$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: t/5bvv2A0O7w2M/5nZGaPL0e162FVHl+UjmBUCbmjko= Subject key identifier: 76:B2:D1:B9:47:D3:FE:1D:E6:A4:EA:3A:C7:8A:BD:62:6F:8E:3D:EF Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 479E360ED53216ADA203516A3D9BE2C2B6F8EDBD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 03AC Signing time: Thu 26 Mar 2026 14:21:00 +0000 Manifest this update: Thu 26 Mar 2026 14:16:00 +0000 Manifest next update: Sun 29 Mar 2026 15:37:00 +0000 Files and hashes: 1: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 2: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 3: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 4: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 5: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 6: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: 8siVyzsBQqie/EV2JZkPoyElI3w4WYByAwhi3air1F8=) 7: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 8: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) 9: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 10: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 15:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:9e:36:0e:d5:32:16:ad:a2:03:51:6a:3d:9b:e2:c2:b6:f8:ed:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Mar 26 14:16:00 2026 GMT Not After : Mar 29 15:37:00 2026 GMT Subject: CN=76B2D1B947D3FE1DE6A4EA3AC78ABD626F8E3DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a2:ac:6c:48:d8:6d:a7:79:40:0a:da:bb:a8: 93:3c:0d:d0:41:d7:ea:7f:91:c6:1c:41:82:1f:d9: 0f:1a:35:09:6f:49:f1:2a:47:71:fa:a1:d5:db:16: db:3f:6d:3f:16:7b:d1:42:a2:44:66:fe:a2:9b:fe: 39:c3:21:0e:34:17:9d:69:5a:fc:fb:93:3e:96:ed: 73:e9:37:0c:6d:54:af:a4:b6:db:43:91:15:f7:45: 4e:5f:2b:8e:8b:35:52:8b:08:e2:10:78:cb:1c:cc: 43:c2:0f:8c:9c:d8:78:78:2d:d6:14:8c:6a:f7:b2: 05:f7:c7:d0:54:76:f7:75:59:99:4d:2d:1e:f6:b2: fd:0a:6d:54:fe:72:b1:23:21:fd:86:e2:4b:52:df: eb:b5:d7:31:fc:1c:10:68:37:09:0b:80:37:b0:29: 25:c2:6d:26:c8:b8:40:3f:fc:a3:45:3b:b8:20:02: 09:86:03:28:42:b4:70:03:dc:dc:6f:2c:79:98:95: 26:49:af:ab:38:6f:a2:95:63:1b:ff:26:e6:2c:4f: 49:6a:f9:2d:1d:a7:25:78:49:73:46:60:5d:24:8c: 9d:49:80:12:d5:1f:fd:98:f9:e5:4d:29:dd:28:9e: 11:54:00:93:14:08:90:7c:c7:6a:6a:86:05:8f:96: c5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B2:D1:B9:47:D3:FE:1D:E6:A4:EA:3A:C7:8A:BD:62:6F:8E:3D:EF X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:8e:db:c4:39:12:72:dd:f3:13:7e:24:6c:9d:b7:cb:0c:97: 92:09:c1:5f:00:58:63:97:e0:7e:7f:0a:ea:ea:e1:d5:a1:f2: a7:2c:77:47:75:65:ea:27:4e:17:5b:01:e8:19:8d:90:cf:09: ad:75:01:73:3a:3f:9f:1f:9c:bc:1f:48:d8:21:52:56:17:c2: 85:6f:00:8e:c9:88:00:42:1a:58:41:d4:9e:a3:59:45:43:8c: 66:4d:60:ca:f8:f9:15:dc:70:74:a0:7e:f0:3c:f3:ad:c3:a7: 38:ce:87:84:0a:08:ff:1c:cb:7d:dd:54:5d:4e:24:b6:5d:3c: f9:03:6c:f0:db:ee:f2:fe:b9:74:90:b2:e0:b5:a4:42:9b:22: 42:ad:73:29:18:96:fd:b5:69:66:f5:fb:cc:cc:06:8c:ae:47: c6:3e:32:e5:e4:c5:cb:ec:0d:03:63:73:bd:c3:26:ca:47:65: 11:aa:8a:da:f0:e2:c3:39:1a:66:2c:fc:b4:5d:f5:c0:30:a2: 3a:b2:69:1d:00:2e:d5:0a:e3:e9:31:6a:8c:cf:1a:1b:35:af: 3f:43:32:41:9c:18:79:c1:bc:cf:c1:12:d4:b5:01:08:db:47: d4:47:9c:b0:8b:73:50:13:57:24:c5:8d:d2:66:ef:97:f0:66: 72:92:72:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR542DtUyFq2iA1FqPZviwrb47b0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNjAzMjYxNDE2MDBaFw0yNjAzMjkxNTM3MDBaMDMxMTAvBgNV BAMTKDc2QjJEMUI5NDdEM0ZFMURFNkE0RUEzQUM3OEFCRDYyNkY4RTNERUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKoqxsSNhtp3lACtq7qJM8DdBB 1+p/kcYcQYIf2Q8aNQlvSfEqR3H6odXbFts/bT8We9FCokRm/qKb/jnDIQ40F51p Wvz7kz6W7XPpNwxtVK+ktttDkRX3RU5fK46LNVKLCOIQeMsczEPCD4yc2Hh4LdYU jGr3sgX3x9BUdvd1WZlNLR72sv0KbVT+crEjIf2G4ktS3+u11zH8HBBoNwkLgDew KSXCbSbIuEA//KNFO7ggAgmGAyhCtHAD3NxvLHmYlSZJr6s4b6KVYxv/JuYsT0lq +S0dpyV4SXNGYF0kjJ1JgBLVH/2Y+eVNKd0onhFUAJMUCJB8x2pqhgWPlsVLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdrLRuUfT/h3mpOo6x4q9Ym+OPe8wHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEuO28Q5EnLd8xN+JGydt8sMl5IJwV8AWGOX 4H5/Curq4dWh8qcsd0d1ZeonThdbAegZjZDPCa11AXM6P58fnLwfSNghUlYXwoVv AI7JiABCGlhB1J6jWUVDjGZNYMr4+RXccHSgfvA8863DpzjOh4QKCP8cy33dVF1O JLZdPPkDbPDb7vL+uXSQsuC1pEKbIkKtcykYlv21aWb1+8zMBoyuR8Y+MuXkxcvs DQNjc73DJspHZRGqitrw4sM5GmYs/LRd9cAwojqyaR0ALtUK4+kxaozPGhs1rz9D MkGcGHnBvM/BEtS1AQjbR9RHnLCLc1ATVyTFjdJm75fwZnKScgQ= -----END CERTIFICATE-----Generated at Thu Mar 26 19:29:48 2026 by rpki-client