$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: sceGTkdGAe0RVQRLs6XQ4kxGjJJAsOBWvqq+G382zf8= Subject key identifier: DE:CE:6B:E8:CF:AB:3F:51:61:83:C3:33:7A:25:A3:70:2B:46:20:CE Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 4A7E395DAF9E45CDE383C96D3F8E27E82C9DA0B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 03B5 Signing time: Wed 15 Apr 2026 12:31:00 +0000 Manifest this update: Wed 15 Apr 2026 12:26:00 +0000 Manifest next update: Sat 18 Apr 2026 20:24:00 +0000 Files and hashes: 1: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 2: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) 3: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 4: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 5: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 6: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 7: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: h3C1Y4rvDSIEZNY6fDK63qLmAI3VWDTa4UuiDMzok8U=) 8: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 9: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 10: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 20:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7e:39:5d:af:9e:45:cd:e3:83:c9:6d:3f:8e:27:e8:2c:9d:a0:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Apr 15 12:26:00 2026 GMT Not After : Apr 18 20:24:00 2026 GMT Subject: CN=DECE6BE8CFAB3F516183C3337A25A3702B4620CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:a7:b6:c8:05:a3:ff:a6:43:98:ae:66:e9: 09:bf:67:34:ca:31:8f:bd:5e:67:73:a4:90:9c:51: 68:ba:89:f5:37:7d:61:09:f3:90:a8:55:f5:0a:4f: 6c:12:fd:41:50:cb:5f:f9:68:7d:da:5d:37:2e:4c: 50:77:e1:9d:12:89:03:90:45:6a:d2:6c:65:8d:b2: f1:21:75:76:1a:32:03:bb:b3:d6:0e:41:55:4c:7c: 7b:d3:b2:c9:41:e0:f0:f6:77:b4:35:2e:f8:73:f5: 8c:d4:a7:8a:15:62:f4:b7:a1:e1:ae:af:59:f6:ec: 15:76:4a:d2:c7:67:ae:5a:95:c6:1b:be:a1:ac:3a: d0:92:1f:c4:95:31:b6:c3:a9:5a:ca:75:7f:9d:c0: dd:ff:07:c0:16:28:f4:a7:c2:fe:6c:c8:bf:02:f4: 17:ac:e0:05:ef:13:c7:df:1f:8f:51:4c:65:d8:0d: 81:e6:4e:03:e3:e8:17:41:f2:b6:61:80:4f:4b:d3: 64:63:e1:43:0d:20:90:4e:78:25:f3:a8:94:1c:7f: 18:c6:73:98:93:74:09:30:6c:8b:03:5b:b4:33:f2: 1f:0a:a7:6c:ff:5c:b4:e3:ea:63:42:05:c9:a2:fb: 4a:36:bd:a1:de:ac:24:cc:2e:b0:90:7b:c9:57:12: 73:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CE:6B:E8:CF:AB:3F:51:61:83:C3:33:7A:25:A3:70:2B:46:20:CE X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a8:39:a6:25:97:7b:a4:13:3d:3a:66:de:a0:25:73:6b:df: 1d:80:6e:da:34:de:3f:99:2d:8a:4e:bb:39:1f:07:df:0c:b7: 29:48:4c:94:b2:f9:f2:e1:f1:98:97:ae:0d:ac:bf:36:96:65: b4:f3:37:a2:f9:7d:0b:3b:be:3e:72:4e:3b:94:db:4a:3e:0e: 83:6f:01:76:fe:2e:b3:d2:5d:78:9f:27:0d:69:ed:f3:3c:ca: 03:4a:0b:1d:35:1a:aa:3a:b8:98:32:78:49:ab:8f:cc:2e:33: ab:6d:cb:8e:1c:fa:e5:10:95:97:9f:20:c7:ab:fb:73:00:98: 8f:1a:c2:58:18:e1:26:02:d4:7b:b0:2f:0f:29:9f:4d:1f:b0: c4:e8:7b:cd:6a:ea:bd:9e:30:e6:64:59:31:c8:d2:43:4e:4e: fe:ed:0a:d5:93:bc:86:46:db:61:a9:2f:79:4c:3e:37:20:89: 98:c1:d2:0b:a1:00:78:c2:28:bd:ec:4b:70:db:1d:3e:2b:11: 8e:7a:8c:65:83:78:9f:f9:6d:1f:d4:05:74:93:9a:d2:32:b4: 28:eb:e4:f6:04:5a:7e:43:3c:93:5b:ce:fd:0a:59:2a:c3:ba: 6c:3c:05:68:b8:db:9e:72:c0:f5:86:65:72:c8:c2:f0:23:ff: bf:25:c6:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSn45Xa+eRc3jg8ltP44n6CydoLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNjA0MTUxMjI2MDBaFw0yNjA0MTgyMDI0MDBaMDMxMTAvBgNV BAMTKERFQ0U2QkU4Q0ZBQjNGNTE2MTgzQzMzMzdBMjVBMzcwMkI0NjIwQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxvae2yAWj/6ZDmK5m6Qm/ZzTK MY+9XmdzpJCcUWi6ifU3fWEJ85CoVfUKT2wS/UFQy1/5aH3aXTcuTFB34Z0SiQOQ RWrSbGWNsvEhdXYaMgO7s9YOQVVMfHvTsslB4PD2d7Q1Lvhz9YzUp4oVYvS3oeGu r1n27BV2StLHZ65alcYbvqGsOtCSH8SVMbbDqVrKdX+dwN3/B8AWKPSnwv5syL8C 9Bes4AXvE8ffH49RTGXYDYHmTgPj6BdB8rZhgE9L02Rj4UMNIJBOeCXzqJQcfxjG c5iTdAkwbIsDW7Qz8h8Kp2z/XLTj6mNCBcmi+0o2vaHerCTMLrCQe8lXEnODAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3s5r6M+rP1Fhg8MzeiWjcCtGIM4wHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB2oOaYll3ukEz06Zt6gJXNr3x2Abto03j+Z LYpOuzkfB98MtylITJSy+fLh8ZiXrg2svzaWZbTzN6L5fQs7vj5yTjuU20o+DoNv AXb+LrPSXXifJw1p7fM8ygNKCx01Gqo6uJgyeEmrj8wuM6tty44c+uUQlZefIMer +3MAmI8awlgY4SYC1HuwLw8pn00fsMToe81q6r2eMOZkWTHI0kNOTv7tCtWTvIZG 22GpL3lMPjcgiZjB0guhAHjCKL3sS3DbHT4rEY56jGWDeJ/5bR/UBXSTmtIytCjr 5PYEWn5DPJNbzv0KWSrDumw8BWi4255ywPWGZXLIwvAj/78lxuQ= -----END CERTIFICATE-----Generated at Fri Apr 17 17:41:36 2026 by rpki-client