl33yz0F8HwIoDEg9i4pVS6tQNdGoeB/U0dLf rDL3M+aLAPhWjEvpqTYFeY5OROdovJ9Kq8is20uhPsU9j8jTYLw= -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:56 2026 by rpki-client