$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft File: 0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft (raw, json) Hash identifier: hsDWW5DxyVD+B1SeyrZbM6Qyr4eRsy4Pb7w2juINMQc= Subject key identifier: 7A:91:CE:7B:7B:98:ED:C7:D2:C2:12:1C:38:C9:5D:E6:61:70:36:64 Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 4C3812486FC957FE2665B55550338F69C9F53238 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft Manifest number: 0552 Signing time: Thu 26 Feb 2026 18:50:04 +0000 Manifest this update: Thu 26 Feb 2026 18:45:04 +0000 Manifest next update: Mon 02 Mar 2026 06:43:04 +0000 Files and hashes: 1: 3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa (hash: TU9zvXhzWTJdHe9aJGaZ4ESWd+R9UnSTLhOnKf2ldQw=) 2: 0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl (hash: sH5LLs0yB/KPzn0lmnHunoju+4v2Nml23ArJS0rhrwA=) 3: 3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa (hash: yZXQq1AsbvVqsIpt8X61N4yo3oIwRlVFOr0RHwfGuds=) 4: 3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa (hash: BUjAtiDKImhm44uw2SFH6kSw2t9lwdf9XIcal9kQ1mg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Mar 2026 23:08:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:38:12:48:6f:c9:57:fe:26:65:b5:55:50:33:8f:69:c9:f5:32:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Feb 26 18:45:04 2026 GMT Not After : Mar 2 06:43:04 2026 GMT Subject: CN=7A91CE7B7B98EDC7D2C2121C38C95DE661703664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:96:7c:41:92:d9:6b:a0:73:16:cb:2f:4c: 8c:74:70:b6:ae:dc:49:c5:36:22:0d:7f:9b:c0:f0: 8f:a2:95:60:c2:4c:2b:ea:43:37:c8:46:c0:8d:fa: 57:41:e9:88:a2:23:69:54:10:93:bf:1f:bd:2a:c5: 2f:11:8b:4a:01:a9:c3:16:a7:25:4e:06:c7:ad:f0: 34:d6:84:99:d2:3d:b1:f1:ff:7d:f3:4a:9f:8c:51: ff:a6:af:6e:3d:ed:da:fb:b3:b4:bf:b7:eb:10:57: d0:41:50:7c:c0:7a:09:54:c4:f7:0d:35:86:1f:49: c4:c1:c4:b9:53:07:37:cc:f8:5f:b7:df:1c:8e:02: 9a:1b:8d:68:3f:a4:dd:30:94:82:ff:bd:13:79:64: 0f:38:2b:1d:2f:e6:a3:8d:af:29:84:22:fe:fc:12: a1:7b:4f:41:37:0d:74:b2:11:4b:d2:67:7e:2b:cf: b8:24:75:9f:10:7b:b4:48:9a:b6:7d:d6:2e:68:63: 86:67:e5:55:8b:74:25:f4:53:06:44:d4:df:12:78: 34:5c:03:5c:b3:a9:ec:ff:74:b6:f9:02:f7:91:d7: 72:03:03:80:90:e1:a0:1c:66:2d:09:cc:28:06:ee: 3e:da:39:52:6b:94:e8:a6:41:24:98:89:0f:ed:ea: 82:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:91:CE:7B:7B:98:ED:C7:D2:C2:12:1C:38:C9:5D:E6:61:70:36:64 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:1f:94:35:df:1b:89:a5:76:1c:3e:c6:65:e4:48:15:db:ca: 5f:63:f4:d1:08:c2:ad:db:00:cc:66:e4:d1:34:07:79:2a:88: 5f:61:e1:6a:70:83:7f:46:87:09:11:b5:ee:74:ed:5c:ec:dd: 90:e0:76:b6:1d:bd:e9:cc:ae:ea:25:01:ec:8e:78:f1:d9:2b: b8:5a:6b:cf:f5:40:74:be:31:ae:13:c6:6b:e5:f6:90:7b:da: 5a:e3:60:9e:ce:96:54:b5:c5:6d:ec:89:3b:23:b9:c7:42:07: c6:c2:6c:27:86:4b:82:59:49:e0:00:9f:6d:16:17:7a:aa:c6: 9d:3f:8c:57:07:ff:bc:4f:d3:1f:b4:cc:a1:1f:ee:16:9b:61: 37:d4:f7:86:c7:14:86:37:cb:f1:70:f1:d4:7f:33:9b:96:32: 4c:21:ec:39:63:74:08:22:1e:8e:7d:7e:9a:a4:e9:9a:b9:af: 84:e4:f1:5f:aa:db:db:eb:7b:fc:47:15:58:c5:66:8a:ca:82: cb:7d:94:db:fd:d9:b0:71:0e:41:7b:5c:73:06:03:6b:f4:6a: c6:67:2c:e0:94:13:bb:c1:13:fe:5c:37:d1:8b:1a:eb:42:ff: f2:4b:97:2f:16:65:de:19:63:31:80:49:98:f8:77:f4:81:a2: 3e:42:9b:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTDgSSG/JV/4mZbVVUDOPacn1MjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNjAyMjYxODQ1MDRaFw0yNjAzMDIwNjQzMDRaMDMxMTAvBgNV BAMTKDdBOTFDRTdCN0I5OEVEQzdEMkMyMTIxQzM4Qzk1REU2NjE3MDM2NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UpZ8QZLZa6BzFssvTIx0cLau 3EnFNiINf5vA8I+ilWDCTCvqQzfIRsCN+ldB6YiiI2lUEJO/H70qxS8Ri0oBqcMW pyVOBset8DTWhJnSPbHx/33zSp+MUf+mr2497dr7s7S/t+sQV9BBUHzAeglUxPcN NYYfScTBxLlTBzfM+F+33xyOApobjWg/pN0wlIL/vRN5ZA84Kx0v5qONrymEIv78 EqF7T0E3DXSyEUvSZ34rz7gkdZ8Qe7RImrZ91i5oY4Zn5VWLdCX0UwZE1N8SeDRc A1yzqez/dLb5AveR13IDA4CQ4aAcZi0JzCgG7j7aOVJrlOimQSSYiQ/t6oInAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUepHOe3uY7cfSwhIcOMld5mFwNmQwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGE0YTIxYjktZjkxMi00MWYzLWI2 MmMtMTIxNzU4MWM5NDhhLzAvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgz MTQ3NDVDRDk3Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKwflDXfG4mldhw+xmXkSBXbyl9j9NEIwq3b AMxm5NE0B3kqiF9h4Wpwg39GhwkRte507Vzs3ZDgdrYdvenMruolAeyOePHZK7ha a8/1QHS+Ma4Txmvl9pB72lrjYJ7OllS1xW3siTsjucdCB8bCbCeGS4JZSeAAn20W F3qqxp0/jFcH/7xP0x+0zKEf7habYTfU94bHFIY3y/Fw8dR/M5uWMkwh7DljdAgi Ho59fpqk6Zq5r4Tk8V+q29vre/xHFVjFZorKgst9lNv92bBxDkF7XHMGA2v0asZn LOCUE7vBE/5cN9GLGutC//JLly8WZd4ZYzGASZj4d/SBoj5CmzI= -----END CERTIFICATE-----Generated at Fri Feb 27 03:28:21 2026 by rpki-client