$ rpki-client -vvf repo-rpki.idnic.net/repo/176607ea-add7-4ca5-8f2d-da8b791a3b42/0/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.mft File: 9432D378217A8BEEE34D953A8BFFD5AA33F1104E.mft (raw, json) Hash identifier: 3dUm10PF4mkmjXqb9IhpDfKBsGH5EFwWwdEl4t0atxc= Subject key identifier: 3B:FD:DA:19:18:14:A3:9D:2D:35:1C:96:8B:76:CF:D6:93:25:77:E8 Authority key identifier: 94:32:D3:78:21:7A:8B:EE:E3:4D:95:3A:8B:FF:D5:AA:33:F1:10:4E Certificate issuer: /CN=9432D378217A8BEEE34D953A8BFFD5AA33F1104E Certificate serial: 58366F36818CD3348DEB6DB866E8EE6F19AEBF7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/176607ea-add7-4ca5-8f2d-da8b791a3b42/0/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.mft Manifest number: 19 Signing time: Tue 24 Mar 2026 16:02:11 +0000 Manifest this update: Tue 24 Mar 2026 15:57:11 +0000 Manifest next update: Sat 28 Mar 2026 03:36:11 +0000 Files and hashes: 1: 323030313a6466333a643663303a3a2f34382d3438203d3e20313531363030.roa (hash: 72QFlEs4lj2ZXEfA6O7YDbDvXdQYKnzr/OAYVv/VuXE=) 2: 3130332e3230332e3233332e302f32342d3234203d3e20313531363030.roa (hash: vIdWvMmfluMelQHkhyfoZHyeqo8LPRhVZA8PTloxyKI=) 3: 3130332e3230332e3233322e302f32332d3233203d3e20313531363030.roa (hash: 9Uz1YR0iTgOvm7UaD7Tg7g6FNpfb/PScm7M9Tqt3tUs=) 4: 9432D378217A8BEEE34D953A8BFFD5AA33F1104E.crl (hash: 0LjZxvLXpfz7rRkt5ipGLwTAtVGsXIlXJLGK5mbxQfE=) 5: 3130332e3230332e3233322e302f32342d3234203d3e20313531363030.roa (hash: HgK/3fIDXVnyurkcMARYmUeVpUpCNrqd+nWZwUb84uA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/176607ea-add7-4ca5-8f2d-da8b791a3b42/0/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.crl rsync://repo-rpki.idnic.net/repo/176607ea-add7-4ca5-8f2d-da8b791a3b42/0/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 03:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:36:6f:36:81:8c:d3:34:8d:eb:6d:b8:66:e8:ee:6f:19:ae:bf:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9432D378217A8BEEE34D953A8BFFD5AA33F1104E Validity Not Before: Mar 24 15:57:11 2026 GMT Not After : Mar 28 03:36:11 2026 GMT Subject: CN=3BFDDA191814A39D2D351C968B76CFD6932577E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ce:8f:ef:89:fa:c7:8d:6f:01:fa:17:76:dc: e6:c1:a0:56:fb:8c:c7:e0:ae:a4:ec:5e:4e:5e:23: 99:58:2c:72:16:53:12:e0:04:25:c2:26:35:9e:b9: cb:08:27:48:5a:47:87:79:c5:92:fe:e3:61:89:f3: d7:88:2a:5c:b0:c8:32:32:49:e5:3a:eb:7b:90:fe: 05:8d:8f:ee:15:9b:02:8e:11:9e:d3:65:bf:78:30: eb:3d:eb:a8:ac:da:3d:9d:a7:46:54:2f:4b:b4:35: e6:ce:50:dc:28:8b:84:a8:41:55:f3:34:53:ef:64: 0a:b0:61:0e:e4:95:1c:ed:8f:2d:e1:f9:bb:55:ec: 97:4e:fa:5a:d0:6a:d1:3a:f9:f0:47:7d:26:eb:55: 1c:26:35:36:50:1d:3c:b2:59:bc:04:91:db:da:b2: ef:94:ba:2b:a9:90:ea:00:71:3f:ad:a4:45:10:b7: 8c:dd:7a:53:25:24:ef:70:c3:19:f9:ab:e0:6b:86: 79:22:db:6d:47:6e:ee:93:04:cc:57:a8:9f:53:ce: 43:25:01:ff:38:6b:85:a8:c8:23:d6:78:4b:12:6f: 39:f0:80:06:91:35:e8:c5:c5:ab:38:01:ec:75:f7: e5:6e:75:e2:3a:96:c8:5f:bb:05:36:8f:f1:ac:cc: eb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FD:DA:19:18:14:A3:9D:2D:35:1C:96:8B:76:CF:D6:93:25:77:E8 X509v3 Authority Key Identifier: keyid:94:32:D3:78:21:7A:8B:EE:E3:4D:95:3A:8B:FF:D5:AA:33:F1:10:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/176607ea-add7-4ca5-8f2d-da8b791a3b42/0/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/176607ea-add7-4ca5-8f2d-da8b791a3b42/0/9432D378217A8BEEE34D953A8BFFD5AA33F1104E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a5:4f:c6:db:c7:8f:68:ba:35:92:de:c8:98:c3:9d:f7:d0: f5:1c:07:07:b7:e3:a8:b6:99:72:f1:c8:23:b8:e8:1f:cc:80: f3:ee:77:4d:65:32:f8:ab:90:a5:da:5a:f4:51:fa:11:ea:d3: d7:d5:cf:0b:b7:d0:4f:2d:9b:4a:47:21:07:b4:a4:83:27:9b: 20:25:4e:52:2c:86:23:75:78:9e:9f:bf:5b:1b:72:58:82:2c: b5:af:4a:8f:a9:f6:1f:3a:14:96:da:1d:8f:bf:6c:dd:bc:41: b9:32:88:65:9a:34:10:48:0f:6e:c2:70:79:21:0f:72:75:bd: 6a:4b:42:bd:b9:91:54:6a:7b:1a:10:b5:91:9e:5a:7f:a1:1d: 2e:51:8f:ad:30:aa:93:f6:e7:53:84:8d:08:f2:25:ee:bf:7a: 48:a5:52:48:98:b3:3b:92:27:af:fe:e6:55:e6:4b:0d:b9:a8: 4f:d9:0f:2c:2f:21:46:52:3b:fb:40:3a:af:61:48:4d:f1:f3: ff:cb:cc:70:6e:65:ec:49:2d:ae:81:1e:04:49:2e:49:a2:19: 4a:fc:ff:80:a3:b8:b4:b9:11:27:46:68:ce:7a:76:a4:38:99: dd:1b:42:6b:83:ac:af:5f:17:2d:d8:0b:f0:4c:7d:2a:92:81: 8e:7e:57:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWDZvNoGM0zSN6224Zujubxmuv3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzMkQzNzgyMTdBOEJFRUUzNEQ5NTNBOEJGRkQ1QUEz M0YxMTA0RTAeFw0yNjAzMjQxNTU3MTFaFw0yNjAzMjgwMzM2MTFaMDMxMTAvBgNV BAMTKDNCRkREQTE5MTgxNEEzOUQyRDM1MUM5NjhCNzZDRkQ2OTMyNTc3RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLzo/vifrHjW8B+hd23ObBoFb7 jMfgrqTsXk5eI5lYLHIWUxLgBCXCJjWeucsIJ0haR4d5xZL+42GJ89eIKlywyDIy SeU663uQ/gWNj+4VmwKOEZ7TZb94MOs966is2j2dp0ZUL0u0NebOUNwoi4SoQVXz NFPvZAqwYQ7klRztjy3h+btV7JdO+lrQatE6+fBHfSbrVRwmNTZQHTyyWbwEkdva su+UuiupkOoAcT+tpEUQt4zdelMlJO9wwxn5q+Brhnki221Hbu6TBMxXqJ9TzkMl Af84a4WoyCPWeEsSbznwgAaRNejFxas4Aex19+VudeI6lshfuwU2j/GszOu5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUO/3aGRgUo50tNRyWi3bP1pMld+gwHwYDVR0j BBgwFoAUlDLTeCF6i+7jTZU6i//VqjPxEE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NzY2MDdlYS1hZGQ3LTRjYTUtOGYyZC1kYThiNzkxYTNiNDIvMC85NDMyRDM3ODIx N0E4QkVFRTM0RDk1M0E4QkZGRDVBQTMzRjExMDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQzMkQzNzgyMTdBOEJFRUUzNEQ5NTNBOEJGRkQ1QUEzM0Yx MTA0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTc2NjA3ZWEtYWRkNy00Y2E1LThm MmQtZGE4Yjc5MWEzYjQyLzAvOTQzMkQzNzgyMTdBOEJFRUUzNEQ5NTNBOEJGRkQ1 QUEzM0YxMTA0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB+lT8bbx49oujWS3siYw5330PUcBwe346i2 mXLxyCO46B/MgPPud01lMvirkKXaWvRR+hHq09fVzwu30E8tm0pHIQe0pIMnmyAl TlIshiN1eJ6fv1sbcliCLLWvSo+p9h86FJbaHY+/bN28QbkyiGWaNBBID27CcHkh D3J1vWpLQr25kVRqexoQtZGeWn+hHS5Rj60wqpP251OEjQjyJe6/ekilUkiYszuS J6/+5lXmSw25qE/ZDywvIUZSO/tAOq9hSE3x8//LzHBuZexJLa6BHgRJLkmiGUr8 /4CjuLS5ESdGaM56dqQ4md0bQmuDrK9fFy3YC/BMfSqSgY5+V+k= -----END CERTIFICATE-----Generated at Thu Mar 26 20:48:30 2026 by rpki-client