$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft (raw, json) Hash identifier: pL7eDXv5bk3rDH8GUHxdKG4ia6P4YEwo1A3N7Hjq0ck= Subject key identifier: 3D:D4:5A:F3:2E:BE:B8:C0:C8:1F:63:62:97:F2:0B:66:B2:09:1D:4B Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 607765763F677D4EC330145939BAFE5C5997498A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft Manifest number: 0233 Signing time: Sat 28 Feb 2026 11:51:00 +0000 Manifest this update: Sat 28 Feb 2026 11:46:00 +0000 Manifest next update: Tue 03 Mar 2026 11:51:00 +0000 Files and hashes: 1: 3130332e32382e3136332e302f32342d3234203d3e203536323539.roa (hash: NAFqFIaSAImXyE9eWh33YjJ4/n4BJqvDNhOBlZ2+l28=) 2: 3130332e36352e39362e302f32332d3234203d3e203536323539.roa (hash: GJQ3NUFsB2nVnSk1uRZagjtzrc7ng31cjwY1HHOp2FQ=) 3: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl (hash: dcyZZ8pd7seEJFWqc7kw/IN3ibyqNLCRat+U30niDEU=) 4: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (hash: HvzvMBj5qU+NExWSjTWqrdpmvH/WBtBrlcSKkhbhERc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 11:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:77:65:76:3f:67:7d:4e:c3:30:14:59:39:ba:fe:5c:59:97:49:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Feb 28 11:46:00 2026 GMT Not After : Mar 3 11:51:00 2026 GMT Subject: CN=3DD45AF32EBEB8C0C81F636297F20B66B2091D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d8:fa:5b:c5:57:af:6a:2b:ff:9b:3d:33:83: 48:c2:1f:d5:84:e1:16:91:8f:a4:09:2d:ad:83:18: 72:61:76:11:8f:14:12:a6:56:d2:6d:62:fe:10:1d: 3a:bc:3a:91:6f:e4:48:a6:78:d5:c0:03:df:85:51: e6:23:d1:94:af:50:10:fc:7a:54:04:85:fa:bd:7b: bb:74:08:e7:df:3a:b3:8d:29:f9:27:36:4c:ef:ee: 99:ed:8f:fc:99:2f:e8:e8:e6:ef:89:e4:58:2f:fc: 1c:57:a4:fa:28:6d:76:12:00:a8:3d:9d:6e:a6:8b: 75:c6:fe:be:44:83:94:82:88:4e:45:df:c7:e6:00: 92:ad:de:5c:22:cf:1f:e9:8a:e6:2b:19:f3:f1:5c: d0:fd:36:0c:de:38:7b:30:de:1c:13:76:73:81:8f: d2:6f:2b:92:6d:5b:bd:8a:6a:d9:67:35:45:a5:5d: 10:86:8a:c8:d6:89:0f:1d:76:db:7d:f4:54:ba:36: 5b:4f:b3:87:af:bb:97:2f:8d:2e:56:5d:76:10:6f: b4:08:7f:d0:ed:e0:2e:74:fa:0d:a4:69:8e:7f:00: 22:fd:d2:39:24:c6:e8:37:d7:4a:0c:07:c6:2a:05: e6:d2:5a:57:5f:35:79:35:45:50:32:40:37:78:a3: e1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D4:5A:F3:2E:BE:B8:C0:C8:1F:63:62:97:F2:0B:66:B2:09:1D:4B X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:da:80:af:6f:9d:3f:2d:fb:da:7c:f1:b3:9c:2e:a6:23:7a: 20:4f:ee:8b:d1:67:3f:42:d4:e3:d2:dc:a8:26:41:cf:da:15: e6:46:c5:a5:6e:15:9b:5e:32:79:bb:02:fd:c5:d4:25:f1:1c: 99:37:2a:cb:77:bd:b9:8d:e0:54:ba:f7:bb:c8:74:51:16:ca: e4:43:d3:af:41:47:f9:25:33:fa:24:6e:74:91:cc:b7:fd:74: 29:b8:09:98:47:c3:70:e9:a0:c5:e7:1c:82:49:23:5e:e7:95: 5f:2c:be:a3:90:dd:37:12:15:e2:5c:c3:44:db:f3:f8:43:c1: a6:19:c6:25:c4:a1:81:30:da:7d:0e:ae:60:dc:ef:56:72:3d: 4d:e6:a5:8d:d4:2b:97:9c:15:1c:7c:cf:47:29:d7:35:0c:0f: a5:a6:b1:4e:6a:2b:c3:36:44:71:7f:29:54:4d:89:b6:eb:b1: e7:a4:29:3c:40:e8:78:6e:f5:1e:ab:db:32:ad:33:39:61:7b: 2f:85:3f:19:4b:08:f0:c9:46:de:b8:0e:d0:1f:c0:fe:a9:c2: 0c:ad:9a:35:42:b9:d3:b5:52:04:01:c6:4c:ad:51:b1:5c:99: 20:61:e2:c1:d2:e1:a2:f0:39:02:10:f3:c6:c4:32:f4:0b:67: c1:1d:ff:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYHdldj9nfU7DMBRZObr+XFmXSYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNjAyMjgxMTQ2MDBaFw0yNjAzMDMxMTUxMDBaMDMxMTAvBgNV BAMTKDNERDQ1QUYzMkVCRUI4QzBDODFGNjM2Mjk3RjIwQjY2QjIwOTFENEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/2PpbxVevaiv/mz0zg0jCH9WE 4RaRj6QJLa2DGHJhdhGPFBKmVtJtYv4QHTq8OpFv5EimeNXAA9+FUeYj0ZSvUBD8 elQEhfq9e7t0COffOrONKfknNkzv7pntj/yZL+jo5u+J5Fgv/BxXpPoobXYSAKg9 nW6mi3XG/r5Eg5SCiE5F38fmAJKt3lwizx/piuYrGfPxXND9NgzeOHsw3hwTdnOB j9JvK5JtW72KatlnNUWlXRCGisjWiQ8ddtt99FS6NltPs4evu5cvjS5WXXYQb7QI f9Dt4C50+g2kaY5/ACL90jkkxug310oMB8YqBebSWldfNXk1RVAyQDd4o+FVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPdRa8y6+uMDIH2Nil/ILZrIJHUswHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGQ5NzAwMzItMDhlYS00ODkwLWJk YmEtNjMwOWE0OTc5MTdkLzAvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVF RDc4NUMzNUU0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHnagK9vnT8t+9p88bOcLqYjeiBP7ovRZz9C 1OPS3KgmQc/aFeZGxaVuFZteMnm7Av3F1CXxHJk3Kst3vbmN4FS697vIdFEWyuRD 069BR/klM/okbnSRzLf9dCm4CZhHw3DpoMXnHIJJI17nlV8svqOQ3TcSFeJcw0Tb 8/hDwaYZxiXEoYEw2n0OrmDc71ZyPU3mpY3UK5ecFRx8z0cp1zUMD6WmsU5qK8M2 RHF/KVRNibbrseekKTxA6Hhu9R6r2zKtMzlhey+FPxlLCPDJRt64DtAfwP6pwgyt mjVCudO1UgQBxkytUbFcmSBh4sHS4aLwOQIQ88bEMvQLZ8Ed/88= -----END CERTIFICATE-----Generated at Mon Mar 2 04:07:28 2026 by rpki-client