$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft File: 2FD08E6755CF1CCAAF9D5834449797848A706B57.mft (raw, json) Hash identifier: jkP0YPN4+N8twgYhS5rQXE3tO2dMiRu+Cy37hurPIjE= Subject key identifier: 4B:82:F5:C2:38:C6:03:46:6E:CB:D3:56:CB:CC:56:CF:84:A1:A1:29 Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 0D9A0DB6B9A20919AF32F062D4BB2E49B2F53E00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft Manifest number: 0405 Signing time: Wed 25 Mar 2026 23:22:18 +0000 Manifest this update: Wed 25 Mar 2026 23:17:18 +0000 Manifest next update: Sun 29 Mar 2026 08:49:18 +0000 Files and hashes: 1: 2FD08E6755CF1CCAAF9D5834449797848A706B57.crl (hash: hU0x0nnQWykgKyeXwUg+87HAnEKAFkGA2CKxuFiWYQc=) 2: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (hash: 73VvZzU4m43+fgjvOlr3Vv7ZHMtLS9jm+/QTGsOwFck=) 3: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (hash: XjGDHZwetIWHjLp7+uPq3/exRvIl0m5tUGNnQVZ+/fU=) 4: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (hash: QZlEVkF+HK3hEYAiWRapnYHmq7/bX0k5ZRTsDh0lSOE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 08:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:9a:0d:b6:b9:a2:09:19:af:32:f0:62:d4:bb:2e:49:b2:f5:3e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Mar 25 23:17:18 2026 GMT Not After : Mar 29 08:49:18 2026 GMT Subject: CN=4B82F5C238C603466ECBD356CBCC56CF84A1A129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:89:74:14:ab:d9:d5:21:e4:60:5f:d6:f5: ce:cc:ad:41:1f:d6:1b:21:d6:c9:7c:e7:34:3b:10: ef:45:73:09:8b:d4:f2:22:e9:71:d6:45:8a:69:ea: f4:ee:49:18:5d:5d:37:6b:36:a5:d3:2e:e8:60:f8: e7:30:9b:7e:ef:21:7b:3e:d8:36:35:3a:3c:32:00: 7c:79:fb:5b:2f:e5:63:12:d8:d1:30:1b:e6:3a:4a: c4:54:14:71:2e:1c:cd:0f:5c:c5:9b:0a:d6:4f:80: 17:df:06:42:8b:58:70:28:46:c1:40:5b:43:fc:82: 68:22:ff:38:d0:51:fc:be:2c:f3:27:bc:6e:29:af: e9:a8:40:aa:47:9e:bc:b0:e9:58:e4:4d:c2:c0:03: 2e:28:a2:a6:91:1e:70:ab:3f:98:87:9f:e5:ca:19: 46:6a:c4:2e:36:4e:6a:6e:0d:91:0b:4b:5f:3b:e9: 79:13:67:df:36:2b:d0:bc:22:01:10:36:ca:e1:94: 75:d2:b2:e3:e4:40:8b:6f:be:e9:9e:85:e5:e1:0a: ec:d7:b3:67:43:2b:ae:07:74:80:25:77:8a:93:db: 81:58:43:19:0c:f8:40:ef:a3:64:c6:a1:0c:38:7e: 20:50:6b:9c:0e:f7:60:ef:4c:33:33:15:0b:c9:03: 08:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:82:F5:C2:38:C6:03:46:6E:CB:D3:56:CB:CC:56:CF:84:A1:A1:29 X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:1c:e7:68:30:8e:ad:48:cf:32:8d:aa:46:7b:3f:19:7b:1b: af:17:7c:c4:6a:e6:3e:46:ca:d4:da:1a:bf:a5:a8:92:5f:e7: 7b:21:5c:ad:f1:1f:2f:95:14:da:e1:20:1f:32:f0:bb:99:fa: 9f:9c:f7:e2:1c:77:5b:45:bf:81:57:9f:16:63:e2:22:9a:f7: 2b:43:08:88:8e:a3:84:a4:f1:51:28:f2:c4:91:b2:c8:0c:a3: 46:5a:4e:53:38:dc:ee:6a:3d:15:2c:55:a5:ec:49:1d:08:01: 4a:5b:45:e3:14:56:60:2f:cb:01:ed:0c:60:25:d7:d3:bc:02: a8:f4:53:c2:44:b1:37:ed:81:c2:74:0c:73:c4:4d:ff:bd:10: 5a:62:0d:19:c4:82:7a:ed:08:01:ab:cc:13:69:09:0c:7f:4b: 74:10:00:dd:5b:d5:72:bd:24:93:93:47:8f:ba:1e:d8:aa:b6: fd:2d:6e:f6:e9:ee:af:3d:69:d7:c6:90:20:22:f5:ce:70:13: ad:be:7c:4d:4e:cc:a9:07:73:30:62:53:3f:f7:c7:16:e7:76: 66:01:9a:fe:39:84:b6:28:fb:c0:ed:76:73:c5:17:0c:13:56: a9:83:32:5c:37:4b:ca:06:29:da:b2:5f:e9:87:d1:40:d8:da: 8a:f7:34:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDZoNtrmiCRmvMvBi1LsuSbL1PgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNjAzMjUyMzE3MThaFw0yNjAzMjkwODQ5MThaMDMxMTAvBgNV BAMTKDRCODJGNUMyMzhDNjAzNDY2RUNCRDM1NkNCQ0M1NkNGODRBMUExMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8s4l0FKvZ1SHkYF/W9c7MrUEf 1hsh1sl85zQ7EO9FcwmL1PIi6XHWRYpp6vTuSRhdXTdrNqXTLuhg+Ocwm37vIXs+ 2DY1OjwyAHx5+1sv5WMS2NEwG+Y6SsRUFHEuHM0PXMWbCtZPgBffBkKLWHAoRsFA W0P8gmgi/zjQUfy+LPMnvG4pr+moQKpHnryw6VjkTcLAAy4ooqaRHnCrP5iHn+XK GUZqxC42TmpuDZELS1876XkTZ982K9C8IgEQNsrhlHXSsuPkQItvvumeheXhCuzX s2dDK64HdIAld4qT24FYQxkM+EDvo2TGoQw4fiBQa5wO92DvTDMzFQvJAwjrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS4L1wjjGA0Zuy9NWy8xWz4ShoSkwHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNkMGQ3ZmEtZDZmOC00YzIyLWI0 OGEtNThiOGVkOGVkZGE3LzAvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3 ODQ4QTcwNkI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG0c52gwjq1IzzKNqkZ7Pxl7G68XfMRq5j5G ytTaGr+lqJJf53shXK3xHy+VFNrhIB8y8LuZ+p+c9+Icd1tFv4FXnxZj4iKa9ytD CIiOo4Sk8VEo8sSRssgMo0ZaTlM43O5qPRUsVaXsSR0IAUpbReMUVmAvywHtDGAl 19O8Aqj0U8JEsTftgcJ0DHPETf+9EFpiDRnEgnrtCAGrzBNpCQx/S3QQAN1b1XK9 JJOTR4+6Htiqtv0tbvbp7q89adfGkCAi9c5wE62+fE1OzKkHczBiUz/3xxbndmYB mv45hLYo+8DtdnPFFwwTVqmDMlw3S8oGKdqyX+mH0UDY2or3NBg= -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:51 2026 by rpki-client