$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: 5praoZODmlY5JP6zntaZKzvgDrF5gqDb3yG+BKO7Njg= Subject key identifier: 18:A4:F1:4D:BF:20:34:14:4D:7F:04:56:D9:E3:D7:40:36:76:6C:4C Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 1C58BC52ACB523D3229B373FE78511A689FF3D9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: 0100 Signing time: Sat 07 Mar 2026 09:21:54 +0000 Manifest this update: Sat 07 Mar 2026 09:16:54 +0000 Manifest next update: Tue 10 Mar 2026 21:03:54 +0000 Files and hashes: 1: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: J9PqmfZVi2f6UGhRL/ftqCxB/AzwEfOESyL1WTCH/BA=) 2: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: okMulqCwmQrHdU+kO0nYzAvF/vvi8wTCEKi+VdDT9lQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:58:bc:52:ac:b5:23:d3:22:9b:37:3f:e7:85:11:a6:89:ff:3d:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Mar 7 09:16:54 2026 GMT Not After : Mar 10 21:03:54 2026 GMT Subject: CN=18A4F14DBF2034144D7F0456D9E3D74036766C4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:65:45:37:07:64:bc:d1:62:c4:8c:f1:0c:00: 17:70:29:64:50:87:e1:24:61:bf:f3:9b:ba:ec:80: d6:e8:c0:78:60:12:aa:ab:dd:a3:df:cf:23:dd:46: ac:27:5e:24:e4:3d:31:02:da:e4:98:91:a3:e1:17: e7:62:b4:28:8c:27:49:e6:40:86:8d:e7:58:03:e2: 4b:38:b9:b5:30:ad:a4:06:cc:3a:6a:1b:9a:20:1f: bb:4c:91:46:70:8f:2b:05:6d:db:ad:90:fd:96:73: d9:92:47:7e:d4:46:67:42:6b:c9:fa:1a:5c:04:63: 78:da:95:51:98:d2:29:5a:f7:e6:e6:b0:28:7b:4a: 45:9a:06:22:e9:0d:e6:62:bd:06:38:5b:eb:e4:bd: 4a:b1:ca:55:ef:ac:ba:0a:b7:4a:21:66:ba:cc:cd: 39:77:96:17:09:8e:db:41:f2:0f:13:fb:e0:a2:fc: bd:55:1c:cd:c8:c9:86:8a:5b:2e:f1:43:cb:98:08: c0:03:aa:66:20:4b:e3:95:82:34:51:73:cf:b5:a8: 24:e7:07:ed:fd:f2:ca:05:dc:a6:3c:76:28:ec:01: b7:7b:81:1f:e5:20:80:88:68:5a:53:31:71:cc:57: 70:60:6b:a1:c6:cc:80:c3:6f:04:7e:cd:bd:4b:48: 94:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A4:F1:4D:BF:20:34:14:4D:7F:04:56:D9:E3:D7:40:36:76:6C:4C X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:83:2e:29:46:aa:ea:2c:3b:f9:c9:70:46:0a:39:b3:d5:04: e5:a8:cd:fa:f6:52:51:09:9a:5c:35:43:5f:6b:bb:40:37:e6: 94:e4:b9:b8:ac:97:c8:7c:a3:24:a7:40:6f:4f:30:41:3b:0f: f6:b0:bd:50:15:3d:c1:42:8d:f2:3e:68:99:bf:1e:1a:1f:87: 0e:a6:da:b0:a0:dd:35:03:47:f8:5b:30:bd:5f:ab:6a:01:13: f9:98:ed:d0:90:15:81:29:52:fd:97:6c:17:65:00:02:45:fc: 69:1f:06:45:b8:db:9a:65:7c:e4:a1:2a:a9:12:a9:9b:57:1d: 65:17:35:64:e7:fc:3f:7a:0c:0b:63:0a:a3:8d:a7:16:48:56: 78:24:05:09:88:4c:49:91:c7:3b:b9:16:a5:53:db:fd:37:81: 7a:22:27:00:44:b8:37:48:96:db:a4:eb:32:45:9f:52:2b:b6: 5f:2d:51:69:11:11:2b:42:10:d6:ae:09:8c:bf:3b:4d:b9:85: 01:d0:8a:02:c9:71:e8:00:28:93:18:f6:87:70:97:d2:0b:9f: 20:c7:43:d8:9e:fb:0b:c9:ee:f1:3b:c7:a1:bf:e8:51:a2:1e: 12:c4:89:2f:de:fa:7d:7b:ca:b0:f7:90:9a:bc:d2:6c:a0:c7: 0d:45:aa:6c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHFi8Uqy1I9Mimzc/54URpon/PZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNjAzMDcwOTE2NTRaFw0yNjAzMTAyMTAzNTRaMDMxMTAvBgNV BAMTKDE4QTRGMTREQkYyMDM0MTQ0RDdGMDQ1NkQ5RTNENzQwMzY3NjZDNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqZUU3B2S80WLEjPEMABdwKWRQ h+EkYb/zm7rsgNbowHhgEqqr3aPfzyPdRqwnXiTkPTEC2uSYkaPhF+ditCiMJ0nm QIaN51gD4ks4ubUwraQGzDpqG5ogH7tMkUZwjysFbdutkP2Wc9mSR37URmdCa8n6 GlwEY3jalVGY0ila9+bmsCh7SkWaBiLpDeZivQY4W+vkvUqxylXvrLoKt0ohZrrM zTl3lhcJjttB8g8T++Ci/L1VHM3IyYaKWy7xQ8uYCMADqmYgS+OVgjRRc8+1qCTn B+398soF3KY8dijsAbd7gR/lIICIaFpTMXHMV3Bga6HGzIDDbwR+zb1LSJTjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGKTxTb8gNBRNfwRW2ePXQDZ2bEwwHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIqDLilGquosO/nJcEYKObPVBOWozfr2UlEJ mlw1Q19ru0A35pTkubisl8h8oySnQG9PMEE7D/awvVAVPcFCjfI+aJm/Hhofhw6m 2rCg3TUDR/hbML1fq2oBE/mY7dCQFYEpUv2XbBdlAAJF/GkfBkW425plfOShKqkS qZtXHWUXNWTn/D96DAtjCqONpxZIVngkBQmITEmRxzu5FqVT2/03gXoiJwBEuDdI ltuk6zJFn1Irtl8tUWkREStCENauCYy/O025hQHQigLJcegAKJMY9odwl9ILnyDH Q9ie+wvJ7vE7x6G/6FGiHhLEiS/e+n17yrD3kJq80mygxw1Fqmw= -----END CERTIFICATE-----Generated at Sat Mar 7 17:51:57 2026 by rpki-client