$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: 4T1VYlVEjfqKZiz8YGtdEdCqeg/aGeTmu1W8J/Zgr2s= Subject key identifier: 7F:2A:64:26:F3:F8:0A:EB:81:D6:29:6D:7A:D7:A3:82:13:2C:70:92 Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 1A2453D9490955C0CC836ECD9036E83B92E15255 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0295 Signing time: Tue 24 Mar 2026 12:31:19 +0000 Manifest this update: Tue 24 Mar 2026 12:26:19 +0000 Manifest next update: Fri 27 Mar 2026 22:53:19 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: LJlBxq8ymyHGerS3R49fpjBElb4mwDz4wakEqWAnKM4=) 2: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: etYodgnJYh3trd5HBJwHsn5n2vL2wMwaYJQCzGIxOug=) 3: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: BLiMG3cPJW8PTE3lWFPKoVkE6C7WMVqNEXCqGAsC0Zk=) 4: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: 0gXOJT38WPRdvZH/mvcMIDFy0eFxFO3CspBZZzjXpXE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 22:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:24:53:d9:49:09:55:c0:cc:83:6e:cd:90:36:e8:3b:92:e1:52:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Mar 24 12:26:19 2026 GMT Not After : Mar 27 22:53:19 2026 GMT Subject: CN=7F2A6426F3F80AEB81D6296D7AD7A382132C7092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ed:31:ef:a5:8f:28:86:3b:2c:51:5d:79:8d: f3:28:15:8c:16:8a:97:e9:6f:e0:4e:61:39:63:00: 72:c0:5e:1b:27:4f:8e:f0:80:d4:77:5b:60:fe:3c: 13:fb:b9:80:2d:3e:ed:5e:31:d0:b4:a3:79:3c:00: 5c:06:3b:0f:09:00:4f:bb:ba:cc:2c:b7:43:93:c4: b7:e0:c1:7b:7a:a1:a9:19:b4:73:75:1b:e1:40:68: e5:55:7f:84:6d:2a:76:68:37:fd:b1:1f:f3:35:72: dd:f5:34:0c:71:b6:11:3a:17:5a:c2:36:67:4f:f3: a7:31:ea:e6:14:fe:3c:07:40:1b:55:9b:dc:d5:7a: 9e:df:7f:08:f5:ec:eb:9f:4d:e5:63:3f:58:ff:6a: e4:e4:9d:f4:ee:ce:20:9d:47:3b:69:59:3e:10:20: ac:bc:1f:80:d0:0b:3a:e6:93:3c:df:ec:2a:65:e6: 89:f3:a5:12:ce:2c:e6:7a:de:cd:d3:46:ee:c0:d5: 5e:01:68:c7:e1:da:8e:9b:ca:d3:50:7f:a0:5c:0c: 89:6b:a1:d2:f5:4f:ea:d5:5e:75:da:44:73:13:f4: ac:16:fe:ba:56:8f:58:d3:b6:9f:83:94:ae:de:c4: 43:42:0a:24:2b:2a:b5:d5:36:a0:42:00:d5:70:4b: 8c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:2A:64:26:F3:F8:0A:EB:81:D6:29:6D:7A:D7:A3:82:13:2C:70:92 X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:b1:f9:12:e7:6a:1f:b0:2f:1c:ba:cf:cc:3a:c7:c5:d5:ad: b2:29:cb:c6:21:79:e9:1b:be:fa:c0:93:9d:b0:d6:42:9a:d5: 33:8a:22:f8:73:02:78:a7:de:36:f7:b2:40:b2:55:27:b9:4b: d8:41:55:e1:e7:83:22:89:d5:51:41:58:38:07:37:ce:82:34: 62:07:33:6b:d3:d1:9a:9c:22:65:25:f3:93:9e:a5:b6:46:6f: ca:be:70:f8:ba:05:05:15:77:2b:89:3c:2f:23:0b:fe:b2:d2: d1:7c:37:8c:6c:69:0f:25:4f:fb:f1:db:12:d4:f1:8b:99:33: 6c:1d:13:5a:32:18:2a:c2:15:04:1d:c5:1d:63:60:28:45:94: d1:a9:e7:91:b8:83:58:a1:af:49:5b:d6:f2:0a:a2:bd:bc:9a: 2a:eb:3e:db:0a:1a:7b:87:55:94:66:06:0a:81:48:2b:da:0c: 20:b1:13:82:15:9e:48:12:51:1f:06:bd:3c:77:14:2d:38:c5: b3:c1:61:c5:8a:e5:4f:00:0a:b8:f7:bb:d9:6b:1a:d9:91:57: 53:48:50:82:7d:45:38:6f:11:35:19:74:60:83:2c:59:ba:0a: 1a:8d:68:c0:7e:8d:6d:87:3e:ba:b2:36:34:0b:01:29:19:b6: 7c:22:d9:69 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGiRT2UkJVcDMg27NkDboO5LhUlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNjAzMjQxMjI2MTlaFw0yNjAzMjcyMjUzMTlaMDMxMTAvBgNV BAMTKDdGMkE2NDI2RjNGODBBRUI4MUQ2Mjk2RDdBRDdBMzgyMTMyQzcwOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL7THvpY8ohjssUV15jfMoFYwW ipfpb+BOYTljAHLAXhsnT47wgNR3W2D+PBP7uYAtPu1eMdC0o3k8AFwGOw8JAE+7 uswst0OTxLfgwXt6oakZtHN1G+FAaOVVf4RtKnZoN/2xH/M1ct31NAxxthE6F1rC NmdP86cx6uYU/jwHQBtVm9zVep7ffwj17OufTeVjP1j/auTknfTuziCdRztpWT4Q IKy8H4DQCzrmkzzf7Cpl5onzpRLOLOZ63s3TRu7A1V4BaMfh2o6bytNQf6BcDIlr odL1T+rVXnXaRHMT9KwW/rpWj1jTtp+DlK7exENCCiQrKrXVNqBCANVwS4wRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfypkJvP4CuuB1iltetejghMscJIwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHex+RLnah+wLxy6z8w6x8XVrbIpy8Yheekb vvrAk52w1kKa1TOKIvhzAnin3jb3skCyVSe5S9hBVeHngyKJ1VFBWDgHN86CNGIH M2vT0ZqcImUl85OepbZGb8q+cPi6BQUVdyuJPC8jC/6y0tF8N4xsaQ8lT/vx2xLU 8YuZM2wdE1oyGCrCFQQdxR1jYChFlNGp55G4g1ihr0lb1vIKor28mirrPtsKGnuH VZRmBgqBSCvaDCCxE4IVnkgSUR8GvTx3FC04xbPBYcWK5U8ACrj3u9lrGtmRV1NI UIJ9RThvETUZdGCDLFm6ChqNaMB+jW2HPrqyNjQLASkZtnwi2Wk= -----END CERTIFICATE-----Generated at Thu Mar 26 23:29:55 2026 by rpki-client