$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft File: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft (raw, json) Hash identifier: YiSQmJqlL9OJzZ7NEnI8ORi9LInZDCP/UPa9GLd36n4= Subject key identifier: 69:99:B2:0B:7D:D5:18:FB:C8:06:5F:44:3F:B5:09:40:99:F6:2F:6F Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 6CF3C731E7ED23A4A8DAFF8D8F74B9A6E0AA4324 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft Manifest number: 0253 Signing time: Wed 15 Apr 2026 14:52:38 +0000 Manifest this update: Wed 15 Apr 2026 14:47:38 +0000 Manifest next update: Sun 19 Apr 2026 00:04:38 +0000 Files and hashes: 1: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl (hash: wMHm7ykKkVN3qyuuTqlAFGMYxF+ujS0ppmjJshse5uM=) 2: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (hash: Htm5ahdXQHhKpRzE/h5i9KHcwL0XsZbOLaHTHLcsMN8=) 3: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (hash: gqhY4MmYkqOg6e+mCklnZjdLAja245uGxhjbsLKfTo4=) 4: 3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa (hash: j7/0o24Y/Dntb2SDxDz2B+Eis79rWFB0ghqmTnU55LQ=) 5: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (hash: Lr2OlOutBpUeIBILo8lmMFGIpySYF9vIMT+ZRiGB1os=) 6: 3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa (hash: sJUN/+XYslzThounXZW+MFwCm1lc8VEvrGvUm5/WqYY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 00:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f3:c7:31:e7:ed:23:a4:a8:da:ff:8d:8f:74:b9:a6:e0:aa:43:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Apr 15 14:47:38 2026 GMT Not After : Apr 19 00:04:38 2026 GMT Subject: CN=6999B20B7DD518FBC8065F443FB5094099F62F6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:0b:1f:15:ff:23:cd:fd:84:f6:e1:d5:2f: 00:af:59:42:f9:d4:e1:dd:f6:a0:85:e9:19:72:44: c7:47:6a:38:c7:6b:b1:cf:e8:7f:44:36:3f:c6:8b: 0a:bf:49:95:fe:74:ec:d4:b1:a8:44:69:22:4b:9a: 89:67:40:c9:f1:f3:a5:86:fa:6a:89:da:63:60:64: e6:06:80:ec:e8:ac:de:b4:a8:8c:9b:21:a7:20:7a: b0:40:a1:64:ee:cf:91:13:2a:96:52:fd:d0:d7:a4: b0:c1:60:88:96:bc:48:f2:dc:12:5f:e3:a9:10:2f: 06:5a:31:6e:71:81:da:39:24:21:6a:23:e5:e6:02: e2:c2:39:61:c3:04:3b:e9:ac:52:8d:55:81:d8:e9: ad:26:4a:43:3e:3e:ea:1c:19:0f:6c:86:bb:3b:9e: 85:a7:59:2f:30:af:ab:55:a9:56:f8:d0:40:10:42: 23:68:67:8e:6d:5c:1a:a9:af:13:b1:c0:b9:bb:50: 09:9a:cd:8b:db:19:e9:43:d6:b7:ca:4b:73:06:67: 74:10:e1:e7:12:af:06:3b:81:4d:65:b9:7a:f6:a3: 13:6f:1a:ca:b7:ca:bd:4b:d7:90:a7:fa:5c:88:95: 5c:6a:41:27:78:7f:bf:f4:05:54:7d:19:9d:0a:26: 74:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:99:B2:0B:7D:D5:18:FB:C8:06:5F:44:3F:B5:09:40:99:F6:2F:6F X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:d2:8f:97:08:3f:2c:b9:a1:e6:26:f9:a0:a3:21:73:ba:80: 9e:6e:0b:70:a0:08:2e:38:b1:f5:bc:70:19:da:f7:78:cf:1e: 00:6b:5f:bd:ef:a8:7c:32:ab:29:a3:f5:ec:43:8e:d0:e4:14: e9:10:02:5d:4f:aa:55:5d:92:d7:79:2b:85:31:b1:92:53:0c: b4:6e:f7:72:f3:bc:25:50:e7:eb:5f:8a:e2:66:da:ca:c4:b6: 68:35:d8:6e:e5:83:ad:06:92:5e:e2:b6:67:2e:04:50:76:97: 2f:4a:18:44:64:8c:f4:f9:6c:a7:c4:9d:c0:12:57:18:f6:f1: 5d:7a:04:5b:e0:45:15:01:9a:29:da:f5:26:b2:ae:86:f8:b7: 7d:04:1c:f7:19:5c:75:75:e6:c5:eb:e3:53:24:2b:49:01:d9: fb:1a:5f:10:4d:45:35:ec:b8:23:f4:00:6f:de:20:f4:2b:1c: 33:3f:1a:ef:eb:2d:b0:4f:de:5c:fc:94:a4:9e:a4:4a:69:28: 8c:f7:1d:9c:89:6f:68:23:53:10:d4:e7:b9:cd:3a:11:ce:42: 3c:ad:ea:81:e6:bb:98:f6:79:0f:2e:10:82:61:6b:1f:4a:18: 70:e3:80:e9:18:b8:1a:9d:e3:d5:50:56:8e:58:bc:83:0e:62: 72:dd:ec:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbPPHMeftI6So2v+Nj3S5puCqQyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNjA0MTUxNDQ3MzhaFw0yNjA0MTkwMDA0MzhaMDMxMTAvBgNV BAMTKDY5OTlCMjBCN0RENTE4RkJDODA2NUY0NDNGQjUwOTQwOTlGNjJGNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3MwsfFf8jzf2E9uHVLwCvWUL5 1OHd9qCF6RlyRMdHajjHa7HP6H9ENj/Giwq/SZX+dOzUsahEaSJLmolnQMnx86WG +mqJ2mNgZOYGgOzorN60qIybIacgerBAoWTuz5ETKpZS/dDXpLDBYIiWvEjy3BJf 46kQLwZaMW5xgdo5JCFqI+XmAuLCOWHDBDvprFKNVYHY6a0mSkM+PuocGQ9shrs7 noWnWS8wr6tVqVb40EAQQiNoZ45tXBqprxOxwLm7UAmazYvbGelD1rfKS3MGZ3QQ 4ecSrwY7gU1luXr2oxNvGsq3yr1L15Cn+lyIlVxqQSd4f7/0BVR9GZ0KJnQvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaZmyC33VGPvIBl9EP7UJQJn2L28wHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmFlN2Q0NjEtMGUzMi00ZTY1LWJi ODgtZDcyNDA1YjI0NDUxLzAvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0Mx QzU5RTE4MjA3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALvSj5cIPyy5oeYm+aCjIXO6gJ5uC3CgCC44 sfW8cBna93jPHgBrX73vqHwyqymj9exDjtDkFOkQAl1PqlVdktd5K4UxsZJTDLRu 93LzvCVQ5+tfiuJm2srEtmg12G7lg60Gkl7itmcuBFB2ly9KGERkjPT5bKfEncAS Vxj28V16BFvgRRUBmina9Sayrob4t30EHPcZXHV15sXr41MkK0kB2fsaXxBNRTXs uCP0AG/eIPQrHDM/Gu/rLbBP3lz8lKSepEppKIz3HZyJb2gjUxDU57nNOhHOQjyt 6oHmu5j2eQ8uEIJhax9KGHDjgOkYuBqd49VQVo5YvIMOYnLd7Gg= -----END CERTIFICATE-----Generated at Fri Apr 17 23:38:20 2026 by rpki-client