$ rpki-client -vvf repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft File: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft (raw, json) Hash identifier: 83uO9nWnoXMzEOhLjtZd/VURZnSJshEsvbaKS1AByBk= Subject key identifier: 51:C2:DC:D5:AD:E5:36:48:BC:B0:42:71:FF:D4:2A:C3:7E:31:B0:8D Authority key identifier: 9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B Certificate issuer: /CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Certificate serial: 0ED7663DFDADE9ABCA6926F78F8EE5C90700BC76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft Manifest number: 0218 Signing time: Tue 24 Mar 2026 07:12:28 +0000 Manifest this update: Tue 24 Mar 2026 07:07:28 +0000 Manifest next update: Fri 27 Mar 2026 19:11:28 +0000 Files and hashes: 1: 3130332e33392e37312e302f32342d3234203d3e20313530323734.roa (hash: kcEi7J2KzSD2C16sirfrvjjvmQ8zQakPG6+zInavgeM=) 2: 3130332e33392e37302e302f32332d3233203d3e20313530323734.roa (hash: 8hPKjOrrKRezfNVZLnLavcGoDjYQomlxrK85beUxD9E=) 3: 3130332e33392e37302e302f32342d3234203d3e20313530323734.roa (hash: UIsEV+yUxnoy27zXekEfr9wJFUXejRjvqDfBen4AprU=) 4: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl (hash: cVt49YalooTfU6DuWOpFic9rGb8+EYUWH4snkQcW5qs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 19:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d7:66:3d:fd:ad:e9:ab:ca:69:26:f7:8f:8e:e5:c9:07:00:bc:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Validity Not Before: Mar 24 07:07:28 2026 GMT Not After : Mar 27 19:11:28 2026 GMT Subject: CN=51C2DCD5ADE53648BCB04271FFD42AC37E31B08D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:5e:7e:79:6e:0d:7d:a1:76:2e:2b:28:48: cc:8c:80:b7:2a:65:bd:78:a3:ad:cd:7b:94:69:cc: f3:07:84:e3:fd:ee:95:a9:4c:b5:6a:fe:eb:ac:65: 62:15:fc:e9:4a:ed:20:15:b6:6a:1f:4e:f2:d1:fd: 18:42:bb:28:fb:90:fe:83:0c:ae:84:1b:38:55:27: 95:9c:82:a7:e6:a9:81:32:ab:f0:13:2b:fc:e3:52: 7c:57:fe:32:53:60:c1:f2:1b:7a:f5:55:6d:21:97: 47:e0:bb:3b:72:83:3f:fb:f1:fa:dd:3a:29:2d:1a: 22:b8:bc:53:37:17:ae:bf:0d:30:cd:a9:f1:f4:26: dd:1a:a1:cc:52:3c:d6:c2:5c:1e:e8:c1:ca:e1:af: d6:5a:8a:50:8b:fb:fa:b6:5d:e0:8f:9d:0c:ea:2e: 94:cc:e0:b0:77:da:d2:b4:bb:d9:8b:5f:53:02:fc: af:73:f8:28:2f:79:1f:20:f3:9c:9e:33:5e:a6:fb: dc:98:61:44:cf:c1:c0:96:40:04:92:80:ed:bb:34: 7a:bd:cf:f7:8b:10:3c:90:8a:fa:34:e8:f4:26:8d: cd:0d:64:b8:96:91:4c:a4:d6:02:66:21:2b:e2:fa: 41:bc:af:d0:a6:0f:b0:2a:43:c4:c6:69:15:3e:fc: e7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C2:DC:D5:AD:E5:36:48:BC:B0:42:71:FF:D4:2A:C3:7E:31:B0:8D X509v3 Authority Key Identifier: keyid:9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:0c:0d:28:d0:6d:d1:af:c7:3b:44:56:bb:65:5c:29:20:a2: 8b:ad:56:40:09:8f:6b:7e:a8:3a:27:8c:d7:dc:d8:70:fd:e5: 44:c5:21:df:06:e1:15:84:13:ea:46:9a:a2:f4:c9:84:e5:e9: b1:84:d5:76:28:d1:f2:34:0d:07:90:f2:90:46:cb:23:d4:97: 5a:f3:88:fd:4f:c6:6d:9a:74:e4:04:d8:00:3b:70:e5:e4:d9: 63:7c:7d:9e:21:94:17:d4:12:ae:c2:1e:d6:d5:84:2b:4b:dc: 57:c0:54:c2:1d:71:89:c7:35:73:2c:8f:87:c5:75:f5:65:ec: 1a:3e:e5:20:7b:87:ec:9b:53:ad:db:4a:23:0c:61:fa:ef:15: 29:3b:5f:f4:99:2f:c3:8d:04:4a:43:fa:1d:58:ab:04:78:8c: 3e:d0:61:16:28:ac:46:60:49:1c:b7:2d:d8:84:99:da:a2:26: 46:46:2c:e5:3b:87:19:c3:85:35:be:b4:ef:22:62:b8:ce:ad: 0e:6b:12:4e:46:d7:b6:d2:cd:32:93:2d:f7:24:df:bd:e9:bc: 50:ae:1c:15:43:51:df:c7:78:c8:2e:e3:65:27:4a:9c:9a:5d: 37:01:c5:c2:3b:3e:64:ec:f5:7e:fc:b1:9f:c4:81:d7:fd:b1: 2e:bd:d7:99 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDtdmPf2t6avKaSb3j47lyQcAvHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5 NEY1QUI3QjAeFw0yNjAzMjQwNzA3MjhaFw0yNjAzMjcxOTExMjhaMDMxMTAvBgNV BAMTKDUxQzJEQ0Q1QURFNTM2NDhCQ0IwNDI3MUZGRDQyQUMzN0UzMUIwOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzvV5+eW4NfaF2LisoSMyMgLcq Zb14o63Ne5RpzPMHhOP97pWpTLVq/uusZWIV/OlK7SAVtmofTvLR/RhCuyj7kP6D DK6EGzhVJ5WcgqfmqYEyq/ATK/zjUnxX/jJTYMHyG3r1VW0hl0fguztygz/78frd OiktGiK4vFM3F66/DTDNqfH0Jt0aocxSPNbCXB7owcrhr9ZailCL+/q2XeCPnQzq LpTM4LB32tK0u9mLX1MC/K9z+CgveR8g85yeM16m+9yYYUTPwcCWQASSgO27NHq9 z/eLEDyQivo06PQmjc0NZLiWkUyk1gJmISvi+kG8r9CmD7AqQ8TGaRU+/Oe5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUcLc1a3lNki8sEJx/9Qqw34xsI0wHwYDVR0j BBgwFoAUn/xGuqPxlSKvW91g333pLpT1q3swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTU3ZDU0My1iYWYwLTQzNDgtODg1Ny0zZDI2MDFjM2E4MDMvMC85RkZDNDZCQUEz RjE5NTIyQUY1QkRENjBERjdERTkyRTk0RjVBQjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5NEY1 QUI3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2U1N2Q1NDMtYmFmMC00MzQ4LTg4 NTctM2QyNjAxYzNhODAzLzAvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5 MkU5NEY1QUI3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIsMDSjQbdGvxztEVrtlXCkgooutVkAJj2t+ qDonjNfc2HD95UTFId8G4RWEE+pGmqL0yYTl6bGE1XYo0fI0DQeQ8pBGyyPUl1rz iP1Pxm2adOQE2AA7cOXk2WN8fZ4hlBfUEq7CHtbVhCtL3FfAVMIdcYnHNXMsj4fF dfVl7Bo+5SB7h+ybU63bSiMMYfrvFSk7X/SZL8ONBEpD+h1YqwR4jD7QYRYorEZg SRy3LdiEmdqiJkZGLOU7hxnDhTW+tO8iYrjOrQ5rEk5G17bSzTKTLfck373pvFCu HBVDUd/HeMgu42UnSpyaXTcBxcI7PmTs9X78sZ/Egdf9sS6915k= -----END CERTIFICATE-----Generated at Thu Mar 26 14:29:20 2026 by rpki-client