$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft (raw, json) Hash identifier: 30vGGQTSGeVpjZB93Ve7m9jKXGdAbwKxgxNbM5meuEw= Subject key identifier: 7B:4E:D3:A1:52:90:50:19:6D:C1:76:CD:CA:C2:24:27:A9:ED:D0:69 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 5325859BB3F27E2008F1B725544221EC4A022205 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft Manifest number: 0554 Signing time: Mon 02 Mar 2026 10:01:26 +0000 Manifest this update: Mon 02 Mar 2026 09:56:26 +0000 Manifest next update: Thu 05 Mar 2026 11:37:26 +0000 Files and hashes: 1: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (hash: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8=) 2: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (hash: NswJoPlTbkW1QbykJdu3UOhV7IqDYlomNhuRwW/poHY=) 3: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (hash: GyTvAyiqDcz4HqvEtyjLwFP+vqa6W3Rz6dNaGJkDvBQ=) 4: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl (hash: O+iYqeaKUexPEtUgjpwGu9BjPESI4UqFDEgZwn738A4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 06:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:25:85:9b:b3:f2:7e:20:08:f1:b7:25:54:42:21:ec:4a:02:22:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Mar 2 09:56:26 2026 GMT Not After : Mar 5 11:37:26 2026 GMT Subject: CN=7B4ED3A1529050196DC176CDCAC22427A9EDD069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:76:5b:74:22:66:9a:7c:d0:61:2a:c7:d1:2d: f7:f1:ba:fa:6e:5c:5b:45:21:1d:6e:bc:25:51:07: 50:67:8e:37:f2:a8:cc:48:c7:da:1e:c5:43:15:8c: 10:65:a2:e4:7b:e9:bf:4a:b5:c2:98:19:25:bf:2b: b5:fc:f9:2a:39:30:11:f2:b8:31:4d:52:c6:77:c8: 2d:cb:5c:6e:c8:ba:c8:e6:ad:5c:57:ce:40:f8:32: f8:5b:67:35:a2:6f:c8:2e:4f:a5:a7:25:42:b0:af: 8c:de:4b:76:27:d6:bd:c0:f3:61:d5:79:ad:1f:70: a2:9e:72:b0:d0:64:28:71:69:3a:dc:95:33:66:60: 5c:3e:d2:d3:dc:3b:1b:ce:d6:72:67:8c:25:6d:47: 75:54:ff:a8:ca:8a:b4:7a:ed:b4:65:39:56:cc:77: 7d:26:cf:07:db:40:16:3e:06:da:d1:ec:0f:e7:2b: 53:94:d3:8b:f2:68:41:52:46:c1:68:fc:ce:c8:0c: 03:24:8c:cc:7b:38:f2:53:0e:0a:8e:33:b2:be:0f: d8:b6:f8:18:2c:32:1d:6e:c7:d5:1b:45:06:1c:87: b7:17:46:39:77:e2:6b:3b:b5:3a:36:07:18:cd:64: 47:11:20:ae:11:62:50:cb:37:9e:2c:4c:c1:18:62: 98:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4E:D3:A1:52:90:50:19:6D:C1:76:CD:CA:C2:24:27:A9:ED:D0:69 X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:c1:ce:52:2c:0c:63:b5:c2:03:62:3a:b7:c4:21:84:e0:d7: 5c:24:de:d7:bc:ef:9c:e8:f8:db:be:bc:bd:27:f8:17:29:d9: 96:71:70:25:58:06:1a:45:8d:a8:0e:18:79:fa:07:eb:d7:23: 2f:04:06:24:1b:ad:2b:26:4c:c6:10:8e:57:8f:87:62:0e:3b: 85:1b:e3:39:09:a1:32:23:b2:b4:30:66:aa:87:e9:5d:02:bb: dd:b1:cf:f6:d5:2b:ec:e7:a1:17:ac:69:57:83:8f:b9:66:7f: d8:31:71:7a:52:2d:8d:72:e3:ae:eb:f0:a4:d6:c4:58:82:ef: fc:dc:31:56:dd:0e:4d:d1:59:b1:fa:6b:12:16:9d:d5:c8:2a: 18:e1:b3:fc:cc:82:68:f6:b8:96:de:31:4f:8f:7f:9d:3a:b9: ea:4b:e2:98:d5:6a:99:f3:58:c0:4d:12:7d:ca:4a:19:94:35: 53:db:ae:33:e9:38:7a:01:bd:69:ba:08:2d:2e:f0:f0:ff:f4: 4f:b3:23:a5:79:3a:d2:03:82:14:51:f8:c7:6b:82:27:fc:b0: e1:a7:ef:1a:d6:c2:80:2e:1e:7c:d9:2e:79:94:8a:3d:c5:0c: 10:1f:97:9b:6b:31:22:cc:53:e0:d3:71:06:fe:db:cc:25:bd: 01:98:2f:38 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUyWFm7PyfiAI8bclVEIh7EoCIgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNjAzMDIwOTU2MjZaFw0yNjAzMDUxMTM3MjZaMDMxMTAvBgNV BAMTKDdCNEVEM0ExNTI5MDUwMTk2REMxNzZDRENBQzIyNDI3QTlFREQwNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwdlt0ImaafNBhKsfRLffxuvpu XFtFIR1uvCVRB1BnjjfyqMxIx9oexUMVjBBlouR76b9KtcKYGSW/K7X8+So5MBHy uDFNUsZ3yC3LXG7IusjmrVxXzkD4MvhbZzWib8guT6WnJUKwr4zeS3Yn1r3A82HV ea0fcKKecrDQZChxaTrclTNmYFw+0tPcOxvO1nJnjCVtR3VU/6jKirR67bRlOVbM d30mzwfbQBY+BtrR7A/nK1OU04vyaEFSRsFo/M7IDAMkjMx7OPJTDgqOM7K+D9i2 +BgsMh1ux9UbRQYch7cXRjl34ms7tTo2BxjNZEcRIK4RYlDLN54sTMEYYphFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe07ToVKQUBltwXbNysIkJ6nt0GkwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNiOGFlOTctNjgxOC00OGE5LWFi ZTQtZWRiOTYwNDlmM2M4LzAvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVC RENCNUFEQkQyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjBzlIsDGO1wgNiOrfEIYTg11wk3te875zo +Nu+vL0n+Bcp2ZZxcCVYBhpFjagOGHn6B+vXIy8EBiQbrSsmTMYQjlePh2IOO4Ub 4zkJoTIjsrQwZqqH6V0Cu92xz/bVK+znoResaVeDj7lmf9gxcXpSLY1y467r8KTW xFiC7/zcMVbdDk3RWbH6axIWndXIKhjhs/zMgmj2uJbeMU+Pf506uepL4pjVapnz WMBNEn3KShmUNVPbrjPpOHoBvWm6CC0u8PD/9E+zI6V5OtIDghRR+Mdrgif8sOGn 7xrWwoAuHnzZLnmUij3FDBAfl5trMSLMU+DTcQb+28wlvQGYLzg= -----END CERTIFICATE-----Generated at Mon Mar 2 14:11:26 2026 by rpki-client