$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft File: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft (raw, json) Hash identifier: /exk/hDM1iiwbmbGIJkQ3QTw8xWVv5PPOGQygRbFzww= Subject key identifier: B0:F3:DB:DC:1D:6C:CD:5C:4F:B1:99:3F:63:16:08:0A:A1:C2:F7:07 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 45A2CFB092E0C99758E411CF9BBC5967B8D61552 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft Manifest number: 023E Signing time: Mon 02 Mar 2026 06:52:33 +0000 Manifest this update: Mon 02 Mar 2026 06:47:33 +0000 Manifest next update: Thu 05 Mar 2026 17:20:33 +0000 Files and hashes: 1: 3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa (hash: sJUN/+XYslzThounXZW+MFwCm1lc8VEvrGvUm5/WqYY=) 2: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (hash: mvmoi8dcnfPzFCUL4IZOH3T40kp0yAQpvbAqzxB1zYc=) 3: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (hash: wNLC96dZ0hf5g5SQzM5GoaCW4xx90rlAQngevEb0OMg=) 4: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl (hash: So1yXt8Lm8LAIIWLGWdJ8V355iVwVdp+X8+VtPablFo=) 5: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (hash: Htm5ahdXQHhKpRzE/h5i9KHcwL0XsZbOLaHTHLcsMN8=) 6: 3130332e3235342e3137312e302f32342d3234203d3e203539313439.roa (hash: j7/0o24Y/Dntb2SDxDz2B+Eis79rWFB0ghqmTnU55LQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a2:cf:b0:92:e0:c9:97:58:e4:11:cf:9b:bc:59:67:b8:d6:15:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Mar 2 06:47:33 2026 GMT Not After : Mar 5 17:20:33 2026 GMT Subject: CN=B0F3DBDC1D6CCD5C4FB1993F6316080AA1C2F707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:e7:7f:af:80:74:35:ed:7d:92:a5:c7:72: c7:22:a1:9b:59:7d:72:74:a6:03:62:f9:e6:ab:fa: b4:f1:ba:b6:05:0b:cd:0f:13:b3:44:61:0d:80:2b: 3d:6b:e2:45:1a:1b:06:8e:99:1a:61:4e:dc:10:f1: 71:8c:76:c5:73:cf:37:86:58:1d:02:00:43:c5:7c: a8:61:3a:71:f3:6b:c4:8d:4c:64:c3:c1:d0:cf:7d: 82:a8:a9:09:40:27:50:22:36:61:8f:be:49:73:5f: 32:9d:84:4d:f6:83:31:41:fe:52:ff:92:94:17:fa: 63:be:b7:3a:97:24:bc:12:b7:7e:b0:b0:29:5b:d0: f9:55:99:68:1b:4d:f6:2a:ba:40:5e:58:23:98:86: 86:e6:12:21:06:b5:e8:f1:f7:4e:a6:17:d6:db:5b: 53:fc:21:b8:ce:99:18:03:92:e4:b0:df:18:6d:56: 2c:77:f9:b7:58:6b:ab:7d:40:ea:b1:2c:d4:4e:21: 65:41:e8:09:37:52:ea:68:1b:a4:8f:a3:2e:d5:d0: c0:a0:e7:19:0c:25:19:a4:ec:cd:0c:b8:5b:5a:0c: c3:e0:99:56:fa:15:80:60:8c:ec:a8:0f:c2:72:55: 32:6d:99:64:68:4b:ab:de:7c:fa:e4:b4:86:6c:4e: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F3:DB:DC:1D:6C:CD:5C:4F:B1:99:3F:63:16:08:0A:A1:C2:F7:07 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:7c:45:78:e8:c8:a7:73:02:93:11:87:54:ba:b3:23:f1:a9: b2:f9:eb:30:28:38:42:6e:5f:f7:cb:94:30:24:15:86:c6:00: 12:84:7b:46:5d:a4:1c:68:36:c4:69:fc:3e:ab:a7:97:56:2a: 0d:d2:4f:c7:69:1b:c4:55:0e:f3:23:57:aa:ac:c2:eb:01:d2: 70:02:d4:95:b9:db:5c:ef:9f:c3:70:7b:49:5c:71:3c:bc:26: 86:2c:2d:1c:71:77:86:81:f0:4a:f1:ae:4d:4a:a4:19:a6:93: 07:66:14:cf:e5:23:5f:39:1d:59:c0:22:f9:1d:d6:a3:38:70: ef:90:d9:05:93:ef:91:7b:8e:40:09:8d:58:cd:9b:f4:00:27: 4a:b2:eb:56:73:2a:45:7f:01:a5:9d:1c:90:6a:2a:71:07:d7: 10:a6:0c:84:e8:a5:81:56:f0:12:62:c9:17:8c:b2:0e:99:4e: 68:88:70:b8:e7:1f:60:f4:f4:0e:09:6f:5d:a2:24:81:20:b5: 0f:5d:2d:d3:6b:4e:80:14:2f:c5:bb:72:8d:b4:8c:5b:20:c0: 20:16:8d:c0:87:7a:38:ba:51:fd:7e:bc:65:4f:22:c2:1c:ca: 26:af:36:ee:86:52:84:75:6c:2a:4e:15:a1:15:14:8a:34:92: e6:eb:d0:39 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURaLPsJLgyZdY5BHPm7xZZ7jWFVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNjAzMDIwNjQ3MzNaFw0yNjAzMDUxNzIwMzNaMDMxMTAvBgNV BAMTKEIwRjNEQkRDMUQ2Q0NENUM0RkIxOTkzRjYzMTYwODBBQTFDMkY3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCO+d/r4B0Ne19kqXHcscioZtZ fXJ0pgNi+ear+rTxurYFC80PE7NEYQ2AKz1r4kUaGwaOmRphTtwQ8XGMdsVzzzeG WB0CAEPFfKhhOnHza8SNTGTDwdDPfYKoqQlAJ1AiNmGPvklzXzKdhE32gzFB/lL/ kpQX+mO+tzqXJLwSt36wsClb0PlVmWgbTfYqukBeWCOYhobmEiEGtejx906mF9bb W1P8IbjOmRgDkuSw3xhtVix3+bdYa6t9QOqxLNROIWVB6Ak3UupoG6SPoy7V0MCg 5xkMJRmk7M0MuFtaDMPgmVb6FYBgjOyoD8JyVTJtmWRoS6vefPrktIZsTs4ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsPPb3B1szVxPsZk/YxYICqHC9wcwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmFlN2Q0NjEtMGUzMi00ZTY1LWJi ODgtZDcyNDA1YjI0NDUxLzAvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0Mx QzU5RTE4MjA3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIB8RXjoyKdzApMRh1S6syPxqbL56zAoOEJu X/fLlDAkFYbGABKEe0ZdpBxoNsRp/D6rp5dWKg3ST8dpG8RVDvMjV6qswusB0nAC 1JW521zvn8Nwe0lccTy8JoYsLRxxd4aB8Erxrk1KpBmmkwdmFM/lI185HVnAIvkd 1qM4cO+Q2QWT75F7jkAJjVjNm/QAJ0qy61ZzKkV/AaWdHJBqKnEH1xCmDITopYFW 8BJiyReMsg6ZTmiIcLjnH2D09A4Jb12iJIEgtQ9dLdNrToAUL8W7co20jFsgwCAW jcCHeji6Uf1+vGVPIsIcyiavNu6GUoR1bCpOFaEVFIo0kubr0Dk= -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:07 2026 by rpki-client