$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: sOG5zBsAXIDzSOGA67esv26bJl//JixksjOTQsUEXWc= Subject key identifier: 6A:F4:D1:3E:B4:73:7B:DC:78:09:89:DC:C4:4E:E9:56:3F:09:95:79 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 02D32B4886D2F129461A68C263EBB971E72FA477 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 032F Signing time: Fri 20 Feb 2026 19:11:03 +0000 Manifest this update: Fri 20 Feb 2026 19:06:03 +0000 Manifest next update: Tue 24 Feb 2026 04:30:03 +0000 Files and hashes: 1: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 2: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 3: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) 4: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) 5: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: m/sbQ1duBaZclR86562Vde4kxZbNGkt8rgsmbWxpjlc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Feb 2026 04:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d3:2b:48:86:d2:f1:29:46:1a:68:c2:63:eb:b9:71:e7:2f:a4:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Feb 20 19:06:03 2026 GMT Not After : Feb 24 04:30:03 2026 GMT Subject: CN=6AF4D13EB4737BDC780989DCC44EE9563F099579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:43:e3:4b:30:95:e2:0d:3f:07:96:bf:67: 39:23:6d:5f:95:16:ab:df:78:a4:e3:4c:3b:36:c4: 2a:91:8b:e7:59:21:c1:75:63:5a:2a:26:cf:4c:d7: 08:75:96:54:12:80:28:8e:66:56:5c:9f:49:c1:40: 6a:ff:ef:14:c7:b1:e2:7b:31:c6:07:e5:4f:ae:05: 3a:a1:97:8e:3a:75:a7:94:55:fe:39:4a:71:ea:ac: 75:ff:90:09:7c:14:60:7f:13:65:2f:64:da:a6:2b: 98:2e:90:d9:38:34:f0:ae:d8:34:1d:5a:c8:80:bb: 00:27:be:2b:17:d2:fc:60:de:d9:66:95:38:18:78: 5b:81:88:61:8d:90:ad:36:68:12:cb:d6:4f:4d:5b: 12:f0:0b:a5:eb:38:a9:70:fc:f3:fd:ef:29:cf:7e: 46:7c:58:9e:aa:02:13:d8:5e:ed:36:20:0f:de:34: f3:26:23:4e:3e:74:db:95:3a:a5:7f:24:a7:ac:42: 19:89:5a:ae:54:23:ae:b9:e2:9f:96:2e:1d:47:d2: a3:ec:c9:a9:29:86:3a:4d:1e:60:13:cd:62:34:d8: af:ff:db:04:d9:ff:a0:dc:6d:81:a4:aa:d4:9b:10: e0:d5:a5:68:20:f8:b9:d1:ac:7f:81:c2:12:91:15: df:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F4:D1:3E:B4:73:7B:DC:78:09:89:DC:C4:4E:E9:56:3F:09:95:79 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:1e:0a:2a:b5:73:47:ba:32:14:1f:d1:73:ad:50:cb:97:b3: ab:c6:e8:b0:14:0e:59:77:7c:ef:88:cb:ad:a3:d0:54:3d:53: 2d:89:c6:34:a7:70:75:8a:f3:2c:df:50:34:05:a3:89:2a:c0: 8d:2d:1e:a2:ee:60:3c:9b:7b:9a:46:97:7b:62:fe:a0:23:d3: cf:f0:76:61:3e:89:57:13:ec:7a:52:2a:82:d6:5e:31:d6:be: 42:27:60:71:4a:4d:52:15:dc:56:11:1c:ef:3e:9d:0e:f1:8a: c5:04:32:c0:d5:4a:d6:e1:36:10:e0:44:02:89:d5:23:84:5c: af:d0:be:0f:9b:5b:25:10:d6:ce:28:5d:b8:c9:37:42:95:4b: a5:98:48:4e:f3:e6:28:89:be:c3:4d:5a:f3:b7:31:a6:09:66: 6f:81:bb:59:6b:1d:d3:be:e3:b5:9d:84:ae:63:19:a9:a0:8f: de:a4:1f:91:68:8e:71:32:d5:8e:03:a1:f6:f9:27:33:dd:5d: b1:49:24:49:7a:a2:c1:7e:7d:cb:e3:5e:6c:3a:07:9b:9a:7b: 7f:0c:bf:c7:b6:e7:e7:49:b9:d6:5c:ee:ce:b6:d3:a2:b3:d3: f7:9e:58:b7:85:c9:9a:94:c6:8f:05:77:3e:df:d8:30:92:96: 61:d5:c7:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAtMrSIbS8SlGGmjCY+u5cecvpHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNjAyMjAxOTA2MDNaFw0yNjAyMjQwNDMwMDNaMDMxMTAvBgNV BAMTKDZBRjREMTNFQjQ3MzdCREM3ODA5ODlEQ0M0NEVFOTU2M0YwOTk1NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4e0PjSzCV4g0/B5a/ZzkjbV+V FqvfeKTjTDs2xCqRi+dZIcF1Y1oqJs9M1wh1llQSgCiOZlZcn0nBQGr/7xTHseJ7 McYH5U+uBTqhl446daeUVf45SnHqrHX/kAl8FGB/E2UvZNqmK5gukNk4NPCu2DQd WsiAuwAnvisX0vxg3tlmlTgYeFuBiGGNkK02aBLL1k9NWxLwC6XrOKlw/PP97ynP fkZ8WJ6qAhPYXu02IA/eNPMmI04+dNuVOqV/JKesQhmJWq5UI6654p+WLh1H0qPs yakphjpNHmATzWI02K//2wTZ/6DcbYGkqtSbEODVpWgg+LnRrH+BwhKRFd+7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUavTRPrRze9x4CYncxE7pVj8JlXkwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKceCiq1c0e6MhQf0XOtUMuXs6vG6LAUDll3 fO+Iy62j0FQ9Uy2JxjSncHWK8yzfUDQFo4kqwI0tHqLuYDybe5pGl3ti/qAj08/w dmE+iVcT7HpSKoLWXjHWvkInYHFKTVIV3FYRHO8+nQ7xisUEMsDVStbhNhDgRAKJ 1SOEXK/Qvg+bWyUQ1s4oXbjJN0KVS6WYSE7z5iiJvsNNWvO3MaYJZm+Bu1lrHdO+ 47WdhK5jGamgj96kH5FojnEy1Y4Dofb5JzPdXbFJJEl6osF+fcvjXmw6B5uae38M v8e25+dJudZc7s6206Kz0/eeWLeFyZqUxo8Fdz7f2DCSlmHVx0Q= -----END CERTIFICATE-----Generated at Sun Feb 22 23:28:35 2026 by rpki-client