$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: uShv8TFy9k2L73rJa0ZhmMsGmJmhEgnxE+5MqP8t21A= Subject key identifier: B0:7E:52:1F:1E:2E:F4:4F:51:63:D4:44:0F:BA:22:07:13:64:0B:9F Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 7A6B4095C7BCBBDEA33234019970BC1C50558667 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 0327 Signing time: Sun 01 Mar 2026 06:43:39 +0000 Manifest this update: Sun 01 Mar 2026 06:38:39 +0000 Manifest next update: Wed 04 Mar 2026 17:03:39 +0000 Files and hashes: 1: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: 0qCM2olgS4oE+YIGItrwN9xQiW2Tx+5S0Vcz+QMGK2k=) 2: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) 3: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: 5ApYBdl945HCZHfNM3am/ubZ8PYui+BT5qiJqGvdxds=) 4: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: wEdCO3YyXLUpfkiKLdOWDdPh+9yeo9Z0D5c9ufB6gOc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 17:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6b:40:95:c7:bc:bb:de:a3:32:34:01:99:70:bc:1c:50:55:86:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Mar 1 06:38:39 2026 GMT Not After : Mar 4 17:03:39 2026 GMT Subject: CN=B07E521F1E2EF44F5163D4440FBA220713640B9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4d:97:32:a3:04:47:5e:5d:e5:59:f3:c2:6d: 44:88:5c:95:5f:9c:2c:92:da:ec:0f:23:7c:db:d1: 23:93:48:1e:0c:13:8c:4c:fb:d0:48:a0:25:4e:51: e9:6a:43:45:5b:f2:f7:0e:65:14:b4:fb:64:3b:22: bc:d7:d9:d6:b7:4e:23:7b:47:16:25:e7:28:5b:61: 02:79:37:ed:9e:7f:47:ab:d1:17:be:fa:e4:08:1b: 20:25:6f:6d:dd:0e:b3:c6:65:a5:22:01:80:90:3e: 28:47:c6:82:f2:db:9c:bd:d5:46:80:85:5f:7b:7d: 72:9a:ca:7c:81:26:a9:96:2b:ed:b8:15:5d:c3:cc: ee:39:9e:33:2e:a3:2c:d5:7f:a4:28:d6:24:b6:e4: 06:00:2a:8b:6a:b5:f9:7d:1b:4a:6a:4d:66:0e:f4: b9:86:c1:43:b8:13:e3:e0:e1:0c:3b:5c:72:b2:bd: 7e:98:f7:76:af:d5:c3:26:93:f5:2b:30:d1:44:8b: 6f:30:9f:95:73:22:b2:55:93:11:f9:4c:a2:da:a3: a4:a7:56:78:d7:ad:79:ee:85:18:7c:e5:09:1a:8a: d0:be:d6:65:29:89:58:0d:72:0b:ac:55:ac:b6:6e: 7a:84:9e:84:36:8b:12:5b:44:d3:b2:a3:9b:f4:22: af:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:7E:52:1F:1E:2E:F4:4F:51:63:D4:44:0F:BA:22:07:13:64:0B:9F X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:8e:95:77:7b:71:09:91:98:18:12:9f:97:87:df:12:77:d3: 60:8c:84:80:8c:d4:1f:92:84:4c:ce:92:50:1b:7b:15:e9:17: f7:df:da:74:89:27:7a:9f:24:e8:d9:3e:e3:18:a8:3f:a6:6a: 0b:eb:52:2e:5e:7a:6f:da:92:16:26:22:c9:9f:4c:30:82:6f: fc:b2:9c:76:c7:ca:e3:9e:19:d4:c5:0b:e5:d1:05:d8:2a:2f: b9:a1:28:b9:a2:08:12:41:3b:93:97:57:ee:90:c3:b7:62:07: 66:48:31:db:29:93:07:c4:21:20:f4:4b:9b:27:8d:2c:a3:39: f7:2a:a5:af:c5:cc:9e:dc:c2:6d:88:e0:77:e9:ef:90:b2:59: b9:85:ab:56:d9:9e:74:eb:da:08:a2:0f:3f:40:fe:e7:b8:94: 5e:9e:7f:d5:b4:71:b5:f5:2e:6c:2a:ed:a8:fb:67:d9:59:3c: 87:ed:b9:d0:13:d6:30:dd:0d:df:ec:b6:14:f7:59:6e:a0:e8: 34:88:cd:c8:f3:68:ed:fb:39:5a:36:24:21:c1:86:fd:5a:fb: f7:d7:f6:3a:d5:ac:27:86:28:e2:32:29:c2:53:97:3a:db:f0: dd:1a:c8:5f:b5:b7:c2:55:0b:03:10:83:7e:e3:d5:84:a1:e5: 70:bd:96:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUemtAlce8u96jMjQBmXC8HFBVhmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNjAzMDEwNjM4MzlaFw0yNjAzMDQxNzAzMzlaMDMxMTAvBgNV BAMTKEIwN0U1MjFGMUUyRUY0NEY1MTYzRDQ0NDBGQkEyMjA3MTM2NDBCOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSTZcyowRHXl3lWfPCbUSIXJVf nCyS2uwPI3zb0SOTSB4ME4xM+9BIoCVOUelqQ0Vb8vcOZRS0+2Q7IrzX2da3TiN7 RxYl5yhbYQJ5N+2ef0er0Re++uQIGyAlb23dDrPGZaUiAYCQPihHxoLy25y91UaA hV97fXKaynyBJqmWK+24FV3DzO45njMuoyzVf6Qo1iS25AYAKotqtfl9G0pqTWYO 9LmGwUO4E+Pg4Qw7XHKyvX6Y93av1cMmk/UrMNFEi28wn5VzIrJVkxH5TKLao6Sn VnjXrXnuhRh85QkaitC+1mUpiVgNcgusVay2bnqEnoQ2ixJbRNOyo5v0Iq9dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsH5SHx4u9E9RY9RED7oiBxNkC58wHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABSOlXd7cQmRmBgSn5eH3xJ302CMhICM1B+S hEzOklAbexXpF/ff2nSJJ3qfJOjZPuMYqD+magvrUi5eem/akhYmIsmfTDCCb/yy nHbHyuOeGdTFC+XRBdgqL7mhKLmiCBJBO5OXV+6Qw7diB2ZIMdspkwfEISD0S5sn jSyjOfcqpa/FzJ7cwm2I4Hfp75CyWbmFq1bZnnTr2giiDz9A/ue4lF6ef9W0cbX1 Lmwq7aj7Z9lZPIftudAT1jDdDd/sthT3WW6g6DSIzcjzaO37OVo2JCHBhv1a+/fX 9jrVrCeGKOIyKcJTlzrb8N0ayF+1t8JVCwMQg37j1YSh5XC9lk0= -----END CERTIFICATE-----Generated at Mon Mar 2 07:31:54 2026 by rpki-client