$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: 3+khHAqIa6HyEGKPHWTYhkVomG1kU1vVDBcfJBN//d0= Subject key identifier: FB:39:D9:49:88:2A:D1:58:5D:57:01:35:DF:6D:E0:85:00:2E:26:A3 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 61A1CEE451B506D97C199434E3BB13C89C66EB5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 03B4 Signing time: Wed 25 Mar 2026 16:51:43 +0000 Manifest this update: Wed 25 Mar 2026 16:46:43 +0000 Manifest next update: Sun 29 Mar 2026 04:14:43 +0000 Files and hashes: 1: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) 2: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) 3: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 4: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: +Id3paoIB8kqREVdS5+KGGS8Zb55L5dWN/tn7ssxoSQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 04:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:a1:ce:e4:51:b5:06:d9:7c:19:94:34:e3:bb:13:c8:9c:66:eb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Mar 25 16:46:43 2026 GMT Not After : Mar 29 04:14:43 2026 GMT Subject: CN=FB39D949882AD1585D570135DF6DE085002E26A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6d:6e:56:5f:49:dd:90:5b:6b:80:00:2f:a5: e2:7d:7e:f9:c6:a4:34:d1:bc:7b:12:f6:a8:9b:ef: 29:3d:2b:2a:30:9b:31:dc:f3:1b:df:eb:28:c6:56: 01:8e:73:d5:80:21:a2:7d:71:22:e7:51:41:f5:c3: 42:8d:28:05:6a:c6:bb:b0:11:94:ff:25:63:a3:53: 62:e1:9c:39:06:aa:30:cb:a3:41:fc:6c:9b:2a:55: db:86:62:85:bd:c2:fb:0a:a0:db:b9:e2:41:63:be: 5e:3c:96:b2:a4:b6:02:73:85:e3:aa:67:52:95:dd: 05:4d:be:e3:51:64:15:fe:56:f7:a1:60:f5:49:40: e4:d4:42:6b:f8:92:3b:e5:c5:99:72:3c:f4:ed:9b: f3:8a:d7:00:42:92:67:dd:6f:b2:6a:30:5c:68:0d: 40:5e:34:1a:2b:23:52:22:34:73:42:ee:ea:21:16: 8a:15:93:7c:76:77:4a:80:03:3b:bd:dd:af:c0:77: 7d:4c:d2:5d:71:28:a6:90:b6:8e:6f:db:97:18:8a: e3:b9:00:49:79:60:0c:cc:02:0d:26:c9:26:b3:9c: 5b:8d:48:31:5e:26:f1:52:92:c8:98:63:db:e7:ec: ab:b9:04:93:b6:29:b8:6b:b2:e6:2d:2a:3a:c1:a9: 88:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:39:D9:49:88:2A:D1:58:5D:57:01:35:DF:6D:E0:85:00:2E:26:A3 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:17:27:02:46:f7:bb:5c:3b:9f:91:c7:34:e6:c1:7a:93:84: 58:af:d4:fb:34:b1:f4:54:f9:f8:27:e0:e0:e9:1b:f6:60:06: 98:94:8b:70:67:08:a5:5c:c5:fe:80:eb:11:6a:23:40:80:ae: de:5c:0c:90:c3:82:6a:46:86:14:a7:c9:0a:15:91:85:a1:bf: 7e:16:94:dc:e3:d9:f2:a1:95:d6:2a:a9:98:24:cc:20:41:5f: 97:51:fa:34:2c:bd:96:ed:10:95:03:74:47:b6:3a:35:88:87: ac:a2:b7:c5:79:85:42:f2:b7:1d:4d:14:32:20:b1:cf:b0:69: 8c:78:f5:ce:e2:66:d9:a5:c1:d5:a8:40:b0:de:a4:0d:8c:6c: 2c:15:9b:02:4f:0e:a3:5c:22:07:74:2f:36:27:68:48:f2:36: 14:3b:f7:eb:70:50:7c:fa:a3:02:b4:13:1d:c8:19:02:d6:74: 50:7d:e3:e6:9e:48:f7:90:f2:1c:2d:85:14:a0:06:d4:db:9a: 70:1d:33:77:4a:67:7a:8a:e8:d1:95:8a:e0:d2:8a:cd:d2:a4: f6:27:c4:ee:8d:49:2c:55:13:54:57:a6:7b:1d:d5:11:79:7b: 65:19:80:bf:93:24:60:25:2c:a7:91:9a:29:da:0f:6c:db:86: 6e:ed:da:81 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYaHO5FG1Btl8GZQ047sTyJxm61wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNjAzMjUxNjQ2NDNaFw0yNjAzMjkwNDE0NDNaMDMxMTAvBgNV BAMTKEZCMzlEOTQ5ODgyQUQxNTg1RDU3MDEzNURGNkRFMDg1MDAyRTI2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmbW5WX0ndkFtrgAAvpeJ9fvnG pDTRvHsS9qib7yk9KyowmzHc8xvf6yjGVgGOc9WAIaJ9cSLnUUH1w0KNKAVqxruw EZT/JWOjU2LhnDkGqjDLo0H8bJsqVduGYoW9wvsKoNu54kFjvl48lrKktgJzheOq Z1KV3QVNvuNRZBX+VvehYPVJQOTUQmv4kjvlxZlyPPTtm/OK1wBCkmfdb7JqMFxo DUBeNBorI1IiNHNC7uohFooVk3x2d0qAAzu93a/Ad31M0l1xKKaQto5v25cYiuO5 AEl5YAzMAg0mySaznFuNSDFeJvFSksiYY9vn7Ku5BJO2KbhrsuYtKjrBqYgPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+znZSYgq0VhdVwE1323ghQAuJqMwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALcXJwJG97tcO5+RxzTmwXqThFiv1Ps0sfRU +fgn4ODpG/ZgBpiUi3BnCKVcxf6A6xFqI0CArt5cDJDDgmpGhhSnyQoVkYWhv34W lNzj2fKhldYqqZgkzCBBX5dR+jQsvZbtEJUDdEe2OjWIh6yit8V5hULytx1NFDIg sc+waYx49c7iZtmlwdWoQLDepA2MbCwVmwJPDqNcIgd0LzYnaEjyNhQ79+twUHz6 owK0Ex3IGQLWdFB94+aeSPeQ8hwthRSgBtTbmnAdM3dKZ3qK6NGViuDSis3SpPYn xO6NSSxVE1RXpnsd1RF5e2UZgL+TJGAlLKeRminaD2zbhm7t2oE= -----END CERTIFICATE-----Generated at Thu Mar 26 18:21:24 2026 by rpki-client