$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft File: 3703AC4154F05B1E642F31DEF71A238407E82D59.mft (raw, json) Hash identifier: z39RFTABLt6ZR81hwVDPTAFJueIMlxBLXNL8bB336wo= Subject key identifier: 8D:4D:4E:11:D4:2C:78:8B:70:4F:D0:15:EA:87:44:0A:A0:9C:B2:FA Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 5297BB802CF36AB6023A2BFAF50C726D4B22464F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft Manifest number: 0505 Signing time: Thu 26 Mar 2026 07:00:59 +0000 Manifest this update: Thu 26 Mar 2026 06:55:59 +0000 Manifest next update: Sun 29 Mar 2026 13:11:59 +0000 Files and hashes: 1: 3703AC4154F05B1E642F31DEF71A238407E82D59.crl (hash: HHrIZGFr8gNuLyOmAK/ty63P8vfYPkcSDTNdNaFiQLU=) 2: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (hash: /26G7paj90BYpA/7obbRkQ0e5IpXJm+V8bRm2IMmu/M=) 3: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (hash: RNQYxKN0Nubn/ygqO8rH37j/P4lI+9FQ1kXn5iYtC0w=) 4: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (hash: hTOnvJY78aaZJU0V/ewFlrDahpGLWlt1kXeTr26Q6jE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 13:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:97:bb:80:2c:f3:6a:b6:02:3a:2b:fa:f5:0c:72:6d:4b:22:46:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Mar 26 06:55:59 2026 GMT Not After : Mar 29 13:11:59 2026 GMT Subject: CN=8D4D4E11D42C788B704FD015EA87440AA09CB2FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:8c:6d:e9:4c:7d:e8:73:ed:8e:83:f0:a8: ca:d3:c6:03:bd:97:18:24:bd:2d:b8:61:8d:51:42: d6:03:4b:c4:7e:85:99:67:3b:25:62:37:80:ae:e3: ad:9d:f4:5f:f6:32:82:18:73:2b:0f:41:d3:5c:64: d8:d3:23:bb:7e:b9:da:f7:12:a5:b9:6b:e8:a7:86: 5a:b6:81:12:c5:df:5f:07:de:47:d7:c8:49:aa:1e: 3d:d6:8c:88:1c:ca:ba:13:02:75:f9:78:55:b5:5a: d0:11:71:32:ed:9e:25:db:55:fb:07:f1:0b:48:36: ff:16:32:73:58:98:c4:f7:65:17:2e:7d:24:55:f5: 7e:06:3b:f5:82:d4:d9:47:41:d9:d4:c0:fe:a6:fd: 08:c8:0e:53:2c:59:2b:eb:3b:dc:8d:08:ab:0e:60: 25:49:39:c5:e0:1a:37:30:23:bd:87:7a:46:8b:d8: 44:bc:25:82:76:c5:30:9c:9a:de:cb:88:52:4e:7e: 93:14:f4:4e:e9:a0:46:f3:cd:9c:c4:88:9a:03:85: ee:be:f3:65:e5:5a:ee:13:d6:43:bb:75:20:50:d0: 01:e7:70:9e:12:a9:9e:02:34:74:c8:57:fa:57:26: 89:ff:d8:16:bf:1e:a3:b2:92:8f:c2:e5:a1:1e:ec: 3b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4D:4E:11:D4:2C:78:8B:70:4F:D0:15:EA:87:44:0A:A0:9C:B2:FA X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ff:ed:6c:bd:e4:5e:ad:10:cf:1b:84:8d:a2:2e:7d:30:f7: 95:a9:b4:d0:a0:1b:f0:dc:97:4f:35:ae:6d:c2:87:c9:0c:67: cd:79:8f:d7:d0:b1:c3:b3:05:9b:2e:6f:a1:82:ae:81:90:88: 43:02:ef:5f:5d:d1:41:fb:21:bc:29:55:25:94:44:cc:7a:2b: d4:71:73:e8:56:d8:a6:6e:fa:17:f0:dd:c3:59:e9:5d:36:a7: 97:63:da:2a:1a:64:95:22:1b:47:6a:d7:d9:a5:bb:82:33:3e: 5d:4e:1f:0d:6c:65:8d:dc:5b:5e:89:27:bd:60:fb:b5:ba:15: 0e:7c:c6:ca:a8:b9:82:0a:5e:40:e4:c0:8b:a0:b9:d8:58:38: 90:a5:03:5b:b4:b0:88:59:91:cd:74:36:6d:11:aa:4d:50:7d: 85:6d:5b:2e:ba:2a:be:e5:05:ac:ab:19:4e:75:d0:1c:2d:3c: fe:38:bb:37:22:a0:50:82:01:66:41:5d:8a:f6:98:5a:62:fd: e3:31:88:f2:9d:9d:14:3e:85:10:0e:7e:16:bb:d9:f6:dc:41: c2:b5:87:69:b0:36:17:71:f0:05:d1:9b:e2:55:b8:97:ca:93: 4c:da:62:0e:41:2b:f4:c3:37:d7:bf:5b:81:59:59:a6:08:61: 82:0c:26:80 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUpe7gCzzarYCOiv69QxybUsiRk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNjAzMjYwNjU1NTlaFw0yNjAzMjkxMzExNTlaMDMxMTAvBgNV BAMTKDhENEQ0RTExRDQyQzc4OEI3MDRGRDAxNUVBODc0NDBBQTA5Q0IyRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsqYxt6Ux96HPtjoPwqMrTxgO9 lxgkvS24YY1RQtYDS8R+hZlnOyViN4Cu462d9F/2MoIYcysPQdNcZNjTI7t+udr3 EqW5a+inhlq2gRLF318H3kfXyEmqHj3WjIgcyroTAnX5eFW1WtARcTLtniXbVfsH 8QtINv8WMnNYmMT3ZRcufSRV9X4GO/WC1NlHQdnUwP6m/QjIDlMsWSvrO9yNCKsO YCVJOcXgGjcwI72HekaL2ES8JYJ2xTCcmt7LiFJOfpMU9E7poEbzzZzEiJoDhe6+ 82XlWu4T1kO7dSBQ0AHncJ4SqZ4CNHTIV/pXJon/2Ba/HqOyko/C5aEe7DvHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjU1OEdQseItwT9AV6odECqCcsvowHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGEwOTlhZGYtN2UxMi00ZTgzLTk1 YzItZGQ3Zjc3NDk0Nzg4LzAvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIz ODQwN0U4MkQ1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC//7Wy95F6tEM8bhI2iLn0w95WptNCgG/Dc l081rm3Ch8kMZ815j9fQscOzBZsub6GCroGQiEMC719d0UH7IbwpVSWURMx6K9Rx c+hW2KZu+hfw3cNZ6V02p5dj2ioaZJUiG0dq19mlu4IzPl1OHw1sZY3cW16JJ71g +7W6FQ58xsqouYIKXkDkwIugudhYOJClA1u0sIhZkc10Nm0Rqk1QfYVtWy66Kr7l BayrGU510BwtPP44uzcioFCCAWZBXYr2mFpi/eMxiPKdnRQ+hRAOfha72fbcQcK1 h2mwNhdx8AXRm+JVuJfKk0zaYg5BK/TDN9e/W4FZWaYIYYIMJoA= -----END CERTIFICATE-----Generated at Thu Mar 26 16:31:47 2026 by rpki-client