$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft File: 3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft (raw, json) Hash identifier: d48Nuk41LF20EOs2bBOxy8ibuUImrdRQsZEvWJGkasE= Subject key identifier: 33:BF:77:3B:69:53:01:17:31:CA:A4:F0:8C:DE:AE:EC:7A:62:CA:9E Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 5A23CAADB4E955704C526A11F5B997FC40E35DA0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft Manifest number: 0276 Signing time: Sat 28 Feb 2026 15:02:18 +0000 Manifest this update: Sat 28 Feb 2026 14:57:18 +0000 Manifest next update: Wed 04 Mar 2026 00:32:18 +0000 Files and hashes: 1: 3132302e32392e3232362e302f32342d3234203d3e203338373634.roa (hash: KmsUdHDk3KWG6ZVcZIyi7cy4EBKg+PkfE62y9MOD+Qk=) 2: 3132302e32392e3232362e302f32342d3234203d3e203139393035.roa (hash: 3HF7GKrMWvA2HVJvaEA0TLWlABe/FvvXdYdd308g/bM=) 3: 3132302e32392e3232372e302f32342d3234203d3e203338373634.roa (hash: WD3hCT6MILwIPZ4dCDhl0fGWEEcaNJ+QbJrnwlE7Ah4=) 4: 3132302e32392e3233312e302f32342d3234203d3e203338373634.roa (hash: o/hW8qZTONTOAc20EcYPM6z7EK54AM3nJtkiYTqdmzw=) 5: 3132302e32392e3232392e302f32342d3234203d3e203338373634.roa (hash: MIBjJ0juyARBq3pL12kDjJxTxoFUENwyQCjEpJRY2ns=) 6: 3132302e32392e3232382e302f32342d3234203d3e203338373634.roa (hash: g7MxCuMcZcUZMViRKxMdEfGOeCRM4ZwEaqaIDOryUYY=) 7: 3132302e32392e3233312e302f32342d3234203d3e203139393035.roa (hash: r2yKO3KrSmkrfjQ84qnMxwLYCnCinVawrYAR52ueF/A=) 8: 3132302e32392e3233302e302f32342d3234203d3e203338373634.roa (hash: 3exU7oFsvYUFSV8eY2HjGvJAd31licbqMiWMGxc4mP8=) 9: 3132302e32392e3232352e302f32342d3234203d3e203338373634.roa (hash: tMWjooLi2F7KXFCZbnIlkGyY3nB0YSrhkrZ6SMkaGL0=) 10: 3132302e32392e3232392e302f32342d3234203d3e203139393035.roa (hash: VUbT8SHEyKOKmASLTaMwWEhd8ggbwmzz2pEnc4bB2PQ=) 11: 3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl (hash: 7b+xm2h8JnTnCLU0+fPF2U8LlUOFrBtoq+3h5JvT6tE=) 12: 3132302e32392e3232382e302f32342d3234203d3e203139393035.roa (hash: qnWaLPQKCclL3KbhPyWf5fv4NRd/K4sQGvE8/3c+X3Y=) 13: 3132302e32392e3233302e302f32342d3234203d3e203139393035.roa (hash: eJhmyhXXadCdmI4sMr9QqAto/qcSNuimAa2ijC8e73Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 00:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:23:ca:ad:b4:e9:55:70:4c:52:6a:11:f5:b9:97:fc:40:e3:5d:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Feb 28 14:57:18 2026 GMT Not After : Mar 4 00:32:18 2026 GMT Subject: CN=33BF773B6953011731CAA4F08CDEAEEC7A62CA9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:96:ce:1b:2e:6c:14:01:94:d8:c7:b9:0d: b8:d0:58:f4:97:bd:0e:11:42:c8:d7:03:2d:15:2d: d2:b3:1b:94:97:ab:47:85:76:77:f1:0f:6e:f0:4b: 2d:1a:a6:01:1a:cc:6f:8e:aa:93:46:af:0c:b3:15: c8:41:ff:34:32:38:4e:3a:4b:46:3f:b9:48:2a:00: 2a:96:a2:dd:30:b0:2e:54:e2:23:46:2c:e0:4f:71: 45:bb:26:e2:41:c2:8e:cd:c7:cd:17:68:c4:68:d6: 0a:38:9b:33:d3:c1:6b:05:c0:48:70:13:63:bf:4a: 31:27:31:d1:6a:dc:9f:aa:69:8d:28:c4:cd:ac:c6: d4:88:d2:76:74:4c:60:b0:a6:18:16:7a:9f:60:ca: 8f:71:8f:9c:24:b3:7c:3a:31:d3:3f:a6:8c:17:75: 62:d3:92:9f:58:89:ba:d3:d1:60:92:af:e1:d1:30: 1a:85:43:41:83:89:75:99:63:8c:94:96:ef:51:9d: 35:d1:56:d9:e4:2c:61:61:10:9a:8a:09:b0:b6:aa: a8:1c:e7:62:82:51:cb:02:3f:e5:c8:61:1c:af:6e: d4:bc:6d:d2:2a:db:e3:17:eb:e8:07:63:5e:d8:c1: a4:c6:bf:3a:5c:b3:c2:0a:18:f9:ed:5c:b7:ae:5b: cc:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BF:77:3B:69:53:01:17:31:CA:A4:F0:8C:DE:AE:EC:7A:62:CA:9E X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:1c:8c:c8:c7:99:a5:82:8c:a1:47:c0:3e:62:22:bb:33:9d: 20:b7:3b:9b:b0:e7:62:86:87:a8:ac:51:0a:5d:45:2b:71:65: ae:2a:6f:9a:93:38:bb:0b:5d:fe:fb:60:92:24:3d:56:ea:50: 92:a8:ec:90:79:67:d4:43:98:b4:0c:4c:c2:95:78:9c:4d:9a: 02:54:d4:28:35:6d:cb:39:eb:e2:ed:46:b5:fc:9d:19:3b:92: 3c:c3:4f:9d:77:ec:c4:a3:02:4b:f8:af:46:ad:32:9a:ad:66: 51:52:09:50:40:e3:3a:76:f5:16:69:79:65:68:bf:41:04:1f: 1b:3a:d3:c7:b4:f7:a8:56:fc:ea:bc:48:08:42:cc:20:15:4c: 25:07:ae:fb:ae:0b:6e:93:4b:8b:2a:ea:6f:ae:cf:62:6c:aa: b0:9c:67:bf:23:32:1f:ac:0d:df:06:20:0b:d0:a6:eb:7a:ef: dd:f5:ac:24:61:4a:68:0d:46:cd:6e:1b:30:c3:0d:4d:7e:39: 8b:9f:24:a7:d5:98:79:62:86:9d:54:e9:a1:85:dc:fe:e7:3f: 59:dd:dc:d9:1e:67:91:74:4c:44:14:c7:05:f5:21:9e:33:5f: b7:4e:34:6b:14:a8:30:11:49:33:92:8e:6e:5b:54:51:b1:8e: 6b:6a:18:54 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWiPKrbTpVXBMUmoR9bmX/EDjXaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNjAyMjgxNDU3MThaFw0yNjAzMDQwMDMyMThaMDMxMTAvBgNV BAMTKDMzQkY3NzNCNjk1MzAxMTczMUNBQTRGMDhDREVBRUVDN0E2MkNBOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGaZbOGy5sFAGU2Me5DbjQWPSX vQ4RQsjXAy0VLdKzG5SXq0eFdnfxD27wSy0apgEazG+OqpNGrwyzFchB/zQyOE46 S0Y/uUgqACqWot0wsC5U4iNGLOBPcUW7JuJBwo7Nx80XaMRo1go4mzPTwWsFwEhw E2O/SjEnMdFq3J+qaY0oxM2sxtSI0nZ0TGCwphgWep9gyo9xj5wks3w6MdM/powX dWLTkp9YibrT0WCSr+HRMBqFQ0GDiXWZY4yUlu9RnTXRVtnkLGFhEJqKCbC2qqgc 52KCUcsCP+XIYRyvbtS8bdIq2+MX6+gHY17YwaTGvzpcs8IKGPntXLeuW8zrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUM793O2lTARcxyqTwjN6u7Hpiyp4wHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjIxYzljYWQtYzNiOS00NWEwLWJl YjYtYmNlNDhlMmIyMjcyLzAvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1 NTdBMzVCMDI1MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGIcjMjHmaWCjKFHwD5iIrsznSC3O5uw52KG h6isUQpdRStxZa4qb5qTOLsLXf77YJIkPVbqUJKo7JB5Z9RDmLQMTMKVeJxNmgJU 1Cg1bcs56+LtRrX8nRk7kjzDT5137MSjAkv4r0atMpqtZlFSCVBA4zp29RZpeWVo v0EEHxs608e096hW/Oq8SAhCzCAVTCUHrvuuC26TS4sq6m+uz2JsqrCcZ78jMh+s Dd8GIAvQput67931rCRhSmgNRs1uGzDDDU1+OYufJKfVmHlihp1U6aGF3P7nP1nd 3NkeZ5F0TEQUxwX1IZ4zX7dONGsUqDARSTOSjm5bVFGxjmtqGFQ= -----END CERTIFICATE-----Generated at Mon Mar 2 06:03:50 2026 by rpki-client