$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft File: 3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft (raw, json) Hash identifier: shwHif+5Ub3BTgvDWqscnkTxE+gwWKrmOqn8ffGaZDs= Subject key identifier: B7:05:24:61:E9:63:B9:C8:2C:79:D9:85:E1:75:29:13:04:38:34:55 Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Certificate serial: 2AA7B1090A15FA5C63225FCD7268D9E963DCCAE5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft Manifest number: 028B Signing time: Fri 17 Apr 2026 08:42:22 +0000 Manifest this update: Fri 17 Apr 2026 08:37:22 +0000 Manifest next update: Mon 20 Apr 2026 15:02:22 +0000 Files and hashes: 1: 3132302e32392e3233312e302f32342d3234203d3e203338373634.roa (hash: o/hW8qZTONTOAc20EcYPM6z7EK54AM3nJtkiYTqdmzw=) 2: 3132302e32392e3232352e302f32342d3234203d3e203139393035.roa (hash: 8oS+uko7G4J7a7YK5iDBr81dMlt64vMgKJuUKbWy4MA=) 3: 3132302e32392e3232392e302f32342d3234203d3e203338373634.roa (hash: MIBjJ0juyARBq3pL12kDjJxTxoFUENwyQCjEpJRY2ns=) 4: 3132302e32392e3232372e302f32342d3234203d3e203338373634.roa (hash: WD3hCT6MILwIPZ4dCDhl0fGWEEcaNJ+QbJrnwlE7Ah4=) 5: 3132302e32392e3232382e302f32342d3234203d3e203139393035.roa (hash: qnWaLPQKCclL3KbhPyWf5fv4NRd/K4sQGvE8/3c+X3Y=) 6: 3132302e32392e3233302e302f32342d3234203d3e203338373634.roa (hash: 3exU7oFsvYUFSV8eY2HjGvJAd31licbqMiWMGxc4mP8=) 7: 3132302e32392e3232382e302f32342d3234203d3e203338373634.roa (hash: g7MxCuMcZcUZMViRKxMdEfGOeCRM4ZwEaqaIDOryUYY=) 8: 3132302e32392e3233302e302f32342d3234203d3e203139393035.roa (hash: eJhmyhXXadCdmI4sMr9QqAto/qcSNuimAa2ijC8e73Y=) 9: 3132302e32392e3232362e302f32342d3234203d3e203139393035.roa (hash: 3HF7GKrMWvA2HVJvaEA0TLWlABe/FvvXdYdd308g/bM=) 10: 3132302e32392e3232362e302f32342d3234203d3e203338373634.roa (hash: KmsUdHDk3KWG6ZVcZIyi7cy4EBKg+PkfE62y9MOD+Qk=) 11: 3132302e32392e3232392e302f32342d3234203d3e203139393035.roa (hash: VUbT8SHEyKOKmASLTaMwWEhd8ggbwmzz2pEnc4bB2PQ=) 12: 3132302e32392e3232352e302f32342d3234203d3e203338373634.roa (hash: tMWjooLi2F7KXFCZbnIlkGyY3nB0YSrhkrZ6SMkaGL0=) 13: 3132302e32392e3233312e302f32342d3234203d3e203139393035.roa (hash: r2yKO3KrSmkrfjQ84qnMxwLYCnCinVawrYAR52ueF/A=) 14: 3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl (hash: bclWIy2GVbXYi6vk0rtSDUWklZstqaLiSMFzdOk85/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 15:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a7:b1:09:0a:15:fa:5c:63:22:5f:cd:72:68:d9:e9:63:dc:ca:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251 Validity Not Before: Apr 17 08:37:22 2026 GMT Not After : Apr 20 15:02:22 2026 GMT Subject: CN=B7052461E963B9C82C79D985E175291304383455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ac:a9:b0:08:48:a8:2f:5d:ed:5e:91:70:24: 30:8e:c9:5f:a5:52:49:b0:b2:fe:2d:b9:0b:45:ed: 58:a5:3c:de:87:9b:c0:cb:47:ae:fd:9e:7e:03:97: 63:fb:7a:7f:ba:0c:ed:12:2c:b9:9a:27:70:21:a8: 17:26:fa:bf:47:99:12:2a:27:ed:bb:c7:42:75:ad: 06:f0:19:49:f1:82:66:11:36:4a:83:4f:a6:cf:b5: de:62:e2:bf:23:f9:cb:ab:03:0c:8a:47:5c:20:39: 34:e7:60:9e:36:05:3b:96:14:b6:3b:2a:13:9e:cd: 34:10:9c:af:b7:96:d5:e2:9a:1d:83:10:90:61:7f: 45:de:f0:dd:2f:83:2b:5d:fd:ab:fb:4d:6b:24:ae: df:57:25:6e:e9:20:7b:ce:19:73:dd:1f:4e:17:29: 7b:eb:56:e3:42:7c:e5:d1:39:aa:61:f5:98:24:4f: 10:4b:4c:df:16:85:ce:33:0a:38:71:c0:46:16:a6: d3:c1:7e:e9:f1:3c:6c:4b:41:45:c6:97:30:38:45: 7c:ff:d8:b9:fe:0b:a9:86:c9:72:84:3f:20:b8:59: 50:4f:01:fb:b8:72:98:34:cf:e3:55:da:9f:7d:f4: 92:5d:7f:71:e4:2f:cd:5a:7e:87:bf:40:7b:9d:9f: 93:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:05:24:61:E9:63:B9:C8:2C:79:D9:85:E1:75:29:13:04:38:34:55 X509v3 Authority Key Identifier: keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:59:e4:3a:3e:34:34:62:3c:26:13:c6:35:09:1f:05:aa:27: f6:47:2e:99:fd:99:3f:cb:82:e5:ce:28:1b:13:67:6c:ff:33: 3a:eb:8c:f2:bd:c4:a2:88:a5:d1:f0:ae:29:21:38:69:89:f0: 41:d0:de:5e:a6:cc:af:92:d2:c8:8e:b9:36:fe:fc:80:81:85: 0c:0b:00:1f:06:91:7e:e8:18:35:1c:a7:a9:71:63:13:92:5e: 1d:fd:44:55:42:69:e2:fa:ef:e0:7c:de:d9:91:ab:6b:ee:43: 91:9b:c9:c3:9c:84:2f:27:c9:de:93:2e:17:37:f9:8a:46:9b: 3a:8f:ff:f1:a4:2a:e7:59:a6:7a:19:15:60:38:c4:23:22:bf: 43:65:77:a7:d4:03:69:65:aa:aa:6c:11:00:ae:c9:71:dc:c5: 14:b7:af:f7:ff:4f:ef:66:4b:1e:b1:be:f3:ea:01:26:df:18: dd:5b:a1:c2:ba:e2:35:ec:e8:2a:de:d3:67:10:c6:e9:53:97: 8d:76:a9:9c:4a:76:b7:4f:1a:c4:de:aa:7f:a7:fb:36:db:fa: ab:d3:dd:c0:0b:94:8f:81:fc:9d:5e:3f:3a:a4:ff:bb:19:9e: 52:50:87:39:90:09:eb:00:70:0a:4a:5b:da:8f:9c:7b:d9:e5: ef:83:89:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKqexCQoV+lxjIl/NcmjZ6WPcyuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdB MzVCMDI1MTAeFw0yNjA0MTcwODM3MjJaFw0yNjA0MjAxNTAyMjJaMDMxMTAvBgNV BAMTKEI3MDUyNDYxRTk2M0I5QzgyQzc5RDk4NUUxNzUyOTEzMDQzODM0NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGrKmwCEioL13tXpFwJDCOyV+l Ukmwsv4tuQtF7VilPN6Hm8DLR679nn4Dl2P7en+6DO0SLLmaJ3AhqBcm+r9HmRIq J+27x0J1rQbwGUnxgmYRNkqDT6bPtd5i4r8j+curAwyKR1wgOTTnYJ42BTuWFLY7 KhOezTQQnK+3ltXimh2DEJBhf0Xe8N0vgytd/av7TWskrt9XJW7pIHvOGXPdH04X KXvrVuNCfOXROaph9ZgkTxBLTN8Whc4zCjhxwEYWptPBfunxPGxLQUXGlzA4RXz/ 2Ln+C6mGyXKEPyC4WVBPAfu4cpg0z+NV2p999JJdf3HkL81afoe/QHudn5OvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtwUkYeljucgsedmF4XUpEwQ4NFUwHwYDVR0j BBgwFoAUPmZijAPKuMbW/N7b4HAFV6NbAlEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjFjOWNhZC1jM2I5LTQ1YTAtYmViNi1iY2U0OGUyYjIyNzIvMC8zRTY2NjI4QzAz Q0FCOEM2RDZGQ0RFREJFMDcwMDU1N0EzNUIwMjUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1NTdBMzVC MDI1MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjIxYzljYWQtYzNiOS00NWEwLWJl YjYtYmNlNDhlMmIyMjcyLzAvM0U2NjYyOEMwM0NBQjhDNkQ2RkNERURCRTA3MDA1 NTdBMzVCMDI1MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKtZ5Do+NDRiPCYTxjUJHwWqJ/ZHLpn9mT/L guXOKBsTZ2z/MzrrjPK9xKKIpdHwrikhOGmJ8EHQ3l6mzK+S0siOuTb+/ICBhQwL AB8GkX7oGDUcp6lxYxOSXh39RFVCaeL67+B83tmRq2vuQ5GbycOchC8nyd6TLhc3 +YpGmzqP//GkKudZpnoZFWA4xCMiv0Nld6fUA2llqqpsEQCuyXHcxRS3r/f/T+9m Sx6xvvPqASbfGN1bocK64jXs6Cre02cQxulTl412qZxKdrdPGsTeqn+n+zbb+qvT 3cALlI+B/J1ePzqk/7sZnlJQhzmQCesAcApKW9qPnHvZ5e+Dif4= -----END CERTIFICATE-----Generated at Fri Apr 17 21:16:12 2026 by rpki-client