$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft File: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft (raw, json) Hash identifier: uwJkf43RdKTcoYMCwaX+SRy2Bg6NIplFc5I9cl2sbsc= Subject key identifier: 7E:DA:5A:BB:9C:AB:2F:D3:4F:24:AA:10:33:16:48:65:52:ED:F6:4B Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 60EE52C35DDF9C102EB66BE542916717C31ECCDF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft Manifest number: 039F Signing time: Sat 28 Feb 2026 21:42:09 +0000 Manifest this update: Sat 28 Feb 2026 21:37:09 +0000 Manifest next update: Tue 03 Mar 2026 23:05:09 +0000 Files and hashes: 1: 3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl (hash: OARW4t6uWyYwXPHVqUjAKwufGQsYNmVeWy9qev8uDwA=) 2: 3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa (hash: DCgYEPaVukPuYmvO5a2cczC4OgprkfQ5HG76ulQS39Q=) 3: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (hash: YYGVRYPBp9IPNMR5VwzW826x/acetE+4Oj6LGMt7tPU=) 4: 3130332e3137312e3138322e302f32332d3233203d3e20313432333735.roa (hash: ZekPVbkZv4xzJt/yLeKvpGj167I44IK/Nn+MbKBEWIw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 23:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ee:52:c3:5d:df:9c:10:2e:b6:6b:e5:42:91:67:17:c3:1e:cc:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: Feb 28 21:37:09 2026 GMT Not After : Mar 3 23:05:09 2026 GMT Subject: CN=7EDA5ABB9CAB2FD34F24AA103316486552EDF64B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cc:30:0b:bd:86:fa:04:8e:02:36:8b:c8:04: 3e:e8:51:b5:e1:a7:3e:78:57:35:d1:ad:fc:ca:83: 47:1b:36:f9:60:c9:56:80:38:b5:b8:6c:9d:cb:4d: da:ad:47:7d:35:d7:0a:15:84:3c:7f:f5:ba:71:02: 27:f0:4a:26:92:e3:83:fd:10:9e:9f:f3:20:61:cd: dd:71:97:fd:69:9b:fb:e6:72:c8:0b:1d:11:12:fb: a9:0e:92:d1:82:dd:2a:24:a3:76:ec:14:1f:0a:f1: 4f:db:88:46:f8:9c:a0:2d:d0:c4:d6:1b:b2:b6:b2: e1:58:cb:04:6e:8c:b7:8f:f7:df:85:8b:cb:b1:84: 32:3c:e6:13:b3:17:85:66:6e:3c:fb:88:3d:51:1d: 45:7d:da:f7:cd:ca:50:7b:86:7d:b8:71:4c:85:c0: d5:c0:52:80:e8:73:c6:79:23:d3:98:2b:fb:65:d4: c9:42:73:ef:ff:65:02:76:ca:28:c3:30:64:fd:c7: ce:45:09:91:f3:f4:5e:d4:96:f2:2b:cd:22:1f:a2: 8b:b2:4a:9a:18:4a:ea:18:46:97:c9:aa:4f:d9:46: 3b:5b:5a:4d:82:c1:2e:2b:bc:6c:52:d3:bb:22:23: e7:03:90:d2:95:85:6e:68:e7:90:23:0f:d9:aa:8b: f1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DA:5A:BB:9C:AB:2F:D3:4F:24:AA:10:33:16:48:65:52:ED:F6:4B X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:4b:dd:b4:b0:e4:a1:3c:ed:23:6c:00:f2:bd:c2:88:cd:8c: e7:1e:f5:fc:29:ec:89:c6:e5:9d:b0:c1:1d:db:91:d2:06:79: 4a:14:20:a1:56:1a:5f:7b:14:0c:7c:50:28:72:80:e4:ab:a0: eb:58:33:c6:b3:03:5f:d7:88:b7:70:bf:f7:63:26:08:78:fd: 9a:a8:1b:ce:74:9e:2c:4a:ef:cf:ab:f4:f4:69:62:cf:b7:6c: 4c:df:77:9d:71:b9:c0:03:62:ed:2d:f0:6e:c1:70:c1:46:55: c0:e1:4b:9c:27:73:cf:4f:ac:b0:3f:63:aa:94:c6:61:8d:41: 27:12:bf:42:71:e9:dd:69:ad:2e:f0:50:bf:53:a5:7b:7b:cf: d1:2b:b8:09:fc:d9:9e:b1:90:7b:d4:0a:04:0c:b2:34:23:e7: c5:8f:06:84:64:f9:1b:27:d5:6c:5e:ed:4d:f5:89:8b:1b:ac: 18:4d:a5:31:34:14:4e:13:04:5b:39:c4:c1:6d:f4:ad:a9:a1: 79:38:96:85:f7:d4:2f:bf:d3:99:b2:1d:a2:d8:ad:43:94:89: 69:c3:06:a5:6e:73:44:f9:8d:bd:70:b7:0d:f4:94:7d:64:40: f9:cc:0a:1c:2c:58:d8:5c:45:7d:67:62:71:bd:9e:c7:fd:be: b1:6a:ba:09 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYO5Sw13fnBAutmvlQpFnF8MezN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNjAyMjgyMTM3MDlaFw0yNjAzMDMyMzA1MDlaMDMxMTAvBgNV BAMTKDdFREE1QUJCOUNBQjJGRDM0RjI0QUExMDMzMTY0ODY1NTJFREY2NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTzDALvYb6BI4CNovIBD7oUbXh pz54VzXRrfzKg0cbNvlgyVaAOLW4bJ3LTdqtR3011woVhDx/9bpxAifwSiaS44P9 EJ6f8yBhzd1xl/1pm/vmcsgLHRES+6kOktGC3Soko3bsFB8K8U/biEb4nKAt0MTW G7K2suFYywRujLeP99+Fi8uxhDI85hOzF4Vmbjz7iD1RHUV92vfNylB7hn24cUyF wNXAUoDoc8Z5I9OYK/tl1MlCc+//ZQJ2yijDMGT9x85FCZHz9F7UlvIrzSIfoouy SpoYSuoYRpfJqk/ZRjtbWk2CwS4rvGxS07siI+cDkNKVhW5o55AjD9mqi/FbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUftpau5yrL9NPJKoQMxZIZVLt9kswHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTM1MDVjYjMtYjU1ZS00MGU0LWFj NzktNjM2NTYwNmY0ZWY5LzAvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMz RkVGNjUxQkFBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEdL3bSw5KE87SNsAPK9wojNjOce9fwp7InG 5Z2wwR3bkdIGeUoUIKFWGl97FAx8UChygOSroOtYM8azA1/XiLdwv/djJgh4/Zqo G850nixK78+r9PRpYs+3bEzfd51xucADYu0t8G7BcMFGVcDhS5wnc89PrLA/Y6qU xmGNQScSv0Jx6d1prS7wUL9TpXt7z9EruAn82Z6xkHvUCgQMsjQj58WPBoRk+Rsn 1Wxe7U31iYsbrBhNpTE0FE4TBFs5xMFt9K2poXk4loX31C+/05myHaLYrUOUiWnD BqVuc0T5jb1wtw30lH1kQPnMChwsWNhcRX1nYnG9nsf9vrFqugk= -----END CERTIFICATE-----Generated at Mon Mar 2 02:37:46 2026 by rpki-client