$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: TgXrzaQrokSbyT9HhT05OcsBwfV6Txhf9277c6QgCOw= Subject key identifier: C2:D0:7C:88:68:CF:38:74:E0:25:90:84:AC:2D:01:84:E8:C7:6A:4F Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 60D883A1AFB695D3316B8110906F05820DFA6AB3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 0111 Signing time: Thu 05 Mar 2026 23:11:13 +0000 Manifest this update: Thu 05 Mar 2026 23:06:13 +0000 Manifest next update: Mon 09 Mar 2026 07:10:13 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) 2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) 3: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: 3xepJ3MwlyWx8pK5W1zlpX2F7eU8A8FoPbEC7e/5whA=) 4: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:d8:83:a1:af:b6:95:d3:31:6b:81:10:90:6f:05:82:0d:fa:6a:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Mar 5 23:06:13 2026 GMT Not After : Mar 9 07:10:13 2026 GMT Subject: CN=C2D07C8868CF3874E0259084AC2D0184E8C76A4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:84:c8:29:06:e9:79:a1:04:65:f4:d4:85:3a: 2a:89:06:33:0c:0d:5a:aa:32:fc:c4:08:1f:59:1e: b1:6e:71:3c:83:4f:8c:02:f7:f6:b2:c0:4b:09:22: fa:ef:5c:23:1a:b3:05:39:ff:4e:81:e9:12:4d:36: d5:21:aa:d9:01:7c:66:2a:5e:41:b8:48:52:5b:da: 13:9d:ca:bc:21:ff:93:57:ab:5d:c4:42:75:14:88: 81:21:0d:b5:99:30:d9:93:a4:34:eb:ba:3f:30:6f: 72:12:20:d5:68:87:54:9a:5a:cf:db:42:10:93:3a: e5:a5:32:38:8a:a9:01:45:d1:d3:4e:7c:1a:34:82: 5c:db:00:60:46:48:a8:b9:d1:06:e8:ba:e4:b5:66: 61:79:b7:f8:72:cf:4a:02:14:2e:b2:ee:15:30:51: e1:5a:ab:7a:49:78:ee:c6:e1:61:dc:bd:7e:02:59: 7f:77:49:0b:1d:53:d9:05:a5:15:91:6e:52:36:d6: b0:ae:ca:2e:3c:1b:65:7f:a5:c4:59:2f:bf:35:19: 3f:25:55:a0:5f:76:bb:a8:86:89:bb:80:b5:4e:8d: 65:c5:f8:d8:ae:09:12:9d:56:bc:01:ca:5f:3e:d6: 8f:a8:b6:0c:ae:d1:f1:5a:30:e3:7d:bd:8d:8c:b8: 7e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D0:7C:88:68:CF:38:74:E0:25:90:84:AC:2D:01:84:E8:C7:6A:4F X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b1:55:93:6b:7c:e3:55:0c:1a:9d:3f:cb:c6:ba:0a:70:16: 48:a3:b4:3a:29:54:16:04:7e:a7:91:85:6d:23:59:f0:49:8e: bb:15:40:99:99:06:c0:79:20:fc:24:2b:57:57:48:31:81:d8: 48:7a:51:3e:5c:87:47:54:e4:e0:89:e6:db:00:62:cb:c1:95: dc:23:ff:bb:69:d8:ef:3b:3e:ed:cb:e2:74:d7:fb:48:f6:4c: 9f:a3:82:21:e0:b2:22:9b:af:f4:83:03:3e:34:46:05:1d:51: 94:44:0c:9c:a1:ca:75:b1:24:5c:7f:cc:ef:39:fb:3e:2d:38: f5:41:9e:1a:85:13:67:10:87:dd:75:93:42:68:a4:a3:70:92: 16:f0:aa:12:2c:a0:d1:5a:1f:a9:5e:91:e8:1b:14:fd:d7:fa: 67:40:ca:01:59:d0:96:3c:e2:39:35:bb:93:27:8d:37:0c:e9: 33:d3:f1:c5:cd:7f:33:6f:95:34:c1:70:17:94:8a:dc:9a:44: 60:72:b9:4b:e8:6a:e2:9f:0c:7a:2e:ee:f4:41:a3:ac:af:01: bc:70:4f:77:4a:d9:0a:3b:f9:41:8c:8c:b2:c4:93:f1:ea:5f: 14:65:fe:38:b4:be:3d:2b:8c:8c:9e:0d:24:91:fd:fe:e5:92: ff:bc:8f:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYNiDoa+2ldMxa4EQkG8Fgg36arMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNjAzMDUyMzA2MTNaFw0yNjAzMDkwNzEwMTNaMDMxMTAvBgNV BAMTKEMyRDA3Qzg4NjhDRjM4NzRFMDI1OTA4NEFDMkQwMTg0RThDNzZBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCahMgpBul5oQRl9NSFOiqJBjMM DVqqMvzECB9ZHrFucTyDT4wC9/aywEsJIvrvXCMaswU5/06B6RJNNtUhqtkBfGYq XkG4SFJb2hOdyrwh/5NXq13EQnUUiIEhDbWZMNmTpDTruj8wb3ISINVoh1SaWs/b QhCTOuWlMjiKqQFF0dNOfBo0glzbAGBGSKi50QbouuS1ZmF5t/hyz0oCFC6y7hUw UeFaq3pJeO7G4WHcvX4CWX93SQsdU9kFpRWRblI21rCuyi48G2V/pcRZL781GT8l VaBfdruohom7gLVOjWXF+NiuCRKdVrwByl8+1o+otgyu0fFaMON9vY2MuH4RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwtB8iGjPOHTgJZCErC0BhOjHak8wHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6xVZNrfONVDBqdP8vGugpwFkijtDopVBYE fqeRhW0jWfBJjrsVQJmZBsB5IPwkK1dXSDGB2Eh6UT5ch0dU5OCJ5tsAYsvBldwj /7tp2O87Pu3L4nTX+0j2TJ+jgiHgsiKbr/SDAz40RgUdUZREDJyhynWxJFx/zO85 +z4tOPVBnhqFE2cQh911k0JopKNwkhbwqhIsoNFaH6lekegbFP3X+mdAygFZ0JY8 4jk1u5MnjTcM6TPT8cXNfzNvlTTBcBeUityaRGByuUvoauKfDHou7vRBo6yvAbxw T3dK2Qo7+UGMjLLEk/HqXxRl/ji0vj0rjIyeDSSR/f7lkv+8jxY= -----END CERTIFICATE-----Generated at Sat Mar 7 17:50:35 2026 by rpki-client