$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: Gmkf3Y7Xc/WgjnDbUuzBxCvAgsKQYRpGWyHEcC2UFWs= Subject key identifier: 76:91:44:F6:79:77:74:12:AA:7D:14:96:3B:15:16:06:B5:40:B5:42 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 2346F6DE17E6411354C990D7FB0383291396DBFB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 01E6 Signing time: Wed 25 Mar 2026 23:20:48 +0000 Manifest this update: Wed 25 Mar 2026 23:15:48 +0000 Manifest next update: Sun 29 Mar 2026 02:32:48 +0000 Files and hashes: 1: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: Er3SZg2wUj/P2Phj94Rs/pKQreK157hBoR/0FApk3DI=) 2: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: NgiCiwYgDeYQaPatps9fGhPQzocYHvig3vWSvQTITq4=) 3: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: D41skCw/XWJSOFHSYSBpxlKy8MtN5KaBdVT4ENv1r88=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 02:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:46:f6:de:17:e6:41:13:54:c9:90:d7:fb:03:83:29:13:96:db:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Mar 25 23:15:48 2026 GMT Not After : Mar 29 02:32:48 2026 GMT Subject: CN=769144F679777412AA7D14963B151606B540B542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d6:e5:db:e4:c0:f9:c0:7f:62:8b:89:2a:0c: 29:9a:02:66:e8:e9:44:54:03:eb:bd:6a:83:59:1c: b6:91:b7:51:ce:b8:02:a5:08:1e:8b:96:5c:c0:ef: 9a:23:6e:f2:9a:23:b9:ab:2e:53:a5:dc:ab:10:d5: 3b:70:ea:0c:63:e3:88:a7:ba:dd:ea:39:61:4b:a5: 65:39:98:60:95:51:a2:7a:52:13:7c:7e:43:bf:31: d1:fd:8e:53:8a:8b:e9:22:02:12:0b:27:af:a8:43: 7c:5b:65:c3:79:45:03:72:5c:11:4b:99:7b:7a:13: 13:42:31:36:41:92:48:97:ac:3e:3e:2a:ee:85:d0: a8:6c:57:85:95:25:44:18:24:00:aa:84:6f:d6:61: 65:9b:89:16:4b:69:c3:42:de:d9:12:00:33:b7:f3: 39:0b:c7:ed:85:0e:d6:46:f2:ce:a9:aa:7e:67:64: f2:95:95:aa:7a:39:d9:48:15:0f:d1:ee:73:b8:b2: 5f:22:e2:5f:ba:57:d8:11:3c:02:a5:1d:c5:bd:4f: 11:00:1f:5f:48:45:ff:3b:65:36:b2:52:65:c3:b0: bd:a7:b0:a1:75:d2:b2:09:b5:35:70:65:5e:e9:48: 34:57:23:e9:3f:49:45:1b:0a:fa:40:d6:5a:a5:e4: 16:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:91:44:F6:79:77:74:12:AA:7D:14:96:3B:15:16:06:B5:40:B5:42 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:4f:5d:04:a1:8f:22:23:38:cc:d0:49:0e:1e:91:20:ca:fd: 93:44:3f:5f:87:2b:d6:b4:e5:b0:18:18:4e:a0:f8:4a:f9:b2: ce:c2:fc:f2:18:1d:37:66:33:24:bc:cc:f2:d7:cf:31:1a:5c: 50:71:40:9b:34:1f:0b:90:0a:9d:88:89:c0:7f:ab:f6:b7:5f: 8e:60:fd:70:19:b9:61:18:6e:9b:19:2d:9a:e1:f4:a9:12:8c: 31:ea:19:31:53:05:41:7a:11:9f:f8:4e:dc:ba:92:5d:d6:2e: 7b:04:5e:5b:f5:38:ec:5b:11:be:33:57:b2:7f:34:b9:79:e2: 38:d6:bb:da:1e:28:b9:89:90:10:d3:7c:76:0b:a3:d7:ea:e7: 16:45:16:8d:f4:a5:12:ca:15:e2:ee:85:6b:d8:c6:09:bd:b8: ab:8a:81:b7:d9:de:95:08:54:ba:54:4f:47:69:3d:90:4f:6e: 71:e5:eb:91:7b:11:70:27:09:02:1a:4c:b5:e4:b7:3f:04:76: 86:ba:d4:61:e1:83:44:97:fb:0c:8f:1f:89:4a:e6:63:4e:8a: 17:d4:a0:0b:61:71:04:45:97:4b:40:07:3e:0e:3d:52:78:1e: 99:bc:72:b1:d3:ad:01:29:f3:4c:c0:f8:dc:91:7c:50:25:19: 52:ca:c5:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI0b23hfmQRNUyZDX+wODKROW2/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNjAzMjUyMzE1NDhaFw0yNjAzMjkwMjMyNDhaMDMxMTAvBgNV BAMTKDc2OTE0NEY2Nzk3Nzc0MTJBQTdEMTQ5NjNCMTUxNjA2QjU0MEI1NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO1uXb5MD5wH9ii4kqDCmaAmbo 6URUA+u9aoNZHLaRt1HOuAKlCB6LllzA75ojbvKaI7mrLlOl3KsQ1Ttw6gxj44in ut3qOWFLpWU5mGCVUaJ6UhN8fkO/MdH9jlOKi+kiAhILJ6+oQ3xbZcN5RQNyXBFL mXt6ExNCMTZBkkiXrD4+Ku6F0KhsV4WVJUQYJACqhG/WYWWbiRZLacNC3tkSADO3 8zkLx+2FDtZG8s6pqn5nZPKVlap6OdlIFQ/R7nO4sl8i4l+6V9gRPAKlHcW9TxEA H19IRf87ZTayUmXDsL2nsKF10rIJtTVwZV7pSDRXI+k/SUUbCvpA1lql5BaXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdpFE9nl3dBKqfRSWOxUWBrVAtUIwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpPXQShjyIjOMzQSQ4ekSDK/ZNEP1+HK9a0 5bAYGE6g+Er5ss7C/PIYHTdmMyS8zPLXzzEaXFBxQJs0HwuQCp2IicB/q/a3X45g /XAZuWEYbpsZLZrh9KkSjDHqGTFTBUF6EZ/4Tty6kl3WLnsEXlv1OOxbEb4zV7J/ NLl54jjWu9oeKLmJkBDTfHYLo9fq5xZFFo30pRLKFeLuhWvYxgm9uKuKgbfZ3pUI VLpUT0dpPZBPbnHl65F7EXAnCQIaTLXktz8Edoa61GHhg0SX+wyPH4lK5mNOihfU oAthcQRFl0tABz4OPVJ4Hpm8crHTrQEp80zA+NyRfFAlGVLKxRc= -----END CERTIFICATE-----Generated at Thu Mar 26 19:16:07 2026 by rpki-client