$ rpki-client -vvf repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft File: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft (raw, json) Hash identifier: zhJpEjjTEidTAY2DYeETBHV0J4EWHxt65ru5ghXZmkg= Subject key identifier: F2:55:7C:F2:73:02:70:17:34:0E:62:83:74:A9:EC:18:21:2A:B2:82 Authority key identifier: 38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C Certificate issuer: /CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Certificate serial: 6AF6D9BDA6FEF50E47FE887AC8846ABEDB0E8465 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft Manifest number: 055F Signing time: Tue 24 Mar 2026 14:12:24 +0000 Manifest this update: Tue 24 Mar 2026 14:07:24 +0000 Manifest next update: Sat 28 Mar 2026 00:06:24 +0000 Files and hashes: 1: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: wlegEJoNWqrWT2tySFrwLRqLsXDXFl0OFT0Nuvvp7LI=) 2: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: lX37Ym1HtH8/+BNNZ7vVVvmLTRPAVgTV6qXoJU01xNo=) 3: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: ShEOWvu/KCYTTrKo5vrKeCwlexfHyDbC4uTV8yZtzEM=) 4: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: nLub1P+aFMPWReFe8FfiX+yqIND5D1X2l5ebLcrAixg=) 5: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl (hash: eZwJeWwoBFk8qZJqFg5QUxkg/oxGrj/IVUtL8N49UlM=) 6: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: LfUE4rPNFz/aR5lxsCZpCHmmGGAgXk5P43w+IeyGgRE=) 7: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: TuOuwC+HTY3+zsq30NoK3C4u4uR9Kt6tuzw+MAyTb4o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f6:d9:bd:a6:fe:f5:0e:47:fe:88:7a:c8:84:6a:be:db:0e:84:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Validity Not Before: Mar 24 14:07:24 2026 GMT Not After : Mar 28 00:06:24 2026 GMT Subject: CN=F2557CF273027017340E628374A9EC18212AB282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:1b:a0:db:b1:39:0b:15:26:ea:1a:6f:5e: 03:92:17:53:2c:da:51:77:b8:a2:35:02:6a:b2:1a: 35:f3:f0:8b:4e:b4:aa:8b:30:57:77:1a:13:7a:4a: dd:b2:45:06:56:2f:79:13:51:26:b0:ba:85:82:a3: c3:95:a5:e0:2f:48:4c:7c:8d:2a:65:11:72:9e:b1: c3:b6:4f:db:c6:42:97:87:1a:54:1f:02:71:5b:51: b4:19:40:07:52:fb:57:9b:f2:08:3e:9d:5e:2f:fc: fc:b8:59:a8:5c:0c:c5:df:e9:bb:59:87:de:56:2b: 7a:58:01:94:b4:32:2e:e8:81:60:4d:7a:eb:5a:94: f2:75:91:6b:39:b9:b0:c7:df:ec:f9:1b:bc:fa:98: 81:27:18:dd:5c:06:19:6b:d8:24:cf:17:d4:87:d3: 87:22:ef:a0:ae:cd:34:4d:6f:1d:56:42:69:27:b8: 3b:d7:79:65:ce:46:73:2e:9d:e9:2f:35:fe:1c:d4: 95:74:d8:ea:2d:c0:4c:f4:f6:8a:43:49:da:b3:5f: eb:ee:c1:6e:91:ec:d5:97:27:7c:db:26:d5:d7:86: 0c:d0:14:73:09:3c:07:8f:53:bf:97:24:cd:1c:a0: eb:7f:d7:60:23:14:5f:83:8e:c0:57:85:94:52:d5: 26:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:55:7C:F2:73:02:70:17:34:0E:62:83:74:A9:EC:18:21:2A:B2:82 X509v3 Authority Key Identifier: keyid:38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:e9:73:2a:3d:0f:4a:05:19:39:f1:06:79:84:a1:e1:57:2b: 42:b6:c4:df:37:8b:e4:84:f7:22:c3:95:a5:11:35:ef:30:e3: b2:02:2a:40:5f:06:60:f1:28:c0:43:17:f3:4a:25:53:c6:79: 01:22:3c:0d:83:a9:9f:14:15:85:84:04:d8:9a:ae:ed:d7:e6: 98:a6:40:28:06:fa:80:fc:13:55:cb:3e:81:41:d3:22:0b:4d: 83:62:1a:24:d7:b7:22:3c:c2:4a:4b:f2:4b:4f:4b:46:c0:3d: 0f:01:cc:34:63:f6:bd:91:f8:61:36:db:c2:74:1a:12:c5:e6: 55:32:ea:a2:55:7d:77:0d:a1:99:25:cf:f9:e0:57:46:f9:6c: 9c:6f:e9:18:0e:ff:5c:ab:64:c1:1d:06:6b:b0:8d:42:c1:d2: df:a2:97:e8:a2:5c:e0:45:1a:2d:09:f5:15:97:e2:b7:6f:68: 8f:7d:2a:3f:d6:11:22:d3:2b:2b:7c:7d:9d:3d:cb:39:fa:8b: 0b:ff:ed:a5:cf:26:89:59:c9:bf:48:d4:f8:e7:ab:67:e6:e5: d1:05:a7:0b:14:5c:eb:84:88:df:d8:6b:4e:36:52:96:3b:e6: 61:3a:5e:a5:77:49:b4:04:07:ad:e2:77:35:a3:88:d9:bc:4e: 2e:1a:35:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUavbZvab+9Q5H/oh6yIRqvtsOhGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQw MTI1MkE1QzAeFw0yNjAzMjQxNDA3MjRaFw0yNjAzMjgwMDA2MjRaMDMxMTAvBgNV BAMTKEYyNTU3Q0YyNzMwMjcwMTczNDBFNjI4Mzc0QTlFQzE4MjEyQUIyODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvxRug27E5CxUm6hpvXgOSF1Ms 2lF3uKI1AmqyGjXz8ItOtKqLMFd3GhN6St2yRQZWL3kTUSawuoWCo8OVpeAvSEx8 jSplEXKescO2T9vGQpeHGlQfAnFbUbQZQAdS+1eb8gg+nV4v/Py4WahcDMXf6btZ h95WK3pYAZS0Mi7ogWBNeutalPJ1kWs5ubDH3+z5G7z6mIEnGN1cBhlr2CTPF9SH 04ci76CuzTRNbx1WQmknuDvXeWXORnMunekvNf4c1JV02OotwEz09opDSdqzX+vu wW6R7NWXJ3zbJtXXhgzQFHMJPAePU7+XJM0coOt/12AjFF+DjsBXhZRS1SYnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8lV88nMCcBc0DmKDdKnsGCEqsoIwHwYDVR0j BBgwFoAUOJ58E89jRK65MAHNTFrHlAElKlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjAzMmJjOS02MDVhLTQyNTMtYTRjZC02MmYxMjQxMjZlYWMvMC8zODlFN0MxM0NG NjM0NEFFQjkzMDAxQ0Q0QzVBQzc5NDAxMjUyQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQwMTI1 MkE1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3 OTQwMTI1MkE1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALXpcyo9D0oFGTnxBnmEoeFXK0K2xN83i+SE 9yLDlaURNe8w47ICKkBfBmDxKMBDF/NKJVPGeQEiPA2DqZ8UFYWEBNiaru3X5pim QCgG+oD8E1XLPoFB0yILTYNiGiTXtyI8wkpL8ktPS0bAPQ8BzDRj9r2R+GE228J0 GhLF5lUy6qJVfXcNoZklz/ngV0b5bJxv6RgO/1yrZMEdBmuwjULB0t+il+iiXOBF Gi0J9RWX4rdvaI99Kj/WESLTKyt8fZ09yzn6iwv/7aXPJolZyb9I1Pjnq2fm5dEF pwsUXOuEiN/Ya042UpY75mE6XqV3SbQEB63idzWjiNm8Ti4aNbg= -----END CERTIFICATE-----Generated at Thu Mar 26 17:55:18 2026 by rpki-client