$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: Qo9rLj7b+L+EGVmiBsGYqFFXemwPDr93OjJ15NukJ2g= Subject key identifier: D2:4E:8B:27:67:7E:74:12:8B:28:48:C9:25:07:10:EC:5D:21:07:41 Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 671B1FDB1CB404AD46B79961DBF26B1AC527D81D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 03A1 Signing time: Sun 01 Mar 2026 11:11:54 +0000 Manifest this update: Sun 01 Mar 2026 11:06:54 +0000 Manifest next update: Wed 04 Mar 2026 13:44:54 +0000 Files and hashes: 1: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 2: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: AHMVIw2l2pZLvwTLLVUu83TdEPFuQyYG4GmF/hTgu2c=) 3: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 4: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 5: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 6: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 7: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 8: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 9: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 10: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 13:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:1b:1f:db:1c:b4:04:ad:46:b7:99:61:db:f2:6b:1a:c5:27:d8:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Mar 1 11:06:54 2026 GMT Not After : Mar 4 13:44:54 2026 GMT Subject: CN=D24E8B27677E74128B2848C9250710EC5D210741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b5:0f:76:c1:2e:07:47:70:2f:3a:82:d2:32: 1b:24:32:d0:56:10:88:82:60:52:61:0e:82:5e:82: 15:96:e7:bd:a5:2f:b9:c3:1e:b1:e5:e0:83:f1:62: 3b:b9:d5:22:fa:8e:e3:79:be:1d:0d:de:73:25:7f: ae:73:72:d1:73:c6:82:6b:ed:fd:31:0c:d3:20:5b: 5c:ad:69:dc:c2:47:78:8e:56:fa:f8:c6:76:c3:4a: 1b:f2:d6:b3:2b:33:31:da:51:5c:6e:9d:0f:b2:ec: c0:7f:66:88:44:6c:fe:dc:e0:b0:df:1f:30:0d:d4: 25:94:71:93:39:8b:4d:84:2a:9f:97:55:b4:53:30: d7:57:68:c4:a8:28:99:d5:a9:4b:00:4a:8c:27:7d: 25:29:0b:6c:a3:ed:71:50:ca:de:5c:48:d5:5e:02: ea:3c:19:64:f5:2e:08:4c:dc:e5:63:93:aa:3f:72: ce:7c:dd:8a:8d:8a:e7:59:5c:1b:7f:8e:fc:fc:01: de:0e:82:e8:d6:30:ef:ad:b2:f5:96:27:c6:97:f7: 81:63:a7:78:b0:e6:a6:0d:dd:b5:fc:8c:1a:ea:f6: 54:8e:35:c6:35:55:05:8c:0a:cd:66:01:6d:99:a3: b6:47:e1:3b:fc:ea:bc:84:5c:32:2f:fe:e7:ad:00: c7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4E:8B:27:67:7E:74:12:8B:28:48:C9:25:07:10:EC:5D:21:07:41 X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:6c:02:b2:25:60:af:14:ad:ab:56:5a:74:bb:ee:69:01:f4: 1c:b3:50:a2:30:72:8f:e4:d8:bf:82:bc:13:9a:bf:18:18:ed: aa:4a:5e:8d:8b:4a:11:25:b9:7c:66:3a:92:d7:30:41:27:b4: 34:c4:8d:7e:a1:03:f2:f5:a4:b8:e7:c2:11:67:c2:e0:bc:c7: 39:cc:bc:0b:76:fa:c8:07:18:78:79:13:ac:c5:1d:16:37:67: 47:f6:0b:ec:ea:6a:46:e7:38:12:44:2b:c9:d9:73:d6:ba:a4: 7e:e3:38:48:6f:54:0c:98:39:00:63:2a:82:67:14:cb:9f:9b: 0b:f7:56:bd:e4:90:a6:89:ce:4f:4b:70:10:8e:cb:26:0f:8f: 75:6a:ac:71:88:ba:79:08:b1:76:df:49:40:c6:c6:9e:f8:44: 8f:41:52:e3:2e:f7:67:38:6b:11:09:39:9f:2c:a4:b6:a4:63: 0c:b0:e3:ec:7a:c7:ac:b3:10:38:b6:07:5d:d4:f8:86:6c:17: fb:eb:75:85:3f:f3:bf:cd:f9:0d:c4:0d:58:55:01:8f:14:03: d7:cf:9b:85:95:c5:6f:57:54:34:58:41:3a:a5:6d:90:62:c6: e5:dd:c6:73:4e:a5:af:99:9b:89:11:8d:18:0b:0e:ab:ea:2f: e8:a9:28:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZxsf2xy0BK1Gt5lh2/JrGsUn2B0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNjAzMDExMTA2NTRaFw0yNjAzMDQxMzQ0NTRaMDMxMTAvBgNV BAMTKEQyNEU4QjI3Njc3RTc0MTI4QjI4NDhDOTI1MDcxMEVDNUQyMTA3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqtQ92wS4HR3AvOoLSMhskMtBW EIiCYFJhDoJeghWW572lL7nDHrHl4IPxYju51SL6juN5vh0N3nMlf65zctFzxoJr 7f0xDNMgW1ytadzCR3iOVvr4xnbDShvy1rMrMzHaUVxunQ+y7MB/ZohEbP7c4LDf HzAN1CWUcZM5i02EKp+XVbRTMNdXaMSoKJnVqUsASownfSUpC2yj7XFQyt5cSNVe Auo8GWT1LghM3OVjk6o/cs583YqNiudZXBt/jvz8Ad4OgujWMO+tsvWWJ8aX94Fj p3iw5qYN3bX8jBrq9lSONcY1VQWMCs1mAW2Zo7ZH4Tv86ryEXDIv/uetAMdtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0k6LJ2d+dBKLKEjJJQcQ7F0hB0EwHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMZsArIlYK8UratWWnS77mkB9ByzUKIwco/k 2L+CvBOavxgY7apKXo2LShEluXxmOpLXMEEntDTEjX6hA/L1pLjnwhFnwuC8xznM vAt2+sgHGHh5E6zFHRY3Z0f2C+zqakbnOBJEK8nZc9a6pH7jOEhvVAyYOQBjKoJn FMufmwv3Vr3kkKaJzk9LcBCOyyYPj3VqrHGIunkIsXbfSUDGxp74RI9BUuMu92c4 axEJOZ8spLakYwyw4+x6x6yzEDi2B13U+IZsF/vrdYU/87/N+Q3EDVhVAY8UA9fP m4WVxW9XVDRYQTqlbZBixuXdxnNOpa+Zm4kRjRgLDqvqL+ipKNc= -----END CERTIFICATE-----Generated at Mon Mar 2 17:10:28 2026 by rpki-client