$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: tBTzb0oIDPAn+HL4XDuwF+s3uWptymvjzyd/GRQuVks= Subject key identifier: 88:96:8F:70:BE:C2:02:69:AE:C0:46:AF:82:31:0E:4A:F8:6F:7A:A6 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 22B170F0A35C4C3390D4CB86FBEB4E99549BDA16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 012F Signing time: Fri 06 Mar 2026 14:21:18 +0000 Manifest this update: Fri 06 Mar 2026 14:16:18 +0000 Manifest next update: Mon 09 Mar 2026 20:07:18 +0000 Files and hashes: 1: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (hash: O5uJEpO5oilAXqiR31tNYgCroCKbL1/bMOK5Er+Qs0U=) 2: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: 0l0HrII3ZatoRgTCU0VCtiWHey715JhNg9WcRXm6q2o=) 3: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b1:70:f0:a3:5c:4c:33:90:d4:cb:86:fb:eb:4e:99:54:9b:da:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Mar 6 14:16:18 2026 GMT Not After : Mar 9 20:07:18 2026 GMT Subject: CN=88968F70BEC20269AEC046AF82310E4AF86F7AA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f7:4b:c4:e6:1e:15:bc:9f:0a:3e:29:25:c7: 81:cd:86:fb:2d:e1:5f:cf:19:43:c2:c1:03:00:a9: d2:ee:53:fc:39:80:56:38:0a:27:55:2a:6f:0f:fd: 7a:71:59:6c:43:49:1d:3b:e2:75:44:a6:58:99:e7: 7f:e7:60:92:f7:a1:16:9c:87:b1:62:fc:20:a0:a5: a4:90:6e:a0:2c:04:f3:49:e5:9d:f5:d9:15:6b:34: fa:16:59:0e:52:0b:7d:74:46:0b:3e:30:64:bc:ea: ef:75:09:6d:3a:87:b7:fe:fe:e3:ef:d1:ee:a4:14: 0f:bf:77:4e:d1:54:31:3d:29:1f:7a:4a:33:5c:78: 3c:b8:57:f0:b5:77:21:0f:8e:ab:b0:cc:42:06:03: e5:e4:64:78:08:4d:c5:8e:bf:cb:e2:69:cb:fe:a5: 29:ac:da:d1:1b:8b:0b:16:59:6d:be:09:dd:b8:cc: 75:e0:10:c1:de:e2:7d:10:1f:58:06:fc:54:12:c4: a8:1f:73:40:fa:09:7d:a9:50:41:69:69:85:11:d8: 8a:50:d3:7c:71:f5:79:52:3c:a9:7a:09:f3:f1:1d: e4:e9:86:69:b8:d7:58:00:fa:43:79:b0:81:c1:84: 06:cb:d7:db:7a:6b:de:e0:25:e2:91:d7:0a:bc:c8: 6d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:96:8F:70:BE:C2:02:69:AE:C0:46:AF:82:31:0E:4A:F8:6F:7A:A6 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:42:8c:f2:a6:b8:f5:04:7b:06:5c:5f:cc:6e:d1:e3:f0:c3: e0:ae:36:d6:da:f8:4d:dc:b9:ce:d6:ea:07:c7:2c:10:56:09: c3:e3:ae:f7:78:c0:71:48:ba:2e:30:e5:58:70:09:6d:83:29: 93:f2:8a:7d:fd:4d:09:e2:72:02:17:47:8d:b5:b9:b9:9c:af: c2:d7:1c:81:30:e3:25:2b:70:aa:80:6e:ce:46:69:23:7b:5d: 06:32:b2:74:64:fd:72:d9:37:7c:78:78:e3:cd:76:47:fc:58: a1:19:1c:f3:e0:5f:e1:56:24:f0:00:d2:86:0e:68:84:aa:65: 60:db:ae:94:9e:ae:a3:b2:39:ce:7f:cb:9a:fb:df:22:00:4f: 23:0f:33:95:78:57:45:78:5d:98:91:82:c5:e2:03:ec:f2:71: 99:bd:e6:2d:f6:6c:0a:e0:f8:bf:ca:ce:29:48:5e:7d:90:60: 17:73:34:1b:8a:47:1c:b2:9a:30:3f:12:4d:f6:5a:8b:b3:14: c4:40:73:30:a7:ce:74:02:22:e4:15:8a:ce:3f:1d:3f:4a:2c: 3f:7b:62:cf:cb:24:5e:80:40:d2:b9:c9:37:7c:f9:f3:2c:79: 89:8e:31:e6:06:6c:35:6c:d1:3c:73:39:b9:d7:4d:83:66:27: de:73:7c:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIrFw8KNcTDOQ1MuG++tOmVSb2hYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNjAzMDYxNDE2MThaFw0yNjAzMDkyMDA3MThaMDMxMTAvBgNV BAMTKDg4OTY4RjcwQkVDMjAyNjlBRUMwNDZBRjgyMzEwRTRBRjg2RjdBQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL90vE5h4VvJ8KPiklx4HNhvst 4V/PGUPCwQMAqdLuU/w5gFY4CidVKm8P/XpxWWxDSR074nVEpliZ53/nYJL3oRac h7Fi/CCgpaSQbqAsBPNJ5Z312RVrNPoWWQ5SC310Rgs+MGS86u91CW06h7f+/uPv 0e6kFA+/d07RVDE9KR96SjNceDy4V/C1dyEPjquwzEIGA+XkZHgITcWOv8viacv+ pSms2tEbiwsWWW2+Cd24zHXgEMHe4n0QH1gG/FQSxKgfc0D6CX2pUEFpaYUR2IpQ 03xx9XlSPKl6CfPxHeTphmm411gA+kN5sIHBhAbL19t6a97gJeKR1wq8yG3hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiJaPcL7CAmmuwEavgjEOSvhveqYwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALNCjPKmuPUEewZcX8xu0ePww+CuNtba+E3c uc7W6gfHLBBWCcPjrvd4wHFIui4w5VhwCW2DKZPyin39TQnicgIXR421ubmcr8LX HIEw4yUrcKqAbs5GaSN7XQYysnRk/XLZN3x4eOPNdkf8WKEZHPPgX+FWJPAA0oYO aISqZWDbrpSerqOyOc5/y5r73yIATyMPM5V4V0V4XZiRgsXiA+zycZm95i32bArg +L/KzilIXn2QYBdzNBuKRxyymjA/Ek32WouzFMRAczCnznQCIuQVis4/HT9KLD97 Ys/LJF6AQNK5yTd8+fMseYmOMeYGbDVs0TxzObnXTYNmJ95zfPc= -----END CERTIFICATE-----Generated at Sat Mar 7 17:50:29 2026 by rpki-client