$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft File: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft (raw, json) Hash identifier: WP6SML9+4Twy1UVRwxvndrRcB2N5hPlXCl8okR709NY= Subject key identifier: 3E:26:CD:26:4C:9B:96:02:07:7B:B6:B6:B9:F1:E0:03:6A:17:87:B4 Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 28C7A32596635D7354F2D523A308EAFD704C1C80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft Manifest number: 01B3 Signing time: Sat 28 Feb 2026 08:01:06 +0000 Manifest this update: Sat 28 Feb 2026 07:56:06 +0000 Manifest next update: Tue 03 Mar 2026 14:15:06 +0000 Files and hashes: 1: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (hash: D5hukbaY+N3AjWmkuBGFFTwqc+CzamYmFL0amMEyMMM=) 2: 3130332e3232372e3138362e302f32342d3234203d3e20313432333730.roa (hash: Ew2OSWEohUTuvmIQMM4jLPYBjKqzXCpLNwLiyPu5TfM=) 3: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl (hash: 3l0wDzPBCFOz20zLlZo2LsYjW07ritymBEkjaXuAQUk=) 4: 3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa (hash: vmw9bcS7HYiEIqjVICRaVcatSeJQ8ZNuTTgtgTfawew=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 14:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c7:a3:25:96:63:5d:73:54:f2:d5:23:a3:08:ea:fd:70:4c:1c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: Feb 28 07:56:06 2026 GMT Not After : Mar 3 14:15:06 2026 GMT Subject: CN=3E26CD264C9B9602077BB6B6B9F1E0036A1787B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:52:a1:38:dd:6a:41:4e:c4:b7:50:6b:e7:0c: a3:7f:54:cd:7b:a5:dd:fe:44:81:6b:c5:16:8c:b6: 8f:b2:94:7c:45:b0:82:1c:c7:32:8a:75:91:52:a6: 2c:dd:23:c0:af:82:69:8f:91:07:5f:c2:a5:5f:eb: 8b:3f:c2:ee:b8:d1:36:ae:4d:0f:66:29:83:fe:dc: ee:cb:0c:d8:42:fc:33:7c:c0:fd:22:d4:3f:15:8f: 04:fe:55:60:1b:1b:d9:36:cc:d2:00:b4:67:c9:03: 69:e1:f7:e5:fd:cf:50:1b:ef:f8:6e:c9:77:19:a5: c9:6e:42:c2:82:c4:49:56:9d:b2:e8:fc:da:bd:7c: 1c:a1:4a:8c:be:15:51:c1:f5:38:fd:9c:65:db:f4: ad:aa:0b:53:af:b0:70:8c:fa:ed:a6:fa:1a:4c:ca: ea:b7:ad:63:6b:47:92:80:fd:8f:6d:9c:b3:45:cc: e2:dc:06:45:03:f1:42:c4:36:71:d8:01:f6:b6:52: bd:e6:8f:fa:0f:a2:cf:93:66:2c:82:59:90:a6:7e: fb:d3:35:e9:51:7a:e5:74:d1:74:c2:a0:80:2c:1c: df:cd:d8:1a:38:43:98:ee:06:3c:e2:fd:f4:9b:c3: 51:a3:9f:31:e0:2c:32:4b:77:4a:ee:66:cf:d6:5f: 6f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:26:CD:26:4C:9B:96:02:07:7B:B6:B6:B9:F1:E0:03:6A:17:87:B4 X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption dc:d4:dd:11:ac:d2:45:3b:c1:81:a5:53:98:00:f1:e7:86:50: 68:6f:a3:33:a7:25:b4:c3:04:b5:ba:fc:56:f9:d4:56:8a:23: 10:c6:73:57:03:f2:c8:46:cf:27:33:7c:91:f7:6b:05:a9:2c: 07:aa:d7:00:98:ce:a9:16:d0:8d:8a:61:4c:cf:22:81:49:28: ce:f4:a9:fd:33:e4:04:07:99:d7:1f:10:a1:af:2e:d1:3d:14: a2:61:b7:b9:68:a3:ce:9c:88:ff:a8:5d:b8:12:a6:71:51:bb: 8f:5d:64:90:11:0d:da:82:10:5a:b5:f4:bb:96:24:d2:7e:61: 16:26:39:b3:f0:06:29:7a:b6:13:fb:c8:4b:b6:54:dd:a0:b5: e8:7c:cf:e6:96:5d:ed:60:7a:c3:97:03:ce:c6:64:3e:88:e7: 54:0b:d7:5e:b5:66:e2:09:31:12:ff:dc:f2:ec:11:60:68:86: 4a:82:01:89:fc:f6:3c:b4:e9:0b:09:21:52:7c:d1:c3:af:c6: 23:08:3f:a4:79:d5:42:e2:92:a6:25:9f:8a:67:07:2d:32:62: ee:24:61:62:16:b1:43:09:38:41:44:b6:87:4f:a8:be:fc:3a: ee:0a:5b:d8:24:e2:5e:f2:f5:07:32:40:05:a7:75:c3:b5:2a: 33:72:18:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKMejJZZjXXNU8tUjowjq/XBMHIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNjAyMjgwNzU2MDZaFw0yNjAzMDMxNDE1MDZaMDMxMTAvBgNV BAMTKDNFMjZDRDI2NEM5Qjk2MDIwNzdCQjZCNkI5RjFFMDAzNkExNzg3QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqUqE43WpBTsS3UGvnDKN/VM17 pd3+RIFrxRaMto+ylHxFsIIcxzKKdZFSpizdI8CvgmmPkQdfwqVf64s/wu640Tau TQ9mKYP+3O7LDNhC/DN8wP0i1D8VjwT+VWAbG9k2zNIAtGfJA2nh9+X9z1Ab7/hu yXcZpcluQsKCxElWnbLo/Nq9fByhSoy+FVHB9Tj9nGXb9K2qC1OvsHCM+u2m+hpM yuq3rWNrR5KA/Y9tnLNFzOLcBkUD8ULENnHYAfa2Ur3mj/oPos+TZiyCWZCmfvvT NelReuV00XTCoIAsHN/N2Bo4Q5juBjzi/fSbw1GjnzHgLDJLd0ruZs/WX2+vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPibNJkyblgIHe7a2ufHgA2oXh7QwHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGIzODhmNmUtOTk3NC00NDU3LWFm NGItNWM5YzgyZjUwZTk3LzAvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFE NEM1MDg1MkE2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANzU3RGs0kU7wYGlU5gA8eeGUGhvozOnJbTD BLW6/Fb51FaKIxDGc1cD8shGzyczfJH3awWpLAeq1wCYzqkW0I2KYUzPIoFJKM70 qf0z5AQHmdcfEKGvLtE9FKJht7loo86ciP+oXbgSpnFRu49dZJARDdqCEFq19LuW JNJ+YRYmObPwBil6thP7yEu2VN2gteh8z+aWXe1gesOXA87GZD6I51QL1161ZuIJ MRL/3PLsEWBohkqCAYn89jy06QsJIVJ80cOvxiMIP6R51ULikqYln4pnBy0yYu4k YWIWsUMJOEFEtodPqL78Ou4KW9gk4l7y9QcyQAWndcO1KjNyGAU= -----END CERTIFICATE-----Generated at Mon Mar 2 15:03:01 2026 by rpki-client