$ rpki-client -vvf repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft File: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft (raw, json) Hash identifier: 4C/9BDkvqfibr9rbYBgUrSOPCiixFjIzM3BB3gHvF2U= Subject key identifier: 86:FD:7A:87:4A:FA:41:A2:83:8D:F9:4D:C7:08:A7:20:5E:05:25:BA Authority key identifier: 3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 Certificate issuer: /CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Certificate serial: 23A5993A2C6CBFF42122F0B5BB3677F04083E604 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft Manifest number: 0263 Signing time: Tue 24 Mar 2026 03:32:11 +0000 Manifest this update: Tue 24 Mar 2026 03:27:11 +0000 Manifest next update: Fri 27 Mar 2026 09:59:11 +0000 Files and hashes: 1: 3130332e3139302e36302e302f32332d3233203d3e20313439393031.roa (hash: 51ekgtNLYDLFINvFYDj/N8stn5dpVipAbdc9vPbRQ7I=) 2: 3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl (hash: IqTaP7JWhKBlm10xbuWXPMb6nydPKQDDzyalYBYmVCU=) 3: 3130332e3139302e36312e302f32342d3234203d3e20313439393031.roa (hash: Ykg6X7TmWGcN3xNxQzs8nCjH8QlPm6F3Uq9zQ4bEBTI=) 4: 3130332e3139302e36302e302f32342d3234203d3e20313439393031.roa (hash: TsTDpWhEe0S4QbX7Nvx05CapjsmJk1el8Dy5qKfw9Z4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 09:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a5:99:3a:2c:6c:bf:f4:21:22:f0:b5:bb:36:77:f0:40:83:e6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA5C10190ADC96EE34EB4A6D054457022CBDEE9 Validity Not Before: Mar 24 03:27:11 2026 GMT Not After : Mar 27 09:59:11 2026 GMT Subject: CN=86FD7A874AFA41A2838DF94DC708A7205E0525BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:62:4a:4b:6d:68:b9:79:18:f9:7e:78:f5:08: 9a:57:57:f8:f3:42:2d:79:89:de:0f:c0:92:f0:bc: b1:b5:d7:70:de:94:6c:56:71:cc:af:b5:09:c2:a9: ca:e6:5e:46:05:d6:05:ce:96:88:a7:e0:c4:6c:93: 0d:af:bc:a3:ff:04:0d:be:07:c6:35:7f:5f:2d:05: b6:ec:c9:84:f2:e0:fc:25:23:52:c9:ca:ed:59:36: d0:cc:cb:ff:5a:8e:7c:65:f5:53:11:32:8e:1f:ab: 1a:c7:bf:2f:5d:39:31:55:f8:ff:08:96:fd:68:59: 86:70:6c:a3:c6:16:64:f0:99:80:f5:14:46:d6:dd: a6:5f:e3:3e:ba:7c:c2:ec:0e:79:2f:fe:6d:45:77: df:7d:d3:cf:24:76:47:97:5d:f5:68:dd:eb:ac:da: 36:9c:32:5a:78:04:8c:4f:92:c6:64:69:46:31:11: 7a:ec:25:fa:e4:d2:60:06:3a:37:62:f5:df:3f:35: 2f:82:ec:01:42:43:65:02:7d:c3:ad:22:0a:bf:d5: fd:26:1a:c2:de:16:fc:9e:4c:95:1a:e3:d6:f3:95: 71:29:8b:f8:75:13:9e:b8:b0:2d:88:d8:01:09:2b: 07:5a:3d:79:5c:ef:dc:a5:b2:7a:26:23:97:38:3e: 78:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FD:7A:87:4A:FA:41:A2:83:8D:F9:4D:C7:08:A7:20:5E:05:25:BA X509v3 Authority Key Identifier: keyid:3B:A5:C1:01:90:AD:C9:6E:E3:4E:B4:A6:D0:54:45:70:22:CB:DE:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5e314858-b33a-4b65-9a55-dce41e223873/0/3BA5C10190ADC96EE34EB4A6D054457022CBDEE9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:bb:25:91:e1:93:09:94:08:c4:1d:3f:5f:99:33:32:1f:5f: 00:e1:7c:32:2a:df:fa:cf:b6:d5:0f:f7:51:6e:4d:f0:64:f2: ff:f7:62:ea:b8:4e:8d:17:64:ce:ee:82:bb:1f:7d:f9:28:ef: ff:80:e9:1e:61:ad:0b:e8:71:a4:38:0f:0b:44:46:a6:f3:66: c3:61:4c:2b:24:57:b7:3d:93:60:51:6a:22:bd:1d:2b:e8:84: b4:10:bb:c1:a4:fc:01:22:05:b4:18:04:17:ea:12:0c:e3:86: 94:03:ca:99:1d:90:ba:1c:84:48:10:86:ff:4f:6a:b6:1e:4f: e3:3d:01:13:22:96:60:83:3c:4a:70:6f:bc:bc:26:d6:0b:99: 74:43:a0:83:f0:93:15:e3:64:fa:cd:de:ed:c1:82:33:aa:a6: 9d:d9:8c:36:58:a6:b8:53:eb:c4:97:41:d3:44:ae:bd:6d:74: e9:72:3e:4b:79:1b:bc:49:63:56:5f:eb:eb:c7:f2:0f:3f:3e: 75:5c:42:39:e4:ad:84:17:68:0e:76:91:26:0b:3c:ce:f2:91: e5:42:ca:a5:51:9f:d9:a7:db:32:7e:ba:e4:89:7b:40:55:8f: b4:6a:84:e9:58:5d:87:89:22:8a:72:5e:a0:86:c1:2f:25:ef: d3:be:44:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI6WZOixsv/QhIvC1uzZ38ECD5gQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAy MkNCREVFOTAeFw0yNjAzMjQwMzI3MTFaFw0yNjAzMjcwOTU5MTFaMDMxMTAvBgNV BAMTKDg2RkQ3QTg3NEFGQTQxQTI4MzhERjk0REM3MDhBNzIwNUUwNTI1QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1YkpLbWi5eRj5fnj1CJpXV/jz Qi15id4PwJLwvLG113DelGxWccyvtQnCqcrmXkYF1gXOloin4MRskw2vvKP/BA2+ B8Y1f18tBbbsyYTy4PwlI1LJyu1ZNtDMy/9ajnxl9VMRMo4fqxrHvy9dOTFV+P8I lv1oWYZwbKPGFmTwmYD1FEbW3aZf4z66fMLsDnkv/m1Fd999088kdkeXXfVo3eus 2jacMlp4BIxPksZkaUYxEXrsJfrk0mAGOjdi9d8/NS+C7AFCQ2UCfcOtIgq/1f0m GsLeFvyeTJUa49bzlXEpi/h1E564sC2I2AEJKwdaPXlc79ylsnomI5c4PnhbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhv16h0r6QaKDjflNxwinIF4FJbowHwYDVR0j BBgwFoAUO6XBAZCtyW7jTrSm0FRFcCLL3ukwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZTMxNDg1OC1iMzNhLTRiNjUtOWE1NS1kY2U0MWUyMjM4NzMvMC8zQkE1QzEwMTkw QURDOTZFRTM0RUI0QTZEMDU0NDU3MDIyQ0JERUU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1NzAyMkNC REVFOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWUzMTQ4NTgtYjMzYS00YjY1LTlh NTUtZGNlNDFlMjIzODczLzAvM0JBNUMxMDE5MEFEQzk2RUUzNEVCNEE2RDA1NDQ1 NzAyMkNCREVFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGi7JZHhkwmUCMQdP1+ZMzIfXwDhfDIq3/rP ttUP91FuTfBk8v/3Yuq4To0XZM7ugrsfffko7/+A6R5hrQvocaQ4DwtERqbzZsNh TCskV7c9k2BRaiK9HSvohLQQu8Gk/AEiBbQYBBfqEgzjhpQDypkdkLochEgQhv9P arYeT+M9ARMilmCDPEpwb7y8JtYLmXRDoIPwkxXjZPrN3u3BgjOqpp3ZjDZYprhT 68SXQdNErr1tdOlyPkt5G7xJY1Zf6+vH8g8/PnVcQjnkrYQXaA52kSYLPM7ykeVC yqVRn9mn2zJ+uuSJe0BVj7RqhOlYXYeJIopyXqCGwS8l79O+RMs= -----END CERTIFICATE-----Generated at Thu Mar 26 10:37:11 2026 by rpki-client